Forcepoint DLP

It's very user friendly and easy to use. Rules can be managed on user-friendly interface web site console. For-example, violation can be release via management module. It provide prevention sensitive data against accidental data loss and compromised. Rule set sometimes work, sometimes does not work. There is no OCR feature. Forcepoint DLP tool does not have any AI feature that can learn user behavior or data and produces alarm.

If any organization doesn't want to share data outside the organization. It is always recommended to use user-defined policies to avoid any false incidents and using up drive space. Using the management console is easy to understand and you get everything in a systematic manner.

Forcepoint Data Loss Prevention is very well suited for organizations where [the] user count is more than 200 users. These users can be work from home users or users visiting the office premises or even branch office users. As Forcepoint is only supported on Windows and MAC operating systems, it is less likely to be suitable for such environments.

Effective tool that safeguards our data with a single policy and simplifies compliance with predefined policies, and the automatic access control and usage is very convenient to our web and networked environments. Forcepoint Data Loss Prevention protects our critical intellectual property with unsurpassed accuracy and provides a secure mobile application access to data on and off network.

I find this tool to be a great product, as it comes in really very handy. This product is great when it comes to scenarios where you are just trying to block some specific types of information and data out of your company.

I would recommend Forcepoint Data Loss Prevention; it can be used in any scenario, best suited for small and medium-sized operations. It is easy to use and configure through its graphical interface, being able to create rules within rules, exceptions and add devices for specific users. It is a way to inhibit and protect the network from data theft that is now more serious than the hardware itself. Management can be done remotely and from any device. Forcepoint support is very good; we've already had an NGFW at a branch and we like the customer service.

It requires a certain knowledge in information security but the solution is very good and we recommend it for any scenario. It's a way to enhance security, prevent theft of sensitive device information, and maintain an extra layer of security with URL filtering. Overall, it's easy to use and set up. Forcepoint support is a good thing and I liked it when I asked for technical support to do a configuration. The solution can be a good alternative to protect USB pen drives and prevent information theft in case of unpredictable theft.

Forcepoint Endpoint Data Loss Prevention is perfect for information security and compliance management and the IT department, cyber security consulting services, legal business, and large companies that need to manage and control information leakage and ensure compliance with company policies.

Forcepoint Endpoint Data Loss Prevention suited the environment where data movement is heavily regulated and complies with compliance like PCI-DSS, HIPAA, SOC Type-2, etc. Also, if the organization wants to see a holistic view of the security posture of the organization and imports logs from endpoints and network for data movement. The best part of Forcepoint Endpoint Data Loss Prevention is the reporting part, while another OEMs in the market share logs details only, Forcepoint Endpoint Data Loss Prevention has a reporting part where you can generate reports with compliance format. Forcepoint Endpoint Data Loss Prevention also integrates with different SIEM solutions available in the market.

It is easy to use and manage. Reviewing all the hits for items you are looking for requires the staff. Custom rules are easy to create.

In scenarios where you are just trying to block specific types of data based on a rule, it can be used very effectively.

If you are trying to use fingerprinting to classify data, Forcepoint is not well suited for this. You would need a separate technology in order to classify data appropriately.

We use an on-prem Forcepoint web protection solution. So far, the limitations found in the DLP are specifically related to the ability for the product to completely block uploads to online storage sites like drive.google.com. There are some sites that Forcepoint can handle well. But not all.

Due to the lack of responsiveness on support issues I cannot say it is well suited anywhere.

As a bundled package, we've kept Forcepoint DLP around because we need the capability. Our current on-prem deployment requires a bit of management and one of the things that always seems to be problematic is inserting a proxy. Some traffic doesn't like WCCP, other traffic doesn't like proxies. It quickly becomes a technical finger pointing session in almost any troubleshooting effort. And Forcepoint tech support isn't terribly interested in solving my problems so if their software is operating as they intend it to, then they don't really care if it's impeding our business.

Great tool that has come in handy. We send many emails and deal with PII, so it's great to have a tool that looks out for our data. Sometimes the GUI can run slow but for the most part, we have not had any issues and things run smoothly.

Google Drive allows a user to browse locally using an applet that resembles Windows Explorer. In this scenario, Forcepoint Data Loss Prevention is unable to enforce restrictions. Therefore, the only preventive control is to block Google Drive entirely, which reduces access to cloud storage solutions.

It is good if you are also using Forcepoint web content gateway or Endpoint. You need to create regex pattern for MBI if you want to catch this latest medicare ID format.

Forcepoint DLP is ideal for companies that have dedicated IT staff to monitor it. There is a lot of data that is collected and it requires constant monitoring in order to determine whether or not people are moving data in or out of your environment. Creating policies, even test policies can be tricky in Forcepoint. A few times, we've created policies that we thought would only affect a small subset of users and instead they impacted the whole enterprise, so it's really important that a group/team of people really understand how to use this tool. If your company is concerned about data loss via USB, this is a good tool to use.

Forcepoint Data Loss Prevention does what we intended it to do. It tracks all PHI stored in the company and track the movement of PHI. It also has the capability to block the user from sharing PHI depending on how you have it on the setting. Overall, it is a return of investment for my company because it will prevent malicious insider from sharing valuable data to external parties.

I like the database fingerprinting for DLP. I can point it to a DB Table of my sensitive customer info and use that to look for data loss. The reporting feature has also been useful as we can setup different levels of alert for different users and different amounts of sensitive data. The alerts can be sent to the offending user, their manager, and the security officer or any combination.

Well suited for smaller organizations like ours.

Overall usage and configuration of Forcepoint is pretty straight forward. There a few things harder then others to get working correctly, but once configured correctly things work great.

For a complete Web Security solution this is a good choice. For a simple solution look elsewhere.

Websense requires some work but is good with the DLP appliances. The content gateway needs some improvement and the endpoint agent has affected performance in some cases. All in all, it does the job but not without a good investment of work and time!

I have tried many proxy solutions from BlueCoat, to TMG/ISA, to Cisco WSA and nothing has compared to the ease of use of Websense and the flexibility. Sure there are always things missing but overall Websense has the best I have found.