Idira Secure Cloud Access Reviews

I have been dealing with CyberArk Secure Cloud Access for over three years now, and I have been working with CyberArk for 10 years plus.

I work with their CASB solution, CyberArk Secure Cloud Access, and I am a certified deployer for CyberArk.

I use adaptive risk-based policies in CyberArk Secure Cloud Access to learn and understand the environment.

The use of dynamic role-based access controls in CyberArk Secure Cloud Access enhances my cloud security by helping not to prolong the access granting process. In other words, just-in-time access is very quick.

Integrating with existing IT ecosystems like AWS or Azure IAM or Azure AD helps streamline my administrative and compliance efforts when that is set up correctly.

I have been both a customer and reseller of CyberArk.

In CyberArk Secure Cloud Access, I find the central point where it is easy to access and easy to configure most valuable.

I assess the effectiveness of real-time monitoring in identifying potential threats as very important nowadays, noting the use of algorithms and large language models.

Comprehensive audit trails in CyberArk Secure Cloud Access have provided valuable insights, especially with suspected misuse of credentials.

When someone obtained a vendor's details and attempted to access them, with monitoring enabled, it was easy to see from which area it came from and then confirm with the user whether they were trying to access it or had forgotten something at that point in time.

In my perspective, I do not see much that could still be improved about CyberArk Secure Cloud Access. Depending on what is used to do the integration, looking at the requester's posture could be beneficial.

In the future for CyberArk Secure Cloud Access, I would like to see tokenization improved, where every connection gets a new token. Not in the sense of a connection token but more a certificate that encrypts the data and gets deleted.

I have been using CyberArk Secure Cloud Access for over three years now, and I have been using CyberArk for 10 years plus.

I rate the technical support as very good, so I give it a nine because I know a lot of the technicians.

I am not really working with Trellix that much anymore. It is more something like CrowdStrike.

I have not had experience with Falcon LogScale by CrowdStrike yet.

When it comes to implementation, I usually refer to the physical implementation or the preparation to implementation.

Overall, I usually say it takes about three months at least for both preparation, implementation, and configuration because this helps to plan and understand the client's environment so that you do not forget something and also do not break connections or anything when you do the implementation.

In South Africa, everything is expensive, so there is always going to be environments where this is seen as a luxury product instead of an enabler.

I rate CyberArk Secure Cloud Access as also a nine, but I would like to see what happens with the Palo Alto acquisition.

I would generally recommend CyberArk Secure Cloud Access to others, but there are other good options, depending on what the client is looking for.

For companies in South Africa, I would not recommend CyberArk Secure Cloud Access for medium to small companies, but it also depends on what their security appetite is.

My overall rating for this review is nine.

I worked on Fortinet before, and now I am working on an altogether different vendor ecosystem that focuses more on Cybersecurity Operations Center. I currently work with IBM QRadar, CyberArk Secure Cloud Access, and a few other cybersecurity vendors.

I use these tools for my own service operating model. I am currently building a managed security services provider where I use these tools for building my security operations center and helping enterprise customers fight against cyber threats and build resilience.

I use this solution for providing zero-trust network access and application security to cloud-based workloads.

Their presence in the European market and the cloud-based SaaS consumption model is the most exciting aspect for customers.

Their claims are quite promising, and their risk score rating for different cyber threats is particularly exciting so that customers can gauge the impact of cyber threats and prioritize their remediation efforts.

For integration with SIEM, they have a good telemetry ecosystem that can be forwarded using syslog and API-based integration. This unified telemetry ecosystem allows SIEM to ingest logs and events seamlessly.

The efficacy of the solution is more or less specific to particular use cases rather than generic use cases. The solution is quite good, but it may not be applicable for all scenarios. For cloud workloads on a hyperscaler, this solution is sufficient. However, for specific use cases and how enterprises are using hybrid multicloud scenarios, the solution requires more flexibility in deployment and needs to have its efficacy tested in a hybrid multicloud scenario.

Role-based access control is not going to enhance cyber resilience, but it is more for the efficacy and optimization of resources that manage cyber resilience programs.

This product should be made available in various clouds in India because India now has the DPDP compliance requirement so that data from India-based deployments or India-based customers remains in India. This way, they can make these tools available widely on all hyperscaler cloud ecosystems in India so that enterprises can use them while keeping their compliance requirements in mind.

I have been using this solution for a few months.

I have conducted only theoretical and a little bit of practical evaluation. I have not deployed this in production, so I cannot comment on the stability of the platform because I have not used it for my production workload or in my lab workload. I conducted a theoretical evaluation and performed a few tests. I cannot comment on stability based on my experience.

I have not encountered any scalability issues. Usually, these cloud platforms are built with elastic scale in mind, so I do not think the platform will hit any scalability issues.

The setup is straightforward. Nowadays every SaaS solution is designed and architected with the understanding that deployment is intuitive, and even with moderate skills, an engineer can deploy it seamlessly.

Technically, the solution matches the offerings from different service providers. In that way, I think they are quite competitive. However, this is use case specific for workloads hosted on a public cloud. I think this is a promising platform.

CyberArk Secure Cloud Access is a good and promising solution, but the efficacy of the solution is more or less specific to particular use cases rather than generic use cases. 

IBM

I use CyberArk Secure Cloud Access for managing privileged access and maintaining security. My work involves secure tunnels between on-premises and the cloud. I create secure environments using VPN, CPM, and PSM servers both on-premises and in the cloud, and handle installations and configurations across a variety of systems including physical, cluster, and virtual servers.

CyberArk Secure Cloud Access offers high availability, ensuring no downtime as it is cloud-based. The solution provides robust security features essential for financial and banking sectors to avoid network and connectivity issues or security breaches. CyberArk's integration capability is highly valuable, as it allows seamless management of privileged accounts across various databases, network devices, and operating systems, unlike other products that require additional API development.

CyberArk Secure Cloud Access has limitations in support for on-premise teams. When issues arise with the VPN portal or the frontend, the admin team must directly engage the vendor, which can be time-consuming. It is important for critical support to respond within fifteen to twenty minutes to minimize business impact.

I have been using CyberArk products for over eight years. My experience covers several versions, most recently from version 10.5 to the latest 14.4, and I have been involved in the total implementation, installation, and configuration for more than forty clients.

Technically, CyberArk's deployment is efficient, but sometimes for critical cases, the response time can be delayed. There is a need for immediate vendor support in urgency, especially for severe issues that impact the business significantly.

CyberArk Secure Cloud Access ensures high availability with its cloud infrastructure, minimizing downtime. It is highly stable and reliable.

The technical support from CyberArk is generally good. They adhere to SLAs, and most issues are resolved effectively. However, for critical cases, support response needs to be quicker. Sometimes, contacting the right team for severe issues can take longer than preferred.

Positive

The initial setup of CyberArk Secure Cloud Access is straightforward, given its proactive communication and support in terms of providing updates and new features regularly through client conferences.

I am involved in implementing and configuring CyberArk across numerous setups, including integrating it with third-party solutions like Qualys and SailPoint.

I am not directly involved in pricing aspects, but I am aware that CyberArk is considered costly compared to other products. Nonetheless, its comprehensive security and functionality justify its price.

Overall, I would rate CyberArk Secure Cloud Access around eight or nine. I recommend CyberArk Secure Cloud Access because it offers unmatched security features, essential for critical sectors like finance and banking, despite being more expensive than other solutions. I give it a rating of 8 out of 10.

Hybrid Cloud

Other