Try our new research platform with insights from 80,000+ expert users

Forcepoint CASB vs Prisma Access by Palo Alto Networks comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 7, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

iboss
Sponsored
Ranking in Cloud Access Security Brokers (CASB)
7th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
19
Ranking in other categories
Secure Web Gateways (SWG) (5th), Internet Security (3rd), Web Content Filtering (1st), ZTNA as a Service (8th), Secure Access Service Edge (SASE) (8th)
Forcepoint CASB
Ranking in Cloud Access Security Brokers (CASB)
18th
Average Rating
7.2
Reviews Sentiment
5.7
Number of Reviews
8
Ranking in other categories
No ranking in other categories
Prisma Access by Palo Alto ...
Ranking in Cloud Access Security Brokers (CASB)
1st
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
65
Ranking in other categories
Secure Web Gateways (SWG) (4th), Enterprise Infrastructure VPN (6th), ZTNA as a Service (2nd), Secure Access Service Edge (SASE) (2nd)
 

Mindshare comparison

As of October 2025, in the Cloud Access Security Brokers (CASB) category, the mindshare of iboss is 2.3%, up from 1.6% compared to the previous year. The mindshare of Forcepoint CASB is 1.4%, up from 1.0% compared to the previous year. The mindshare of Prisma Access by Palo Alto Networks is 17.8%, down from 19.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Access Security Brokers (CASB) Market Share Distribution
ProductMarket Share (%)
Prisma Access by Palo Alto Networks17.8%
iboss2.3%
Forcepoint CASB1.4%
Other78.5%
Cloud Access Security Brokers (CASB)
 

Featured Reviews

Matt Crockford - PeerSpot reviewer
It's easy to roll out, and their understanding of our business made it seamless
One aspect we value about iboss is its simplicity. Their customer service is brilliant, and they are super responsive and knowledgeable. It's easy to roll out, and their understanding of our business made it seamless. We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times. The user interface is highly intuitive. Our IT team picked it up with minimal training. It's arranged so that it's easy to find where things are. Another advantage is the single pane of glass console, which gives you visibility into what's happening. We're not fully there yet because we haven't implemented zero trust, but we're excited about the possibilities from the demos we've seen. We launched a POC of iboss' ChatGPT Risk Protection feature two weeks ago. AI is a great tool, but you need to be careful what you put into it. My biggest fear is employees inputting sensitive corporate information or customer PII data into one of these chatbots. I was impressed by our trial of the feature. It's exactly what we wanted. Now, when a user goes to ChatGPT, there's a banner warning them not to share information, and we can block conversations containing customer data like bank details and email addresses. I don't want to stop people from using it, but we need visibility. We've only tried it on a test group of 15 people. You can configure it to look for specific keywords or integrate it with your DLP policy if you have that configured
Edwin Eze Osiago - PeerSpot reviewer
Reliable, easy to set up and offers good visibility
It could be more robust, especially around custom applications. We've not really seen value around our custom applications, most especially when these applications are hosted on-premise. If there's a way Forcepoint can do something to ensure that the CASB also protects applications that are hosted on-premise, that would be ideal. Currently, basically, cloud-hosted applications, that are internet-facing are protected. If we can also have a CASB sit in front of our on-prem hosted applications, it would be massive. Forcepoint removed the ability to scan for unsanctioned applications on the CASB. Initially, CASB used to have that feature where you can scan for the applications and be able to support unsanctioned applications being used by the user. They moved it to another product. If there is an opportunity to speak to the product managers and get some features back, that would be ideal.
Roberto Pastorino - PeerSpot reviewer
Have supported client adoption of security solutions but need more control over infrastructure
It's a working solution. It's not the easiest, but no DLP solution is easy. With Netskope, the whole infrastructure is proprietary. Prisma Access by Palo Alto Networks is using a service in AWS, and it's not totally a proprietary infrastructure. Sometimes a third-party outage could impact the whole operability. I'm not certain if the vendor is moving towards sovereignty of infrastructure at this moment, but from what I saw in the past, there was this reliance on third parties for the infrastructure: AWS, GCP, Oracle, and others. This is one point of attention for me. I would prefer more proprietary infrastructure.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The iboss system is highly reliable. The false positive rates are small compared to some other systems we've experienced through other partner agencies who use competing solutions."
"First of all, the security policies are essential. I do not have to rely solely on Active Directory for our users."
"iboss is pretty scalable. They provide good support. The case managers you work with to coordinate what you need are pretty good."
"Its initial setup was straightforward."
"iboss is among the few products providing inline filtering where no application is needed on the device."
"The console is cloud-based, which is something I really appreciate."
"Granular setup, which was able to set different levels of filters using the OUs in the AD."
"Because of iboss, I did not have to assign web filtering tasks to my techs on a daily basis."
"As it is based on AWS, it is not a problem."
"Generally, most of our customers are happy with it though."
"The tool's most valuable feature is its management ease."
"The most valuable aspect for us is the fact that the product seamlessly integrates with the Forcepoint DLP."
"It gives you value for your investment."
"Macro integration is a good feature."
"The product offers an easy initial setup."
"The product's initial setup phase is simple."
"Monitoring is the most valuable feature because we can easily monitor all kinds of stuff coming over the network. We can check the dashboard and work accordingly."
"Prisma Access by Palo Alto Networks is a seamless solution."
"The remediation process is easy compared to other platforms."
"It protects all app traffic so that users can gain access to all apps. Unlike other solutions that only work from ports 80 and 443, which are predominantly for web traffic, Prisma Access covers all protocols and works on all traffic patterns... The most sophisticated attacks can arise from sources that are not behind 80/443."
"It's quite reliable and performs well for users."
"Prisma helped us build a moat around our production systems. It's now impossible to log into our production from a non-MDM laptop. Prisma Access provides decent security overall."
"The setup is relatively straightforward."
 

Cons

"Our biggest problem with their service was it did not recognize the device and filtering did not always work correctly."
"File integrity monitoring would be very advantageous as an additional feature."
"Sometimes, obviously, there are bugs."
"Its pricing could be better."
"For zero trust implementation, we encountered complexity issues, especially with a large infrastructure company ExxonMobil."
"The solution could be stronger on the integration side and offer more cloud applications like G Suite or Oracle."
"Regarding pricing, setup costs, and licensing, iboss is not cheap, and that's my only concern."
"SSL decryption: We had issues with learners using apps instead of using web browsers. This type of encryption is tough for any appliance in a BYOD environment."
"They should work on the possibility of consolidating all of the products with the group of agents."
"The solution needs to be easier to install, and they need to clean up the backend, so stuff doesn't break."
"There are various modules to secure a public cloud, such as Cloud Security Posture Management. You might have seen these features available if you've reviewed solutions like Zscaler or Netskope. A full-fledged CASB should be manageable. However, the tool does not seem to offer complete public cloud visibility. While it provides some cloud visibility and can manage API traffic for Web 2.0, it lacks a specific module for securing public cloud environments."
"Integration is an area of the solution that needs to be improved."
"Forcepoint removed the ability to scan for unsanctioned applications on the CASB."
"When using the Forcepoint CASB, and you are a remote worker, basically not in the office, you have to have an agent on your computer, a Forcepoint agent. However, with many other CASB solutions, they can integrate with MDM."
"Lacks different ways to authenticate users."
"I would like the solution to support a different type of authentication. We can't configure a secondary method for our portal."
"They can add some new characteristics. For example, when an incident triggers, they can automatically send a template for a particular match that is related to the policy. We don't have that right now. It is something to improve. There could be more automation for certain actions. For example, for a particular group, it can send an administrator alert to their manager. It was one of the concerns of our customers."
"Palo Alto needs to improve the GlobalProtect agent to work as a secure web gateway agent, not only as a VPN agent because some companies would want only a secure gateway. They wouldn't want a full VPN. So, Palo Alto has to make the VPN agent work as a secure web gateway agent for those customers who want only the secure web gateway solution."
"They automatically update and they should give us time to fully understand what they're updating so that we can make sure it doesn't impact production."
"The solution needs to be more compatible with other solutions. This is specifically a problem for us when it comes to healthcare applications. They have proprietary connection types and things of that nature that make compatibility a challenge sometimes."
"There is some particular traffic that the security team wants to filter out and apply their own policies and they cannot."
"The tools' scalability is subject to some limitations when done on-premise due to the need for additional licenses. However, in other scenarios, increasing scalability involves expanding infrastructure to accommodate more third-party VPN access. It is scalable as long as you pay the money. Also, it needs to improve security."
"One thing that would help is if we could get a guide. With Cisco, for example, you can just type the problem regarding your Cisco product and you will easily get your solution. In Palo Alto, however, it's not easy to find the solutions."
 

Pricing and Cost Advice

"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."
"It is probably in line with other solutions, but I do not deal with the financial side."
"The overall pricing for iboss is very competitive and transparent."
"We have not priced the solution recently, but they were competitive with other vendors in the past."
"It is expensive compared to one of its competitors."
"We had the cost of purchasing a new appliance along with the implementation and licensing costs. However, the following year, the cost of just licensing was similar to what was paid the previous year for a new appliance along with the implementation and licensing costs."
"The solution is not that expensive compared to Zscaler. Netskope is between Forcepoint CASB and Zscaler in terms of cost. Forcepoint CASB would be the first choice because it negotiates well and offers a perpetual license, though it may seem subscription-based. I rate its pricing a six out of ten."
"The pricing really depends on the size of the customer's business because it is price-relevant to the environment."
"They price their products using credit modules."
"The licensing cost is about 18,000 euros."
"Based on what I have heard from others, it is a pricey solution as compared to its peers, but I am not sure. However, considering the features that it offers, it is a break-even point. You get whatever they are promising."
"Actually the solution is very expensive. I don't know the particulars since the purchasing team dealt with it."
"We have to pay additional costs for maintenance and support services."
"Prisma Access is one of the best compared to other products on the market. The cost is favorable, and Palo Alto provides a simple architecture, so I recommend the solution to anyone using a different product. There are no hidden costs besides the license; what you see is what you get."
"I would advise choosing your options according to your company's needs. Just go for what you want and do not pay for anything extra in terms of licensing. You need to determine how much bandwidth is required in your company network, and according to that, you should pay for the license. The mobile user license is based on the number of users who are going to use the VPN solution. You need to determine how many mobile users you are going to have in your network, and you should pay according to that. There are no other costs in addition to licensing, but if you go for the consultant services of Palo Alto networks to deliver the solution for you, then you need to pay something extra. That is not a part of licensing."
"Prisma Access is a little bit expensive."
report
Use our free recommendation engine to learn which Cloud Access Security Brokers (CASB) solutions are best for your needs.
872,778 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Computer Software Company
11%
Manufacturing Company
9%
Comms Service Provider
6%
Comms Service Provider
12%
Manufacturing Company
12%
Financial Services Firm
12%
Computer Software Company
12%
Computer Software Company
12%
Financial Services Firm
12%
Manufacturing Company
11%
Government
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise6
Large Enterprise5
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise1
Large Enterprise2
By reviewers
Company SizeCount
Small Business23
Midsize Enterprise21
Large Enterprise27
 

Questions from the Community

What needs improvement with iboss?
For zero trust implementation, we encountered complexity issues, especially with a large infrastructure company Exxon...
What is your primary use case for iboss?
Previously when I used iboss, we did the POC for iboss for ExxonMobil. Four or five people wanted to move from our ol...
What is your experience regarding pricing and costs for iboss?
Regarding pricing, setup costs, and licensing, iboss is not cheap, and that's my only concern. There are cheaper alte...
What is your experience regarding pricing and costs for Forcepoint CASB?
The solution is not that expensive compared to Zscaler. Netskope is between Forcepoint CASB and Zscaler in terms of c...
What needs improvement with Forcepoint CASB?
There are some areas that could be improved, particularly regarding support issues. Forcepoint could enhance their pr...
What is your primary use case for Forcepoint CASB?
People typically use Forcepoint CASB along with other Forcepoint tools such as Forcepoint Secure Web Gateway.
What is the better solution - Prisma Access or Zscaler Private Access?
We looked into Prisma Access before choosing Zscaler Private Access (ZPA). Palo Alto’s Prisma Access is a secure ac...
What do you like most about Prisma Access by Palo Alto Networks?
The most valuable features of the solution are in the areas of the secure remote access it provides while also being ...
What is your experience regarding pricing and costs for Prisma Access by Palo Alto Networks?
From my experience, Palo Alto is more expensive compared to solutions like Netskope and Triscale.
 

Also Known As

iBoss Cloud Platform
Imperva Skyfence
Palo Alto Networks Prisma Access, Prisma Access, GlobalProtect, Palo Alto GlobalProtect Mobile Security Manager, Prisma SaaS by Palo Alto Networks, Prisma Access
 

Overview

 

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.
Zions Bank, GE Healthcare, HomeAway, Logitech, Universal, California National Resources Agency and many mor
Concord Hospital, State of Colorado, Essilor International, RheinLand Versicherungsgruppe, University of Westminster, Universidade Nove de Julho, SPAR Austria, CAME Group, ZipRealty, Greenhill & Co., IKT Agder, Aviva Stadium, Animal Logic, Management & Training Corporation, Brigham Young University Hawaii, School District of Chilliwack
Find out what your peers are saying about Forcepoint CASB vs. Prisma Access by Palo Alto Networks and other solutions. Updated: September 2025.
872,778 professionals have used our research since 2012.