My favorite part of mimecast is that their servers apparently can't handle normal volume and regularly time out before redirecting to the destination URL.
That's a feature, not a bug. If the user can't load the redirection, they can't get phished! Problem solved.
If anyone complains, refer them to the security department to be audited. It's really rather suspicious when someone values doing their job above security.
