Forcepoint Data Security Cloud vs. Microsoft Defender for Cloud Apps vs. SecureLink Enterprise Access

It is very much suited for organizations that have a great consideration of protecting their data/assets. It is an expensive solution. Hence SMB segments require to find out something which can be similar to achive this. However, there are very few players in the market who has single pane configuration pane, which is one of the key benefits of Forcepoint ONE.

Incentivized

Microsoft Defender for Cloud Apps is well suited when working with other Microsoft Applications. For example, if you are working with Microsoft Office 365 it works very well when implementing CASB features. It works when implementing monitoring or blocks on Sanctioned applications however customizing the message to users is not that great.

Incentivized

It does exactly what it needs to. The only times I've had serious issues with rolling out to a vendor is when they have a "contractual agreement" to only use their solution. Almost every vendor that I've worked with and shown this product to has been skeptical for the first 5 minutes and fully converted to liking the ease of use of the product by 10 minutes

• Forcepoint ONE is particularly effective at identifying and blocking sophisticated threats, including those that attempt to evade detection by traditional security solutions.
• The platform uses a combination of advanced analytics and human expertise to constantly monitor activity on networks and identify anomalies that may indicate an attempted attack that is why Forcepoint ONE can quickly block threats and prevent them from causing damage.

Incentivized

• The integration to Microsoft Entra ID is seamless, which allows Conditional Access to redirect the session to Microsoft Defender for Cloud App for it to take actions (Block or Monitor).
• Tracker users' activity is very good when troubleshooting or running an investigate.
• Detecting risky users through tight integration with Microsoft Entra ID is a very good feature.
• Detecting mass downloads and blocking the download of files from non-manage company devices is a very good feature as well.

Incentivized

• Easy to setup on a client PC or server for access
• Organizes client connections by gatekeeper so it is easy to find what you need
• File transfer option is great for uploading files to client servers

• There is no need for improvement in the solution. The solution is built with all the required features and capabilities that are required for a security service edge solution.

Incentivized

• It takes some time to scan and apply the policies when there is some sensitive information.
• After it applies the policies, it works, but there is a delay.
• It doesn't provide any way to scan Microsoft Teams when an external exchange of images is happening. You can always do the filtering on the documents during the chat, but if there is an image, then some kind of OCR capability is required to detect it. At present, there is no way [Microsoft Cloud App Security] can go and detect those kinds of images and alert us

Incentivized

• Java based. Always an issue. I know they are working on this and it will be Javaless if we need it. I know that Java can cause issues across the board and I understand the need of it, but it does not make it any better when there are Java issues.
• Stronger integration with the Active Directory. Currently its only read-only, which is good and bad.
• I would love to see an App. I know they are working on this as well.

We are happy using securelink to access our client environments

The interface is pretty simple and easy to use; however, you will need to do a lot of investigative research on your own to get comfortable with it. Originally, many of the Microsoft security tools had their own seperate consoles. Overtime, they have blended into one interface which is the ideal state. In some cases it is clear Microsoft had to pick which console a certain feature or setting was going to reside in and this leads to some confusion. For example, DLP is managed through Defender for Cloud Apps but you will also need to jump into Purview. For things like reverse proxy on your M365 tenant, you will need to go into Azure and setup conditional access rules. Not a big problem and I can understand why the settings are located where they are but for someone just starting out with Defender for Cloud Apps, it will take some time to figure out.

Incentivized

I have not utilized actual support but the Sales and Product teams have been super helpful in moving our implementation forward and showing us the best practices.

Incentivized

The employees at Securelink have always been responsive and seem to be invested in the success of my company. They truly understand what their product means to us so if there is a problem, they are always willing to help. In the rare event that something is found on their end, they will be proactive and reach out to someone to help and get something on calendar for a fix

Ease of use Microsoft Defender was a great product, but it looked like it is too risky to have only one vendor for all our needs. Fortinet has a lot of improvements to make to consider in the enterprise segment.

Incentivized

More flexible and more features with easy integration with cloud services like Microsoft Azure and other cloud services. Overall both gives similar features but we prefer Microsoft cloud app security due to its high threat detection rate. mostly we have been able to stop the threat in very very less time.

Incentivized

Securelink seems to work better than LogMein for a large enterprise group. Our company has over 10,000 different connections and securelink manages them well.

• There is no one-size-fits-all answer to this question, as the impact of Forcepoint ONE on a business's overall objectives will vary depending on the specific goals and objectives of that particular business.
• However, in general, businesses that have implemented Forcepoint ONE have seen a positive impact on their overall objectives, with many reporting increased productivity, improved security, and reduced costs.

Incentivized

• Cloud App Security saves us thousands of dollars finding and rectifying apps security issues
• Identity Security Posture helps the organization identity stay in shape, saving thousands of dollars on security consultations
• The cost of suffering a breach cannot be quantified, CAS helps minimize the chances of the attackers succeeding, with excellent historical logging for most operations

Incentivized

• I've found that Securelink allows me to get a vendor access to an application for support purposes much faster than a provisioned VPN account and the red tape around this. I can set up a vendor to access an application suite in a half hour and it will be more secure than regular provisioning.
• The ROI is yet to be seen on this, but it certainly makes Compliance, Internal Audit, and Legal very happy, which helps everybody.
• Internally, there is much more push back and it has been problematic. For a tech, to have to log in to a server and navigate to a system is considered cumbersome, when before all they had to do was open up Putty or RDP to a server to get in. The only way to combat this is to force them to use Securelink by removing rights. Near impossible for the domain admins.