Skip to main content
Cisco CloudLock

Cisco CloudLock


What is Cisco CloudLock?

CloudLock is a cloud security option acquired by Cisco in August 2016.

Read more
Recent Reviews
Read all reviews


Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Return to navigation


View all pricing

What is Cisco CloudLock?

CloudLock is a cloud security option acquired by Cisco in August 2016.

Entry-level set up fee?

  • Setup fee optional


  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

6 people also want pricing

Alternatives Pricing

What is Oracle CASB Cloud Service?

Oracle acquired Palerra in September 2016, a cloud security company. The Palerra platform is now offered as Oracle CASB Cloud Service.

Return to navigation

Product Details

What is Cisco CloudLock?

Cisco Cloudlock is a cloud-native cloud access security broker (CASB) that helps users move to the cloud safely. It protects cloud users, data, and apps. Cloudlock's open, and automated approach uses APIs to manage the risks in a cloud app ecosystem. By securing your identities, data, and apps, Cloudlock combats account compromises, breaches, and cloud app risks.

Cisco CloudLock Features

  • Supported: Identity security
  • Supported: Data security
  • Supported: App discovery and blocking
  • Supported: App and risk insight
  • Supported: Optimization and blocking

Cisco CloudLock Video

Cisco CloudLock Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationApple iOS, Android

Frequently Asked Questions

CloudLock is a cloud security option acquired by Cisco in August 2016.

The most common users of Cisco CloudLock are from Enterprises (1,001+ employees).
Return to navigation


View all alternatives
Return to navigation

Reviews and Ratings


Attribute Ratings


(1-5 of 5)
Companies can't remove reviews or game the system. Here's why
Nate Haleen | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Cloudlock helps us with pii protection by reducing dwell time of sensitive files. It also is a major element of our data loss prevention strategy, by allowing us to the transfer of files in and out of the organization. Finally it is a great indicator of accidental deletions of files in SharePoint and alerts us to the cause of missing files.
  • Data Loss Prevention - files accessed from outside of the organization can be audited or blocked based on content, file type, and regex
  • Policy Management - policy options are sophisticated and give great control over the actions to be taken and when the policy should be triggered
  • Behavioral Analysis - cloudlock is usually the first place we learn about suspicious activity in our SaaS applications, such as login attempts from outside the country
  • Ease of use - the UI is not the easiest to grok. Some customers install it and expect it to just work, when in fact most of the policies are not enforced by default. Something like a basic tutorial wizard for policies would help tremendously.
  • Dashboard organization - CloudLock does a number of things, but in the UI they are all jumbled together with a single click moving you out of the feature you intended to configure and into a totally different part of the application
  • Limited Supported Offerings - internally and with customers a lot of additional cloud vendors have been requested, but the product only supports a small number of core services, with no roadmap for adding more that I am aware of.
Obviously, good scenarios would be where no existing data loss prevention solution is in place, or anywhere that sensitive PII transits a SaaS cloud application. Another situation where it would excel would be for monitoring misuse of SaaS cloud resources, such as discovering personal files in a work environment storage product.

A situation where it is wholly inappropriate is for monitoring AWS, Google Cloud, or Azure environments. These services are not supported at all, but my customers and coworkers expect them to be.
  • We've identified a number of close calls with sensitive data being prevented from being uploaded to a broader audience than was intended. This saved us from potential liability from a data breach.
  • We identified and were able to react to a huge number of brute force attacks with the alerts set up in CloudLock
  • We are able to discover when apps with sensitive permissions are being connected to our SaaS products and audit or ban them from being used on work devices and resources. This improves our security and productivity and reduces spend on non-work usage of resources.
Amazon Macie is limited to an AWS environment and fulfills some of the same functions that CloudLock does in SaaS products. Both are very valuable tools, so the decision is not really which to use, but whether to use both for their respective environments. In general I feel CloudLock is a more powerful tool because it connects to Microsoft 365, which is more business critical for our organization, but that really is a personal call.
March 03, 2022

Cisco CloudLock

Score 9 out of 10
Vetted Review
Verified User
We use Cisco Cloudlock to monitor access to our cloud infrastructure and protect sensitive data. Our organization has been able to identify when unauthorized data access has occurred and allowed the security team to take steps to secure and mitigate recovery. We monitor data and network access to our data from outside the US, personal email sharing, credit card information sharing, social security number sharing, apps in use, and general data risk with Cloudlock.
  • Setup.
  • Cloud access monitor.
  • Notification.
  • IP identification.
  • User identification.
  • Integration with other Cisco products.
  • Unknown user identification.
  • App risk dashboard.
Cisco Cloudlock is a good fit for my organization consisting of 150 end users. While we have a small office product that can expand to cover any size organization, I would assume the overhead to monitor would increase. While my organization's business is in real estate, I would highly recommend this for all businesses that handle sensitive and private data. Being able to monitor our cloud infrastructure has allowed our security team to be more flexible in allowing approved users access as well.
  • Data Risk.
  • Behavioral Risk.
  • Policies.
  • Allowed data to be accessed.
  • Secured data.
  • Meet client security requirements.
We have not used other cloud security products. While choosing a product a large factor was the current and future integrations with other Cisco security stack products. While this product is not the most affordable, the security provided to the organization and client data is well worth the investment. We use SecureX to integrate and perform automated responses.
Cisco Umbrella, Cisco Meraki SD-WAN, Cisco Secure Endpoint (formerly Cisco AMP)
Jessica Mercy | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Cisco CloudLock is there to protect, monitor, and secure all the sensitive content in a company, for instance, the encryption key, credit card numbers, and others. Cisco CloudLock uses the access security brokers, which are on [the] cloud, and they help the company to have safe system controls. More so, Cisco CloudLock has alert systems, which are in the form of notifications, making the system controllers away [from] the business operations. Finally, Cisco CloudLock closely monitors the sensitive database, and [keeps] a shield to keep any attack away from the system.
  • Cisco CloudLock offers a remote access options, very efficient and standard.
  • Robust data security and monitoring of the sensitive database.
  • Has an excellent self service, which is an option for quick operational progress.
  • Unfortunately, the security notifications takes longer to be delivered.
  • Uncontrollable prices, very high for the common users or application subscribers.
  • The interface sometimes tricks the new subscribers, more so those without any class orientation.
Cisco CloudLock is there to shield the most sensitive business database and activities, for instance, the [customer's] credit cards, the code keys, the login details, among others. More so, Cisco CloudLock protects and monitors some information in various software or systems, like that of G-suit, making the entire system reliable and convenient. Finally, Cisco CloudLock determines the response of the activity be conducted to control some of the activities that [put] a company in threat.
  • Cisco CloudLock has an instant notification, in the matter security procedures.
  • Cisco CloudLock has an efficient self-service procedure or extension, for suitable business management.
  • Close monitoring of every form of database, and report giving for effective actions to be taken.
  • Cisco CloudLock makes the sensitive content more secure, easily monitored and operations are always functional.
  • Further, Cisco CloudLock has an automatic notification option, that makes investors understand when things are not well operational.
  • Finally, Cisco CloudLock supports the self-service workflow or operations, making the company more friendly and flowing.
Cisco CloudLock has an automatic approach to matters safety, analysis, and monitoring. Further, Cisco CloudLock has supported encryption, making it standard and simpler. Again, Cisco CloudLock [ensures] that credible details and documents such as credit card numbers are fully protected and encrypted by the software. Finally, Cisco CloudLock works closely with the G-Suite, the main cloud space for storage.
Sneha Sharma | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
We basically use Cisco CloudLock to protect sensitive information along with another security measure we use with our applications. It includes very critical information like credit card numbers, encryption keys, etc. We particularly use BaNCS where we develop software that has high risk and involves banking. As the scope of the software is large and includes millions we set alerts and trigger risk mechanisms in case of inappropriate or malicious actions from the user side.
  • Efficient alert mechanism for inappropriate actions.
  • UI is good and well managed.
  • We don't have to switch to other portal, we can take action within G suite.
  • Although alert mechanism is good but it delays a bit.
  • For implementation of DLP we had to hire a expert it took a lot of time to set up.
  • Support [in my experience] is not good.
For an organization that has thousands of employees and has many projects which involve high-security software development. It is always good that we have another security layer to detect or alert in time to prevent a financial loss. If you are small organizations that don't have these risks and are low on budget then you can leave it, but I would recommend it as cyber attacks are increasing day by day.
  • Alert mechanism is really important.
  • Action within the G suite.
  • Secure connection with remote access.
  • It has very positive impact.
  • Less monitoring spend.
  • Very cost effective.
It has a better alert mechanism and provides the facility to take action within the G Suite. With McAfee, we did not have these features and it is more cost-effective than McAfee. Although they are similar, now that we have used Cisco CloudLock, I would recommend using Cisco CloudLock rather than McAfee Defense.
Score 10 out of 10
Vetted Review
Verified User
We use Cisco CloudLock primarily to protect sensitive data from exposure in our Google Drive. Google has been able to go a long way toward replacing other forms of file sharing in our organization, but we still don't want some types of sensitive data there. With a very low false-positive rate (and certainly with no fancy regex configuration required), we can detect social security numbers and credit cards in our Google drive. Automatically notify the user, give them time to take action, and transfer the files out of their account to a secure location if they do not respond. This self-service workflow that Cisco CloudLock enables is why it can scale to such a large organization as ours. Our G Suite user count is relatively massive, but this product works well with minimal IT support. We sometimes need to flag false positives as such (usually in training documents designed to look like the data we're restricting). Cisco CloudLock also has other great features that help us manage our G Suite environment.
  • Self-service workflows
  • DLP detection with low false positives
  • Good interface for managing incidents
  • Locate and take action on any files within our G Suite implementation
  • The security event notifications don't come as quickly as I would like
Cisco CloudLock is well suited to anyone that needs to monitor their Google Drive for certain types of data, especially if they don't have a lot of IT staff or a SOC to support it. It is less useful as an overall G Suite security solution. I also can't speak to the non-G Suite integrations (AWS, etc.) that they offer. Having our users be able to use Google Drive helps us ensure they aren't off on third-party services like Dropbox. Monitoring it ensures it is used as we intend.
  • Audit compliance around sensitive data
  • Protecting against accidental exposure
  • Help IT Operations triage of other Google Drive related issues
They are very quick to respond and go the extra mile to help address our issues. That said, we've only needed them at the early stages of implementation for support help and occasionally when we want to do a full re-scan of our site. They are very flexible in working with us on the timing of such scans.
Return to navigation