Forcepoint Data Loss Prevention Reviews

We use Forcepoint for compliance, PCI DSS, and data protection at the network, endpoint, and data discovery levels.

Forcepoint has out-of-the-box rules and policies for PCI DSS and GDPR compliance. The compliance features are easy to deploy and implement. If your data is not classified, you need to do that first, but the functionality is out-of-the-box otherwise. 

Forcepoint offers many policies that conform to global DLP best practices, including requirements specific to regions like the Middle East, Europe, etc. They have a policy database in their product. That feature is unique to Forcepoint. Their AI and fingerprinting are incredibly effective and robust. We have tested it multiple times. It always catches the correct data being leaked.

They can improve a bit in the OCR category. The OCR deployment could be simplified. Right now, you have to set up a separate server to manage all the data going through the network, especially the images. Forcepoint could better integrate the OCR component with central management. 

Many customers ask how we will detect data in the OCR images. We must tell them that we'll deploy another machine to manage OCR. However, smaller enterprises have limited hardware. An enterprise can provide the necessary hardware but not the SMEs. This is a critical category because data can be leaked through images. 

I would also like Forcepoint to add support for AIX machines and databases. The solution still doesn't support certain machines like IBM AIX machines. Forcepoint typically supports QRadar integration, so maybe they can increase the work support on the server side.

We have been using Forcepoint DLP for three years.

Forcepoint Data Loss Prevention is a stable product. We have had any serious issues on the client side. 

Forcepoint supports huge deployments of more than 20,000 endpoints. You can scale up from hundreds to thousands. It's easy to scale by adding devices and increasing the hardware to support more systems in the same architecture or the same infrastructure. It covers everything, from clouds to networks and endpoints, Linux servers, Mac laptops, etc.

I rate Forcepoint support eight out of 10. Their support is good, but not excellent. At the same time, their presales service is strong. Overall, their standard support is not bad. They try to resolve problems in time and usually ask relevant questions. They are knowledgeable, but you'll need to pay for a higher tier if you want faster response times and 24/7 support.  

Positive

I rate Forcepoint 10 out of 10 for ease of setup. It's one of the simplest DLP solutions I've used. Symantec is more difficult than Forcepoint. Setting up Forcepoint is straightforward. 

They have an extensive knowledge base online, and the steps are well-defined in those documents. We have a console server called Forcepoint Management Center. We also need to deploy DLP agents a Protective Appliance on the network server. Forcepoint has extensive support for integrating with other vendors, so the setup is quite fast. We can integrate the product with any of the proxies available in the customer environment.

I rate Forcepoint eight out of 10 for pricing. We have a different team that handles the pricing, quotes, and presales. I'm on the technical side, so I'm not sure about the cost.  Our customers tell us they prefer Forcepoint because of their market presence. It's also the leader on Gartner's Magic Quadrant and has high ratings on third-party platforms. They prefer Forcepoint. I don't believe the price is too high, but Forcepoint is a premium service and the cost is consistent with the product they are providing.

I'm referring to the price from a vendor perspective. When a customer asks us to provide this product to meet their budget, Forcepoint will cooperate with us and provide discounts. 

I rate Forcepoint Data Loss Prevention 10 out of 10. It's the best product on the market. When our customers compare it with Symantec, McAfee, or Trend Micro, the response is extremely positive. The product is stable and scalable, and the licensing tiers are fairly simple. It's easy for us to explain to customers which features are available for each pricing tier. 

Our primary use case for this solution is for malicious activities.

The feature I found most valuable is the DLP. We are using it to do encryptions.

My opinion is that the dashboard could be improved and made more user-friendly. They do not enable a wide range of proper inquiries and we need to identify much of what we need on our own, like incident severity.

In the next release, I'd like to see the updates working properly as the priority apps we have are not upgrading the agent that we have installed.

I have been using this solution for about a year and a half.

I would rate the stability of this solution an eight, on a scale from one to 10, with one being the worst and 10 being the best.

I would rate the scalability of this solution a six, on a scale from one to 10, with one being the worst and 10 being the best.

I would say that their technical support is quite helpful. I would rate them a seven, on a scale from one to 10, with one being the worst and 10 being the best.

Neutral

Our model of deployment is on-premises. The only issue with deployment that we've found is that sometimes OPC is not able to connect to SCM or to a particular vendor. The deployment took around 20 minutes. Everyone was involved in the deployment of this solution, every department. It takes about two to three people to maintain this solution.

We used an in-house team to do the deployment of this solution.

There are around 16,000 users of this solution in our company.

I would recommend this solution to other people.

I would rate this solution as a whole a 10, on a scale from one to 10, with one being the worst and 10 being the best.

Forcepoint is installed on our company-issued laptops to act as an on-premises firewall. This ensures that we cannot access websites that are not whitelisted in the Data Loss Prevention (DLP) system, even when working from home.

The most valuable feature is security.

The administration should take a proactive approach to ensure that research-related websites can be accessed without having to be whitelisted, even if there are some sites that remain off-limits.

The setup is complex and has room for improvement.

The support is slow and has room for improvement.

I have been using the solution for three years.

The solution is as stable as our internet connection.

I give the scalability a nine out of ten.

We have 3,000 employees using the solution.

We use third-party technical support. The turnaround time for support is slow.

I believe the initial setup is complex and is handled by another team.

The deployment was done over the weekends and it took the IT team approximately two to three months to deploy bank-wide.

The licensing is on an annual basis.

I give the solution a nine out of ten.

The solution requires around 15 people for deployment and maintenance.

I recommend the solution to others.

I deployed the solution for three of our customers, and the primary use case is data loss prevention.

The feature with which the solution integrates with the proxy, the ICAP protocol that logs the inline traffic or real-time traffic, is valuable.

The Optical Character Recognition (OCR) functionality is another helpful feature, especially for unstructured data. Being able to discover sensitive data in an unstructured format is the most beneficial element of the solution.

We can add tags to table format or Excel documents, such as ''confidential'' or ''sensitive information'', and the DLP suite takes action according to the defined policy for each tag.

The APIs for device integration are limited, so that could be improved.

If a feature known as Exact Data Match is present, I cannot detect it. This is an easily accessible feature in the Symantec DLP product and those from other vendors, such as Zscaler. EDM either needs to be added as a feature or made easier to find, as I couldn't find it. It's possible none of my customers got a license for this particular feature, but that seems unlikely.

Forcepoint is very stable; I rate it a nine out of ten for stability. 

The solution has excellent scalability; I rate it eight out of ten here. 

The customer support is outstanding. 

Positive

The deployment is straightforward once you understand the solution's architecture. A proper understanding of the different components of Forcepoint DLP is essential, as deploying an enterprise-level DLP could be confusing because the policy server is separate from the main engine sitting on the Triton server. Understanding the components of the enterprise DLP suite is the most critical element for a successful deployment. Still, I rate the solution seven out of ten in terms of ease of setup.

The scale of the particular DLP deployment is also a factor; we had cases where the customer only required endpoint or network DLP, a relatively quick job that two staff can complete. A complete DLP suite, including email, web, and network DLP, plus data classification and labelling, would require four associates. Our most recent deployment was a complete enterprise DLP, which required four staff. The entire deployment took almost three months, including a one-month planning phase. During the planning phase, we prepared the documentation, designed the HLDs and LLDs, and high and low-level diagrams. Following acceptance from the customer, we started the implementation, which took roughly 50 to 60 days.

The level of maintenance required depends on how many events per hour a particular tool is putting out. If a customer wants to check analytics or identify an email or data leak, that situation doesn't require much policy fine-tuning, and a single staff member could deal with it. The customer can also decide what coverage they want, which may be 24/7, an admin to monitor events only, or Monday-to-Friday support. The coverage determines how many engineers will be required.

Another factor in maintenance requirements is the volume of events, as an extensive client could have more than 10,000 servers with many sensitive data in motion. The customer had 24,000 users for our last deployment, and there wasn't a dedicated team for the DLP. The engineering team took care of the network, endpoint, and data security together. There were ten of us on the team, with two engineers per shift for 24/7 coverage.

I can't comment on the cost, as a different department handles that.

I rate the solution eight out of ten. 

Forcepoint is the best DLP solution in the industry. I have yet to see another DLP solution on the market that provides as much security for endpoints; their endpoint DLP is unbeatable. Forcepoint also has an enormous number of features. It's handy, lightweight, easy to deploy, captures all the details, and never gives false positives; it's an excellent product.

Some implementations in Forcepoint are easy to do. 

We cannot implement very complex policies or use cases with Forcepoint.

Forcepoint's data visibility is the most valuable feature. 

They need to improve their reporting feature as well as the incident response. They have very limited and basic response rules available for incident management so they need to improve them.

I have been using Forcepoint Data Loss Prevention fora year and a half.

I rate the stability an eight out of ten.

The scalability is an eight out of ten. 

The technical support is average.

Positive

The initial setup is straightforward. It takes about three to four hours to implement this solution.

The solution is expensive. 

Overall, the solution is an eight out of ten. 

The solution is easy to manage. 

I am not able to get support directly from Forcepoint. 

I have been working with the product for three years. 

I rate the solution's stability a seven out of ten. 

I rate Forcepoint DLP's scalability an eight out of ten. My company has 11,000 users. 

The tool's support does not provide urgent solutions when we face issues. 

Neutral

We have five resources to handle Forcepoint DLP's maintenance. 

I rate the tool's pricing a six out of ten. 

I rate Forcepoint DLP a seven out of ten. 

Forcepoint Data Loss Prevention works to protect data from attacks, which is a company requirement. It works on networks and has an OCR feature, with OCR being the primary use case for it in my company.

The most valuable feature of Forcepoint Data Loss Prevention is the OCR.

An area for improvement in Forcepoint Data Loss Prevention is the complex UI and policy deployment. You have to find the policies, and then designing the policies is also tricky.

As Forcepoint Data Loss Prevention has some complex policy implementations, I want a more straightforward policy deployment from it in the future.

I've been using Forcepoint Data Loss Prevention for the last few years.

Forcepoint Data Loss Prevention is a stable product.

My company logs tickets in the Forcepoint Data Loss Prevention support portal whenever there's an issue. Support-wise, I'm giving the team eight out of ten.

Positive

The initial setup for Forcepoint Data Loss Prevention is easy. My company did a POC and demo session, and the solution is currently in the deployment phase.

The pricing for Forcepoint Data Loss Prevention is more expensive than Symantec, but it's negotiable. It depends on how well you negotiate. The solution is worth the money, though, based on the services and facilities it provides to my company.

My company uses Forcepoint Data Loss Prevention.

I'm using the latest version of the solution because my company updates Forcepoint Data Loss Prevention every time there's a new version.

My company has more than one thousand Forcepoint Data Loss Prevention licenses.

I would recommend Forcepoint Data Loss Prevention, depending on your scenario and the industry you're working in. The primary consideration for using the solution would be your use cases. If it fits your use case, I'd tell you to go for Forcepoint Data Loss Prevention.

The solution is quite mature compared to other DLP products, so my rating for Forcepoint Data Loss Prevention is eight out of ten.

My company is a Forcepoint Data Loss Prevention user.

We use this solution for data theft and for some forensic work.

Forcepoint DLP has very good reporting whether it is at the gateway or it is the LP. The product is user-friendly. 

We faced some issues with the endpoint installation of the agent as it is not from a common ground. Rather than being able to give a command from the central control and install the agents on the laptop, you need to install them one by one.

I have been using Forcepoint Data Loss Prevention for 10 and a half years.

This solution is stable. There is no specific maintenance of Forcepoint DLP, it is just a matter of tweaking the product to comply with any new or amended corporate policies.

Forcepoint DLP is scalable, it is just a matter of installing the agents.

Previously, I worked with Symantec DLP and McAfee DLP. Forcepoint is more user-friendly than both of these products.

The initial setup of Forcepoint DLP is neither easy nor complex. The technical setup is easy, however, the user education takes time and can be a bit of a strain. 

If you are considering implementing Forcepoint Data Loss Prevention into your organization, be sure to be clear of your initial requirements. Sometimes users are thinking something totally different and the DLP will not meet those needs. 

Overall, I would rate this solution an eight out of 10.