CloudLock is a cloud security option acquired by Cisco in August 2016.
N/A
Microsoft Defender for Cloud Apps
Score 7.6 out of 10
N/A
Microsoft Defender for Cloud Apps (formerly Microsoft Cloud App Security) is a multimode cloud access security broker.
N/A
Zscaler Internet Access
Score 8.8 out of 10
N/A
Zscaler Internet Access™ (ZIA) is a secure web gateway (SWG), delivering cloud native cyberthreat protection and zero trust access to the internet and SaaS apps.
Many of the competitors who started in the CASB space have expanded into the SASE category. If organizations do not need the additional controls provided by a SASE solution, then Defender for Cloud Apps is pretty good. If an organization needs a true SASE solution, you would be …
Zscaler Internet Access and Netskope are fairly similar in features and both are good products. At our time of purchase, Zscaler Internet Access provided more features we required and the team provided better pricing.
Zscaler Intenet Access outperformed the competition due to its lightning-fast policy delivery and cross-compatibility. It is easy to track employee usage and block unnecessary websites, reducing company internet usage. Zscalar installed on every system increases cloud-based …
Cisco Cloudlock is a good fit for my organization consisting of 150 end users. While we have a small office product that can expand to cover any size organization, I would assume the overhead to monitor would increase. While my organization's business is in real estate, I would highly recommend this for all businesses that handle sensitive and private data. Being able to monitor our cloud infrastructure has allowed our security team to be more flexible in allowing approved users access as well.
Microsoft Defender for Cloud Apps is well suited when working with other Microsoft Applications. For example, if you are working with Microsoft Office 365 it works very well when implementing CASB features. It works when implementing monitoring or blocks on Sanctioned applications however customizing the message to users is not that great.
It's best suited for a distributed remote workforce, securing internet access for users from anywhere. Suitable for highly regulated industries, such as banking and Healthcare. Not a good fit for an organisation where most of its legacy is in an on-premises environment. Bandwidth-intensive industries like media/entertainment firms.
The integration to Microsoft Entra ID is seamless, which allows Conditional Access to redirect the session to Microsoft Defender for Cloud App for it to take actions (Block or Monitor).
Tracker users' activity is very good when troubleshooting or running an investigate.
Detecting risky users through tight integration with Microsoft Entra ID is a very good feature.
Detecting mass downloads and blocking the download of files from non-manage company devices is a very good feature as well.
Single Pane of Glass Management - Everything is very easy to access and monitor the entire environment from an internet security perspective.
Install Flexibility - We can and do install Zscaler Internet Access on both our client devices as well as our SD-WAN appliances and servers. This allows us to control internet security even on devices without an agent in our networks.
It takes some time to scan and apply the policies when there is some sensitive information.
After it applies the policies, it works, but there is a delay.
It doesn't provide any way to scan Microsoft Teams when an external exchange of images is happening. You can always do the filtering on the documents during the chat, but if there is an image, then some kind of OCR capability is required to detect it. At present, there is no way [Microsoft Cloud App Security] can go and detect those kinds of images and alert us
While Zscaler Internet Access (ZIA) delivers critical value in cloud security and RBI compliance, I rate renewal likelihood 7/10 due to evolving needs versus platform limitations. Below is my rationale:
The interface is pretty simple and easy to use; however, you will need to do a lot of investigative research on your own to get comfortable with it. Originally, many of the Microsoft security tools had their own seperate consoles. Overtime, they have blended into one interface which is the ideal state. In some cases it is clear Microsoft had to pick which console a certain feature or setting was going to reside in and this leads to some confusion. For example, DLP is managed through Defender for Cloud Apps but you will also need to jump into Purview. For things like reverse proxy on your M365 tenant, you will need to go into Azure and setup conditional access rules. Not a big problem and I can understand why the settings are located where they are but for someone just starting out with Defender for Cloud Apps, it will take some time to figure out.
The application is easy to install and configure on all Windows devices. To troubleshoot any internet issue, we can easily collect all the relevant logs from Zscaler and check the exact issue. The only problem is with the uninstall, as a dedicated crew needs to provide the password.
They are very quick to respond and go the extra mile to help address our issues. That said, we've only needed them at the early stages of implementation for support help and occasionally when we want to do a full re-scan of our site. They are very flexible in working with us on the timing of such scans.
I have not utilized actual support but the Sales and Product teams have been super helpful in moving our implementation forward and showing us the best practices.
Zscaler's ZIA support is quick and knowledgable. They respond within 1-2 hours of you submitting your ticket. They are very thorough and are typically ready to jump on a live troubleshooting session. Our ZIA platform and how we use is it unique so at times tickets can be open for weeks but we alway get quality support compared to other unrelated product support in our enterprise
Amazon Macie is limited to an AWS environment and fulfills some of the same functions that CloudLock does in SaaS products. Both are very valuable tools, so the decision is not really which to use, but whether to use both for their respective environments. In general I feel CloudLock is a more powerful tool because it connects to Microsoft 365, which is more business critical for our organization, but that really is a personal call.
More flexible and more features with easy integration with cloud services like Microsoft Azure and other cloud services. Overall both gives similar features but we prefer Microsoft cloud app security due to its high threat detection rate. mostly we have been able to stop the threat in very very less time.
Zscaler Intenet Access outperformed the competition due to its lightning-fast policy delivery and cross-compatibility. It is easy to track employee usage and block unnecessary websites, reducing company internet usage. Zscalar installed on every system increases cloud-based software bandwidth, decreasing user turnaround time and increasing efficiency.
Cloud App Security saves us thousands of dollars finding and rectifying apps security issues
Identity Security Posture helps the organization identity stay in shape, saving thousands of dollars on security consultations
The cost of suffering a breach cannot be quantified, CAS helps minimize the chances of the attackers succeeding, with excellent historical logging for most operations
Has allowed us to remove other products that were suboptimal
Saved us money overall by stacking it with other Zscaler products
Created a more secure work environment for our users through intelligent internet policies that are not needlessly restrictive while still maintaining security best practices
