We performed a comparison between Cisco Secure Email and Barracuda Email Security Gateway, based on PeerSpot users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Comparison Results: Barracuda Email Security Gateway and Cisco Secure Email both have their pros and cons, but users seem to prefer Cisco Secure Email for its reputation filtering, customizable interface, and reliable customer support. Both products are effective at anti-spamming and anti-phishing, but Barracuda Email Security Gateway offers sandboxing while Cisco Secure Email has Advanced Malware Protection.
"The most valuable feature is the Antispam services, which are the basic services of spam device"
"We find the email security to be valuable."
"The most valuable feature of the Barracuda Email Security Gateway is the cloud ATP functionality not available on the on-premise version. Most of the zero-day attacks can be mitigated with ATP. Additionally, the reporting functionality is good."
"The link protection and anti-phishing features are great."
"Thanks to Barracuda Email Security Gateway, I have seen increases in productivity and functionality in terms of spam reduction and filtering against different threats, which is a benefit by default."
"It is lightweight, and we can filter all of our inbound and outbound emails. We have controls for rate control, quarantine, and tagging. We can see whether an email is a spam email or a phishing email."
"Before this solution, we didn't have any separate feature for protecting our emails. We used to only have a firewall but now we have email security. It has a graphical interface and we can see the log every time. We can see that the performance is fine."
"It not only tackles spam effectively but also incorporates advanced features like ATP and active features which ensures a comprehensive and adaptable email security solution tailored to their heterogeneous environment."
"I love the Advanced Malware Protection feature. It works very well... The appliance has more security such as SDF, DKIM, DMARC, and encryption."
"The most valuable feature is the different content filters we are using, such as DKIM."
"Cisco Secure Email Cloud Gateway has allowed our users to be able to concentrate on the emails that they do receive. Previously, our users had to deal with nine million additional emails across the organization, which is nearly 1,000 emails per user to have to deal with a month. That's a massive amount for our staff to deal with and probably several hours of their time. We have a lot of clinical staff, being a hospital. We want to make our staff as productive as possible. By removing a lot of that spam and phishing type emails, this allows them to do their job."
"It provides good IT assistance."
"It integrates with Active Directory and we can limit specific users to using specific applications."
"The security features are valuable."
"At one point, there was a zero-day attack. The Cisco appliance detected it and stopped it, helping us out. We avoided the attack and potential damage."
"The tech engineers are very knowledgeable."
"We still have critical threats coming into our environment and delivered to our users. When we compare it with other solutions, these other solutions can already detect those threats."
"Barracuda's spam database isn't on par with its competitors. Users complain about the spam email they're receiving, and we report the issue. Barracuda said they are going to update their system to block the malicious email we received, but we're still getting the same spam. The signatures are not in their database. They need to update their spam signatures because spam is bypassing Barracuda."
"The spam filtering is a little too aggressive. You can not get granular enough to back off on what is considered spam and what is not."
"Some customers experience issues with integration."
"Barracuda has shown difficulty in providing us with the solutions we sought."
"The dashboard's UI could be improved to make changes to the blocklist."
"The pricing is a little bit high, and it is causing the company to rethink renewal. If they could lower the pricing, that would be ideal."
"The DMARC security is somewhat weak and could be strengthened."
"Cisco Secure Email can be improved from the administrator's point of view. Usually, you have to work with different areas, and they can try to make it easy for the administrator to use different functions."
"Scalability has certain shortcomings and needs to be improved because there are service providers who provide better scalability.v"
"The user interface needs some improvement to become more user-friendly. The graphics could be better. It's designed more for a technical user rather than a business user."
"We would like to see more options for the customization of content filters."
"The product's GUI for the dashboard needs improvement."
"We have Microsoft and we have the E5 licenses, they have more EDR responses on certain emails. That's something that Cisco ESA on the cloud doesn't have. They don't do anything about MITRE attacks. They only detect if there is a malicious email or a threat and they remove it."
"The user interface is a bit complex."
"The configuration UI should be made more intuitive. Currently, it takes a while to understand how to do the basic configurations."
More Barracuda Email Security Gateway Pricing and Cost Advice →
Barracuda Email Security Gateway is ranked 2nd in Secure Email Gateway (SEG) with 51 reviews while Cisco Secure Email is ranked 2nd in Email Security with 55 reviews. Barracuda Email Security Gateway is rated 8.0, while Cisco Secure Email is rated 8.4. The top reviewer of Barracuda Email Security Gateway writes "Robust email protection with advanced features such as effective spam filtering, virus and malware defense, phishing protection and high scalability". On the other hand, the top reviewer of Cisco Secure Email writes "Has effortless spam control, improves security posture, and frees up our IT department's time". Barracuda Email Security Gateway is most compared with Microsoft Defender for Office 365, Fortinet FortiMail, Microsoft Exchange Online Protection (EOP), Proofpoint Email Protection and Check Point Anti-Spam and Email Security Software Blade, whereas Cisco Secure Email is most compared with Microsoft Defender for Office 365, Trellix Collaboration Security, Fortinet FortiMail, Microsoft Exchange Online Protection (EOP) and Abnormal Security. See our Barracuda Email Security Gateway vs. Cisco Secure Email report.
We monitor all Secure Email Gateway (SEG) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Hi Kamal,
Firstly, you would have to recognize that there is/are no fast and hard rules to choosing a final preferred product, what works well for company A may not work extensively well for company B. Reason being that: the efficiency of the Security capabilities provided by one tool can be amplified by another tool, particularly for secure email gateway. Hence, if you have an XDR that you intend to leverage with your final product of choice, you will notice that you could experience a greater ROI than having a bare SEG tool.
However, I will advise based on a few realities of today's market in Q3 2022.
1. From my perspective, It will make sense if you take advantage of the built-in protection capabilities from your cloud email provider (I assume you are using O365 or Google mail) rather than investing in a secure email gateway (SEG).
2. Most forward-thinking organizations are shifting away from traditional SEG tools and moving towards ICES, in my opinion, you should ideally be looking for an email security solutions that use ML / AI-based anti-phishing technology for BEC protection to analyze conversation history to detect anomalies, as well as computer vision to analyze suspect links within emails.
3. Should you still choose to pursue SEG asides from an ICES, or you choose to go for an ICES, bear in mind that nothing beats doing a POC as it clearly should consider the security apparatus/investments you have already made in times past.
4. it will be best that you look for solutions that integrate directly into your cloud email via an API, rather than as a gateway, this will ease your evaluation and eventual deployment, besides it improving your detection accuracy, while still taking advantage of the integration of the bulk of phishing protection with the core platform
5. Without having an insight into your current email provider (cloud/on-prem) or other tools in your organization or budget, it will be difficult to give you a bit of precise advice.
Either way, all the best with your selection process, and wishing you a cyber-safe organization.
Tunde is absolutely right and is what I was trying to say in my first answer, Tunde did a better job though. AI based tools without a gateway can be installed in minutes, will pick up more malicious attachments, more content related bad stuff, provide better visibility and introduce controls for you staff to further improve the effectiveness. Typically these tools learn over time and therefore get better as you use them.
Don't forget to consider 3rd party risk by looking at DMARC, SPF & DKIM as well as domain impersonation
Have you considered Proofpoint Email Protection? It’s not one of the options you listed, but I recommend Proofpoint for advanced email security to everyone.
Proofpoint Email Protection defends organizations against advanced email-borne threats, including spear phishing and business email compromise (BEC) attacks. Proofpoint provides inbound and outbound email filtering with industry-leading accuracy to protect users from email-based malware, ransomware, and other sophisticated threats. Proofpoint also helps organizations defend against targeted attacks that use spear phishing emails to bypass traditional security defenses. Proofpoint's Email Protection solution is powered by the Proofpoint Global Intelligence Network (GIN), which processes billions of threat indicators every day to deliver real-time protection against the latest email threats. This combination of technology and intelligence makes Proofpoint Email Protection the most effective way to defend against advanced email-borne threats.
I highly recommend Proofpoint Email Security. My organization has had a great experience so far. The solution completely lives up to its price point.
Proofpoint is an industry-leading email gateway, which can be deployed as a cloud service or on-premises. Apart from providing essential encryption and spam filtering, Proofpoint Email Security solutions also have specific controls to stop BEC attacks. That’s what impressed me because Business Email Compromise attacks have devastating consequences for businesses. Proofpoint has an in-built Advanced BEC Defense engine that’s powered by AI and machine learning. It analyzes multiple message attributes, like header data, sender’s IP address, and message body for red flags and urgency.
We use Managed Proofpoint Security. Managed email security providers like ACE MSS provide Proofpoint Email Security solutions in an end-to-end managed service. With managed email security, you no longer have to worry about managing encryption keys or sudden email attacks. You’ll have a dedicated team of security experts monitoring and analyzing all incoming and outgoing email traffic.
Between the two? I prefer Cisco over Forcepoint. If budget is not a problem a hybrid Cisco Forcepoint multilayer. Or a hybrid Cloud + on-premises.
Bur someone asked about three options...? Which was the third? Why was intentionally avoided Proofpoint and compared "Sharks" with "Piranhas" or Barracudas?
I only can recommend Cisco because it´s the only one with which I'd worked enough. I think it is powerful enough and has a lot of possibilities. In addition, to a great support team.
Top brands don't mean best or most cost-effective. My advice is to look a bit further before you make a decision.
Evidence suggests that most top brands are pretty good at detecting and blocking malicious attachments, best case letting through 1%, but can be worse than 50% when it comes to detecting malicious links in the text of the email.
There are numerous less well-known vendors with lower-cost AI-based solutions that have a far better success rate, also providing employees the ability to report on suspect emails which auto-removes them from other staff members' inboxes until they have been properly assessed. Some will provide a visual risk score to the recipient to give them advance warning to be more cautious.
Combining this kind of capability with staff awareness products keeps your vendor list lower and further improves efficiency.
For around £2 GBP per user per month (less than $3) we provide different vendors depending upon the customer's environment but provided as a managed service. This allows our customers to outsource some of the monitoring and day-to-day management, spread the cost on a monthly basis, and flex how many licences they need on a monthly basis too i.e. if you drop 20 users don't pay for them but if you increase by 20 you don't need complex co-termination and pro rata discussions.