Gayan KirindageSystems Support Specialist at a tech services company
Anonymous UserDevOps Engineer at a tech services company
Dragos CernatGlobal Information Security Architect at a engineering company
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The most valuable feature for us is the DNS-based protection."
"It analyzes the domain security helps us implement the securest policy."
"The weekly reportings are great. The investigation is super and the application management is equally great."
"It's very stable, reliable and does its job."
"What we like most is security and how easy it is to integrate with other appliances."
"Provides dependable DNS monitoring of external devices."
"The initial setup is very easy and takes only a few minutes."
"Helps block personal email accounts."
"Monitoring is the most valuable feature because we can easily monitor all kinds of stuff coming over the network. We can check the dashboard and work accordingly."
"This solution provides a DLP on the cloud and very few people have a scanning device for data at rest."
"The performance is good."
"The remediation process is easy compared to other platforms."
"It has predefined or preconfigured rules, which are getting periodically updated. They are providing continuous improvements and periodically updating all search queries that they are looking for. That is one thing that helps us to stay vigilant and focused. If we query our AWS account for any breaches or vulnerabilities with any of the cloud tests, and it alerts us based on these predefined rules. It also provides an option to configure our own rules, and based on these rules, it can query the cloud trail logs, pull the information, and trigger alerts in real-time. I haven't explored this feature much because there are multiple accounts, and we don't have enough time to explore this feature. It also provides multiple integrations. When vulnerabilities or breaches are happening, you should be aware of them immediately. It provides integration with tools such as Slack, PagerDuty so that you can get alerted as soon as the high severity stuff comes up. For example, you have a security group that has allowed public traffic on port 22. As TechOps, you should be aware of this immediately. You cannot scan each machine or look into all security groups to identify it. So, Prisma helps us and alerts us when this kind of high-priority stuff comes up. It has different statistics, analytics, and graphs for data. The description of alerts is also pretty good. They describe what are the possible causes for this and what are the solutions. From Prisma Cloud, you can directly go to the AWS account. When you click on an alert, a resource, or a resource ID, it takes you to the AWS console where you need to log in. If you are already logged in, it will take you to that instance directly, and you can fix the issue there. I have found this feature very useful."
"It is easy to use, easy to integrate, and is stable. It's scalable as well."
"Prisma SaaS is very easy to use; it's common sense — it's the best-in-class."
"To quarantine and clean a malware file provides a lot of security."
"Zscaler Web Security protects our users in remote locations from internet threats - even if they are not connected to our network."
"The scanning feature is impressive, because they do not introduce a big latency to the traffic."
"The security is excellent."
"The VPN is valuable, as the whole technology is very different from a traditional VPN."
"This solution does not give us full, 360-degree protection."
"I would like to see integration with SecurNX in the future."
"The reporting could be improved by way of the information that's displayed. For example, when you pull a report, it shows an internal employee going to many websites, but you can spin that right down by saying a lot of it is being cached."
"It has happened in the past that Cisco Umbrella has denied us access to secure websites."
"In the next release, I would like to see the integration of VDI NSX with Cisco Umbrella."
"They need to improve analytics so they report on more of the specifics of user activity."
"Missing a real data leakage prevention solution."
"Data reporting could be improved."
"One thing that would help is if we could get a guide. With Cisco, for example, you can just type the problem regarding your Cisco product and you will easily get your solution. In Palo Alto, however, it's not easy to find the solutions."
"I would like to see support for custom applications."
"The price can be reduced to make it more competitive."
"My clients would like to see a more feature-rich product."
"We are using the SaaS offering. We use our applications for microservices. We use Twistlock to scan containers, and it displays these results in Prisma, which is a good feature because we can see vulnerabilities with respect to these containers. We can see everything in a very detailed manner. However, when you have different environments for a single application, such as DEV, QA, PROD, and TEST, all these environments run multiple containers, which can lead to a very high number of containers. In such a scenario, it shows you the alerts for all those containers that have vulnerabilities. If you show the results of all the containers that share the same image, it is not going to add any value. Therefore, they should narrow down the alerts based on a container. It should show information for a single container. Otherwise, the person who is looking at the results gets the impression that he has to fix all these issues. This is something that they can improve."
"When it comes to integration mechanisms, Prisma SaaS does not support reverse proxy type of integrations."
"Lacks a hybrid model which has API plus in-line security."
"Another thing that I would like to see is if Zscaler could have a separate product for direct access. I looked at a private access solution, but I understand there's a separate product that isn't integrated with this."
"I would like to see the ability to choose a pool of IPs for my company, set up rules based on them, and know that those IPs are not used by other companies."
"I don't know whether it's Zscaler or not, however, sometimes I can't access my time management. I need to wait and try again a few hours later. Typically, if I let some time pass, I can access it again."
"There are a few features that are not compatible with the Azure cloud."
"I am not sure, I don't have the numbers in front of me, but I think it's $1.00 or so per device/month."
"Cisco uses subscription models for the pricing and there are three subscription plans."
"The licensing part for Umbrella is really flexible."
"There are three models for licensing with different feature sets."
"I think it's worth the money."
"The price of Cisco Umbrella is a little higher than similar solutions, like Gateway."
"The price should be slightly lower than the current price because if you look at the whole solution, it is simply a threat intelligence solution to block blacklisted things. The price should be lower looking at the features provided by the solution. The price isn't too high either, but it could be lower."
"There is a subscription cost."
"Actually the solution is very expensive. I don't know the particulars since the purchasing team dealt with it."
"The pricing for this solution is on the higher end."
"Compared to other products, the price is slightly high."
"The licensing fees are paid on a yearly basis and for what we get, the price is good."
"Prisma SaaS is more expensive than similar solutions but I think it's worth it."
"Our monthly fee is around R3000."
OpenDNS provides easy-to-implement Internet navigation and Web security solutions for families, schools, governmental organizations and businesses of all sizes. The services provided byincrease the speed of navigating websites and prevent unintended access to phishing and malware sites as well as to any Web content that you configure to be restricted.
Since software as a service is so easy, use of SaaS applications is exploding. Because of that simplicity, though, the security risks of SaaS are also on the rise. Unsanctioned SaaS apps can expose sensitive data and propagate malware, and even sanctioned SaaS adoption can increase the risk of data exposure, breaches and noncompliance. By offering advanced data protection and consistency across applications, Prisma SaaS reins in the risks. It addresses your cloud access security broker needs and provides advanced capabilities in risk discovery, data loss prevention, compliance assurance, data governance, user behavior monitoring and advanced threat prevention. Now you can maintain compliance while preventing data leaks and business disruption through a fully cloud-delivered CASB deployment.
Zscaler Web Security provides unmatched security, visibility and control, going beyond the basics of web content filtering. Delivered in the cloud, Zscaler includes award-winning web security integrated with our robust network security platform that features advanced threat protection, real-time analytics and forensics. You'll get protection across every user, location and device, including laptops, smartphones, tablets and Internet of Things devices.
For more details:
Prisma SaaS by Palo Alto Networks is ranked 3rd in Cloud Access Security Brokers (CASB) with 8 reviews while Zscaler Internet Access is ranked 2nd in Secure Web Gateways (SWG) with 4 reviews. Prisma SaaS by Palo Alto Networks is rated 8.4, while Zscaler Internet Access is rated 8.6. The top reviewer of Prisma SaaS by Palo Alto Networks writes "Useful predefined rules, multiple integrations, descriptive alerts, and great stability". On the other hand, the top reviewer of Zscaler Internet Access writes "Centralized firewall that protects the whole topography". Prisma SaaS by Palo Alto Networks is most compared with Netskope CASB, Microsoft Cloud App Security, Check Point CloudGuard Posture Management, McAfee MVISION Cloud and iboss, whereas Zscaler Internet Access is most compared with Netskope CASB, Microsoft Cloud App Security, Palo Alto Networks WildFire, Fortinet FortiGate and iboss.
We monitor all Cloud Access Security Brokers (CASB) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.