Cisco Umbrella offers flexible, cloud-delivered security according to users’ requirements Cisco Umbrella includes secure web gateway, firewall, and cloud access security broker (CASB) functionality all delivered from a single cloud security service. Cisco Umbrella’s protection is extended to devices, remote users, and distributed locations anywhere. As company employees work from many locations and devices, Cisco Umbrella is the easiest way to effectively protect users everywhere in minutes.
Cisco Umbrella uses machine learning to search for, identify, and even predict malicious domains. By learning from internet activity patterns, this DNS-layer security solution can automatically identify attacker infrastructure being staged for the next threat. These domains are then proactively blocked, protecting networks from potential compromise. Cisco Umbrella analyzes terabytes of data in real time across all markets, geographies, and protocols.
Cisco Umbrella works with leading IT companies to integrate its security enforcement and intelligence. Built with a bidirectional API, Cisco Umbrella makes it easy to extend protection from on-premises security appliances to cloud controlled devices and sites.
Cisco Umbrella is suitable for small businesses without dedicated security professionals, as well as for multinational enterprises with complex environments.
Why use Cisco Umbrella?
-
Simplify security management: Cisco Umbrella is the fastest and easiest way to protect all users within minutes and reduces the number of infections and alerts sent from other security products by stopping threats at the earliest point. With no hardware to install and no software to manually update, ongoing management is simple
-
Reliable reporting: Cisco Umbrella reports show activity for each device or network in the system. Users gain a more complete picture of the security risks facing their organization and can take action to remedy them.
-
Manage and control cloud apps: Umbrella provides visibility into sanctioned and unsanctioned cloud services in use across the enterprise. Users can uncover new services being used, see who is using them, identify potential risk, and block specific applications easily.
Reviews from Real Users
Cisco Umbrella stands out among its competitors for a number of reasons. Some of the major ones are its DNS-based protection, ability to protect users no matter where they are located, stability, and high performance.
Daniel B., a network specialist at Syswind Kft, writes, “We primarily use the solution as cloud security for our branches. It protects us from direct internet outbreaks. It makes for good flexibility. The solution is very easy to manage. We found the initial setup, for example, to be quite simple. Efficient protection on the DNS level and even higher. The sandboxing feature analyses and handles the complicated security risks.”
Victor M., SOC & Security Services Director at BEST, notes, “It provides security for the remote workers and it helps to improve enterprise security in a very easy way. We mainly enjoy web software protection capabilities. It prevents the end-users from getting into bad sites or sites that potentially could have malware or could be phishing. It helps end-users avoid the wrong sites. The solution works very smoothly. The user interface is good.”
The Bitglass OmniTM multi-protocol proxy architecture ensures that all data, whether accessed from a managed or unmanaged device, is subject to the visibility and control required by the organization, while simultaneously preserving employee privacy across personal applications. Omni Agentless, Bitglass’ reverse proxy capability, leverages patent pending AJAX-VM technology to ensure application resilience. Competitive CASBs either rely entirely on cumbersome agent-based forward proxy solutions, or suffer from breakages and downtime as cloud providers update and change their applications.
Netskope CASB is a cloud access security broker tool that allows you to adopt cloud applications and services without sacrificing security. The solution makes it possible to manage the movement of sensitive data between cloud app instances and in the context of app risk and user risk. With Netskope’s industry-leading cloud security solution, you can also prevent sensitive data from being exfiltrated from your environment by risky insiders or malicious cybercriminals who have breached your perimeter.
Netskope CASB Features
Netskope CASB has many valuable key features. Some of the most useful ones include:
-
Cloud app risk scoring: With this feature you can automatically audit your traffic to discover your overall risk profile.
-
Advanced data loss protection: The solution’s data loss protection capabilities provide contextual awareness of content being used in the cloud and include machine learning enhancements to simplify, expedite, and accurately scan and classify data.
-
Granular visibility and control: The Netskope CASB solution gives you inline visibility for thousands of apps (managed and unmanaged) in use, including users, file names, activity, and other contextual information.
-
Real-time enforcement: Netskope CASB offers real-time enforcement of security policies to prevent data loss and stop threats.
-
Streamlined operations: Because of its streamlined operations, you can identify, mitigate, and remediate insider threats, compromised accounts, and privileged user threats across web and cloud applications within a single centralized administrative console.
-
Global scale and performance: The solution runs on NewEdge, a carrier-class global network, to provide maximum performance and efficacy worldwide.
Netskope CASB Benefits
There are many benefits to implementing Netskope CASB. Some of the biggest advantages the solution offers include:
-
Granular control of personal devices: With Netskope CASB, you can enforce granular control of unmanaged devices that have single-sign-on (SSO) access to managed cloud services, like Box and Microsoft 365.
-
Data protection: The solution has a single pane of glass and a policy interface that is easy to use to create security policies across cloud services, apps, and digital assets.
-
Find cloud services in use and assess risk: Netskope CASB can help you discover 50,000+ cloud apps and also provides risk-ratings for cloud apps so you can devise appropriate security policies.
-
Data exfiltration prevention: By using this solution, you can prevent users on corporate cloud services who download sensitive data from uploading that data to unmanaged or personal cloud apps.
-
Protection against cloud threats: Netskope CASB enables you to stop malware and advanced threats from infected users spreading through your organization. The solution directly blocks malware, whether it’s delivered from collaboration tools or downloaded from a cloud storage service to a sync client.
Reviews from Real Users
Netskope CASB is a solution that stands out when compared to many of its competitors. Some of its major advantages are that it offers great reporting, has a good tracking mechanism, and has a solid Cloud Control feature.
Prerna S., Senior Information Security Analyst II at Workato, says, “[Netskope] CASB has a lot of good features; their reporting and tracking mechanism is amazing.”
PeerSpot reviewer Dima Z., Director at Irangers International Inc., mentions, “The most useful feature of this solution is Cloud Control, which allows me to schedule cloud uploads.”
Syed H., Lead Cloud Security Practice at Vincacyber, states, "I have found the most useful features to be the Web Secure Gateway, CASB, infrastructural service scanning, and Zero Trust."
Hi Tim, I'm currently a student and doing research about cyber security market, may I know how do you narrow your list down to these 5 vendors?
Hi, I am working on both Skyhigh and Netskope. The both has their own unique features. List down your requirement and do the POC with the said products.
Skyhigh is efficiently handling both shadow IT and sanctioned IT applications. DLP, threat protection and access controls are the key features of skyhigh.
Netskope is good in access control.
Regards / Ramesh M
Hello,
The CASB space is booming right now. Everyone is leveraging the cloud for various reasons and having a CASB in place is paramount to security. What CASB to get is really a matter of your business requirements. What exactly are you trying to do? Do you want to get a handle on all the Shadow IT that your company is currently exposed to and set up a plan for such activity? Do you want to apply DLP policies to safeguard your data? Perhaps GDPR and other regulatory issues are forcing you to get into compliance? There are many reasons for adopting a CASB solution, the best place to start is with an Audit of your current traffic and finding out what Shadow IT is present, any related Shadow Data that needs to be monitored, and come up with a plan on how to handle SaaS apps in the cloud. The best CASB vendors out there will offer the audit service as part of the CASB solution. From there, you can design policy and stipulate what cloud apps to sanction, which ones to block, and how to coach users during any suspect activity. The end goal is to keep your users productive and happy while securing your data in cloud apps.
For an unbiased answer, I would direct you to Gartner and Forrester for reports on CASB. They will detail what the landscape looks like, who the vendors are, what the pillars of a good CASB solution should entail, as well as some features and functionality that are specific to the various CASB vendors. Gartner has a CASB overview document that is very handy and they are currently working on a magic quadrant for the existing vendors. Forrester has released a “ForresterWaveCASB” document that dives into the vendors and who they think are the best based on market presence, features, etc.
Of course, Symantec offers a CASB solution that should be added to your list of vendors for review. Do not look at a CASB vendor without looking at Symantec. Currently, Forrester ranks Symantec as the number 1 CASB vendor in the marketplace. Symantec offers the following:
· Cloud app discovery and analysis
· Data governance and protection
· Threat detection and incident response
· A CASB that integrates with Symantec DLP (the industry’s leading DLP solution)
· Integration with endpoint
· Integration with Secure Web Gateway (Blue Coat proxies are the best in the industry)
· Authentication with Symantec VIP
· Field level tokenization and encryption
· File-level encryption
Consider these questions when looking for a CASB vendor:
· What do yo udo when you need to apply consistent DLP policies to data in the cloud and on premise?
· What are your options for encrypting confidential data
· Can you safeguard against confidential data transfer to unsanctioned cloud apps or personal cloud accounts?
· Can the CASB automatically identify and respond when a user account has been compromised?
· Does the CASB automatically classify confidential data or do you have to build a system from scratch?
Netskope is really good. MCAS meets the requirements but lacking features, it is cheaper though. Depends on your requirements, netskope has an optional light weight desktop agent which makes monitoring easy.
Do you have any specific requirements?
we use ciphercloud. basically, all of them handles: office, google, & salesforce. now with the GDPR happening in our european offices they're mainly SAP & ciphercloud is the only one approved by SAP.
At the risk of giving a solution without knowing the situation, some very broadbrush advice would be to look at these vendors in this priority order. That said, given the right environment, any of them could be the best fit. CASB is not a market that is matured with standard architectures and features, so it is advisable to consider the specific requirements before making a decision. Another way to say this is there is not one that is universally superior in most situation.
1. Netskope
2. Skyhigh
3. CipherCloud
4. Bitglass
5. Microsoft Cloud App Security
The ones higher on this list tend to have a greater number of use cases where they do a good job. I don’t feel I can publish pros and cons in this forum.
We have used Skyhigh and its pretty good to handle cloud sanctioned IT applications like Office365, Google APPs and salesforce etc.
Easy to deploy, better application, device and user visibility.
No help on any of these, but thanks for the question. For a holistic approach (because anything less is insufficient), I've begun using Sophos appliances, services, and endpoint protection which all speak with each other and really fortify a network on all fronts. Services take up resources, so be sure to invest in an appliance powerful enough to serve all your endpoints effectively. Hope this helps.