Likelihood to Recommend For example, Cloudflare is a very good solution for ZTNA implementation. Cloudflare has Warp for propagating Gateway rules and checking device posture. Browser Isolation gives you more abilities to use internet resources without any restrictions and at the same time not put the company at risk. For example, if there is no DLP solution in place blocking the printing function can partly protect the company's sensitive data from intentional or intentional leakage through the online forms. A similar approach protects the end-user device from Zero-day threats and malicious software code. Moreover, Remote Browser Isolation technology protects not only the user's device but also the user himself from possible phishing attacks - for example, even if the user enters his username and password on the phishing website, bank card issuers, or other personal or confidential data, data will not go beyond the isolated cloud environment. Cloudflare Access gives company administrators a great opportunity to implement role-based access policies and make effect segmentation and diversification of company network groups.
Read full review If you want to analyze the full path focusing on the signatures it’s the best product in the market. If you want to test phishing, data exfiltration/DLP, DNS I don’t recommend Picus. Scenario based attacks also lacking. However Picus support is awesome and I like the development team. When we open a case, they’ll always return with the right answer
Read full review Pros Block access to known bad, risky, or unwanted destinations at the DNS or HTTP level. Excellent protection for remote users. Best in class browser isolation techniques. Read full review It has thousands of signatures and up-to-date attack vectors (It's the largest set in the market) Attack vectors are mapped with existing vendors like Checkpoint and Mcafee, where you don't spend time finding out which cve mapped to which protection Ability to focus/highlght solely new threats, it's superb for 0days and up-to-date protections. As there are always timing issue between updates and apply the updates on the products. Blocked vs not blocked ratios on the dashboard with drill down menu specifiying the set of protections or signatures on the defensive measures Already mapped mitre att&ck framework on the dasboard. SOC and analyst team using the Mitre framework. Detection analytics enhance the analytics capabilities with pinpoint accuracy where to focus and how to prevent Timeline and scheduled reports from the dashboard in flexible format Read full review Cons Very API [oriented] which is fine, but the GUI is sometimes inconsistent Read full review Visualization of network and the products Complex/Scenario based attacks Phishing tests DNS and Data exfiltration attacks Automatic action through the apis for the products on the path Strategical and tactical reports for Cisos Automatic SOAR entegration with already builtin playbooks Read full review Support Rating Good chat support from the portal for basic questions and minor issues. The enterprise support line is provided as well.
Read full review Alternatives Considered As long as all Cloudflare products and services rely on anycast technology, in a complex approach Cloudflare is faster and more relevant for cloud applications. The balance between security and performance is fully established. Also, Cloudflare has quite a good stack for API connection protection, like the API Shield example, which makes it more effective compared to F5 for example. Warp as a ZTNA agent gives better visibility and device posture information than
FortiClient does.
Read full review We use other vendors
Verodin , AttackIQ,
SafeBreach ,
Cymulate etc. All of them have their advantages and disadvantages. Please take a look at TrustRadius reviews of each product. I don’t want to go head to head for each product in this
review. I select Picus because it's local startup company in our region. I like their support and engineering team. Support is marvelous. Product is giving what we expected from the product. Price is adequate. Reporting and dashboard is superb.
Read full review Return on Investment Complete solution in case of using with Cloudflare Access. No need of maintenance. No skilled staff and trainings required. Read full review With Picus we have the tangible KPIs for the security Detetcion and Prevention rates for the latest attacks are significantly increased We work with many security vendors. We use picus scores and share specific outputs with the company in case of decreasing score rates where the development and product team analyzes their updates or product engines to increase the rates. It helps our strategic plans where to focus and invest for the following years and planning/prioritizing the security budgets to specific highlighted areas Read full review ScreenShots