Cisco Umbrella Reviews

Cisco is a very efficient and on-point solution that controls the whole network and settings on one page. We can monitor the entire network.

The solution could be faster as the process is very slow.

I have been using Cisco Umbrella as a reseller for four to five years.

I rate the solution’s stability an eight and a half out of ten.

We have deployed it to small businesses.

I rate the solution’s scalability an eight out of ten.

The initial setup is straightforward and takes few hours to complete.

I rate the initial setup a nine out of ten, where one is difficult, and ten is easy.

ROI is pretty good. I rate it as eight out of ten.

You need to buy an additional license for customer services. The licensing is moderate.

I recommend the solution.

Overall, I rate the solution as eight and a half out of ten.

I had implemented Cisco Umbrella at a previous company. I'm now working at another company where I'm not using this solution. We've got another solution here.

The policy of the company was to make sure all outgoing traffic was sent through a filtering service, and OpenDNS, and then Cisco Umbrella, was chosen for that purpose. Once it was taken over by Cisco Umbrella, it had far more capacity and far more functionality written into it. 

In terms of the deployment model, I just used Cisco services. It would be through Cisco's private cloud. My site wasn't big enough. So, I didn't deploy the Cisco service on-premises. 

It was really valuable to me in protecting the outgoing data of the company. It was good for reporting. Every computer had the Cisco Umbrella program installed. So, I had good reporting on any issues related to outgoing data, such as whether there were any phishing or dodgy sites connected. It protected that part of the business.

A combination of Cisco ASA, Cisco Umbrella, and Cisco AMP connecting to the SecureX portal gave me all-around security for the site because they all reported into a central reporting server. If there were any issues, I could have got full details, even if a crypto locker attempt was made. I never had any security incidents that I'm aware of. So, it was a very effective tool.

It kept itself updated. So, I didn't have to worry about continuing to push out new installs of the program.

I felt safe, supported, and secure, and so did the owner of the company. It worked silently in the background, and no one else really knew it was working on their computers. When we went into lockdown with COVID, I was happy knowing that all the computers that left the business had the app installed and were going to be functioning securely. We got no viruses and no issues on any computer on the network, which is quite unusual. A lot of other people or a lot of other companies I spoke to reported that they had quite a few issues.

It worked 100% in terms of applying and maintaining network connectivity consistently across all workplaces. We never had any issues. The only issues we had were when sites might have been blocked because they were suspected of being within a filtering group. It would report back to the user and say, "This site is currently blocked by your administrator. Please click this button. An email will be sent to your administrator, and they can resolve the issue." I would then get the email, and I'd look at the site, and then I'd release it through whitelisting. It was very user-friendly in that regard.

It certainly helped to remediate threats more quickly because I was able to stay free of any virus outbreaks. It definitely locks out that part of the transmission where the virus will go out and attempt to download a package.

It worked silently and didn't use too many computer resources. It was really silent in its operation on the network. It had a really good impact on me. I'd love to put it in my new company, but we've gone down a different pathway. That's being resolved through Office 365 now, and I'm not proposing to change that technology.

I wanted to ensure that all outgoing traffic went through Cisco AMP servers. So, if we did get a crypto locking incident or any malicious sites that wanted to direct traffic to particular websites, they would be unable to do that because they would be blocked by the Cisco Umbrella DNS servers.

It also did website filtering for preventing access to porn sites and gambling sites. It had all other standard features. It had a good section where you could whitelist and blacklist websites.

I was able to implement it myself. It was really easy to install. You could install it on a server locally if you want to. If you have the biggest site, you would do that, but for my site, it was just directing all the traffic out through the Cisco Umbrella DNS. It was really handy. When the owners of the company went overseas, I knew that they would be secure because even if they were not on the company network, they would still go through the Cisco Umbrella servers. It was a complete solution for protecting the company with outgoing data.

The other useful feature was that if we were to get a malicious actor onto a server or service running somewhere, it would still have to go out through the Umbrella servers. So, it would more likely be blocked through there. It had multiple features that were super handy.

It had the ability to do a lot of app control. So, every single app that went through that portal was registered, but there is a general issue with the whole app control. As soon as you add a mobile phone to your network, all of the apps get registered through the system, and you can approve, reject, or just let them go through. When I looked at it, it was impossible to manage app control. There was just so much data. I didn't apply that service because I just didn't have the time to manage it. It would be good if there was a way to categorize applications. However, that's dangerous too because you can be turning off an app in a group because you don't know what it is doing. It could be a vital company app. So, App control is the main area in which they need to keep working.

Originally, Cisco Umbrella was called OpenDNS. I have used OpenDNS and Cisco Umbrella for about six years.

It is very stable. I never had any issue with it.

It is highly scalable. You don't even have to install it on your computers. You just change your DNS, and it'll start to work internally immediately. I never had any issues with performance or anything like that. I'm sure it would suit larger companies as well, but larger companies would install their own Umbrella service on their own systems and deal with the capacity that way. So, it is very scalable.

Their support is good. They always got back to me and answered issues. They showed me how to do my own debugging. They were always very professional and helpful. I would rate them a 10 out of 10.

Positive

We previously used proxy servers, but I wanted a more modern interface, and that's why I chose Umbrella.

It was super easy. I'm a general IT person, and I was able to deploy it. I read the documentation, changed some settings, changed the DNS on my servers, and then rolled it out to the team. It was a pain-free implementation.

I deployed it. It was pretty intuitive. I didn't have a consultant help me. I was able to implement the solution myself and manage it myself. That's a really good rating for an application. There are different systems you get to manage these days, and you can't have training on all of them. Because I rolled it out, I knew I rolled it out properly, and the system was working effectively. It was good. I liked using it.

The return on investment was that we kept the company secure. Nothing happened, which is the ultimate return on investment.

It was a little bit expensive on a per seat basis, but the company I was running was only a midsize Australian company, and it was a reasonable budget per computer for that system.

It started off being a free product, and then Cisco bought it, and it went to a reasonable price. I was using Cisco AMP as well. So, my per computer cost was reasonably high, but for a small company, it was within an acceptable level.

Not having reviewed other systems, I can't tell how they compare, but I know that when you do special security licensing with Microsoft, it is on par. So, it is probably standard within the industry.

At the time, we were using OpenDNS, and then OpenDNS went to Cisco Umbrella. Because we'd had such success with OpenDNS, we just stayed on with the product. So, I didn't evaluate any other products at that time.

It is just another layer that you need to wrap around your company to keep it safe unless you could just shut off that possible attack vector from external parties.

To leaders who want to build more resilience within their organization, I would say that they've got to keep doing it, and they've got to keep working on it. I'm constantly looking for better ways to secure the company. Cisco Umbrella would be a very useful addition to their set of tools. 

A part of my plan in the long term was to implement the full suite. I never got around to that, but it was really good to know that I could go right down to app-level control. It was a very successful product, and I'd certainly recommend it to any business looking to just add another layer of security around their company.

In terms of providing a single pane of glass management, security does involve multiple systems, and I could log them all into the Cisco SecureX system. From there, I could get my single point where I could resolve issues with viruses, et cetera. So, in itself, it was a single pane of glass for DNS protection. It was fine, but I don't think there is ever going to be a single pane of glass anywhere. You're always going to have many different systems that you're using, but overall, it had a lot of features. It did the job it needed to do.

I would rate it a 9 out of 10. It is just app control that I want them to develop more.

We use Cisco Umbrella for DNS security. We also have the roaming clients deployed on user laptops.

We use it for roaming clients. We also push all our DNS traffic to Umbrella. We do not allow any other DNS traffic. That is kind of how we have fully implemented Umbrella.

We were looking to bridge the gap for DNS security, especially for mobile clients. We wanted to be able to put that roaming client on their PCs and kind of bring that together.

It has improved our organization from a security posture perspective. We feel more confident now knowing that we can block phishing attempts or any type of malware that is DNS-related. This is a very nice feature that provides peace of mind.

Umbrella has absolutely helped us remediate threats more quickly. In fact, it has blocked a lot of threats that may have been able to go through in some instances. Knowing that they are blocking it and being able to find the PC that potentially has the threat on it, that has been very beneficial.

Umbrella has been very good for employee morale. It makes our job a little bit easier.

Cybersecurity resilience is very important for our organization right now. Umbrella does a good job of blocking ransomware, malware, bad threat actors, and phishing attempts.

Being able to control policy sets has been a very nice feature. Being able to have appliances that are separate, where we can send DNS traffic, has been very beneficial as well.

It is a good product for helping workers feel safe, secure, supported, and included. Having the roaming client is probably one of the key factors in being able to do that.

Cisco Umbrella provides single-pane-of-glass management, which is pretty important for my organization. We have a lot of products, including security products, that we manage. Being able to see a lot of those data sets in a single pane of glass is very beneficial for my team. We enjoy having it. It is very easy to use.

It is not very difficult to maintain network connectivity. 

We would like them to add more features to Cisco Umbrella.

We have been using Umbrella for about four years.

Stability has been great. Obviously, there have been some hiccups here and there on the connectivity side. That is out of our control, but it is understandable, as things are in the cloud. I have had more issues with Amazon than I have had issues with Umbrella, where I have had a very good experience.

It is very scalable. If I had more sites, all I would have to do is deploy more VMs and point traffic that way, which is very nice.

We are using roaming clients. We are also using the DNS appliances that we have deployed. I have over 15,000 users and 10 locations. We have deployed each appliance at every location, and then point traffic to that. There are 20 different servers that we are using for Umbrella.

The technical support has been very good. I have not had to open many tickets. I have only opened two in the five years that we have had it. Those two times, the support was very nice and supportive. I would rate them as 10 out of 10.

Positive

We have actually been using Umbrella since it came out. Previously, we just ran our own DNS. From a security product perspective, Umbrella has been the only DNS solution that we've used.

The initial setup is very straightforward. There is a lot of documentation available.

It was deployed in-house.

We have seen ROI. We can show our leadership that we are blocking and preventing things from coming into our network. Not only that, but from a threat perspective, if any of those things were able to infiltrate, then possibly the remediation damages would be way more than the cost that I am paying for Umbrella today.

As an educational partner, we get better licensing structures. We are very happy with that. It has been very nice that Cisco has partnered with the educational sector to bring that. 

Look for all the gaps that you have in your network, then try to find a product that is more rounded to essentially fill those gaps.

I would rate Umbrella as 10 out of 10.

One of our purposes for acquiring Umbrella was to block phishing links that we get in emails and to manage risky websites. We're using it for our internal network and the roaming client for external users.

Blocking malicious websites and preventing users from going into them, as well as the phishing attacks that usually come with malicious links, were the challenges. With Umbrella we can block them.

We use it in our Active Directory domain and for about 175 users. We use it on desktop computers and on laptops for external users. It's all on-premises, protecting servers and workstations.

It has improved our company a lot because we now see where the users are going and prevent them from going to malicious websites. It has reduced, by a lot, the chances of hackers getting into our organization.

With Umbrella, it's our IT staff who we feel secure. Sometimes the end-users, our clients, don't fully understand the purpose of the tools when we install them, such as the roaming client. And sometimes they get false positives and they don't fully understand why. But for us, as IT admins, we feel a lot more comfortable with the tool in place, because we know that it's unlikely our users will go to a malicious website. Umbrella is protecting us.

Umbrella has also helped us remediate threats more quickly. It's really good for securing our infrastructure from end to end. Umbrella's footprint is really small. If you want to secure infrastructure, such as servers, you don't have to install an agent. You just have to use DNS forwarders and point them to the umbrella servers. That's easier. It helps us protect our infrastructure for sure.

The Global Block List is one of the most valuable features because it's really easy to block domain names as well as URLs. Sometimes you don't want to block the whole site, you just want to block one URL. The Global Block and Allow Lists are the best features for us.

Cisco Umbrella also provides a single pane of glass for management. It's really helpful and it's important for us because we have multiple locations. Without a single pane of glass, if you want to block websites you have to go to every location, in each firewall, one by one. But when you have a single management portal, it's a lot easier.

The user experience is good because, as IT and admins, it's easy to use. But that's not only for admins, it's also true for the clients because they know the reason a website is blocked. The user experience is pretty smooth because they can report a false positive or a malicious website that has not been blocked in Umbrella. We are happy with the user experience.

And when it comes to applying and maintaining network connectivity consistently across all workplaces, Umbrella is excellent. We can track, among the different locations that we have, where the users are trying to get to. That means the risk of disruption is reduced by using Umbrella. And in that way, Umbrella contributes to maintaining network connectivity.

The user interface is pretty nice. Once you know how to do tasks, it's easy.

There are some situations where we would like to block things for specific user groups. I know that Umbrella does that, but it's not that easy. When you go to the Global Allow and Block Lists, that's the easy part. But when you want a specific task for specific rules and policies for user groups, you have to go three levels down in the menu, and it's hard to find where you do that task.

Also, the policies are not that easy to manage.

I have been using Cisco Umbrella for around a year and a half.

The stability is really good. They have about 99.99 percent uptime. I can't think of a significant disruption in the service.

We are a small organization, but from what I have seen, it is very scalable.

We have never requested support.

The initial deployment was straightforward.

The solution is on-premises but the management is cloud-based.

We did it all by ourselves.

We have seen return on investment by reducing the risk we had in the past. That has saved us from having to invest a lot of time in support, which is something we had to do when a user didn't know what they were doing and got infected. We now spend less time on end-user support.

The pricing is pretty fair. It's good.

In my former company, we used Area 1 for DNS protection, not Umbrella. I knew OpenDNS before it became Umbrella. In fact, I used OpenDNS for my personal accounts. In my current company we evaluated Area 1, but in the end, we loved Cisco's support and that is one of the reasons we went with Umbrella. But, obviously, the features in Umbrella are pretty good.

Once our end-users understood why we use Umbrella, that it was for improving our organization's security, it improved their morale. Nowadays, they are aware of cyber threats and they know that Umbrella is one of the tools that we use to prevent a breach. They feel more secure now.

Resilience helps a lot in cyber security. One of the things that makes Umbrella great is that you don't have to detect threats by yourself. Wherever in the world a new threat is detected, it's in the Global Block List of Umbrella and we don't have to manage those threats one by one.

That kind of resilience is more and more important for our organization every day. Fortunately, our C-level now understands the risks and what the organization could lose. They understand the impact. With the support of management, cyber security is really important for our organization.

I would tell the leaders of other organizations who want to build more resilience that cyber security is more important now because we are serving our internal and external customers. The problem with a cyber security risk, a threat or a disruption in IT services, is that it will probably cause us to stop producing what we produce. Our customers will have a bad experience, and that means it is not only a financial issue but one of reputation. I would tell such leaders to always keep cyber security in mind because it's not just about your IT guys, it's for the whole organization.

It's an excellent product. It has worked really well. The only reason I don't give it a 10 out of 10 is, as I mentioned, that there are some tasks that could be done more easily.

We use Cisco Umbrella to secure our gateway. All of the DNS forwarding coming out of the company from any site or all the DNS requests are forwarded through Cisco Umbrella, and then they determine if that is a safe address and if the content coming back is safe. They will either reject the addressing out of hand, or they'll look at the Layer 7 content and reject that from making it back to us.

We are using the Secure Internet Gateway (SIG) Advantage package. In terms of deployment, effectively, it's deployed from our private cloud. It's in our data closet on our servers.

It enables us to finally allow laptops to be used as workstations and allow data to leave the building. In the past, laptops were only used for VPN access, but they would connect back to their data inside the company. This has allowed us to have a level of confidence that they're protected as if they were behind our firewall. So, now, we've got work-from-home people who literally have their workstations with them.

We have six sites with 60 to 70 users. The baseline configuration allows for additional protection for any DNS requests as they leave those sites, and then the secondary policy is for the mobile devices as they leave the premises. When they're connected to public WiFi, they have an additional policy that kicks in for that time that they're not connected back to the company. So, when they're on public WiFi without a VPN, the tool will actually put that second policy in place that's more aggressive and offers a higher level of protection when it's not sitting behind the firewall. All that is automated. It's all built into the agent.

We don't allow WiFi inside of our network for connection to our actual business network. As soon as a device is docked, it disables WiFi on that mobile device.

When we have laptops that leave the building, they could connect to public WiFi before they establish a VPN connection back into the company. For that duration or that period of time when they're not docked in the network or on a VPN, they effectively don't have that full layer of security that I provide inside the building. This tool stands in during that period of time, and we extend the security settings through their basic firewall or their cloud-based firewall at that time. So, we do content filtering and control access, but they also are looking at new domains, IP addresses, and bad requests. They're blocking them on my behalf when a laptop is not sitting behind our security appliances.

There are a couple of interface issues. I know that they say that there are feature enhancements that are noted. For example, we've got the Cisco Meraki security appliances, and there, we geofence our company to where we're allowed to send and receive traffic. So, in our case, by default, we only allow traffic to six different countries, which allows us to effectively prevent traffic for the majority of bad players in the world, but they don't give you an easy way to do that in Cisco Umbrella. With Cisco Meraki, I can specify or pick the countries. I can say that I want to only allow traffic from these six countries, and I'm done. With Cisco Umbrella, I have to rely on the fact that they're going to prevent traffic to other countries. They're going to decide if it's good or bad. I can't geofence out. I can plot top-level domains, but .com and .net go global. I can certainly block a China (CN) or a Russia (RU) domain, but that doesn't give me the same level of granularity. 

Apparently, Cisco Umbrella has got that as a feature request to allow an administrator to say, "I specifically only want traffic to and from these countries. Everything else should be dumped." That way, when they're sitting behind my network or they go out in the wild, they have that same level of traffic being blocked.

I have been using it for 14 to 15 years.

We've had no issues. It has done exactly what it's supposed to do.

It is cloud-based. So, scalability should not be an issue. 

Any increase in its usage is all relative to the growth of our staff. Currently, we deploy the laptops for people who need to work from home or are traveling between the banks. That's roughly about 20% of our total staff. Some people aren't going to be working from home, and some of their jobs can't be done from home. They have no need for mobile devices. If there is a need to work from home, its usage will increase. It is there if we need it to scale, but at this point, it is not scheduled to change.

Once I became a paying customer, it was much better. The preliminary training is there, but when you get into the nuances and the details of some of its capabilities, you need to talk to tech support. Once you're a paid customer, you get direct access, and then it's good. When I'm able to get a hold of them, their technical support is a 10 out of 10.

Positive

I didn't use any similar solution previously. 

I was a hundred percent involved in its deployment. We had a couple of issues. The proof of concept was done without a lot of planning. So, there were some mistakes made along the way. If I was doing it again the second time, I wouldn't make the same mistakes. 

The default configurations have your baselines. Those are never supposed to get changed, and I changed and tweaked those for our proof of concept. After a couple of weeks, I had some additional guidance from the Cisco Umbrella team. You leave the baseline configuration, and then you clone and create a new configuration that sits in front of it. So, everyone gets the baseline, and you don't change that. If you want to change it, you make a new policy and then make the changes to that. If you change the baseline default policy and you make a mistake in it, you've to back that all out. If you make it in the new policy, in the worst case, you just delete it, and automatically everyone goes back to baseline. So, there's still a policy in effect. That was a training issue that should have been resolved. Now that I've done it, if somebody asks me, I would say that this is the way you've got to do it.

It was just me taking care of its deployment. In terms of maintenance, once it's configured, unless you're retweaking and adding or removing something that was blocked, it pretty much runs itself.

I have less maintenance to resolve, fix, and reconfigure VPN clients personally, and the feedback from the end-users is that they're more productive.

We were using the free version, and we implemented the paid version about two months ago.

I'm paying a fair price, but everything is negotiable with Cisco. One of the benefits that I got by having Cisco Umbrella is the licensing of the Cisco AnyConnect VPN client. There has always been an issue for years and years with Cisco Meraki in terms of VPN clients and using the native built-in Windows client. It keeps reconfiguring itself. By using Cisco AnyConnect as the VPN client, it's not affected by Windows patching or people typing in passwords by mistake. It's more resilient and doesn't change. With just Meraki solution, there was an extra expense for the Cisco AnyConnect VPN client. By having Cisco Umbrella, that licensing is now included.

There were a couple of other options, and I discussed them with another consultant. As a regulated industry, we have to do vendor management, and vendors have to be vetted. So, Cisco was already a vetted vendor. There are other companies that do the same thing, but Cisco didn't require me to do any more vetting. They were already a vendor.

When it's configured the way it's supposed to work, it turns itself on and off based on the status of the VPN or the dock condition. Once it's configured, it does exactly what it's supposed to do. 

If you're doing a proof of concept on it, fully understand how the policies are configured and what the flow is. You should understand the hierarchical status of the policies to configure it right the first time. You don't really want to guess it.

I would rate it a 10 out of 10.

Cisco Umbrella is a first line of defense. It protects the users from going to sites that should be avoided. Cisco Umbrella also protects against malware and phishing. It's a simple and very effective product that works seamlessly in the background. It doesn't disturb you in any way unless you access a website you shouldn't. Then, it will interfere with it and stop you from going there.

It would be good if the more complex versions of Umbrella are simplified so that we can offer them in a more standardized way. We, as a telco, do not operate the same as a traditional integration partner would, who can sell all its services. We try to have a standardized approach as much as we can so that we can sell the solution with as many services added to it as possible. If you look at the structure of businesses in Switzerland, 95% of them have 10 persons or less, and they do not have a security specialist. Therefore, the higher the automated and standardized features, the better it is for them.

We've been offering Umbrella for three to four years.

I've been working with Cisco's products for several years now. We in the B2B area of Sunrise work with Cisco kind of exclusively, it's really our main partner. I look after security products and Umbrella. The cloud-based security products around Umbrella have been the focus of my work.

As a reseller, the value we bring to our customers is the fact that instead of just selling them connectivity or access to the internet, we offer them a base level of security with it. I think that is highly valued by customers since security is typically a topic they struggle to deal with.

When it comes to the stability or performance of Umbrella, we have been very pleased. When you add security on top of unsecured transport, you may have certain delays, but our technical colleagues consider them to be not too bad. Stability has never come up in a customer context as an issue.

When we look at the scalability of Umbrella, we can see the great advantage of it being a cloud-based service. Therefore, scalability is not an issue on our side. We can assume that it will always be around and that the performance will always be good.

I've had very few interactions with Cisco support, and the ones I've had have been good. I'd give Cisco's technical support a rating of nine out of ten.

Positive

We sold a different solution previously, which provided a much simpler DNS protection. It did not have the power and is not really comparable to Umbrella. It was more of a consumer-level product that did not have much of an impact. I had it installed on my internet access at home, and it never intercepted anything I did. It's only once I installed Umbrella that I saw differences in the ways my DNS calls were intercepted. The main reason why we offer Umbrella is its business-grade security.

One of the great advantages of Umbrella DNS is that it's really simple to deploy. It's easy to install, the users do not notice that it's there, and it doesn't interfere with your work. The simplicity and transparency are great advantages of Cisco Umbrella. Cisco could take Umbrella DNS as a good example and also improve on other products.

Cisco solutions are generally perceived to be rather expensive. We have constant internal discussions as to whether we should offer lower-priced security solutions from some of the competitors.

If you are looking for the first time at Umbrella, you should really understand what is behind the solution. Behind Umbrella is Cisco Talos, a research team within Cisco, which is one of the largest private ones in the world. All the input out of the activities of Talos goes into Umbrella and makes it a really valuable product.

As a service provider, we know that other service providers are using Cisco Umbrella, and that was a big factor for us in choosing it as well. Also, we had seen large telcos like TIM in Italy using it for many years and being satisfied with it.

Customers are always worried that somebody in their organization will click on something he or she should not click on. Umbrella does a good job of protecting a business from ruin in worst-case scenarios. It works in the background and is like an airbag.

I would rate Umbrella Easy Protect, which is the simplest on the Umbrella DNS side, at nine out of ten. Because Umbrella SIG is still under development and is very promising, I'd give it an eight out of ten.

Our partnership with Cisco is overall good. It has its ups and downs. Cisco is not always an easy beast to work with. Sometimes you see that traditionally they have a very strong enterprise focus, but we as a service provider have a different need than enterprises, and that sometimes has its challenges.

With Cisco Umbrella, our clients usually always start with simple needs such as URL filtering and move to providing a consistent experience whether the employees are at home or in the office. We also have clients with a large Cisco Meraki portfolio. Umbrella ties into Cisco Meraki. You can log into one place, configure your policies for your users when they're away from home, but then those policies can be pushed down to the Meraki deployments. So if you've got 100 branch offices, which some of our clients do, it's one click to edit a policy and have it be effective in all of the branches. It will also be effective for the home users. Through a single pane of glass, you can have a consistent policy everywhere. This comes down to the integration that Cisco has built into the different products.

Cisco Umbrella's integration with other solutions has been a great feature in terms of ease of administration. Administration and troubleshooting are faster. The single pane of glass is great as well. Another great feature of Cisco Umbrella is remote browser isolation. With this feature, you open a virtual browser, and it's seamless to the user. If the user ends up going to a bad website that's passed a policy and something bad tries to download, it will not download into the machine because it is a virtual window somewhere in the cloud. You are protected by this feature.

The integration between Cisco Secure products is a lot better now than it used to be, especially with Cisco SecureX knitting everything together. Previously, they were solutions on their own with a single dashboard, and it made troubleshooting difficult. You may have contained a threat from one place but not in another place. Cisco has worked hard over the last three or four years to allow these products to inter-operate, which makes troubleshooting and finding threats a lot faster.

The benefit we have seen from using the Cisco Secure suite is the threat response. When you have a product on its own, there might be a threat, and you can click a button, deal with it, and think it's done, but you would have to rely on someone to go and check the other products. With integration, you don't have to do that. You can log into a single dashboard like SecureX, which fits everything together. Even Umbrella ties in with Meraki, Cisco Secure Firewall, and Endpoint. Thus, you can be quite confident that if you contain the threat in one place that it's automatically contained in other places as well.

Threat hunting with Cisco Secure is easy with Cisco Threat Response and SecureX. When the suite of products are tied in with SecureX, you can then dive into one dashboard when there is an alert. With a couple of clicks, it will launch Cisco Threat Response. You will be able to stop the threat at the endpoint or firewall and also see what other devices are potentially compromised. If it's bad software, you can make sure that if it's detected again that it's never allowed into your network. The client that's compromised can be shut off completely. Before integration, you either wouldn't have been able to do that or it would've been a long-winded process. Then, the damage might have already been done because the threat response came too late. Integration has enabled faster threat responses.

I would like to see more integrations with more products. Some of the integrations need to be simpler as well. For example, the integration with Cisco Secure Firewall could be simpler.

It would be good to make reporting simpler. For those who don't use SecureX, it would be good to make Umbrella really simple to use upfront. It's not a difficult product, but it can be daunting for someone who isn't exposed to it because there are so many options.

We've been using Cisco Secure products for 20 years, and we've been offering Cisco Umbrella since its inception.

We use several Cisco Secure solutions including Firewall, Analytics, Umbrella, Endpoint, and Client.

As an intermediary between Cisco and our customers, the value we add is not only the experience but also the relationships we hold within Cisco. We may know the answer to a customer's question because of our experience. If we don't, our relationship within Cisco is such that we can go straight to the person we need to ask. It shortens the process, and we can deliver the solution faster than the customer going directly to Cisco.

Cisco Umbrella's stability and availability have been 100% uptime since inception. This stat has never gone down.

Because Umbrella is a cloud-based solution, it doesn't matter if you are putting five users through it or 5,000. All of the heavy work of processing is done on Cisco's cloud platform, and it'll always give you 100% uptime.

Deploying Umbrella is really easy. The initial deployment can be done in one to two days. More advanced deployment including creating policies is also quick and can take a few hours to two days because it is cloud-based.

You don't always have to deploy Umbrella live straightaway. Umbrella can be deployed in monitor or audit mode so you can see what's going. You can then use the data to create the policies. That is, you can deploy it without affecting anyone initially just for the visibility and then build policies on the back of it.

Testing is easy as well, which means that you can test the data you've gathered on a small set of pilot users.

To those thinking about Cisco Umbrella, my advice would be to take up the free trial. It takes just a few clicks to deploy it in monitor mode, and you won't be affecting live traffic or your user base. You will be able to see the level of data you get of what all your endpoints are doing.

Given where Umbrella is today and the benefits it offers, especially compared to the competition, I would rate it a nine out of ten.

Our partnership with Cisco is very positive, from our account management team to the systems and sales engineers, to TAC for support. This is because Cisco has a knack for getting us in front of the right person, which is so useful. Other vendors aren't always as good. With Cisco, if you say you need someone who's an expert in deploying Umbrella or Meraki, they'll get you that expert. And no matter what question you throw at them, they'll have the answer. If someone says they're going to get you an answer, they do. That's the power of the partnership with Cisco. They're sort of a trusted partner. 

The benefits we get from partnering with Cisco are first of all access to Cisco's expertise to deploy these products. This means we get to know about the products in a bit greater detail than we would of if we weren't a partner. By knowing about the products in greater detail, we can then offer them to clients. 

Being partners, you get partner benefits, discounts, and the like. But it's more the knowledge. If we know the products on a deeper level, we can offer them to a client. We can show the client the value add of Umbrella versus a competitor's product.

The benefit that Cisco gets from Vohkus being a trusted partner, is that they know when we deliver a solution, we deliver it right. We deliver it to a standard that Cisco would be happy with. Cisco benefits from this partnership as they get fewer TAC calls because if we've deployed it correctly, the customer won't have to speak with them. Equally, if we've deployed it correctly, we don't have to go speak to them, so we're cutting down on costs, but there is also the brand reputation that's being maintained. If we deployed a Cisco solution and did it badly, it'll look bad on us, but the client will think it could be the Cisco product. By us deploying it correctly with our experience and knowledge, Cisco would know that that solution's going in and the customer isn't going to think, "Oh, it's Cisco that's the problem," if something goes wrong. That brand integrity is maintained.

The most valuable features are the dashboard, visibility, and reporting capabilities. Our customers can see how much Umbrella is protecting their organization. If you don't know what you've got, you can't protect it. With Umbrella, we get visibility and see the protection that it's providing. We can get PDF reports on a weekly basis of any malware activities and any denial of service or command-and-control-type activities.

Cisco Umbrella is very simple to administer, and that's what our customers really like. They don't want the complexity that's normally associated with security.

Cisco Umbrella definitely reduced our clients' mean time to repair. It does what it says it does, and it does it effectively.

Cisco Talos is the secret sauce. It's the threat intelligence that feeds security solutions such as Cisco Umbrella. You can have a security solution, but if it is not backed by an organization like Talos and has not been fed, watered, and looked after, then it will be pointless.

Our clients have been able to consolidate applications and tools related to DLP, CASB, web proxy, and SSL decryption. These are natively built into the Umbrella platform. We're now on the cusp of looking at SASE and, maybe, migrating away from the traditional on-premises firewalls and merging more toward the cloud. In the future, as we start the transition to zero-trust network architecture as well as SASE it will certainly help our customers consolidate a lot of their existing tools.

The firewall capabilities could be better. Cisco is starting to introduce some layer 7 capabilities now, but there's still some room to grow. They should continue with the development of Umbrella so that it is a full-blown cloud-managed firewall solution.

We've been using and selling Cisco solutions since Cisco acquired OpenDNS.

We like to use technology first ourselves. It makes it easier to talk about it and sell it. Also, it's a good reference for customers to see that we actually use it internally. Umbrella has been a fantastic solution for us and our customers.

The initial deployment could take a couple of days depending on the deployment model. Cisco Umbrella could be up and running quickly. You can instantly point your DNS servers to use Umbrella's DNS as its recursive DNS, and immediately, you'll be protected by Umbrella. You can take it further and get more granular controls by using AD integration, which can take a little bit longer. From an engineering point of view, it's a very light touch, which is unusual for security solutions. They're normally pretty complex. Cisco Umbrella, however, is a simple but powerful solution.

Given that it's a cloud-delivered platform, Cisco takes care of the upgrades. It requires a pretty light touch in terms of maintenance.

I think Cisco Umbrella is priced well. We have a mix of customers with different verticals such as education. We have clients in the commercial space as well. Umbrella is at a good price point for all of our customers.

We choose to sell Cisco because it has done phenomenally well in terms of some of its acquisitions and the way they've integrated Umbrella. It could be a flagship security solution for Cisco. It's been a game-changer for us and has opened up new avenues and new revenue streams as well.

As a Cisco Secure reseller, we're able to articulate the benefits of the solution to the customer because we are a technically-led organization. We've got a lot of in-house skills within the cybersecurity space. We don't sell for the sake of selling. We want to provide the right solution, and Umbrella is absolutely the right solution as far as we're concerned. It is the leader, especially from a DNS level protection.

Cisco Umbrella is a phenomenal security solution. It's got the right balance between complexity and ease of use. Therefore, I would rate it at nine out of ten.