"There is a huge return compared to if we didn't have a gateway appliance, as far as blocking malicious emails."
"It is doing its work. It is doing what it was actually designed to do. It has ensured we don't have business email compromises, and it has also ensured that our brand Galaxy is unique all year round."
"The malicious URL scanning, as well as the anti-malware features, have been really useful for us in our environment."
"Anti-Spam and Advanced Malware Protection are the most valuable features... and we also have the option to block Zero-day attacks."
"Cisco Secure Email Cloud Gateway has allowed our users to be able to concentrate on the emails that they do receive. Previously, our users had to deal with nine million additional emails across the organization, which is nearly 1,000 emails per user to have to deal with a month. That's a massive amount for our staff to deal with and probably several hours of their time. We have a lot of clinical staff, being a hospital. We want to make our staff as productive as possible. By removing a lot of that spam and phishing type emails, this allows them to do their job."
"I love the Advanced Malware Protection feature. It works very well... The appliance has more security such as SDF, DKIM, DMARC, and encryption."
"It has an intuitive, clear graphical interface where you can deploy your policies and understand the overall flow. There are a lot of things that you cannot handle on the graphic interface, like message filters. For this, you need to go to a lower level where you have more power, like command line interface. So, this solution has the best of both worlds. There are not a lot of bells and whistles. It is more practical with access to most features that you can configure."
"The solution is very configurable. It has enabled us to configure some specific filters to stop emails that general configurations didn't stop. It's a powerful solution. It can analyze a lot of emails simultaneously, with no problems of capacity or system load."
"Using Forcepoint, we have created policies and rules for any suspicious mail. It is blocked and only released by an admin's approval."
"It is good at data leakage prevention (DLP). You can create the data exfiltration profile while sending the emails, which is one of the key advantages of the solution."
"It's easier to deploy than other options."
"The email and the web filter aspects of the solution are the most valuable features."
"This is a reasonably stable solution."
"Unlike other competitors, it doesn't cause any performance issues."
"I like how versatile the options are. For example, we can set it where we are able to access and browse Facebook but we are denied the ability to post photos. There is also that ability integrate with Office 365 - SharePoint app."
"The most valuable features of Forcepoint Email Security are the integration with other solutions. It provides a more secure infrastructure and views for the customers from the DLP. You can work on URLs, files, and advanced inspections that will protect the customers."
"I would like more functionality and how to use it for Level 2 type staff. The biggest issue is it needs to be easier to use and navigate."
"The interface is dated. It has looked pretty much the same for 15 years or so. It would be helpful to be able to do everything from one spot. The centralized quarantine and reporting are completely separate from policy administration."
"We have Microsoft and we have the E5 licenses, they have more EDR responses on certain emails. That's something that Cisco ESA on the cloud doesn't have. They don't do anything about MITRE attacks. They only detect if there is a malicious email or a threat and they remove it."
"The configuration UI should be made more intuitive. Currently, it takes a while to understand how to do the basic configurations."
"We have been struggling in the last month with Cisco encryption and with the S/MIME encryption. I don't know if it is an issue on our side or if these features of the solution are not working very well."
"I use the search all the time. Sometimes, it is hard to search for things and things are hard to find. People come to me all the time, saying, "This email didn't get through." Then, I go searching and don't find it on the first search. You have to think about alternative searches. I don't know if there is an easier way that they could help to find things. I don't know how they could simplify it, because now everybody else is using the cloud and everything is coming from Office 365, or whatever. It is just not the same environment from years ago where everybody had their own server and you could search easier."
"They can do it better with web links, with the URLs. They have a technology called Outbreak but it doesn't work as well as we would like."
"The area of license renewal should be improved. We normally renew our license every year. There is a feature called smart licensing, and I switched from the legacy mode to the smart licensing mode because of what I thought smart licensing does. I thought it would make licensing renewal seamless and very swift, but ever since I've switched to smart licensing, each time I want to renew my license, it is a whole lot of headache. The process is not smooth, and I had to keep calling Cisco TAC to see how the issue can be resolved. At one point, I wanted to revert back to the legacy mode, but I can't revert. Once you switch from the legacy mode to the smart licensing mode, you can't revert. They should improve on the visibility of the smart licensing mode so that it can indeed be smart and easier to use for the license renewal every year. That is one challenge."
"It's quite difficult to learn this solution, it's not an entry level product. If you are a skilled user you will think it's a very useful tool, but if you are not a skilled user, you'll think it is very difficult to learn."
"The pricing could always be just a little bit better."
"Customer support could be better."
"I would like for deployment to be simplified."
"Technical support is lacking. It could be a lot better."
"This solution could be improved by providing further functionality to reduce or to block ransom attacks, cross-site scripting and man-in-the-middle attacks."
"Forcepoint Email Security is stable, but it could be improved."
"Forcepoint is the best for DLP, but it is not better than other solutions in terms of phishing emails or threat protections on the email. It has less visibility over there. They might need to enhance these components because other solutions, such as Cisco Email Security and IronPort, have more advanced features. Forcepoint should focus more on threats and spam. They have a small database for spam. They must increase their solution's capability from this perspective."
Cisco Secure Email is ranked 2nd in Email Security with 10 reviews while Forcepoint Email Security is ranked 14th in Email Security with 8 reviews. Cisco Secure Email is rated 8.8, while Forcepoint Email Security is rated 7.8. The top reviewer of Cisco Secure Email writes "The amount of traffic that it stops is massive". On the other hand, the top reviewer of Forcepoint Email Security writes "Provides visibility into what's going on and reduces spam, but there should be more focus on threats, spam, and support". Cisco Secure Email is most compared with FireEye Email Security, Proofpoint Email Protection, Fortinet FortiMail, Cisco Secure Email Cloud Mailbox and Trend Micro Email Security, whereas Forcepoint Email Security is most compared with Microsoft Exchange Online Protection, Fortinet FortiMail, Proofpoint Email Protection, Microsoft Defender for Office 365 and Symantec Messaging Gateway. See our Cisco Secure Email vs. Forcepoint Email Security report.
See our list of best Email Security vendors.
We monitor all Email Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Tunde is absolutely right and is what I was trying to say in my first answer, Tunde did a better job though. AI based tools without a gateway can be installed in minutes, will pick up more malicious attachments, more content related bad stuff, provide better visibility and introduce controls for you staff to further improve the effectiveness. Typically these tools learn over time and therefore get better as you use them.
Don't forget to consider 3rd party risk by looking at DMARC, SPF & DKIM as well as domain impersonation
Between the two? I prefer Cisco over Forcepoint. If budget is not a problem a hybrid Cisco Forcepoint multilayer. Or a hybrid Cloud + on-premises.
Bur someone asked about three options...? Which was the third? Why was intentionally avoided Proofpoint and compared "Sharks" with "Piranhas" or Barracudas?
Hi Kamal,
Firstly, you would have to recognize that there is/are no fast and hard rules to choosing a final preferred product, what works well for company A may not work extensively well for company B. Reason being that: the efficiency of the Security capabilities provided by one tool can be amplified by another tool, particularly for secure email gateway. Hence, if you have an XDR that you intend to leverage with your final product of choice, you will notice that you could experience a greater ROI than having a bare SEG tool.
However, I will advise based on a few realities of today's market in Q3 2022.
1. From my perspective, It will make sense if you take advantage of the built-in protection capabilities from your cloud email provider (I assume you are using O365 or Google mail) rather than investing in a secure email gateway (SEG).
2. Most forward-thinking organizations are shifting away from traditional SEG tools and moving towards ICES, in my opinion, you should ideally be looking for an email security solutions that use ML / AI-based anti-phishing technology for BEC protection to analyze conversation history to detect anomalies, as well as computer vision to analyze suspect links within emails.
3. Should you still choose to pursue SEG asides from an ICES, or you choose to go for an ICES, bear in mind that nothing beats doing a POC as it clearly should consider the security apparatus/investments you have already made in times past.
4. it will be best that you look for solutions that integrate directly into your cloud email via an API, rather than as a gateway, this will ease your evaluation and eventual deployment, besides it improving your detection accuracy, while still taking advantage of the integration of the bulk of phishing protection with the core platform
5. Without having an insight into your current email provider (cloud/on-prem) or other tools in your organization or budget, it will be difficult to give you a bit of precise advice.
Either way, all the best with your selection process, and wishing you a cyber-safe organization.
I only can recommend Cisco because it´s the only one with which I'd worked enough. I think it is powerful enough and has a lot of possibilities. In addition, to a great support team.
Top brands don't mean best or most cost-effective. My advice is to look a bit further before you make a decision.
Evidence suggests that most top brands are pretty good at detecting and blocking malicious attachments, best case letting through 1%, but can be worse than 50% when it comes to detecting malicious links in the text of the email.
There are numerous less well-known vendors with lower-cost AI-based solutions that have a far better success rate, also providing employees the ability to report on suspect emails which auto-removes them from other staff members' inboxes until they have been properly assessed. Some will provide a visual risk score to the recipient to give them advance warning to be more cautious.
Combining this kind of capability with staff awareness products keeps your vendor list lower and further improves efficiency.
For around £2 GBP per user per month (less than $3) we provide different vendors depending upon the customer's environment but provided as a managed service. This allows our customers to outsource some of the monitoring and day-to-day management, spread the cost on a monthly basis, and flex how many licences they need on a monthly basis too i.e. if you drop 20 users don't pay for them but if you increase by 20 you don't need complex co-termination and pro rata discussions.