Skyhigh Security Reviews

We use it for cloud risk services.

It monitors the cloud usage of our company and shows the status on the main dashboard. There, we can see what kind of cloud applications are being used and see a risk assessment for each one, indicating low, medium, or high. For each cloud application, we can see how many users are using it. It's like auditing for each cloud application. In that way, it gives in-depth visibility and a granular monitoring facility for the company: What is happening inside the company, what people are using, what kind of data is going through the company. It really helps in understanding cloud traffic.

There is one feature called data governance that shows all the cloud services which are used.

There is another one called cloud registry where we can see a risk assessment for the cloud services being used. If we want to add a new cloud service or a new cloud application, we can check into it and do an assessment through the cloud registry. That is the feature that I like most.

Generally, it is available.

The scalability is pretty good. The only thing we have faced is that sometimes, randomly, the portal becomes too slow. We only have between 100 and 150 users of the portal, which is a fairly small number, but scalability is not really an issue.

In terms of extent of use, it will monitor all the cloud usage in the company, whether there are 100k or 200k users. It will monitor everything, whatever comes from the logs, and present the data in an understandable format.

Technical support is pretty good.

This is our first solution of its kind.

We have definitely seen an ROI over the years we have been using it; not from a dollars perspective but in different ways.

They definitely charge a huge amount. All the security service providers charge a huge amount.

At the time we chose this product, we did not evaluate others, but recently we have a looked at a couple of other products. The others are pretty good. They have come up with a lot of innovation, improved security, and developed a lot of enhancements. In different ways, everybody is good.

Do a PoC for a week or ten days. If you don't like it, go with another vendor. But I believe you will like it.

It's not necessary to give access to everyone in the company to monitor their cloud usage. There are specific teams that use the platform for a specific purpose.

They have improved a lot. Every month or every three months they are coming out with a new update. Whatever we have asked for recently, they have added it to their roadmap. Since McAfee acquired the SkyHigh applications, there will be a lot more features to come. We are expecting a lot of features to be onboarded to the platform.

For our use case, what we currently have is good enough.

We use it to discover, protect, and permit.

Skyhigh for Shadow IT provides us visibility into the Shadow IT. It helps us in blocking high risk services and also in containing the data exfiltration to these high risk services.

It help us monitor high risk services, blocking them, and also feeding them to our egress points.

The risk management feature.

Integration with other technology ecosystems.

Initially, there were stability issues, but now it is perfect.

No scalability issues.

The support team is very good.

We did not previously use a different solution.

The initial setup was okay.

The implementation team was proficient.

Have a risk-based approach towards pricing.

There were none to evaluate at that time.

It is an innovative, dynamic tool.

We implemented Skyhigh for Shadow IT monitoring as well as Microsoft Office 365 real-time auditing. We monitor these on a daily basis and are currently in the process of implementing policies if certain activities are done by our end users.

We have gained a deep insight into our Shadow IT usage as well as the different activities involved in Office 365. Without Skyhigh, we had zero visibility, but now we are aware of so much more.

The risk rating of each cloud application has been very useful. Whenever we discover a new application is use, we are able to quickly determine if this application is safe to use and whether or not we should allow our end users to be able to access it.

Though the Skyhigh Dashboard is processing large amounts of data, the speed of the Dashboard could be improved. Also, it would be nice to be able to get more advanced search functions to filter out data and quickly obtain the data that we need.

Insight into services being accessed and/or used in corporate environment. Additionally, Shadow IT as a whole and provides another set of eyes on web proxy logs.

It has allowed insight into gaps that may exist in current web proxy tool policies. Improves creation of security alerts on web proxy logs by having a separate system interpret said logs.

Skyhigh has given us categorization and rating of websites separate from what the web proxy places on the logs.

The tool could improve flexibility with the creation of reports/querying data. A better search capability, similar to a SIEM, would also allow deeper log analysis.

User analytics.

The user activity identification improved.

The services take some time to load. It would be helpful if the loading time was reduced.

I have been using it for the past few months.

No issues.

No issues.

No issues.

I have not used the support as of now.

No.

I was not a part of the initial setup.

• The user analytics
• Having a full idea about infrastructure

DLP rules.

Having full control of infrastructure.

Iteration process.

Two years.

Yes.

Yes.

No.

Five out of 10.

No.

The support team implemented the solution.

Not applicable.

It is good.

Yes.

• Shadow IT monitoring 
• Sanctioned Cloud App Security

• Shadow IT reporting capabilities
• DLP integration
• Encryption

It has given us visibility into our employees activities and access to cloud apps.

Support for securing more cloud apps.

Two and a half years.

Some issues, but many had to do with the complexity of our deployment and they all have been worked through. 

The Shadow IT portion would sometimes stop processing our proxy logs, but these issues seem to have been fixed.  

No.

It is excellent and top-notch.

No previous solution was used.

For Shadow IT, it was straightforward. 

For Sanctioned App Security deployment, it was a bit more complex. This was primarily due to the amount of integrations we decided to do with the existing technologies we owned, like DLP, SSO, etc., and because of the size of our cloud application.

An in-house team.

Very good.

I don't deal with pricing. Thus, I cannot answer this.

Yes. Netskope, Bitglass, Adallom, and Skyfence.

Make sure you plan your deployment carefully. Break the project into phases. This makes for more wins sooner, which you can report to your upper management. Develop a good rapport with the team who owns the cloud application, so you can get full cooperation from them.

• Prevents unauthorized data being shared from external sources.
• Enforces data loss prevention.
• DLP reporting and deep integration.

• Malware and spam mails
• Attacks from hackers
• Data privacy

Detecting threats.

One year.

No.

No.

No.

A 10 out of 10.

A 10 out of 10.

No.

The initial setup was straightforward.

We implemented in-house.

Our ROI is 150%.

The pricing is reasonable.

No.