Coming October 25: PeerSpot Awards will be announced! Learn more

Netskope CASB vs Prisma SaaS by Palo Alto Networks comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary

We performed a comparison between Netskope CASB and Prisma SaaS by Palo Alto Networks based on real PeerSpot user reviews.

Find out in this report how the two Cloud Access Security Brokers (CASB) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Netskope CASB vs. Prisma SaaS by Palo Alto Networks report (Updated: September 2022).
633,184 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"I like the DNS layer security.""I like that it integrates with the infrastructure. I also like the kind of data and intelligence that's built-in. It helps create innovative reports for security.""You can manage and create policies based on a group of users. It can permit some URLs and block others.""The most valuable thing is how easy it is to deploy. We did it with 9,000 users at my last job, and it took a week to get to all the endpoints. Doing that without having to physically touch all those endpoints was very simple.""When we have laptops that leave the building, they could connect to public WiFi before they establish a VPN connection back into the company. For that duration or that period of time when they're not docked in the network or on a VPN, they effectively don't have that full layer of security that I provide inside the building. This tool stands in during that period of time, and we extend the security settings through their basic firewall or their cloud-based firewall at that time. So, we do content filtering and control access, but they also are looking at new domains, IP addresses, and bad requests. They're blocking them on my behalf when a laptop is not sitting behind our security appliances.""The most valuable features for us include tenant lock, content filtering, and DLP solutions, looking for PII and information being exfiltrated.""Cisco Umbrella is absolutely stable.""One of the most important features is the security posture check which Umbrella offers when a user accesses any website. That is one of the most unique features that it offers."

More Cisco Umbrella Pros →

"Its deployment is very easy and quick. Their technical support is also very good.""The initial setup of Netskope CASB is easy, it is not complex.""In Azure, we have multiple subscriptions and with every subscription, we add some kind of instance ID. We can work with the instance ID so that we allow all of the instances containing nodules. Everything else, we block. This way, if you go to outlook.com and check your email, if you log in with your company account, the instance ID will show. The network will take action according to the instance ID and say, "You are using the enterprise email. I'll let you surf. I'll let you see your email." But when you try to log in with your own email address, like Hotmail or Gmail, the instance ID will be different. This way we are not completely blocking Outlook, but we are blocking people from accessing their Outlook. We are only allowing the enterprise-level emails, and we are not allowing user-based emails.""The feature that I like best is the GUI.""The automation offered by the product is pretty solid.""Amazing reporting and tracking mechanisms.""The interface is good.""The client size and architectural components in Netskope are far better than other solutions."

More Netskope CASB Pros →

"It has predefined or preconfigured rules, which are getting periodically updated. They are providing continuous improvements and periodically updating all search queries that they are looking for. That is one thing that helps us to stay vigilant and focused. If we query our AWS account for any breaches or vulnerabilities with any of the cloud tests, and it alerts us based on these predefined rules. It also provides an option to configure our own rules, and based on these rules, it can query the cloud trail logs, pull the information, and trigger alerts in real-time. I haven't explored this feature much because there are multiple accounts, and we don't have enough time to explore this feature. It also provides multiple integrations. When vulnerabilities or breaches are happening, you should be aware of them immediately. It provides integration with tools such as Slack, PagerDuty so that you can get alerted as soon as the high severity stuff comes up. For example, you have a security group that has allowed public traffic on port 22. As TechOps, you should be aware of this immediately. You cannot scan each machine or look into all security groups to identify it. So, Prisma helps us and alerts us when this kind of high-priority stuff comes up. It has different statistics, analytics, and graphs for data. The description of alerts is also pretty good. They describe what are the possible causes for this and what are the solutions. From Prisma Cloud, you can directly go to the AWS account. When you click on an alert, a resource, or a resource ID, it takes you to the AWS console where you need to log in. If you are already logged in, it will take you to that instance directly, and you can fix the issue there. I have found this feature very useful.""It is easy to use, easy to integrate, and is stable. It's scalable as well.""You have the ability to create your own expressions for your data. Palo Alto understands that DLP is not the same for all consumers. You might have a particular need to fulfill, and they give you the opportunity to create a custom expression to match the specific format that you have. For a confidential file property that you have in your files, you can add a metadata field. It gives you that opportunity to create that.""The remediation process is easy compared to other platforms.""The most valuable feature of Prisma Cloud-native, in my opinion, is that it assists in identifying, analyzing, and remediating vulnerabilities.""To quarantine and clean a malware file provides a lot of security.""Prisma SaaS is very easy to use; it's common sense — it's the best-in-class.""Prisma's most valuable feature would be its ability to identify bad or risky configurations."

More Prisma SaaS by Palo Alto Networks Pros →

Cons
"There are cheaper solutions in the market""It had the ability to do a lot of app control. So, every single app that went through that portal was registered, but there is a general issue with the whole app control. As soon as you add a mobile phone to your network, all of the apps get registered through the system, and you can approve, reject, or just let them go through. When I looked at it, it was impossible to manage app control. There was just so much data. I didn't apply that service because I just didn't have the time to manage it. It would be good if there was a way to categorize applications.""It should have more integrations with multiple end user OEMs.""If a hardware platform were provided for Umbrella, that would definitely improve the market for it... Especially when we are addressing governmental customers, they hesitate to connect to the cloud. That is where we need a hardware platform so that the solution can be used on-premises as well.""There are some situations where we would like to block things for specific user groups. I know that Umbrella does that, but it's not that easy.... when you want a specific task for specific rules and policies for user groups, you have to go three levels down in the menu, and it's hard to find where you do that task.""The design of the screens could be improved. Sometimes you're trying to look for information, for what you think is critical that should be on that first screen of the dashboard so that you can quickly take screenshots to have people help out, but you have to hop between screens to find little pieces of evidence.""The pricing is a bit high. Being outside of the USA, we have issues with the exchange rate.""It should have a real-time malware classification engine. It should check the malware on the website. It would be good if it had a real-time malware check for the websites because currently, it just compares the DNS queries of the blacklist. It should also have malware control over file execution and the types of files that the users are allowed to download."

More Cisco Umbrella Cons →

"Support services could definitely be improved. Support is the one area that can always use improvement. It's an evolving thing, so based on demand and based on market requirement and the way market is moving towards.""It needed some fine-tuning on core business sites that we used, which were sensitive to what we term a man-in-the-middle certificate by design. Some sites were not tolerant because they presented as potentially malicious. So, we just had to make some tweaks so that it would bypass or interpret it.""In some cases, when you have a lot of policies, it can get confusing for users and you can get lost in the GUI.""It should have user behavior analysis and diverse analysis.""They could improve their mobile agents as they have some limitations.""The solution is still pretty new to the CASB environment.""Setting up policies is something that we having been doing, and if the vendor were to provide example use cases that included different implementation options then it would be very useful for us.""The configuration in the cloud model could be improved upon."

More Netskope CASB Cons →

"My clients would like to see a more feature-rich product.""They can add some new characteristics. For example, when an incident triggers, they can automatically send a template for a particular match that is related to the policy. We don't have that right now. It is something to improve. There could be more automation for certain actions. For example, for a particular group, it can send an administrator alert to their manager. It was one of the concerns of our customers.""We are using the SaaS offering. We use our applications for microservices. We use Twistlock to scan containers, and it displays these results in Prisma, which is a good feature because we can see vulnerabilities with respect to these containers. We can see everything in a very detailed manner. However, when you have different environments for a single application, such as DEV, QA, PROD, and TEST, all these environments run multiple containers, which can lead to a very high number of containers. In such a scenario, it shows you the alerts for all those containers that have vulnerabilities. If you show the results of all the containers that share the same image, it is not going to add any value. Therefore, they should narrow down the alerts based on a container. It should show information for a single container. Otherwise, the person who is looking at the results gets the impression that he has to fix all these issues. This is something that they can improve.""Lacks a hybrid model which has API plus in-line security.""When it comes to integration mechanisms, Prisma SaaS does not support reverse proxy type of integrations.""Prisma would be a stronger solution if it could aggregate resources by project or by application. So say we have an application we've developed in AWS and five applications we've developed in Azure. The platform will group it according to those applications, but it's based on the tags we use in Azure, which means I have to rely on development teams to tag resources properly.""One area for improvement is for them to stay on top of keeping their CVEs on their platform up to date."

More Prisma SaaS by Palo Alto Networks Cons →

Pricing and Cost Advice
  • "I think it's worth the money."
  • "The price of Cisco Umbrella is a little higher than similar solutions, like Gateway."
  • "The price should be slightly lower than the current price because if you look at the whole solution, it is simply a threat intelligence solution to block blacklisted things. The price should be lower looking at the features provided by the solution. The price isn't too high either, but it could be lower."
  • "There is a subscription cost."
  • "The price could be lower."
  • "The price is quite good."
  • "Pricing depends on the automation requirements of the organization."
  • "It has a reasonable price. It is certainly not as expensive as it used to be. It is in line with other offerings on the market. There are a number of different flavors of Umbrella. They could bring Umbrella SIG down a bit because its price is a little bit high for what it does, but I also understand why its price is high."
  • More Cisco Umbrella Pricing and Cost Advice →

  • "They should work on licensing costs."
  • "The pricing is competitive."
  • "Licensing is on a yearly basis."
  • "The price of the solution is fair but it depends on your use case."
  • "There is a license required for this solution and there are many licensing models available. For example, what applications are covered as part of the license."
  • "I recall that the price was considerably cheaper than that of Zscaler. It was around 60,000 AUD for 1,000 users per year and included some training and some premier support offerings. If we wanted to take advantage of the CASB capabilities, then there was an additional subscription fee, for which we didn't have the budget. On price, I would give Netskope a three or four out of five because it's quite expensive, but it offers a lot of value."
  • "Licensing fees are paid annually."
  • More Netskope CASB Pricing and Cost Advice →

  • "The licensing fees are paid on a yearly basis and for what we get, the price is good."
  • "Prisma SaaS is more expensive than similar solutions but I think it's worth it."
  • "Prisma is in the middle of the road. It's not the most expensive, but it's not the cheapest. There aren't any additional costs, to my knowledge. I know they have some extra modules, but we didn't use them."
  • "They price their products using credit modules."
  • More Prisma SaaS by Palo Alto Networks Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Cloud Access Security Brokers (CASB) solutions are best for your needs.
    633,184 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: Cisco Umbrella and Zscaler Internet Access are two broad-spectrum Internet security solutions that I have tried.… more »
    Top Answer:Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-native… more »
    Top Answer:The single-pane-of-glass management is really important. In today's era, administration costs and operational expenses… more »
    Top Answer:We researched Netskope but ultimately chose Zscaler. Netskope is a cloud access security broker that helps identify… more »
    Top Answer:The most useful feature of this solution is Cloud Control, which allows me to schedule cloud uploads.
    Top Answer:Licensing fees are paid annually. Fees are comparable to others. Pricing is somewhere in the middle. There are no… more »
    Top Answer:You have the ability to create your own expressions for your data. Palo Alto understands that DLP is not the same for… more »
    Top Answer:The pricing is reasonable for Palo Alto. They price their products using credit modules. There are various types of… more »
    Top Answer:They can add some new characteristics. For example, when an incident triggers, they can automatically send a template… more »
    Comparisons
    Also Known As
    OpenDNS
    Netskope
    Palo Alto Networks Prisma SaaS, Prisma SaaS, Palo Alto Networks Aperture, Aperture
    Learn More
    Overview

    Cisco Umbrella offers flexible, cloud-delivered security according to users’ requirements Cisco Umbrella includes secure web gateway, firewall, and cloud access security broker (CASB) functionality all delivered from a single cloud security service. Cisco Umbrella’s protection is extended to devices, remote users, and distributed locations anywhere. As company employees work from many locations and devices, Cisco Umbrella is the easiest way to effectively protect users everywhere in minutes.

    Cisco Umbrella uses machine learning to search for, identify, and even predict malicious domains. By learning from internet activity patterns, this DNS-layer security solution can automatically identify attacker infrastructure being staged for the next threat. These domains are then proactively blocked, protecting networks from potential compromise. Cisco Umbrella analyzes terabytes of data in real time across all markets, geographies, and protocols.

    Cisco Umbrella works with leading IT companies to integrate its security enforcement and intelligence. Built with a bidirectional API, Cisco Umbrella makes it easy to extend protection from on-premises security appliances to cloud controlled devices and sites.

    Cisco Umbrella is suitable for small businesses without dedicated security professionals, as well as for multinational enterprises with complex environments.

    Why use Cisco Umbrella?

    • Simplify security management: Cisco Umbrella is the fastest and easiest way to protect all users within minutes and reduces the number of infections and alerts sent from other security products by stopping threats at the earliest point. With no hardware to install and no software to manually update, ongoing management is simple

    • Reliable reporting: Cisco Umbrella reports show activity for each device or network in the system. Users gain a more complete picture of the security risks facing their organization and can take action to remedy them.

    • Manage and control cloud apps: Umbrella provides visibility into sanctioned and unsanctioned cloud services in use across the enterprise. Users can uncover new services being used, see who is using them, identify potential risk, and block specific applications easily.

    Reviews from Real Users

    Cisco Umbrella stands out among its competitors for a number of reasons. Some of the major ones are its DNS-based protection, ability to protect users no matter where they are located, stability, and high performance.

    Daniel B., a network specialist at Syswind Kft, writes, “We primarily use the solution as cloud security for our branches. It protects us from direct internet outbreaks. It makes for good flexibility. The solution is very easy to manage. We found the initial setup, for example, to be quite simple. Efficient protection on the DNS level and even higher. The sandboxing feature analyses and handles the complicated security risks.”

    Victor M., SOC & Security Services Director at BEST, notes, “It provides security for the remote workers and it helps to improve enterprise security in a very easy way. We mainly enjoy web software protection capabilities. It prevents the end-users from getting into bad sites or sites that potentially could have malware or could be phishing. It helps end-users avoid the wrong sites. The solution works very smoothly. The user interface is good.”

    Netskope™ is the leading cloud access security broker (CASB). Only the Netskope Active PlatformTM provides discovery, deep visibility, and granular control of sanctioned and unsanctioned cloud apps. With Netskope, IT can direct usage, protect sensitive data, and ensure compliance in real-time, on any device, including native apps on mobile devices and whether on-premises or remote, and with the broadest range of deployment options in the market. With Netskope, businesses can move fast, with confidence.

    Since software as a service is so easy, use of SaaS applications is exploding. Because of that simplicity, though, the security risks of SaaS are also on the rise. Unsanctioned SaaS apps can expose sensitive data and propagate malware, and even sanctioned SaaS adoption can increase the risk of data exposure, breaches and noncompliance. By offering advanced data protection and consistency across applications, Prisma SaaS reins in the risks. It addresses your cloud access security broker needs and provides advanced capabilities in risk discovery, data loss prevention, compliance assurance, data governance, user behavior monitoring and advanced threat prevention. Now you can maintain compliance while preventing data leaks and business disruption through a fully cloud-delivered CASB deployment.

    Offer
    Learn more about Cisco Umbrella
    Learn more about Netskope CASB
    Learn more about Prisma SaaS by Palo Alto Networks
    Sample Customers
    Chart Industries, City of Aspen, Eastern Mountain Sports, FLEXcon, George Washington University, Jackson Municipal Airport Authority, Ohio Public Library Information Network, PTC, Richland Community College, Smart Motors, Tulane University, VeriClaim
    NetApp, Genomic Health, Caterpillar, Apollo, Pandora, Continental Resources, Fractal, infinera, Tesla
    University of Arkansas
    Top Industries
    REVIEWERS
    Financial Services Firm16%
    Comms Service Provider9%
    Educational Organization9%
    Retailer7%
    VISITORS READING REVIEWS
    Computer Software Company21%
    Comms Service Provider16%
    Financial Services Firm8%
    Government6%
    REVIEWERS
    Computer Software Company27%
    Consumer Goods Company18%
    Security Firm18%
    Manufacturing Company9%
    VISITORS READING REVIEWS
    Computer Software Company25%
    Financial Services Firm11%
    Comms Service Provider10%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Computer Software Company21%
    Comms Service Provider13%
    Financial Services Firm11%
    Energy/Utilities Company6%
    Company Size
    REVIEWERS
    Small Business38%
    Midsize Enterprise26%
    Large Enterprise37%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise16%
    Large Enterprise64%
    REVIEWERS
    Small Business42%
    Midsize Enterprise21%
    Large Enterprise38%
    VISITORS READING REVIEWS
    Small Business17%
    Midsize Enterprise17%
    Large Enterprise66%
    REVIEWERS
    Small Business46%
    Midsize Enterprise31%
    Large Enterprise23%
    VISITORS READING REVIEWS
    Small Business14%
    Midsize Enterprise15%
    Large Enterprise70%
    Buyer's Guide
    Netskope CASB vs. Prisma SaaS by Palo Alto Networks
    September 2022
    Find out what your peers are saying about Netskope CASB vs. Prisma SaaS by Palo Alto Networks and other solutions. Updated: September 2022.
    633,184 professionals have used our research since 2012.

    Netskope CASB is ranked 3rd in Cloud Access Security Brokers (CASB) with 15 reviews while Prisma SaaS by Palo Alto Networks is ranked 5th in Cloud Access Security Brokers (CASB) with 8 reviews. Netskope CASB is rated 8.4, while Prisma SaaS by Palo Alto Networks is rated 8.4. The top reviewer of Netskope CASB writes "Network proxy that provides visibility during deployment and allows you to control PII". On the other hand, the top reviewer of Prisma SaaS by Palo Alto Networks writes "Supports custom expressions, helps with compliance, and integrates well with Azure AD". Netskope CASB is most compared with Zscaler Internet Access, Microsoft Defender for Cloud Apps, Zscaler SASE, Prisma Access by Palo Alto Networks and Skyhigh Security, whereas Prisma SaaS by Palo Alto Networks is most compared with Zscaler Internet Access, Microsoft Defender for Cloud Apps, Zscaler CASB, Skyhigh Security and Qualys VM. See our Netskope CASB vs. Prisma SaaS by Palo Alto Networks report.

    See our list of best Cloud Access Security Brokers (CASB) vendors.

    We monitor all Cloud Access Security Brokers (CASB) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.