Data Security Consultant at a tech vendor with 10,001+ employees
Real User
Top 10
May 30, 2026
While Umbrella provides good visibility, reporting and dashboard customization could be improved by being more flexible, especially for management and compliance reporting. When a domain is blocked, administrators sometimes need to navigate multiple logs and dashboards to identify the exact policy or rule responsible. Simplified troubleshooting would improve this experience. More customizable reporting, simplified policy management for large environments, and enhanced troubleshooting capabilities could be included. Regarding Umbrella's AI capabilities, its governance and security can use threat intelligence from Cisco Talos to identify malicious domains, phishing sites, and emerging threats. Machine learning and predictive analysis can be leveraged to detect newly registered or suspicious domains before they are widely known threats. For example, AI-powered investigation summarizes and explains why a domain was blocked. Its accuracy and reliability of output are notable since it provides reliable threat detection using Cisco Talos threat intelligence, machine learning, and domain reputation analysis. In my experience, the accuracy is generally good with effective identification of malicious and phishing domains. However, there can occasionally be false positives where legitimate sites are blocked and require review or whitelisting. The platform is highly reliable for DNS layer protection, but providing more transparency into AI-driven decisions and improving the explanation of why a domain is flagged would further enhance administrative confidence.
Senior Network Security Engineer at Beta Information Technology
Real User
Top 20
May 28, 2026
Umbrella can be improved by adding DHCP services to be a full DDI solution, as most customers today are looking for a full DDI solution. Exporting reports for all the DNS queries, including how much reached and what has been blocked, can give full visibility for the protection. Additionally, adding DDoS protection services to the DNS cloud would provide more layers of security.
Field on-site engineer at a manufacturing company with 10,001+ employees
Real User
Top 10
May 7, 2026
I think eight is a good score. A ten would be the case where we would never encounter any issues, or the proactive work would be really well done without any problems. However, I think we always have problems with any technologies.
Umbrella has a tier-restricted feature in the base package that lacks advanced features such as URL-level filtering or inspection and requires more expensive subscriptions. We feel that if someone has a lower budget for investing in their tool, they may be exposed to bad actors on the DNS layer, which can be highly impacting for any enterprise. Umbrella has complexity and the cost for a small IT team could be more. Though we were not involved in the initial licensing and pricing models, it was handled directly by the customer.
Umbrella can be improved because whenever a VPN connection is established, Umbrella may or may not work properly, and in this case, we face a challenge. They have to improve this part. If they have a dedicated feature where, even after connecting to a VPN, the Umbrella roaming client should be online and it should be able to detect and follow whatever policy is applied, that would make for no confusion, and we can prepare a whitelisting after connecting to the VPN.
I do not feel that anything needs to be changed. Umbrella is solving the purpose and is on point. The UI is intuitive and user-friendly. The learning curve is very easy. The features provided are on point. There is no downtime or challenges, and it is easy to learn and easy to use. In total, I do not feel that improvement is needed as per our organizational use case. Maybe for other organizations, they might have some suggestions, but for our organization specifically, I do not feel that they are lacking somewhere. It is already providing us the best thing. Almost everything is working as we expect. Small things we do not always point out. I feel that it works well and we do not have such problems with them specifically.
Umbrella offers a comprehensive suite designed to enhance security management across digital landscapes with precision. By effectively mitigating risks, it provides robust protection tailored to meet specific requirements.Umbrella stands out with its potent ability to streamline risk management through advanced threat intelligence and adaptive security measures. It incorporates state-of-the-art technology that identifies and neutralizes threats before they impact critical infrastructures. Its...
While Umbrella provides good visibility, reporting and dashboard customization could be improved by being more flexible, especially for management and compliance reporting. When a domain is blocked, administrators sometimes need to navigate multiple logs and dashboards to identify the exact policy or rule responsible. Simplified troubleshooting would improve this experience. More customizable reporting, simplified policy management for large environments, and enhanced troubleshooting capabilities could be included. Regarding Umbrella's AI capabilities, its governance and security can use threat intelligence from Cisco Talos to identify malicious domains, phishing sites, and emerging threats. Machine learning and predictive analysis can be leveraged to detect newly registered or suspicious domains before they are widely known threats. For example, AI-powered investigation summarizes and explains why a domain was blocked. Its accuracy and reliability of output are notable since it provides reliable threat detection using Cisco Talos threat intelligence, machine learning, and domain reputation analysis. In my experience, the accuracy is generally good with effective identification of malicious and phishing domains. However, there can occasionally be false positives where legitimate sites are blocked and require review or whitelisting. The platform is highly reliable for DNS layer protection, but providing more transparency into AI-driven decisions and improving the explanation of why a domain is flagged would further enhance administrative confidence.
Umbrella can be improved by adding DHCP services to be a full DDI solution, as most customers today are looking for a full DDI solution. Exporting reports for all the DNS queries, including how much reached and what has been blocked, can give full visibility for the protection. Additionally, adding DDoS protection services to the DNS cloud would provide more layers of security.
I think eight is a good score. A ten would be the case where we would never encounter any issues, or the proactive work would be really well done without any problems. However, I think we always have problems with any technologies.
Umbrella has a tier-restricted feature in the base package that lacks advanced features such as URL-level filtering or inspection and requires more expensive subscriptions. We feel that if someone has a lower budget for investing in their tool, they may be exposed to bad actors on the DNS layer, which can be highly impacting for any enterprise. Umbrella has complexity and the cost for a small IT team could be more. Though we were not involved in the initial licensing and pricing models, it was handled directly by the customer.
Umbrella can be improved because whenever a VPN connection is established, Umbrella may or may not work properly, and in this case, we face a challenge. They have to improve this part. If they have a dedicated feature where, even after connecting to a VPN, the Umbrella roaming client should be online and it should be able to detect and follow whatever policy is applied, that would make for no confusion, and we can prepare a whitelisting after connecting to the VPN.
Umbrella can be improved with easier migration and easier deployment, as we had to get some really specialized users in to deploy the software.
I do not feel that anything needs to be changed. Umbrella is solving the purpose and is on point. The UI is intuitive and user-friendly. The learning curve is very easy. The features provided are on point. There is no downtime or challenges, and it is easy to learn and easy to use. In total, I do not feel that improvement is needed as per our organizational use case. Maybe for other organizations, they might have some suggestions, but for our organization specifically, I do not feel that they are lacking somewhere. It is already providing us the best thing. Almost everything is working as we expect. Small things we do not always point out. I feel that it works well and we do not have such problems with them specifically.