

Cisco Secure Firewall and Zscaler Internet Access are competing security solutions in the security solutions market. Based on feature comparisons, Zscaler's advanced scalability and cloud-native architecture provide an edge for cloud-first strategies.
Features: Cisco Secure Firewall combines robust network security with advanced threat detection and customizability, leveraging a graphical user interface for greater accessibility. It offers a reliable firewall with solid intrusion prevention capabilities and powerful management tools for multiple devices. Zscaler Internet Access excels with its cloud-native capabilities, providing real-time threat intelligence, secure access across devices, and dynamic scaling. Its cloud-based architecture supports seamless integration and advanced threat protection, allowing for a flexible and scalable experience.
Room for Improvement: Cisco Secure Firewall can improve by simplifying its complex on-premises setup and addressing higher long-term costs associated with hardware maintenance. There's a need for enhanced scalability features and more competitive pricing. Zscaler Internet Access could further refine its initial investment cost structure to remain competitive and enhance detailed policy simulation capabilities for streamlined configurations.
Ease of Deployment and Customer Service: Cisco Secure Firewall entails a complex on-premises setup that can be resource-intensive, despite offering extensive support to manage the deployment intricacies. Zscaler Internet Access offers a streamlined cloud deployment model requiring minimal initial setup, ensuring agile scalability. Both provide reliable customer service, though Zscaler's deployment efficiency facilitates rapid operational commencement.
Pricing and ROI: Cisco Secure Firewall presents a more cost-effective initial setup but may incur higher long-term costs due to hardware maintenance, offering substantial ROI primarily in controlled environments. Zscaler Internet Access has a higher initial investment for its cloud model, delivering sustainable ROI by reducing infrastructure costs and enhancing scalability. Its pricing model reflects the value of its advanced features, providing long-term advantages for enterprises prioritizing digital transformation.
There is always a return on investment because you find you invest heavily, but your environment is secure and then you are at rest; you do not need to panic.
The biggest return on investment when using Cisco Secure Firewall is that there's no waste in any infrastructure cost and licensing costs for us.
From my point of view, the biggest return on investment when using Cisco Secure Firewall is the single pane of glass, which is a huge plus for us.
Reduced risk from web-based threats.
The managed service aspect of Zscaler Internet Access has allowed for reduced staffing costs, resulting in a saving of approximately 20-25% compared to prior expenses.
I have to provide many logs, yet problems remain unresolved, often requiring workarounds rather than solutions.
I have been working with them on firewalls, wireless, switching, and routing, and the support is the best.
They have expertise and provide solutions for the most difficult problems.
I would rate customer support at nine out of ten as they have provided responsive and knowledgeable assistance.
The technical support for Zscaler Internet Access is rated around seven out of ten due to some response time issues and the engagement model.
Zscaler Internet Access customer service is really very good.
When something happens in the device, the failover happens very quickly without any interruption.
Cisco Secure Cloud now allows us to potentially take the management functions of Cisco Secure Firewall, move it into the cloud, and integrate it with other Cisco security products, managing everything from one single pane.
I rate the scalability as a number 10.
With the pricing structure that they currently have, it is only for big customers.
I find Zscaler Internet Access to be highly scalable, which was one of the reasons for choosing it.
Zscaler Internet Access is scalable and has points of presence across the globe to ensure low latency and reliable connections.
We have often encountered split-brain scenarios during failover processes and code upgrades, which have been persistent problems for us.
We work with a cluster with high availability, so if something goes wrong, we have it functioning.
Cisco Secure Firewall offers exceptional performance and stability.
Zscaler Internet Access is stable and capable of building resilient architectures.
I have not faced any major outages or downtime with Zscaler Internet Access; it is stable in our environment.
Zscaler Internet Access is very stable, and I would rate its stability as nine out of ten.
My ongoing complaint for the last six years has been the lack of CLI functionality, which hinders my ability to work on the firewall, alongside concerns regarding deployment time.
The GUI is useless for me and frustrates me to a very high degree, which led me to switch to the CLI for configuration.
Firewall as a Service can scale to a very large extent because it is a cloud-based offering that can scale up to a very large number, which is not a problem.
The response time and engagement model for technical support could be improved to handle complex outages more efficiently.
In future updates, I would like to see some of the features bundled into the existing product set, perhaps more AI features and a refreshed interface.
Zscaler Internet Access has introduced AI control for tools such as ChatGPT, providing options to restrict to text-only input without file or image uploads through CASB restriction controls.
It's good to have them, however, it costs us a lot.
Basically, the license for the VPNs is for all the interfaces, and that is the thing that is really expensive compared with Palo Alto.
It's considered a premium, but people pay that price for Cisco.
Zscaler Internet Access is recognized as an expensive solution.
Zscaler Internet Access is less expensive than competitors like Palo Alto, offering a premium service justified by security enhancements and cost-effective scalability.
Of course, it is an expensive product.
What stands out positively about Cisco is their training and support, which has effectively prepared engineers to work with their products.
This is very important to my organization, as we work extensively with security because we are a bank, so we can keep the data safe.
Cisco Secure Firewall allows me to safeguard Layer 7 or Layer 3 and manage the security rules with the business needs of my organization.
It prevents numerous web attacks through its AI/ML incorporated capability which identifies malware, threats, and viruses.
Zscaler Internet Access has positively impacted my organization by reducing the dependency on on-premises hardware and improving security posture, enabling faster user onboarding, and providing better performance for remote users.
It automatically blocks access to known malicious websites and phishing or risky websites before users reach them, thereby reducing the number of security incidents we have to investigate.
| Product | Mindshare (%) |
|---|---|
| Cisco Secure Firewall | 7.6% |
| Fortinet FortiGate | 14.5% |
| OPNsense | 8.2% |
| Other | 69.7% |
| Product | Mindshare (%) |
|---|---|
| Zscaler Internet Access | 9.8% |
| Cisco Umbrella | 9.5% |
| Prisma Access by Palo Alto Networks | 7.5% |
| Other | 73.2% |


| Company Size | Count |
|---|---|
| Small Business | 192 |
| Midsize Enterprise | 130 |
| Large Enterprise | 236 |
| Company Size | Count |
|---|---|
| Small Business | 17 |
| Midsize Enterprise | 9 |
| Large Enterprise | 39 |
Cisco Secure Firewall provides comprehensive network security with advanced features such as application visibility, URL filtering, and malware protection. It combines a user-friendly interface with robust VPN capabilities, making it a reliable choice for varying network environments and industry applications.
Cisco Secure Firewall offers exceptional protection with its integration into Cisco's broader ecosystem, ensuring enhanced threat detection and policy unification. Despite its complexity in command-line interfaces and management, Cisco Secure Firewall remains a potent tool for safeguarding data. It is widely adopted for edge security, VPN services, perimeter defense, and traffic segmentation, especially in hybrid settings. Essential sectors like banking and telecom benefit from its stable connectivity and centralized security management. Though there are challenges with costs and support for third-party APIs, the firewall's scalability and high availability provide comprehensive support for protecting network assets.
What are the key features of Cisco Secure Firewall?Cisco Secure Firewall is widely implemented across sectors like banking, education, ISPs, and telecoms. It fortifies data centers and network edge security, delivering strong protection for client access, hybrid environments, and intrusion prevention. In these industries, firewall solutions ensure secure connectivity and manage RTU traffic effectively, leveraging centralized management and integration with Cisco's security tools.
Zscaler Internet Access provides internet security through cloud-native architecture, ensuring threat protection and traffic management without relying on traditional VPNs and firewalls.
It enhances security by offering features such as CASB and DLP. With its cloud-native proxy architecture, it facilitates seamless security with reduced latency and high availability. Organizations value the scalability and centralized policy management, integrating seamlessly with existing systems for remote work. It ensures secure traffic management by delivering advanced threat protection and support for applications through SSL inspection and sandboxing. Enhanced measures for DLP, better integration with tools like MFA, and optimized reporting are areas for growth.
What are the key features?Many industries leverage Zscaler Internet Access for securing internet traffic and safeguarding against threats like malware and DDoS attacks. It is integral as a secure web gateway to fulfill data loss prevention, bandwidth control, and filtering needs, allowing remote users robust access and protection globally. Companies employ it alongside existing tools for proper security and policy enforcement.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.