The primary use case of the product is to ensure security and protection in a SASE (Secure Access Service Edge) environment. It serves multiple purposes, including securing roaming users and protecting users accessing resources outside the office. Another key aspect is safeguarding Insight applications using ZTE (Zero Trust Exchange) and preventing data leakage. In daily operations, it is primarily utilized through ZPA (Zero Trust Network Access), ensuring users have secure access to the internet. It involves protecting corporate devices from advanced threats and malicious sites and enforcing data isolation policies to prevent unauthorized data access or leakage. Additionally, the solution facilitates the secure transfer of sensitive data through various applications like Dropbox, utilizing policies set within the SSE (Secure Web Gateway) solution, potentially incorporating a model such as CASB (Cloud Access Security Broker).
Reviews from AWS customer
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Helps to protect organisations data
Data transfer will be recorded internal and external
Forcepoint Data Loss Prevention (DLP)
A deep dive into Forcepoints insider threat detection
Easy to use and implementation.
Forcepoint Data Guard Review
Forcepoint Data Guard Review
Provides centralized system monitoring and has a valuable feature for data protection
What is our primary use case?
What is most valuable?
The most valuable features of Forcepoint include Zero Trust Network Access and remote user protection for private applications. These features prioritize data security regardless of the user's location, ensuring that data is always protected. In terms of threat defense, the thread detection feature stands out as particularly valuable. It includes various capabilities such as web isolation to isolate unknown static, blocking access to malicious sites, and employing intelligence-driven checks based on configured policies. Integrating third-party sandboxing further enhances threat detection and response capabilities, providing comprehensive protection against advanced threats. It collectively contributes to a robust defense mechanism, safeguarding organizations against various security threats.
What needs improvement?
Areas for improvement for the platform include addressing scalability and architecture concerns, especially for large deployments involving more than 500 or 1,000 users.
Additionally, integrating sandboxing features directly into the solution, either on-premise or in the cloud, is crucial for comprehensive threat detection and response. It would eliminate the need to rely on third-party sandboxing solutions, streamlining security operations and enhancing overall efficiency and effectiveness in combating threats.
For how long have I used the solution?
We have been using Forcepoint ONE for 14 months.
What do I think about the stability of the solution?
Regarding stability, I have confidence in Forcepoint's technology and its ability to perform well in the market. However, being hosted on AWS has its architectural challenges, as is typical with any cloud-based solution. While it has the potential to overcome these challenges and further enhance its capabilities, it's important to acknowledge the inherent complexities that can arise in a public cloud environment.
What do I think about the scalability of the solution?
We have around 5,000 Forcepoint ONE users. Scalability is one of the product's notable strengths. Its architecture facilitates rapid scalability, particularly its polytexture architecture deployed on AWS. Spinning a virtual machine (VM) in any location is almost instantaneous. It gives it an edge over solutions like Zscaler, which may require setting up entire private data centers for expansion. While Forcepoint's scalability advantage is evident, it still faces challenges inherent to its architecture.
By consolidating multiple security functions into a single client, particularly incorporating Data Loss Prevention (DLP) and Secure Web Gateway (SWG) functionalities, Forcepoint has streamlined our security infrastructure.
How are customer service and support?
Resolving issues has sometimes taken longer than expected. While the initial response time has been problematic, support effectiveness improves upon escalation.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
We previously used a different solution before transitioning to Forcepoint. The decision to switch was driven by various factors, including the need for improved sandboxing capabilities, especially regarding onboarding. Additionally, Forcepoint's deployment in a public cloud environment posed challenges for organizations needing to utilize AWS, such as those favoring the Google Cloud Platform. This discrepancy in cloud provider compatibility influenced the decision to transition to a solution that aligns better with our organization's cloud infrastructure preferences and requirements.
How was the initial setup?
The initial setup was straightforward, primarily because everything was managed from the Forcepoint side, requiring no additional maintenance efforts. Deployment was relatively simple, especially when the organization clearly understood its objectives and requirements. The process took little time as long as the objectives were well-defined. However, if the organization needs to be clearer about its needs, it could prolong the setup process. In general, the technology was simple, and anyone could become proficient in managing it properly. Therefore, while the setup could vary depending on the clarity of objectives, the technology itself was relatively easy to implement.
What other advice do I have?
Integrating services within Forcepoint has significantly enhanced our organization's security posture by enabling seamless authentication, centralized monitoring, comprehensive data correlation, and compatibility with third-party technologies. It ensures streamlined access management, proactive threat detection, informed decision-making, and cohesive security operations, ultimately fortifying our defenses against advanced threats and maintaining a proactive security stance.
Its data protection capabilities have greatly benefited our organization by providing comprehensive protection for our intellectual property and sensitive data. With Forcepoint, users accessing corporate applications and the internet are shielded from accessing malicious sites or falling victim to threats. It ensures that our data remains secure, whether in motion, use, or rest. It safeguards against data leakage, whether intentional or unintentional, by monitoring and controlling data transfer through various channels such as private apps, public SaaS applications, or third-party emails.
Forcepoint ONE shows significant potential for improvement while still being a commendable product. I would give it around an eight out of ten.
Provides valuable data protection features, but there could be essential information available for understanding the functionality
What is our primary use case?
Forcepoint ONE's primary use case involves safeguarding the browsing activities of users who bring their laptops home. Specifically, we aim to protect their internet navigation while in their residences. Additionally, we need to secure specific applications to ensure that sensitive data and resources remain protected.
What needs improvement?
While we have some product information available, there are instances where we need a comprehensive understanding of all the features. We encounter challenges in determining whether certain features for blocking certain file types or preventing automatic downloads are functioning correctly. These particular areas need improvement.
What do I think about the stability of the solution?
We require high availability of 99.9%, and we believe the platform can effectively meet this requirement.
What do I think about the scalability of the solution?
I rate the scalability of Forcepoint ONE as around seven. It was easy to scale, but as we expand our user base and deployment, we anticipate the need for further exploration and optimization. We expect it to be scalable, but we have yet to deploy the solution fully.
How was the initial setup?
The initial setup was easy to deploy. However, configuring certain features presented challenges.
What other advice do I have?
The platform's feature that has been most beneficial for our web security is its capability to replicate rules. This functionality allows us to maintain consistent navigation policies for users, even when they transition between working from home and in the office. By replicating rules, we can effectively extend our border access control.
With the data protection features, we have noticed a considerable improvement in our control over security incidents. Specifically, we have enhanced control over blocking malicious applications and preventing access to websites with a poor reputation.
I recommend Forcepoint ONE to others. It's a simple and highly useful solution, albeit with room for improvement in certain features, such as application blocking. For instance, blocking applications like Skype, Teams, WhatsApp, or similar could be enhanced.
I rate it a seven out of ten.