We performed a comparison between Cisco Umbrella and Zscaler CASB based on real PeerSpot user reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Comparison Results: According to user feedback, Cisco Umbrella is the preferred choice when compared to Zscaler CASB. This is due to its comprehensive features, ease of use, strong integration with other products, and positive customer service. Cisco Umbrella offers granular customization options for DNS blocking, content filtering, and single-pane-of-glass management. While Zscaler CASB is appreciated for its zero trust feature and competitive pricing, it does not match the level of features and integration offered by Cisco Umbrella.
"The solution is stable."
"On the outside, the main differentiation is because Lookout ingest. They have ingested basically all of the apps for the last ten years and all the versions of all the apps, and we have that in a corporate database that allows us to do very large-scale machine learning and analysis on that data set. That's not something that any of the competitors really have the capability to do because they don't have access to the data set. A lot of the apps you can no longer get them because that version of the app is five or six years old, and it just doesn't exist anywhere anymore, except within our infrastructure. So, the ability to have that very rich dataset and learn from that dataset is a real differentiator."
"The protection offered by the product is the most valuable feature. It detects vulnerabilities or traps on our users' phones and then prompts them to clean up their devices. Tools we used previously would only discover, which required us to gather information on the backend, so Lookout is a welcome upgrade."
"The most valuable features are the antivirus as a whole, the anti-malware, and all of the protection features that scan our enterprise devices."
"I like that it integrates with the infrastructure. I also like the kind of data and intelligence that's built-in. It helps create innovative reports for security."
"The most valuable thing is how easy it is to deploy. We did it with 9,000 users at my last job, and it took a week to get to all the endpoints. Doing that without having to physically touch all those endpoints was very simple."
"It has the ability to quickly block new threats."
"Helps block personal email accounts."
"It has helped reduce my unit's security events."
"The most valuable feature is the ability to filter malware sites that could infect clients or allow them to download infected files."
"It enables us to go granular in the customization of blocking some categories on the DNS."
"Improves security through DNS visibility, which can block malware, phishing, C&C, etc."
"The most valuable features of Zscaler CASB are API integration and DLP."
"Has a good zero trust feature."
"It has been helpful in maintaining our infrastructure. The granular level control it offers allows us to set application policies per application for each user."
"The tool's scalability is good."
"Overall, the solution does a pretty good job at web filtering."
"Zscaler CASB's latency and architecture are excellent."
"We just submitted an enhancement request reflecting the main area we want to see improvement in; the APIs. Currently, we're able to build dashboards, but it's somewhat backward because we use our MDM API to create them. Lookout should provide API to customers so we can query our data and use it in our cloud, and this is the only outstanding area for improvement with the product right now."
"The stability depends on the service from where you access it. Because sometimes, the place you are in, you have Gateway. You don't have Gateway. The gateway is overutilized. At the end, you need to go through their gateways. And this is the key point here. You have a tracking point. If it's not well orchestrated, and it scales up as you add more to the existing team, you will suffer"
"Lookout was moving into the SSE space. And so their work on SecureWeb Gateway and SD-WAN is still sort of evolving."
"From the analysis that we've done, they do seem to be maybe a step behind in trying to enter the market with a new solution. But when they do pick up, they do come out with some good products."
"Overall, I'm quite happy with Cisco products, but there could be one place where you can check what's going on. There could be one place where you get all the information about these products so that you don't need to look around. You get the status, information about what lately happened, and if there was anything on the machine in one single place."
"If you wish to inspect all the traffic and it's integrated with Cisco AnyConnect, all the traffic basically goes through Cisco AnyConnect, which is not a good idea. That means you need to have more internet capacity as a data sampler, so in the case of a split tunnel, we cannot inspect the traffic that is being migrated through the local internet. I'm not sure whether there is a possibility wherein Cisco Umbrella can also inspect the traffic that is outside the AnyConnect tunnel."
"It would be good if the more complex versions of Umbrella are simplified so that we can offer them in a more standardized way. We, as a telco, do not operate the same as a traditional integration partner would, who can sell all its services. We try to have a standardized approach as much as we can so that we can sell the solution with as many services added to it as possible. If you look at the structure of businesses in Switzerland, 95% of them have 10 persons or less, and they do not have a security specialist. Therefore, the higher the automated and standardized features, the better it is for them."
"It would be useful if they had a malware protection engine running inside their own VM."
"The API is very Cisco orientated, which is absolutely fine if you're using Cisco Firepower and SecureX kind of products, but if you want to integrate with third parties, it is a bit tricky. There are some key API connectors for the more prevalent SIEM tools. I would really like to see in Cisco Umbrella the ability to create customized reports and then assign the rights to view these reports to people within a group. I should be able to create a customized report, which is viewable by anybody who has the rights. I should be able to create groups within Cisco Umbrella, and then assign reports to groups and have those reports split out automatically only to those groups. I can kind of do it by restricting my email list, but it is a half-complete way of doing it."
"I feel that the application needs other characteristics that are available with other applications in the market."
"The pricing is a bit high. Being outside of the USA, we have issues with the exchange rate."
"The design of the screens could be improved. Sometimes you're trying to look for information, for what you think is critical that should be on that first screen of the dashboard so that you can quickly take screenshots to have people help out, but you have to hop between screens to find little pieces of evidence."
"Zscaler CASB should include integrations with other SaaS applications."
"It needs to offer SSO, single sign-on, and items of that nature."
"The pre-defined dictionaries could be improved."
"User management can be improved."
"The solution's granularity should be improved because it has limited granular options to control, visible, allow, block, delay, and receive."
"Zscaler CASB breaks down at times."
Cisco Umbrella is ranked 1st in Cloud Access Security Brokers (CASB) with 108 reviews while Zscaler CASB is ranked 9th in Cloud Access Security Brokers (CASB) with 6 reviews. Cisco Umbrella is rated 8.8, while Zscaler CASB is rated 7.6. The top reviewer of Cisco Umbrella writes "Protects endpoints wherever they are, always pushing people to the right locations to avoid malicious intent". On the other hand, the top reviewer of Zscaler CASB writes "A stable solution that provides API integration and DLP, but lacks integrations with other SaaS applications". Cisco Umbrella is most compared with Zscaler Internet Access, Microsoft Defender for Cloud Apps, Prisma Access by Palo Alto Networks, Palo Alto Networks DNS Security and Infoblox Advanced DNS Protection, whereas Zscaler CASB is most compared with Skyhigh Security, Microsoft Defender for Cloud Apps, Prisma Access by Palo Alto Networks, ThreatLocker Elevation Control and Obsidian CDR Platform. See our Cisco Umbrella vs. Zscaler CASB report.
See our list of best Cloud Access Security Brokers (CASB) vendors.
We monitor all Cloud Access Security Brokers (CASB) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.