Cisco Secure Web Appliance vs Zscaler Internet Access

We have both scenarios where we can describe that. For example, in the HQ, where we have about 3,000 users, Cisco IronPort Web Security Appliance is the ideal solution, because we can consolidate all the Internet access, policies, rules, etc. in the same box. However, if you have small offices with a few users, it's hard to justify one big and expensive box that could cost more than the whole office infrastructure.

[Zscaler Internet Access] is very well suited for scenarios where one is looking for hassle free internet and network connection. It ensures that your users can connect to any networks and they will be secure. Additional plus is ability to deploy Zscaler client to your company smartphones - this gives complete network protection. We only encounter a few issues with Zscaler Internet Access (mainly false-positives) but these were promptly resolve by the vendor.

• SMA gave us central control over multiple servers, simplifying management.
• Performance of the Appliance VM exceeded that of our old physical appliance-based solution.
• Convenient licensing for virtualized environments that allows easy scaling.

• Zscaler completely moved away from the traditional firewall setup to a hosted firewall solution. We don't have to worry about the hardware failing or maintaining it as part of our service plan compared to our on-premise firewall. Zscaler has a lot of data centres across the world where they are maintaining their solutions so mobile consultants will always be close to one of their data centres.
• Rolling out Zscaler solutions to our end customers' computers is actually pretty easy and hassle-free. As part of onboarding of new employees we can set up the Zscaler solution and push it to our end users' machines and get them connected to the cloud solutions.
• Zscaler does proper market research on the latest emerging threats and they keep their firewall patched and updated to the latest versions so the security team does not have to worry about keeping the firewall updated.

• I think that the interface could need updates to adapt it to a much more current system, achieve quick access to necessary tools and adapt the platform to a much more customizable and comfortable system to work with.
• It is undoubtedly a platform that is worth having, however, the license costs could be better adjusted to small businesses so that it can be accessed more easily.
• It could be a bit complex to use, the use of codes is quite extensive, it could be adjusted to something much more practical but just as efficient.

• Chat or email support is not available. Only option is to either call them or raise a ticket by logging into their website.
• Pricing is not transparent and quote based.
• Access to websites is a little too slow with Zscaler monitoring on.

The overall conclusion of the review is good. Zscalar have some limitations which will surely resolved in the updates provided by company from time to time. The best part is that it doesnt reduce the speed of internet.

Because it's one of those products you almost don't realize it exists from the end user. From the administrator perspective, you can do everything on its web interface and it's very intuitive to manage, once you know the concepts behind identities, acls, etc. Also, once you build the control structure, I mean, you link 'local' groups with your own Active Directory groups, as we did here, you don't need to be managing those things on the appliance itself.

Zscaler is a mandatory solution required by almost every large organization with a workforce working remotely or using cloud-based apps. Its deployment is relatively easy and it keeps on working in the background without actively bothering the user. Apart from a few weird messages which a user is unable to comprehend, Zscaler is able to provide fast and safe access to the internet and other external applications.

Our experience with Cisco's support was terrible. Other than the fact that they don't respond to service-related emails with urgency, they also keep on changing the policies that affected us. Recently, they came up with a new look for the same software, which was insanely slow. Renewal of keys for the old interface took months. Overall, the support was not very friendly from the users' point of view.

I cannot give a fair rating for this as I have not had to contact Zscaler support. There was one time we had to contact them because we needed to check if they were having issues on their end. Our ISP was actually the problem but support seemed very friendly.

At home I have a McAfee service that does similar tasks and helps manage the users of my internet. McAfee seems more user friendly and easier to set exceptions.

Zscaler Intenet Access proved to be superior and the difference for us was the speed of policy delivery since your policy is applied in a web console and is effective in a matter of seconds. Another point to congratulate the solution is its compatibility with different platforms (macOS, Linux, Windows, Android, and iOS).

• Security! Security! Security! We are financial company that work with very sensitive information. A lot of unsafe traffic was blocked on the Cisco IronPort WSA over years of using it. We did not earn on it but absolutely sure that we did not lose 'gazillion' of dollars being infected or scammed.
• Easy to configure and use, no need to teach new personnel how work with this product (hopefully saving time = saving money).
• Unfortunately the price of license subscription made financial managers push IT dept. to look for something cheaper.

• ROI is there and it is safeguarding the data and user access to net.
• Being a cloud based can be scaled up when required.
• Third parties can be allowed based on the company IT policies (Clients or Vendors etc.) for business perspective.