Try our new research platform with insights from 80,000+ expert users

Forcepoint CASB vs Prisma Access by Palo Alto Networks comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 7, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

iboss
Sponsored
Ranking in Cloud Access Security Brokers (CASB)
7th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
19
Ranking in other categories
Secure Web Gateways (SWG) (5th), Internet Security (3rd), Web Content Filtering (1st), ZTNA as a Service (8th), Secure Access Service Edge (SASE) (8th)
Forcepoint CASB
Ranking in Cloud Access Security Brokers (CASB)
18th
Average Rating
7.2
Reviews Sentiment
5.7
Number of Reviews
8
Ranking in other categories
No ranking in other categories
Prisma Access by Palo Alto ...
Ranking in Cloud Access Security Brokers (CASB)
1st
Average Rating
8.4
Reviews Sentiment
7.0
Number of Reviews
64
Ranking in other categories
Secure Web Gateways (SWG) (4th), Enterprise Infrastructure VPN (6th), ZTNA as a Service (2nd), Secure Access Service Edge (SASE) (2nd)
 

Mindshare comparison

As of October 2025, in the Cloud Access Security Brokers (CASB) category, the mindshare of iboss is 2.3%, up from 1.6% compared to the previous year. The mindshare of Forcepoint CASB is 1.4%, up from 1.0% compared to the previous year. The mindshare of Prisma Access by Palo Alto Networks is 17.8%, down from 19.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Access Security Brokers (CASB) Market Share Distribution
ProductMarket Share (%)
Prisma Access by Palo Alto Networks17.8%
iboss2.3%
Forcepoint CASB1.4%
Other78.5%
Cloud Access Security Brokers (CASB)
 

Featured Reviews

Matt Crockford - PeerSpot reviewer
It's easy to roll out, and their understanding of our business made it seamless
One aspect we value about iboss is its simplicity. Their customer service is brilliant, and they are super responsive and knowledgeable. It's easy to roll out, and their understanding of our business made it seamless. We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times. The user interface is highly intuitive. Our IT team picked it up with minimal training. It's arranged so that it's easy to find where things are. Another advantage is the single pane of glass console, which gives you visibility into what's happening. We're not fully there yet because we haven't implemented zero trust, but we're excited about the possibilities from the demos we've seen. We launched a POC of iboss' ChatGPT Risk Protection feature two weeks ago. AI is a great tool, but you need to be careful what you put into it. My biggest fear is employees inputting sensitive corporate information or customer PII data into one of these chatbots. I was impressed by our trial of the feature. It's exactly what we wanted. Now, when a user goes to ChatGPT, there's a banner warning them not to share information, and we can block conversations containing customer data like bank details and email addresses. I don't want to stop people from using it, but we need visibility. We've only tried it on a test group of 15 people. You can configure it to look for specific keywords or integrate it with your DLP policy if you have that configured
Edwin Eze Osiago - PeerSpot reviewer
Reliable, easy to set up and offers good visibility
It could be more robust, especially around custom applications. We've not really seen value around our custom applications, most especially when these applications are hosted on-premise. If there's a way Forcepoint can do something to ensure that the CASB also protects applications that are hosted on-premise, that would be ideal. Currently, basically, cloud-hosted applications, that are internet-facing are protected. If we can also have a CASB sit in front of our on-prem hosted applications, it would be massive. Forcepoint removed the ability to scan for unsanctioned applications on the CASB. Initially, CASB used to have that feature where you can scan for the applications and be able to support unsanctioned applications being used by the user. They moved it to another product. If there is an opportunity to speak to the product managers and get some features back, that would be ideal.
Amar-Patil - PeerSpot reviewer
Enables seamless policy management and supports secure remote work
Our primary use case for Prisma Access by Palo Alto Networks is to control the internet and serve as an internet proxy. Additionally, we use it for secure remote work One of the most valuable features of Prisma Access by Palo Alto Networks is the ability to manage on-premise firewalls. We can…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Technical support is pretty sharp and very responsive."
"The iboss system is highly reliable. The false positive rates are small compared to some other systems we've experienced through other partner agencies who use competing solutions."
"iboss has significantly lowered the number of security incidents. It is crazy how much it blocks and how much it is aware of the outside danger."
"We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times."
"Content filtering is the most useful feature of iboss."
"Valuable features: Within the filter: Controls (Web categories, applications, and Allow/Block list) and Network (local Subnets). Within the reporter: Logs (Event Log) and Reports."
"I would rate the technical support of iboss a solid 10 without a shadow of a doubt."
"First of all, the security policies are essential. I do not have to rely solely on Active Directory for our users."
"The product offers an easy initial setup."
"Macro integration is a good feature."
"Generally, most of our customers are happy with it though."
"As it is based on AWS, it is not a problem."
"The most valuable aspect for us is the fact that the product seamlessly integrates with the Forcepoint DLP."
"The tool's most valuable feature is its management ease."
"It gives you value for your investment."
"It's quite reliable and performs well for users."
"There are plenty of features this solution provides and the most valuable would be the complete security protection we are receiving. We are provided with similar security that the Palo Alto AWS solution has. This includes features such as a firewall and machine learning AI."
"The initial setup is very straightforward."
"The solution is not very complex and is easy to manage for people who may or may not have knowledge about Palo Alto Networks."
"GlobalProtect has been beneficial for its cloud security capabilities, which are vital as businesses seek hybrid options and need to support remote workers while addressing latency issues."
"Palo Alto Firewall is one of the best firewalls in the world."
"It is geographically dispersed, and it sits on top of Google and AWS platforms. Therefore, you don't face the standard issues, such as latency or bandwidth issues, that you usually face in the case of on-prem data centers."
"The most valuable features of the solution stem from the fact that it offers stability and scalability while being a very secure product."
 

Cons

"Our biggest problem with their service was it did not recognize the device and filtering did not always work correctly."
"If they could implement an extra security layer preventing access to iboss from the open internet, it would be great."
"Our iboss subscription access should be more secure with an OTP or VPN etc. It is easy to gain access if, for example, hackers obtain my username and password."
"One thing I would like to see differently with their Zero Trust platform is that some of the AI aspects related to high-risk activities have more false positives."
"Fold that in with the risk intelligence they're getting from all of the different subscriptions they are a part of. Now, these security companies subscribe to things like emerging threats, databases, etc. You can fold all this intelligence to decide what's happening on an endpoint. I would love to see them start moving into that space. That would compete directly with Microsoft. Maybe that's why they haven't. Having that ability native within the solution would be great. The other area in which I would love to see improvement is more detailed descriptions of why they block websites."
"Regarding pricing, setup costs, and licensing, iboss is not cheap, and that's my only concern."
"The solution could be stronger on the integration side and offer more cloud applications like G Suite or Oracle."
"Its pricing could be better."
"There are various modules to secure a public cloud, such as Cloud Security Posture Management. You might have seen these features available if you've reviewed solutions like Zscaler or Netskope. A full-fledged CASB should be manageable. However, the tool does not seem to offer complete public cloud visibility. While it provides some cloud visibility and can manage API traffic for Web 2.0, it lacks a specific module for securing public cloud environments."
"Forcepoint removed the ability to scan for unsanctioned applications on the CASB."
"Lacks different ways to authenticate users."
"The solution needs to be easier to install, and they need to clean up the backend, so stuff doesn't break."
"They should work on the possibility of consolidating all of the products with the group of agents."
"Integration is an area of the solution that needs to be improved."
"When using the Forcepoint CASB, and you are a remote worker, basically not in the office, you have to have an agent on your computer, a Forcepoint agent. However, with many other CASB solutions, they can integrate with MDM."
"One thing that would help is if we could get a guide. With Cisco, for example, you can just type the problem regarding your Cisco product and you will easily get your solution. In Palo Alto, however, it's not easy to find the solutions."
"The initial support team is not very good. Most of the time, I have found that they are one to three years experienced only. They don't have network expertise. They know about Palo Alto products but don't know how to troubleshoot the issues. We have to guide them most of the time to troubleshoot correctly since their approach is not developed."
"They automatically update and they should give us time to fully understand what they're updating so that we can make sure it doesn't impact production."
"Palo Alto needs to improve the GlobalProtect agent to work as a secure web gateway agent, not only as a VPN agent because some companies would want only a secure gateway. They wouldn't want a full VPN. So, Palo Alto has to make the VPN agent work as a secure web gateway agent for those customers who want only the secure web gateway solution."
"It's not very easy to use. Sometimes it's buggy and there are problems when doing updates. The user interface is okay, but some configuration items are difficult. I would like it to be less buggy and easier to configure, to better streamline the user experience."
"One area for improvement is for them to stay on top of keeping their CVEs on their platform up to date."
"We are using the SaaS offering. We use our applications for microservices. We use Twistlock to scan containers, and it displays these results in Prisma, which is a good feature because we can see vulnerabilities with respect to these containers. We can see everything in a very detailed manner. However, when you have different environments for a single application, such as DEV, QA, PROD, and TEST, all these environments run multiple containers, which can lead to a very high number of containers. In such a scenario, it shows you the alerts for all those containers that have vulnerabilities. If you show the results of all the containers that share the same image, it is not going to add any value. Therefore, they should narrow down the alerts based on a container. It should show information for a single container. Otherwise, the person who is looking at the results gets the impression that he has to fix all these issues. This is something that they can improve."
"They can add some new characteristics. For example, when an incident triggers, they can automatically send a template for a particular match that is related to the policy. We don't have that right now. It is something to improve. There could be more automation for certain actions. For example, for a particular group, it can send an administrator alert to their manager. It was one of the concerns of our customers."
 

Pricing and Cost Advice

"It is expensive compared to one of its competitors."
"The overall pricing for iboss is very competitive and transparent."
"We have not priced the solution recently, but they were competitive with other vendors in the past."
"It is probably in line with other solutions, but I do not deal with the financial side."
"We had the cost of purchasing a new appliance along with the implementation and licensing costs. However, the following year, the cost of just licensing was similar to what was paid the previous year for a new appliance along with the implementation and licensing costs."
"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."
"The solution is not that expensive compared to Zscaler. Netskope is between Forcepoint CASB and Zscaler in terms of cost. Forcepoint CASB would be the first choice because it negotiates well and offers a perpetual license, though it may seem subscription-based. I rate its pricing a six out of ten."
"The pricing really depends on the size of the customer's business because it is price-relevant to the environment."
"In terms of pricing, considering that it is a two or three years old solution, they should apply big discounts for the next two or three years. This approach will be better for them to capture the market."
"Prisma SaaS is more expensive than similar solutions but I think it's worth it."
"The licensing model for this product is complicated and changes all the time, making it very hard for the user to comprehend the configuration."
"The price has been good for the ROI during these difficult times for the cruise industry. There are no hidden costs; what the product offers is what you get."
"This is not an expensive product and everything is included with one license."
"I'm still comparing, but the solution is quite expensive."
"Prisma Access by Palo Alto Networks has flexible licensing models with different categories. It comes with different features which can be removed if not needed. However, its pricing is high."
"The pricing for this solution is on the higher end."
report
Use our free recommendation engine to learn which Cloud Access Security Brokers (CASB) solutions are best for your needs.
869,513 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Computer Software Company
11%
Manufacturing Company
9%
Government
6%
Comms Service Provider
12%
Manufacturing Company
12%
Computer Software Company
12%
Financial Services Firm
9%
Computer Software Company
12%
Financial Services Firm
12%
Manufacturing Company
12%
Government
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise6
Large Enterprise5
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise1
Large Enterprise2
By reviewers
Company SizeCount
Small Business21
Midsize Enterprise21
Large Enterprise28
 

Questions from the Community

What needs improvement with iboss?
For zero trust implementation, we encountered complexity issues, especially with a large infrastructure company Exxon...
What is your primary use case for iboss?
Previously when I used iboss, we did the POC for iboss for ExxonMobil. Four or five people wanted to move from our ol...
What is your experience regarding pricing and costs for iboss?
Regarding pricing, setup costs, and licensing, iboss is not cheap, and that's my only concern. There are cheaper alte...
What is your experience regarding pricing and costs for Forcepoint CASB?
The solution is not that expensive compared to Zscaler. Netskope is between Forcepoint CASB and Zscaler in terms of c...
What needs improvement with Forcepoint CASB?
There are some areas that could be improved, particularly regarding support issues. Forcepoint could enhance their pr...
What is your primary use case for Forcepoint CASB?
People typically use Forcepoint CASB along with other Forcepoint tools such as Forcepoint Secure Web Gateway.
What is the better solution - Prisma Access or Zscaler Private Access?
We looked into Prisma Access before choosing Zscaler Private Access (ZPA). Palo Alto’s Prisma Access is a secure ac...
What do you like most about Prisma Access by Palo Alto Networks?
The most valuable features of the solution are in the areas of the secure remote access it provides while also being ...
What is your experience regarding pricing and costs for Prisma Access by Palo Alto Networks?
From my experience, Palo Alto is more expensive compared to solutions like Netskope and Triscale.
 

Also Known As

iBoss Cloud Platform
Imperva Skyfence
Palo Alto Networks Prisma Access, Prisma Access, GlobalProtect, Palo Alto GlobalProtect Mobile Security Manager, Prisma SaaS by Palo Alto Networks, Prisma Access
 

Overview

 

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.
Zions Bank, GE Healthcare, HomeAway, Logitech, Universal, California National Resources Agency and many mor
Concord Hospital, State of Colorado, Essilor International, RheinLand Versicherungsgruppe, University of Westminster, Universidade Nove de Julho, SPAR Austria, CAME Group, ZipRealty, Greenhill & Co., IKT Agder, Aviva Stadium, Animal Logic, Management & Training Corporation, Brigham Young University Hawaii, School District of Chilliwack
Find out what your peers are saying about Forcepoint CASB vs. Prisma Access by Palo Alto Networks and other solutions. Updated: September 2025.
869,513 professionals have used our research since 2012.