I use Zscaler CASB to get the visibility of the cloud application since everything is moving to the cloud these days. We use the solution to get complete visibility of what is happening on my drive and official applications. The solution also helps to restrict information shared with my other partners.

Zscaler CASB's latency and architecture are excellent.

Zscaler CASB needs to improve its applications or connectors. The solution's granularity should be improved because it has limited granular options to control, visible, allow, block, delay, and receive.

I have been using Zscaler CASB for one year.

Zscaler CASB is a stable solution.

Zscaler CASB is a scalable solution because it is a cloud-based solution. Around 30% of the industry people are using Zscaler CASB.

Zscaler CASB's technical support is good. The solution's support team is available, but they don't have much visibility of what is happening and take too much time to resolve it.

Positive

Zscaler CASB's initial setup is easy.

As per industry leads, Zscaler CASB is an expensive solution.

Zscaler CASB is deployed on-cloud in our organization.

I would recommend Zscaler CASB to other users. Zscaler CASB has a seamless deployment. The solution needs to improve on the navigation or user experience part.

Overall, I rate Zscaler CASB an eight out of ten.

I use Zscaler Cloud DLP to protect sensitive data. It works by checking the content I'm trying to send or use on websites. If it sees any personal data or if someone tries to copy-paste it, it stops them. It can even notice when I use certain commands like "put," making sure my data stays safe. It watches what I'm doing online to keep my data secure.
Zscaler Cloud DLP integrates with Microsoft Defender to improve its abilities. This integration allows Zscaler to access data from Microsoft Defender, helping it track timestamps and offer strong protection for DLP events. This partnership between Zscaler and Microsoft Defender is a valuable addition that boosts DLP measures and enhances data protection.

The most valuable aspect of Zscaler Cloud DLP is its automatic DLP feature. Additionally, it also offers firewall capabilities. In terms of its firewall features, it provides a range of security measures to protect network traffic, but specific details about these firewall features would depend on the version and configuration of Zscaler Cloud DLP being used.

Zscaler Cloud DLP needs to improve its compatibility with other security tools. Right now, it mainly works well with Microsoft Defender but lacks support for many other antivirus and performance management solutions. Also, it takes a long time to add new features based on customer feedback. This limited compatibility could be a problem for organizations using various antivirus software.

I have been using Zscaler Cloud DLP for three years.

Zscaler is highly stable because it operates from multiple data centers around the globe. If there is any issue or even a brief downtime in one data center, they swiftly switch to a nearby one to ensure uninterrupted service. So, you won't experience any significant downtime, typically not more than a second or two. Even services like Office 365 have very limited downtime when used with Zscaler.

Zscaler is scalable and depends on the number of user licenses you have. You integrate it with your systems, like Azure Active Directory, and ensure GDPR compliance. More than 5,000 people use Zscaler at my company.

Zscaler provides excellent technical support in India and worldwide. Their support team is quick to respond and readily available to assist with any issues or inquiries.

I have previously used Purview DLP. It can inspect files and sensitive information you send in those files. However, it may not detect when you copy-paste sensitive data into a web page's open field. This is a second level of security, a different kind of data protection, which may not catch such actions. But it can still detect sensitive information if you copy-paste it into a communication or document. It is a good product but I prefer Zscaler.

Setting up Zscaler Cloud DLP is relatively straightforward. It can easily classify data, like U.S. Social Security numbers. It provides a data discovery dashboard where you can monitor what data users are trying to share or copy from websites. It checks files and data insights to ensure nothing sensitive is being shared improperly, and it alerts you if there is a problem.

Zscaler's licensing is based on the number of users, and it is flexible. Instead of counting all 5,000 employees, they consider concurrent users, which can be more cost-effective. It might be a bit pricier than some other products, but it's a good solution, and many companies use it.

I would definitely recommend Zscaler Cloud DLP to others. Overall, I would rate the product a nine out of ten.

We use the solution to restrict uploading over public sites. We control the users’ actions through DLP. Only users who have access can upload files. We manage multiple policies.

The policies are very easy to implement. It's very easy to understand. We have the option to assign time limits to the access we provide. For example, we can implement a policy for one year for a particular user. Once it expires, we can disable it.

We have some limitations while checking logs. The product must allow users to check logs for an entire year in the local console. Currently, we can check logs only for the previous three to four months.

Forcepoint provides multiple services separately, but Zscaler does not provide separate DLP. It will be good if Zscaler provides the DLP module separately.

I have been using the solution for the last two years.

I rate the tool’s stability a ten out of ten.

The tool is very scalable. I rate the scalability a ten out of ten. Approximately 5,200 people are using the solution in our organization.

We are also using Forcepoint.

The initial setup is very easy.

The product is a little more expensive than other tools.

We do not face any challenges with the product. If we have any problems, the vendor helps us. The product is everywhere. Everyone is using it. It's very, very flexible. It provides a single solution for multiple modules like DLP, proxy, and firewall. Overall, I rate the tool a ten out of ten.

We use Zscaler Private Access to authenticate our applications, which provides a more secure way to access the Internet from our work environment. We have multiple policies for different types of users. When new users join the company, they authenticate the VPA application to access the Internet. We use SSL bypass policies, tenant restrictions policies, and Microsoft tenant cloud application policies. We also use File Type Control Policy for all categories of files, and our traffic goes to the WAPAC file and the application. We are using services as per the requirements of our clients.

The most valuable features are the File Type Control and SSL bypass policies. We have multiple options, such as very flexible policies and modules in Zscaler. We will define them based on our requirements and the active Internet. We also have geolocation users. For example, a user from Singapore moves to Dubai. When the user tries to access the Internet, Zscaler automatically detects the geolocation and drives our traffic to the other channel. There is no issue here. 

When using a Blue Coat, we have some problems. Sometimes, some of our users have some issues, but once we update the agent, the traffic goes to the current geolocation without any problems, and they can access it. Sometimes, we have some URL categories blocked in our environment, but HPE sometimes removes the block. We request that the vendor to remove the block from the correct URL category. They provide a suitable solution based on the findings.

There is some issue while accessing the portal. It takes too long. It will take longer if I am on the URL Cloud App category and switch to other tabs.

I have been using Zscaler Private Access for five years.

If something happens, they have integration and they send notifications. I rate the solution’s stability a ten out of ten.

If I need to switch the policy to another task, the solution takes time. I rate the solution’s scalability a nine out of ten.

Compared to other proxies, such as Glook and IronPort, Zscaler Private Access is very easy to handle.

The initial setup is easy. You need to configure the proxy tool for the network configuration. They can forward multiple services based on the client's requirements. If we need to use the VPA, we need to authenticate. It takes one day to implement the solution, but for smooth running, it takes around a month because of timely revision.

The solution is expensive.

The categorization issue is dependent on the end user. For example, if I am trying to access a categorized URL but need to access it for work, I should be able to request a change to the categorization. Forcepoint can change the categorization itself, or the client team can do it for me. This is enough to change the categorization to meet the requirements. Overall, I rate the solution a ten out of ten.

Zscaler CASB breaks down at times. 

I have been working with the solution for six months. 

The tool's scalability is good. 

The solution is easy to deploy. 

The solution has increased prices this year. 

I rate the solution a seven out of ten. 

We use Zscaler Cloud DLP to maintain data load and for storage reports. 

The solution is the best for storage. 

We have issues with the tool's maintenance and networking. It should be able to work in offline mode as well. 

I have been using the solution for two years. 

Zscaler Cloud DLP is stable. 

The tool is scalable. My company has 250-300 users. 

Zscaler Cloud DLP's installation is difficult. 

Zscaler Cloud DLP is moderately priced. We pay around 2 million rupees per year. 

I rate the solution an eight out of ten. 

We are currently using Zscaler Cloud DLP internally and it provides us with a robust and highly configurable Data Loss prevention engine, which meets our specific data handling needs.

We experienced many benefits, including improved visibility and the ability to identify vulnerabilities in existing configurations. Its impressive scalability allows the combination of multiple dictionaries and using them as one engine, resulting in narrower data loss gaps. There are significant enhancements in email and file confidentiality, particularly with integration to MCAS solution, which provides insights into permissions and access control for files stored in OneDrive and SharePoint.

The most valuable features are its robustness and high configurability, particularly in relation to existing DLP dictionaries. The ability to choose and utilize specific dictionaries for various purposes, such as credit card checks or monitoring file permissions and transmissions within the corporate network. The platform allows the administrator to monitor who is sharing files and who has access to them, providing a proactive approach to data security.

The customers would benefit from more robust documentation and conversations around configurations, as it is slightly complex. Also, there should be an option for acquiring DLP as a standalone product rather than bundling it with packages, as this would provide more flexibility for customers who only need specific features. They should also provide more reviews and guidance on selecting the best-rated engines and dictionaries, as well as facilitating reporting for DLP violations and integrations with other cloud storage solutions. 

We have been using it for a year now.

Zscaler sells internet access, not specifically DLP, so we had to build a point of presence for our location in Kenya due to latency issues.

It offers high scalability capabilities.

We faced some issues regarding the business support from them due to the lack of knowledge and understanding of troubleshooting processes, which may be time-consuming. However, after we submitted the tickets, they did provide their support and eventually, solved our issues.

Neutral

We tried a few different solutions, but we opted for Zscaler because we were already using other products from them.

The implementation process was straightforward, with good support and training provided by Zscaler. We found it easy to roll out the cloud connectors and configure policies for DLP. The whole process took about three weeks with the help of three individuals, including myself.

Zscaler DLP solution is expensive, with a fixed pricing structure that is billed annually and monthly. There are no additional costs for licenses.

I would recommend having a clearly defined objective and goal, which would facilitate choosing and implementing the solution effectively. I would rate it nine out of ten.

There are many use cases, but primarily we have been utilizing it for cloud and web security purposes.

The solution offers a simplified network infrastructure and security functions, and it enables secure remote access for the users. 

Zscaler SASE provides a wide range of security features such as DIA, VPS, and VDS while maintaining a seamless performance.

We faced certain migration and implementation challenges in executing the tasks, so I would suggest improvement related to the stability of the solution. It would be beneficial to ensure a smooth transition with no to minimal interruption of the operation.

I have been working with Zscaler SASE for two years.

The solution's stability relies on highly stable internet connectivity, so the absence or disruption of it directly affects the operations. 
I would rate it a seven out of ten. 

There have been some issues regarding the migration and flexibility of this solution while performing the integration of the data. 
I would rate it a seven out of ten. 

We are fairly satisfied with the customer support that is provided by Zscaler SASE's team. They are equipped with expert technicians and whenever we had to open the ticket with them, the issue was solved professionally. The only difficulty is time management as they might take some time to resolve what you asked for. I rate it eight out of ten. 

Positive

The initial setup of Zscaler SASE's platform was efficient and user-friendly. I rate it eight out of ten. 

The implementation and deployment process took us a total of one and a half months.

Zscaler SASE is quite expensive compared to other solutions. The price is not fixed and it does not include all of the features, so my advice for organizations would be to evaluate their specific needs and budget to determine if this solution aligns with their requirements. I would rate it an eight out of ten. 

I would recommend this solution due to its exceptional user-friendly nature and comprehensive security capabilities. I rate it a seven out of ten. 

We use Zscaler CASB for DLP and shadow IT.

The most valuable features of Zscaler CASB are API integration and DLP.

Zscaler CASB should include integrations with other SaaS applications.

We just bought Zscaler CASB a week ago.

I rate Zscaler CASB a nine out of ten for stability.

Zscaler CASB has good scalability. I rate Zscaler CASB a seven out of ten for scalability.

The solution's technical support provides a late response; otherwise, it's fine.

Neutral

I have previously worked with McAfee. Compared to Zscaler CASB, McAfee needs to upgrade a lot of things. We chose Zscaler CASB because of more applications and information that we could get to do some fine-tuning on the policies.

The solution's initial setup is supposed to be fairly easy since it's an API.

We haven't yet started to deploy the solution. We will seek the help of professional services to deploy Zscaler CASB.

Zscaler CASB is an expensive solution. On a scale from one to ten, where one is less expensive and ten is more expensive, I rate Zscaler CASB's pricing a seven out of ten.

I recommend users consider the cost and benefit, integration, and supported applications before choosing Zscaler CASB.

Overall, I rate Zscaler CASB a seven out of ten.

Most people use Zscaler SASE as a replacement for VPNs. You know, with a VPN, once you establish connectivity to the network, you have unrestricted access. But with Zscaler SASE, you have strict access control. You don't get any access unless you adhere to the policies set in Zscaler. 

So, you can control who has access to specific applications at a URL level rather than granting access at the physical IP level. That's what most people appreciate about it. IPs provide access to everything on the machine, whereas Zscaler SASE provides access to specific services within the network. 

The most valuable feature is its ability to establish connectivity for remote users and remote endpoints. It offers a high level of granularity compared to typical VPNs, which also encapsulate a lot of I/O. By using Zscaler SASE for home access or access in remote areas, it bypasses the issues introduced by ISPs. 

Sometimes ISPs block certain protocols or applications, but when everything is encapsulated within the Zscaler Cloud, the ISPs don't get a chance to interfere or block. This is especially helpful when it comes to file sharing. Sometimes ISPs block it, so we can't share files using cloud services remotely. Zscaler SASE gives non on-premise users the ability to securely access and sync with on-premise resources.

The area that requires improvement is their support. The current support is lacking. 

Other than that, once you have the right people on the phone, the product performs as advertised. However, multiple clients have complained about the support. 

I have been working with Zscaler SASE for two years. 

When it comes to stability, it's similar to any outsourced service. There will always be some outages because of the global nature of the network and the involvement of various cloud providers. There are many moving parts. I don't anticipate more frequent outages, but it's important to acknowledge that Zscaler is not flawless.

I haven't encountered any clients who have had problems with scalability or performance issues. There were a couple of outages less than six months ago, but that's to be expected. Every service experiences occasional outages. It's like having allergies; every product at a global scale will have such issues. 

I have heard a lot of complaints from my clients about the support. Even VMware's support has declined since it got acquired by Broadcom. 

So, we're not receiving the kind of support we used to get, like from Cisco. It's more akin to Microsoft and internal support.

Neutral

The initial setup does take some time to get used to. Zscaler does a good job with its specialized services in setting up and installing the product. 

Once you start using the product, any issues that arise are generally handled well. The support is not as terrible as it may seem at first. While there may be instances where one technician transfers the case to another technician, it doesn't mean starting the entire process from scratch.

However, most people are deploying it on AWS or Azure. I have some clients who still prefer on-premises deployment. It depends on their specific requirements.

The pricing is quite high, especially when it comes to the gateway. It costs around $10,000 per gateway per data center, which can be seen as ridiculous. Other cloud-based solutions charge based on the number of clients without the need for a gateway for each data center. 

This pricing approach doesn't sit well with my clients anymore. When Zscaler SASE had a monopoly in the market, it could get away with it, but now there are alternatives cutting into its market share.

I would rate Zscaler's pricing model as an eight out of ten, with one being cheap and ten being expensive. 

There are other solutions like VMware that also have high costs, but Zscaler SASE stands out because of the expensive gateway for each data center. It's not a cheap implementation. 

Every time you set up an Azure data center, you have to spend another $10,000 to $15,000 on a gateway. It adds up quickly. Creating a VPN between data centers might be an alternative, but it introduces a single point of failure. So, that pricing policy alone makes it very expensive.

It's a great product. My advice for those considering using it is to understand the concept of zero access. It's different from just having VPN access. If someone can perform a DNS lookup, they still have access. 

People are often stuck in a VPN-centric mindset. It requires a paradigm shift, similar to transitioning from traditional applications to Microsoft applications. Instead of focusing on what services the user needs, it's about restricting access to specific applications regardless of the user. Once you embrace this mindset, it becomes easier to navigate. It's not a major impact, but it does require a change in thinking.

Overall, I would rate this product an eight out of ten, with the exception of pricing and support issues. It is one of the better implementations available, surpassing Cloudflare's capabilities. However, there are still areas for improvement, particularly in terms of pricing and support.