• Home
  • Lacework vs. Zscaler CSPM

Lacework vs Zscaler CSPM comparison

Cancel
You must select at least 2 products to compare!
Lacework Logo
Lacework
Read 9 Lacework reviews
3,887 views|2,660 comparisons
90% willing to recommend
Zscaler Logo
Zscaler CSPM
Read 4 Zscaler CSPM reviews
910 views|796 comparisons
100% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Lacework vs. Zscaler CSPM
May 2024
Executive Summary

We performed a comparison between Lacework and Zscaler CSPM based on real PeerSpot user reviews.

Find out in this report how the two Cloud Security Posture Management (CSPM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Lacework vs. Zscaler CSPM Report (Updated: May 2024).
Download the complete report
772,649 professionals have used our research since 2012.
Featured Review
Robert Croteau
It provides a good overview of our security posture
Lacework provides a good overview of our security posture. We also use the Kubernetes agent because our software is a Kubernetes-based application.... Read more →
Maksym Toporkov
A comprehensive and flexible solution for digital experience monitoring and protecting against various threats with...
It proved to be invaluable in addressing our challenge of not having a rigid perimeter. With employees working from various locations, the need to... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Lacework is helping a lot in reducing the noise of the alerts. Usually, whenever you have a tool in place, you have a lot of noise in terms of alerts, but the time for an engineer to look into those alerts is limited. Lacework is helping us to consolidate the information that we are getting from the agents and other sources. We are able to focus only on the things that matter, which is the most valuable thing for us. It saves time, and for investigations, we have the right context to take action.""The most valuable feature is Lacework's ability to distill all the security and audit logs. I recommend it to my customers. Normally, when I consult for other customers that are getting into the cloud, we use native security tools. It's more of a rule-based engine.""There are many valuable features that I use in my daily work. The first are alerts and the event dossier that it generates, based on the severity. That is very insightful and helps me to have a security cap in our infrastructure. The second thing I like is the agent-based vulnerability management, which is the most accurate information.""The most valuable feature, from a compliance perspective, is the ability to use Lacework as a platform for multiple compliance standards. We have to meet multiple standards like PCI, SOC 2, CIS, and whatever else is out there. The ability to have reports generated, per security standard, is one of the best features for me.""For the most part, out-of-the-box, it tells you right away about the things you need to work on. I like the fact that it prioritizes alerts based on severity, so that you can focus your efforts on anything that would be critical/high first, moderate second, and work your way down, trying to continue to improve your security posture.""Polygraph compliance is a valuable feature. In our perspective, it delivers significant benefits. The clarity it offers, along with the ability to identify and address misconfigurations, is invaluable. When such issues arise, we promptly acknowledge and take action, effectively collaborating with our teams and the responsible parties for those assets. This enables us to promptly manage problems as soon as they arise.""The best feature, in my opinion, is the ease of use.""The compliance reports are definitely most valuable because they save time and are accurate. So, instead of relying on a human going through and checking or providing me with a report, I could just log into Lacework and see for myself."

More Lacework Pros →

"The most valuable feature is its seamless integration capabilities, streamlining the process by eliminating the need for extensive installations.""The agent's versatility is notable, used for digital experience monitoring to collect valuable endpoint metrics for troubleshooting.""The product provides a seamless user experience.""This secure connection allows users to connect to the Zscaler VPN and access the resources on the office network, making it a highly valuable component of our system."

More Zscaler CSPM Pros →

Cons
"A feature that I have requested from them is the ability to sort alerts and policies based on a security framework. Right now, when you go into alerts, you have hundreds and hundreds of them that you have to manually pick. It would be useful to have categories for CIS Benchmark or SOC 2 and be able to display all the alerts and policies for one security framework.""I would like to see a remote access assistance feature. And the threat-hunting platform could be better.""Its integrations with third-party SIEMs can be better. That is one of the things that we discussed with them.""The configuration and setup of alerts should be easier. They should make it easier to integrate with systems like Slack and Datadog. I didn't spend too much time on it, but to me, it wasn't as simple as the alerting that I've seen on other systems.""Lacework has not reduced the number of alerts we get. We've actually had to add resources as a result of using it because the application requires a lot of people to understand it to get the value out of it properly.""The biggest thing I would like to see improved is for them to pursue and obtain a FedRAMP moderate authorization... I don't believe they have any immediate plans to get FedRAMP moderate authorized, which is a bit of a challenge for us because we can only use Lacework in our commercial environment.""Lacework lacks remediation features, but I believe they're working on that. They're focused on the reporting aspect, but other features need to improve. They're also adding some compliance features, so it's not worth saying they need to get better at it.""Visibility is lacking, and both compliance-related metrics and IAM security control could be improved."

More Lacework Cons →

"Occasionally, there are certain delays in report generation.""Occasionally, issues arise in the LogStack by a third party, particularly for government websites accessed by numerous users.""Having a Zscaler-specific device could streamline this process and provide a more consistent user experience across diverse branches.""The product is not reliable."

More Zscaler CSPM Cons →

Pricing and Cost Advice
  • "The licensing fee was approximately $80,000 USD, per year."
  • "The pricing has gotten better. That scenario was somewhat unstable. They have a rather interesting licensing structure. I believe you get 200 resources per "Lacework unit." It was difficult, in the beginning, to figure out exactly what a "resource" was... That was a problem until about a year or so ago. They have improved it and it has stabilized quite a bit."
  • "It is slightly expensive. It depends on how big your environment is, but it is expensive. Right now, we are spending a lot of money. We have covered all of the cloud providers and most of our colocation facilities as well, so we cannot complain, but it is slightly expensive. It is not super expensive."

    • More Lacework Pricing and Cost Advice →

  • "In the long run, cloud services are not inherently costly."

    • More Zscaler CSPM Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
    See Recommendations
    772,649 professionals have used our research since 2012.
    Questions from the Community
    How would you compare Wiz vs Lacework?
    Top Answer:Wiz and Lacework sucks... Buy Orca. 
    What do you like most about Lacework?
    Top Answer:Polygraph compliance is a valuable feature. In our perspective, it delivers significant benefits. The clarity it offers, along with the ability to identify and address misconfigurations, is… more »
    Read all 5 answers   →
    What is your experience regarding pricing and costs for Lacework?
    Top Answer:It is slightly expensive. It depends on how big your environment is, but it is expensive. Right now, we are spending a lot of money. We have covered all of the cloud providers and most of our… more »
    Read all 3 answers   →
    What do you like most about Zscaler Cloud Protection?
    Top Answer: This secure connection allows users to connect to the Zscaler VPN and access the resources on the office network, making it a highly valuable component of our system.
    Read all 2 answers   →
    What is your experience regarding pricing and costs for Zscaler Cloud Pro...
    Top Answer:The perception of cloud services being expensive is often a result of the initial migration costs, especially when transitioning from traditional and limited MPLS environments. In the long run, cloud… more »
    What needs improvement with Zscaler Cloud Protection?
    Top Answer:Occasionally, issues arise in the LogStack by a third party, particularly for government websites accessed by numerous users. This can trigger false positives, causing certain IP ranges to be… more »
    Read all 2 answers   →
    Ranking
    9th
    out of 52 in Cloud Security Posture Management (CSPM)
    Views
    3,887
    Comparisons
    2,660
    Reviews
    9
    Average Words per Review
    1,257
    Rating
    8.8
    22nd
    out of 52 in Cloud Security Posture Management (CSPM)
    Views
    910
    Comparisons
    796
    Reviews
    4
    Average Words per Review
    544
    Rating
    8.3
    Comparisons
    Also Known As
    Polygraph
    Zscaler Cloud Protection
    Learn More
    Lacework
    Video Not Available
    Zscaler
    Overview

    Lacework is a cloud security platform whose Polygraph Data Platform automates cloud security at scale so customers can innovate with speed and safety. Lacework is the only security platform that can collect, analyze, and accurately correlate data across an organization’s AWS, Azure, GCP, and Kubernetes environments, and narrow it down to the handful of security events that matter. As a breach detection and investigation tool, Lacework provides information on when and how a breach happened, including the users, machines, and applications involved in the breach. By using machine learning and behavioral analytics, the solution can automatically learn what's normal for your environment and reveal any abnormal behavior. In addition, Lacework gives you continuous visibility to find vulnerabilities, misconfigurations, and malicious activity across your cloud environment.

    Lacework Features

    Lacework has many valuable key features. Some of the most useful ones include:

    • Dashboards
    • Reports
    • Workflow management
    • Administration console
    • Governance
    • Policy enforcement
    • Auditing
    • Access control
    • Workflow management
    • Compliance monitoring
    • Anomaly detection
    • Data loss prevention
    • Cloud gap analytics
    • Host compliance

    Lacework Benefits

    There are many benefits to implementing Lacework. Some of the biggest advantages the solution offers include:

    • Security visibility: Get deep observability into your cloud accounts, workloads, and microservices to give you tighter security control.
    • Threat detection: By using Lacework, your organization can identify common security events that target your cloud servers, containers, and infrastructure-as-a-service (IaaS) accounts so you can take action on them quickly.
    • Flexible deployment: With Lacework, you have the option to deploy the way you prefer - either agent or agentless - which provides the visibility needed to have maximum security for cloud accounts and systems. Because Lacework offers an easy-to-deploy layered approach, you gain quick time to value.
    • Configuration compliance: With the Lacework solution, you can easily spot IaaS account configurations that are non-compliant and identify opportunities to apply security best practices.
    • Synced teams: Lacework allows your teams to operate smarter and bridge the gap between security, Dev, and Ops regardless of your team's size or experience level.
    • Gain meaningful security insights: Lacework provides meaningful security insights, alerting you of issues before they reach production from your existing workflows. This way you can build apps quickly and confidently.
    • Increased revenue streams: Because the solution has built-in security from the first line of code early on, it helps users unlock higher revenue streams.
    • Helps avoid development delays: The Lacework solution helps you better prioritize security fixes by making security information accessible to DevOps and security teams for earlier risk mitigation that speeds innovation.
    • Increased productivity: Lacework provides alerts with all the context you need and eliminates data silos and costly investigations, enabling you to boost productivity.
    • Correlate and contextualize behaviors: Lacework can take attributes and data points from your unique environment and correlate them together into behaviors.
    • Simplified cloud security posture and compliance: With the Lacework platform, you can get comprehensive visibility and continuous tracking to reduce risks and meet compliance requirements so you can improve your bottom line.
    • Address vulnerabilities before it is too late: Lacework enables you to limit your attack surface so you can address the riskiest vulnerabilities early in the development cycle.

    Zscaler CSPM automates security and compliance in the cloud, delivering continuous visibility and enforcing adherence to the most comprehensive set of security policies and compliance frameworks. Offered as a multi-tenant SaaS, the product enables seamless integration with customer cloud infrastructure, quick data collection, comprehensive dashboards and reports. Zscaler CSPM supports integrations with CI/CD pipelines and ticketing systems, enables auto-remediation, and supports private benchmarks. Customers can easily enforce their corporate information security standards across AWS, Azure, and Office365 environments to prevent misconfiguration-related data breaches.

    Sample Customers
    J.Crew, AdRoll, Snowflake, VMWare, Iterable, Pure Storage, TrueCar, NerdWallet, and more.
    Information Not Available
    Top Industries
    VISITORS READING REVIEWS
    Computer Software Company20%
    Financial Services Firm12%
    Manufacturing Company6%
    Retailer5%
    VISITORS READING REVIEWS
    Computer Software Company15%
    Financial Services Firm10%
    Manufacturing Company8%
    Government8%
    Company Size
    REVIEWERS
    Small Business30%
    Midsize Enterprise40%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business28%
    Midsize Enterprise17%
    Large Enterprise55%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise12%
    Large Enterprise67%
    Buyer's Guide
    Lacework vs. Zscaler CSPM
    May 2024
    Free Report: Lacework vs. Zscaler CSPM
    Find out what your peers are saying about Lacework vs. Zscaler CSPM and other solutions. Updated: May 2024.
    DOWNLOAD NOW
    772,649 professionals have used our research since 2012.

    Lacework is ranked 9th in Cloud Security Posture Management (CSPM) with 9 reviews while Zscaler CSPM is ranked 22nd in Cloud Security Posture Management (CSPM) with 4 reviews. Lacework is rated 8.8, while Zscaler CSPM is rated 8.2. The top reviewer of Lacework writes "Makes us aware of vulnerabilities and provides a lot of data but it's not easily understood at first look". On the other hand, the top reviewer of Zscaler CSPM writes "Secure and scalable internet access, maintaining stability, providing robust technical support and ensuring consistent policy enforcement across various user locations". Lacework is most compared with Wiz, AWS GuardDuty, Prisma Cloud by Palo Alto Networks, Snyk and Microsoft Defender for Cloud, whereas Zscaler CSPM is most compared with Wiz, Orca Security, Prisma Cloud by Palo Alto Networks and AWS Security Hub. See our Lacework vs. Zscaler CSPM report.

    See our list of best Cloud Security Posture Management (CSPM) vendors.

    We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.