Zscaler U.S. Government Solutions, Zscaler for Users, FedRAMP Authorized

In terms of our main use cases, the Zscaler Zero Trust Exchange Platform  was typically introduced to replace our traditional VPN methods, and Zscaler Internet Access  was used for secure internet access for all users.

The platform offers advanced threat protection features and embedded AI/ML capabilities, making it more proactive in blocking threats. We can create different types of controls such as access controls, file type controls, and cloud app controls to manage user access.

The solution is beneficial for remote work environments by providing extra security features that VDI  cannot provide.

Data loss prevention features are available, particularly network data loss prevention. We can create various regex and other rules in Zscaler DLP .

The platform saves workforce hours and integrates with various tools and technologies, which has increased our security posture. We can integrate with SIEM , our AV platform, XDR , and EDR.

There are connection errors sometimes when users move from one location to another location, which can cause latency issues.

Regarding the initial setup and deployment, there should be an export option from older tools to the Zscaler Zero Trust Exchange Platform. This export function would eliminate the need to start from basics. Some rules should be exportable and directly importable to the platform. Additionally, more automation efforts could be included.

I have been working with the Zscaler Zero Trust Exchange Platform for more than four years.

The implementation process is moderate but overall manageable.

Netskope  is a similar tool to the Zscaler Zero Trust Exchange Platform. Both are similar tools, but the Zscaler Zero Trust Exchange Platform proved to be better. The Zscaler Zero Trust Exchange Platform has global coverage and low latency regarding support, and it provides a robust Zero Trust architecture. Netskope  provides flexible pricing and has granular visibility, and it surpasses the Zscaler Zero Trust Exchange Platform in cloud security capabilities.

The implementation takes approximately six months to complete.

The platform is cost-effective regarding overall benefits. We don't have to purchase many components such as load balancers and proxy servers that were necessary in traditional setups. Being a cloud platform, many aspects are managed by the cloud, making it more beneficial.

The Zscaler Zero Trust Exchange Platform is the industry's first zero-trust SaaS built on an AI platform. The platform deserves a rating of 9 out of 10 due to its extensive features and ease of administration.

We are not resellers. We are utilizing it. We come from consulting firms, providing it to customers along with services, operational support, implementation support, and more. It involves various users in our organization.

I find it to be good. The solution is cloud-based with the latest inspection engines, which I find to be amazing. We are less dependent on data centers and device management, which reduces our efforts significantly. 

It improves our device management, data center management, and updating devices. We need fewer engineers for this management, and it reduces time and efforts for data center management, device upgrades, and IT support.

There is not much room for improvement. We are users and operational engineers, so we might not have the insight that solution providers have when they compare different solutions. They might be able to identify if something is missing with Zscaler.

I have been using it for three years now.

I would rate its stability as a ten out of ten. It is very high, and it is good.

It is instant and very flexible according to requirements.

Customer service is good, you could say. I would rate it a nine out of ten. Sometimes, support takes time since the solution has some bugs that need fixing.

Positive

We did not evaluate other options before choosing Zscaler. It was proposed, and we used it.

The initial setup is easy and user-friendly, engineer-friendly, and environment-friendly.

There is nothing announced. It is a third-party issue.

The ROI is good.

We did not evaluate other options; this was proposed, and we used it.

I recommend the solution. It's amazing. I would rate it a nine out of ten.

We primarily use Zscaler SASE  as a web filter to have secure internet connectivity for all our endpoints, users, and branch offices. The agent installed on all endpoints controls individual internet access, ensuring that only approved sites and applications are available for end users. It also blocks access to any website identified as a threat or security-compromised. Additionally, it is used to enable zero trust network configuration, allowing users from their homes to connect to Zscaler Zero Trust network using Zscaler private access component.

Zscaler has positively impacted our organization by providing a seamless configuration for remote access needs. Our employees are satisfied with the accessibility, as it eliminates the need for a VPN, allowing users to access required resources from anywhere seamlessly. This enhances user experience significantly.

The most valuable features of Zscaler SASE  include web filtering, application control, and the private access configuration. The private access configuration is particularly valuable as it allows user-based access control, limiting access to only what is needed for specific users and applications.

The connectivity monitoring part should be included in the core license without any extra charges. As a user, I should be able to see how seamlessly end users are connecting, but currently, this feature is an add-on that requires an additional license fee.

I have been working with Zscaler SASE  for approximately over a year now.

The stability of Zscaler SASE  has been rated an eight out of ten. There have been issues with some of the edge networks where users were unable to access the internet, which is why it's not rated higher.

The scalability of Zscaler SASE is rated a ten. As an agile cloud solution, it is easily scalable by adding licenses. However, since we are not a company that frequently adds a lot of users, scalability is not a primary concern for us at this point.

Customer service and support have been excellent. We typically raise a call via email or using a portal, and the support we receive is very seamless and timely within the SLA. They have been very supportive and provided the necessary solutions and clarifications.

Positive

Before Zscaler, we evaluated other solutions such as Netskope . We chose Zscaler due to its stability and the product roadmap, which were far better.

The initial setup was somewhat complex due to the need to review and tweak the network configuration, particularly for legacy networks. However, these challenges were resolved through collaboration with multiple vendors and internal teams.

For deployment, vendor support included two or three resources. Internally, we had one person handle the deployment via Microsoft Intune , and additional internal team members assisted with testing and rolling out to around 2,300 users. In total, there were three people from the vendor and three from our side, although the internal resources were not dedicated full-time.

The pricing of Zscaler SASE is quite high, rated at nine out of ten.

We considered Netskope  before deciding on Zscaler.

I'd rate the solution nine out of ten.

In Qatar industries, the legacy systems like the Bluecoat Proxy is still being used, these solutions work at a limited capacity. For instance, one of our organization's customers is in the Oil & Gas transportation business with tankers, if a company like them wants to deploy a proxy solution, physical proxy deploy is very complicated for such companies, therefore our organization proposes a cloud proxy solution to them like Zscaler DLP. 

There are several cloud proxy solutions in the market, but Zscaler DLP provides the lowest latency rates due to the presence of global enforcement nodes in the solution. Whenever a potential customer approaches our company, which has a large workforce, has offices distributed across a wide geography and is in need of a cloud-based solution, we suggest Zscaler DLP for comprehensive global control. 

The in-line DLP feature is one of the most vital features of the solution. Data security is a global concern, like in Europe there is the EDPR, while Qatar has its own data protection laws, so at our organization while data gets classified using different tools like Boldon James, security control in transit remains a concern so the in-line DLP policy is a valuable feature in Zscaler DLP that remains absent in most other products. Zscaler DLP takes care of the security when data is in motion. 

The technical team in our company suggests there are some performance issues with the solution once the module addition begins. For instance, suppose I am using Zscaler Internet Access, and the connectivity speed is excellent, but the moment I start integrating some add-ons like DLP, then the solution considerably slows down in functionality.

But I believe the aforementioned instance or scenario is acceptable because an initial data check gets performed upon integration and it probably can be solved by the vendor through some alterations in the architecture. The set of features provided by Zscaler DLP is enough for the market in which our company operates. 

I have been using Zscaler DLP for two and a half years. 

I would rate the stability an eight out of ten. It's a highly stable solution. The product consistently functions all the time, but it slows down a couple of times when a large-scale data transfer is being processed that involves multiple policy checks. 

Zscaler DLP almost never crashes, and when it does rarely, it's very specific to the customer environment. When some changes are made to the deployed product upon the customer's suggestion, initially, some instability arrives, which is then fixed through fine-tuning. 

I would rate the scalability an eight out of ten. The Zscaler DLP is extremely scalable and we have experienced it hands-on in our organization. One of the customers of our company was beginning operations in the Philippines, and they were already using Zscaler DLP in other locations like Kuwait and Jordan; they asked us to increase the license numbers and deploy the same Zscaler DLP solution for their Philippines location as well, the entire process was smoothly completed by our team.

I believe the downscaling of the solution is as easy as upscaling. Around 80 to 90 customers of our organization are using Zscaler DLP. The customer portfolio of our company for Zscaler DLP comprises 20% government enterprises, 60% are medium-scale businesses, and the rest are small-scale businesses. 

The customer support team has been responsive enough to our organization's queries in Qatar. In our company, we had to reach out for customer support on very few occasions. I would rate the tech support an eight out of ten. 

Positive

I would rate the initial setup an eight out of ten. Our organization implements the setup operations and transitions of Zscaler DLP for each customer. Rarely the deployment team of our company has faced some challenges, but it has been due to the unique customer environments, server placements and connection requirements.

About 95% of the deployments have been carried out in our organization without any obstacles. Our organization always deploys Zscaler DLP on the cloud. 

It's an affordable solution. I would rate the pricing a six out of ten. Once after deployment, you start bundling up additional components, the cost significantly increases. When compared to the cost of a competitor solution and the quality of Zscaler DLP, the price of the solution is justified.

Some customers who are familiar with other product environments of Palo Alto or Cisco might find Zscaler DLP a bit expensive when looking at it from an environment compatibility or opportunity perspective. 

For companies that have operations across the globe, it's crucial for them to have the same set of data security controls and measures across all locations; Zscaler DLP helps in such implementations. For instance, if there are certain enforcement policies or data security norms implemented for the headquarters of an organization, Zscaler DLP allows a professional to just copy the implemented policies of one location to another, irrespective of the site members or users.

Overall, I would rate the solution an eight out of ten. I would advise others to perform due diligence before directly adopting the product, but just because the product is the market leader doesn't mean it will fit perfectly into every environment.

I always analyze the customer's requirements and existing environment before proposing the best solution. If integrating Zscaler DLP into a Palo Alto environment will create difficulties, then it's better to choose a solution from Palo Alto. 

We are using Zscaler Zero Trust Exchange for its Zscaler Internet Access service. It provides web security, DLP, data protection, prevention, and lots more features.

It has improved our organization’s working process and efficiency.

It has some good data security and WIP features, providing secure Internet access. We get seamless access with our agents and users. It has some fantastic hardware. They have AI-powered integration with in-built features for the scheduler. It provides security and is connected to manage the security level, which is good.

The solution needs to improve a lot of aspects.

I have been using Zscaler Zero Trust Exchange for more than one year.

I don’t contact the support, but my team usually does.

Previously, I used Citrix.

The initial setup was straightforward. It took almost three months to deploy, but it was smooth.

Overall, I rate the solution a nine out of ten.