Fortinet FortiCASB vs Microsoft Defender for Cloud Apps comparison

Fortinet and Microsoft are both solutions in the Cloud Access Security Brokers (CASB) category. Fortinet is ranked #18 with an average rating of 7.0, while Microsoft is ranked #4 with an average rating of 8.5. Fortinet holds a 0.5% mindshare in CASB, compared to Microsoft’s 7.6% mindshare. Additionally, 100% of Fortinet users are willing to recommend the solution, compared to 100% of Microsoft users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Fortinet FortiCASB and Microsoft Defender for Cloud Apps based on real PeerSpot user reviews.

Find out what your peers are saying about Palo Alto Networks, Cisco, Netskope and others in Cloud Access Security Brokers (CASB).

To learn more, read our detailed Cloud Access Security Brokers (CASB) Report (Updated: December 2025).

Buyer's Guide

Cloud Access Security Brokers (CASB)

December 2025

Download the complete report

Helped 879,310 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

iboss

Mindshare comparison

As of December 2025, in the Cloud Access Security Brokers (CASB) category, the mindshare of iboss is 2.4%, up from 1.6% compared to the previous year. The mindshare of Fortinet FortiCASB is 0.5%, up from 0.4% compared to the previous year. The mindshare of Microsoft Defender for Cloud Apps is 7.6%, down from 10.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Cloud Access Security Brokers (CASB) Market Share Distribution
Product	Market Share (%)
Microsoft Defender for Cloud Apps	7.6%
iboss	2.4%
Fortinet FortiCASB	0.5%
Other	89.5%

Cloud Access Security Brokers (CASB)

Featured Reviews

reviewer2701851

Managing Director

Enhances web security with a single pane of glass and flexible deployment

I don't see any need for improvement; one of the really good things about iboss as a company is that they listen to customer feedback. I have suggested enhancements, and they are responsive, making changes for the better, and they do a lot of testing. To improve iboss, although we haven't used it, we considered the VPN solution that comes with the highest tier licensing, which includes DLP and various other add-ons. We prefer using another product which automatically logs you back onto your network when turning on your PC. With iboss, the connection is manual, which doesn't meet our needs. Additionally, sizing can be tricky because, although the initial recommendations may seem adequate, actual usage may require more gateways than anticipated.

Read full review

Vijayakumar Yohannan

Delivery Head - NOC Operations at a tech vendor with 10,001+ employees

Seamlessly customize security features but need improved deployment speed

I find Fortinet FortiCASB easily customizable. It allows me to leverage features that cover almost eighty percent of use cases required by my clients. The compliance management feature supports GDPR and HIPAA compliance, effectively meeting those use cases. The hybrid model of Fortinet offers seamless deployment on cloud or hybrid best suited for customers, making it adaptable in various scenarios.

Read full review

Frank Van Der Spek

Security and Continuity Manager at Rolinco NV

Deployment has been seamless with insightful data categorization and enhanced control

The features of Microsoft Defender for Cloud Apps that I have found most valuable include the overall portal view, with bubble graphs which give us insight into what goes where in the categorization, nowadays with Generative AI but all kinds of categorization, collaboration, etc. That central view of the portal is very useful for us. The impact of Microsoft Defender for Cloud Apps on our organization's ability to assess and manage app related risks has been significant because we have more visibility. Therefore, we can add more control, and we have already done so. This was not possible in the old solution, in the old CASB solution with Netskope. We now can see on the spot, and we do that almost weekly, what the end users are utilizing, which cloud providers or cloud apps they're using. The visibility into OAuth apps provided by Microsoft Defender for Cloud Apps is very good. The visibility into risk and risk management of our organization's Generative AI apps is very nice, as you can choose the category Generative AI and then see exactly what traffic has been going to and from Generative AI in the cloud. This makes us very insightful on what is used within the company. We have some policies on blocking specific Generative AI, and we use within our company one particular AI part, which is CoPilot of Microsoft. In this way, we can see what the end users are using other than CoPilot, and that makes us more in control. The effectiveness of the integration of Microsoft Defender for Cloud Apps with Defender XDR and defending against SaaS attacks is very intuitive. It works immediately if we create a new policy or in Purview or in Microsoft Defender for Cloud Apps, or when we make an app unsanctioned by blocking it, then it is almost immediately, or at least within a couple of hours, effective on all the endpoints where the EDR is running. This gives us much better control over things than before.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"From a use-case scenario, what I like the most is the plug-in. I like the fact that we can do the filtering of these devices offsite independent of the network they are connected to, and we do not have to have traffic coming back inside our network."

"The security aspect of the solution, particularly the malware behind it, is excellent. That's something that really helped us out. It's not just a simple proxy that just blocks the insights of potential threats that come on behind it. They do malware detection and that helps us a lot."

"We chose iboss for both zero trust and proxy (SWG) because their SWG was superior."

"iboss is among the few products providing inline filtering where no application is needed on the device. It operates on the network side and is not device-based. This feature was one of the main reasons why we stayed with them for so long."

"The iboss system is highly reliable. The false positive rates are small compared to some other systems we've experienced through other partner agencies who use competing solutions."

"Technical support is pretty sharp and very responsive."

"Valuable features: Within the filter: Controls (Web categories, applications, and Allow/Block list) and Network (local Subnets). Within the reporter: Logs (Event Log) and Reports."

"Granular setup, which was able to set different levels of filters using the OUs in the AD."

More iboss pros

"I find Fortinet FortiCASB easily customizable."

"Defender for Cloud Apps has given us good visibility regarding what we've allowed into our environment until now."

"The most valuable feature is the alerting system."

"Threat detection is its key feature, and that's why we use this tool. It gives an alert if a PC is attacked or there is any kind of anomaly, such as there is a spike in sending emails or we see an unauthorized website being accessed. So, it keeps us on our toes. We get to know that there is something wrong, and we can isolate the user and find any issues with it. So, threat detection is very robust in this tool."

"The most effective features for data protection are data loss prevention (DLP) and data classification."

"The raw logs that come directly from Microsoft Defender for Cloud Apps contain all the data I need, and the ability to track activities happening on cloud applications and the alerts provided is an interesting aspect."

"It does a great job of monitoring and maintaining a security baseline. For us, that is a key element. The notifications are pretty good."

"The most valuable feature is its policy implementation."

"If your business requirements are relatively simple, it can get the job done."

More Microsoft Defender for Cloud Apps pros

Cons

"The solution could be stronger on the integration side and offer more cloud applications like G Suite or Oracle."

"Sometimes the agent stops working in iboss, and we have to reinstall the agent."

"One thing I would like to see differently with their Zero Trust platform is that some of the AI aspects related to high-risk activities have more false positives."

"Sometimes when you call in support, you get someone who is just following a sheet. It feels like a runaround. You feel that you are running into that support wall."

"Sometimes, obviously, there are bugs."

"Our biggest problem with their service was it did not recognize the device and filtering did not always work correctly."

"SSL decryption: We had issues with learners using apps instead of using web browsers. This type of encryption is tough for any appliance in a BYOD environment."

"Iboss is growing so fast that it is often hard for them to keep up with the challenges."

More iboss cons

"The turnaround time to deploy Fortinet FortiCASB could be improved. The learning curve for deploying, configuring use cases, and rules can be better."

"The turnaround time to deploy Fortinet FortiCASB could be improved."

"The product is very good so far, however, it would be better if it could include more up-to-date threat protection."

"Sometimes the support is actually lacking."

"There are challenges with detection and there are challenges with false-positive rates."

"We would like to get more information from the endpoint. I don't get enough detailed information right now on why something failed. There is not enough visibility."

"In the future, I would like to see more plug-and-play capabilities that use AI to tell you what needs to be done. It would be helpful if it scanned our devices and made security suggestions, on a configuration basis."

"I would like more customization of notifications. Currently, you either get everything or you get limited information. I would like to have something in between where we can customize the data that is included in notifications."

"It takes some time to scan and apply the policies when there is some sensitive information. After it applies the policies, it works, but there is a delay. This is something for which we are working with Microsoft."

"Generally, the pricing can always be improved along with the management system."

More Microsoft Defender for Cloud Apps cons

Pricing and Cost Advice

"It is expensive compared to one of its competitors."

"It is probably in line with other solutions, but I do not deal with the financial side."

"We had the cost of purchasing a new appliance along with the implementation and licensing costs. However, the following year, the cost of just licensing was similar to what was paid the previous year for a new appliance along with the implementation and licensing costs."

"The overall pricing for iboss is very competitive and transparent."

"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."

"We have not priced the solution recently, but they were competitive with other vendors in the past."

Information not available

"The cost could be improved when you need to pay for anything. For example, refreshing files takes time to load, though it may be my Internet. To improve the refresh time, Microsoft says that we need to pay for a Premium license, and I don't like paying for things that help make a solution better."

"Our clients normally use the Microsoft E1 licensing, which is renewed yearly."

"We utilize the Microsoft E5 licensing, which encompasses the entire Microsoft suite; however, it is costly."

"The E5 license offers everything bundled. People are moving to Microsoft because you buy one license and it gives you everything."

"Microsoft offers bundle discounts and a pay-as-you-go option."

"The pricing is fair."

"The pricing is a little bit high but right now, we are okay with it because of the compatibility with Office 365, Teams, and Azure AD."

"The pricing is in the middle. It isn't too cheap or expensive compared to other antivirus or security products. It is priced according to industry standards."

More Microsoft Defender for Cloud Apps pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Access Security Brokers (CASB) solutions are best for your needs.

See recommendations

879,310 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

11%

Computer Software Company

10%

Manufacturing Company

Comms Service Provider

No data available

Computer Software Company

12%

Financial Services Firm

11%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	6
Midsize Enterprise	6
Large Enterprise	5

No data available

By reviewers
Company Size	Count
Small Business	15
Midsize Enterprise	10
Large Enterprise	19

Questions from the Community

What needs improvement with iboss?

For zero trust implementation, we encountered complexity issues, especially with a large infrastructure company Exxon...

See all answers

What is your primary use case for iboss?

Previously when I used iboss, we did the POC for iboss for ExxonMobil. Four or five people wanted to move from our ol...

See all answers

What is your experience regarding pricing and costs for iboss?

Regarding pricing, setup costs, and licensing, iboss is not cheap, and that's my only concern. There are cheaper alte...

See all answers

What is your experience regarding pricing and costs for Fortinet FortiCASB?

The price point could be better, and improvements are desired in staying on top of evolving threats while keeping cos...

See all answers

What needs improvement with Fortinet FortiCASB?

The turnaround time to deploy Fortinet FortiCASB could be improved. The learning curve for deploying, configuring use...

See all answers

What is your primary use case for Fortinet FortiCASB?

My primary use case for Fortinet FortiCASB is threat management and managing external threats. I predominantly use it...

See all answers

Which is the better security solution - Cisco Umbrella or Microsoft Cloud App Security?

Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-nat...

See all answers

What do you like most about Microsoft Cloud App Security?

It does a great job of monitoring and maintaining a security baseline. For us, that is a key element. The notificatio...

See all answers

What is your experience regarding pricing and costs for Microsoft Cloud App Security?

At the time of implementation, when the size of our organization was small, it was a more affordable product. Since a...

See all answers

Comparisons

Netskope vs iboss

Compared 14% of the time

Cisco Umbrella vs iboss

Compared 11% of the time

Prisma Access by Palo Alto Networks vs iboss

Compared 11% of the time

Zscaler Internet Access vs iboss

Compared 10% of the time

Cloudflare One vs iboss

Compared 7% of the time

More iboss Competitors

FortiSASE vs Fortinet FortiCASB

Compared 46% of the time

Netskope vs Fortinet FortiCASB

Compared 22% of the time

More Fortinet FortiCASB Competitors

Zscaler Internet Access vs Microsoft Defender for Cloud Apps

Compared 16% of the time

Cisco Umbrella vs Microsoft Defender for Cloud Apps

Compared 14% of the time

Netskope vs Microsoft Defender for Cloud Apps

Compared 11% of the time

Prisma Access by Palo Alto Networks vs Microsoft Defender for Cloud Apps

Compared 6% of the time

Microsoft Defender for Cloud vs Microsoft Defender for Cloud Apps

Compared 5% of the time

More Microsoft Defender for Cloud Apps Competitors

Product Reports

Buyer's Guide

iboss

December 2025

Download iboss product report

Buyer's Guide

Cloud Access Security Brokers (CASB)

December 2025

Download Fortinet FortiCASB product report

Buyer's Guide

Microsoft Defender for Cloud Apps

December 2025

Microsoft Defender for Cloud Apps report

Download Microsoft Defender for Cloud Apps product report

Also Known As

iBoss Cloud Platform

FortiCASB

MS Cloud App Security, Microsoft Cloud App Security

Overview

Iboss offers a comprehensive cloud-based security platform valued for its scalability and autonomous features, ensuring robust security with easy deployment and management capabilities.

Renowned for its robust security architecture, Iboss integrates seamlessly within diverse networks, delivering efficient granular filtering and advanced content categorization. Its single pane of glass console provides ease of management, allowing rapid scalability suitable for rapidly deploying environments. Operates in BYOD setups due to inline filtering without device installation. Integration with cloud-based applications enhances user control, and features like SASE, SSL inspection, and ChatGPT risk protection stand as highlights. Despite its strengths, users have pointed out areas for enhancement like direct navigation in reports, SSL decryption, and better cloud integration while having room to improve data loss prevention.

What are the most important features of Iboss?

Scalability: Supports rapid deployment across diverse networks.
SASE: A consolidated approach to secure access.
SSL Inspection: Ensures safe data transmission.
Granular Filtering: Detailed control over accessible content.
Single Pane Management: Unifies control through a centralized console.

What benefits should users consider in reviews?

Cost-effectiveness: Offers competitive pricing with robust features.
Autonomous Operation: Reduces management overhead.
Responsive Support: Provides assistance when needed.
Flexible Deployment: Available for both cloud and on-premises environments.

The usage of Iboss spans educational institutions, specifically K-12, to enforce internet policies, protect data, and support remote work environments. It provides web filtering and security frameworks to ensure safe browsing. Its platform-as-a-service model offers flexibility for both cloud-based and on-premises requirements, integrating seamlessly to deliver enhanced security features suitable for various deployment needs including zero trust, CASB, and network security for work-from-home setups.

iboss

Fortinet FortiCASB is a comprehensive cloud security solution offered by Fortinet, a leading cybersecurity company. FortiCASB is designed to provide organizations with visibility, control, and security for their cloud-based applications and services. It helps organizations secure their cloud environments, detect threats, enforce policies, and ensure compliance.

Fortinet FortiCASB Features:

Cloud Application Visibility

FortiCASB offers visibility into cloud applications and services being used within an organization's network. It helps identify shadow IT and provides insights into the cloud usage patterns, facilitating effective management and control.

Data Protection and Compliance

FortiCASB enables organizations to protect sensitive data in the cloud by enforcing data loss prevention (DLP) policies and encryption. It helps identify and control data sharing, detect anomalies, and ensure compliance with data privacy regulations.

Threat Detection and Response

FortiCASB incorporates advanced threat detection capabilities to identify and mitigate cloud-specific threats. It employs machine learning algorithms and behavioral analytics to detect anomalous activities, account compromises, malware, and other cloud-based threats.

Access Controls and Identity Management

FortiCASB enables organizations to enforce granular access controls for cloud applications, ensuring that users have appropriate permissions and follow secure authentication practices. It integrates with identity management systems and supports features such as single sign-on (SSO) and multi-factor authentication (MFA).

Compliance Monitoring and Reporting

FortiCASB helps organizations monitor and maintain compliance with industry regulations and standards. It provides pre-defined compliance templates, automated policy enforcement, and detailed reporting capabilities to demonstrate adherence to data privacy and security requirements.

Shadow IT Discovery and Control

FortiCASB helps organizations discover and gain visibility into unauthorized or risky cloud applications used within their network. It enables IT teams to assess risks, enforce policies, and take appropriate actions to manage and control cloud usage effectively.

Cloud Security Assessments

FortiCASB conducts security assessments of cloud applications and services to evaluate their security posture and identify vulnerabilities. It provides insights into potential risks and assists organizations in making informed decisions about the adoption of specific cloud services.

Fortinet

Microsoft Defender for Cloud Apps is a comprehensive security solution that provides protection for cloud-based applications and services. It offers real-time threat detection and response, as well as advanced analytics and reporting capabilities. With Defender for Cloud Apps, organizations can ensure the security of their cloud environments and safeguard against cyber threats. Whether you're running SaaS applications, IaaS workloads, or PaaS services, Microsoft Defender for Cloud Apps can help you secure your cloud environment and protect your business from cyber threats.

Microsoft Defender for Cloud Apps Benefits:

Provides comprehensive security for cloud applications
Integrates with other Microsoft security tools
Easy to use and deploy
Provides real-time threat detection and response
Strong protection against phishing attacks and other common threats
Highly customizable to meet specific needs of different organizations

Microsoft Defender for Cloud Apps Use Cases:

Governance, authentication, security, and compliance.
Detects shadow IT and anomalous user behavior
Controls access to applications
Provides auditing and filtering setups
Used for end-user compute devices, file monitoring, user investigation, and activity
Used for data governance, threat detection, and getting visibility over cloud applications
Used to identify information about applications beyond organizational boundaries
Prevent exfiltration and data filtration of corporate data
Used to deal with spam emails and detect shadow IT

Reviews from Real Users

Ram-Krish, Cloud Security & Governance at a financial services firm, says that Microsoft Defender for Cloud Apps "Integrates well and helps us in protecting sensitive information, but takes time to scan and apply the policies and cannot detect everything we need".

PeerSpot user, Senior Cloud & Security Consultant at a tech services, writes that Microsoft Defender for Cloud Apps "Great for monitoring user activity and protecting data while integrating well with other applications".

Simon Burgess,Infrastructure Engineer at SBITSC, states that Microsoft Defender for Cloud Apps is "A fluid, intelligent product for great visibility, centralized management, and increased uptime".

Microsoft

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.

Rollins

Customers for Microsoft Defender for Cloud Apps include Accenture, St. Luke’s University Health Network, Ansell, and Nakilat.

Buyer's Guide

Cloud Access Security Brokers (CASB)

December 2025

Download Free Report

Find out what your peers are saying about Palo Alto Networks, Cisco, Netskope and others in Cloud Access Security Brokers (CASB). Updated: December 2025.

DOWNLOAD NOW

879,310 professionals have used our research since 2012.

See our list of best Cloud Access Security Brokers (CASB) vendors.

We monitor all Cloud Access Security Brokers (CASB) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.