In the past, email security best practices for employees could be summarized quickly: Don't trust email, because email is an unauthenticated, unreliable messaging service. This is still mostly true, and the same best practices for email security for employees from 1989 -- use strong passwords, block spammers, don't trust offers that are too good to be true and verify requests even from trusted entities -- still hold.
However, the table stakes for email security best practices for employees have gotten much higher as email has become an increasingly rich application capable of carrying messages with hidden links to malicious web sites, code and attachments that may be vectors for more sophisticated attacks.
Strategies behind email security best practices for employees: Employees who wish to level up their email security game on their own have some options, though the greatest responsibility -- and capability -- for improving email security rests with the employer. Few employees are able to drive corporate IT decisions like upgrading obsolete or deprecated versions of corporate email clients and servers.
Please select this link to read the complete article from Search Security.