Cisco Umbrella Reviews

We use Cisco Umbrella to detect malicious URLs, DNS queries, data exfiltration, and DNS tunneling. It is particularly effective in showing DNS queries and providing visibility for external DNS queries, especially in communications to malicious sites from internal systems.

The DNS data exfiltration and the blocking of DNS tunneling are the most effective features for threat prevention in our company. The DNS layer security provided by Cisco Umbrella is very effective for our security posture, offering us vast improvements in visibility over DNS queries and potential threats.

We need to work on integration as it is very complex. Making it more flexible and easy to deploy, particularly when integrating with other technologies like Active Directory and proxies, would be beneficial.

I have been working with Cisco Umbrella for the last three months.

Cisco Umbrella is stable, and I would rate its stability at nine out of ten.

Cisco Umbrella is scalable for our company. I would rate it nine. We are in the POC stage with twenty users, and once we purchase and deploy it, the number of users may increase.

I am satisfied with Cisco support. I would rate customer support ten out of ten due to the excellent assistance throughout the POC process.

Positive

The initial setup was complex, requiring two months for deployment due to the challenging integration process.

Currently, we have not been provided with the financial terms. We are evaluating our internal environment before proceeding with an RFP for a quotation.

The main concern with solutions is financial. Whichever solution gives us a good financial deal, we will consider it. All solutions have similar features yet vary slightly in deployment and workflows.

I recommend using Cisco Umbrella at full capacity with all features. My overall rating for Cisco Umbrella is ten out of ten.

We are using the Cisco Umbrella proxy product. Cisco Umbrella is part of our ongoing project for moving, more or less, to the full Cisco suite. We have Cisco ISE, DNAC, and SD-LAN. We are getting the new SD-WAN from Cisco. It's part of the whole portfolio we are getting from Cisco.

The integration features within, for example, the Cisco VPN product and the Umbrella module are valuable. The new features, mainly the security ones, are also valuable. It improves our security, and it's much more integrated and better than the one we have from Zscaler.

The main issue that we have is with the final steps or the full integration and getting rid of Zscaler. The company still has to fall back to Zscaler when something in Umbrella is not working as expected, such as when we enable SSL inspection. When something is not working 100%, the company is falling back to Zscaler. We have very good support, and I don't know whether this can be improved, but that is one thing to do for the final steps to get rid of the other product.

Its scalability could also be improved.

I've been using this solution for two years.

The stability of the solution is very good.

It could be improved mainly because the proxy is based on countries, and when you have no point to connect in a country, you can create issues. So, the spread around the world could be better.

We have 80,000 end users, and it's all over the globe.

Their TAC support is very good, but it always depends on people. So, there is no in-general there, but the people we are dealing with are very good. I'd rate them a nine out of ten.

Positive

For proxy services, we have been using Zscaler, and for SD-WAN, we have been using Nokia Nuage. For the SD-WAN solution, we made a switch because we had a lot of issues with Nokia Nuage. Don't use Nokia Nuage. It's pretty bad.

For proxy services, we are replacing the Zscaler solution with Umbrella proxy services, but I'm not sure about the reason. It's probably for more security features where using Cisco Umbrella helps us improve our security within. It's much better than the one we have from Zscaler for securing our infrastructure from end to end.

It was very complex because of a little bit of immaturity of the Cisco Umbrella solution in the beginning. All the features were not already enabled. In addition, we also had a moving target where we said, "We would like to have this, and we would like to have that," and when it was not there, we insisted to have it in. It was very difficult and challenging.

We are using BT. I would define our experience with them as big trouble. It's in the name.

On our side, we have three to five people, but it depends on following the sun. We probably have five people worldwide who are supporting this solution.

I'd advise looking into your needs and then comparing those with the features that are really valuable. It has been improved over the last two years, but just look at your needs and what the solution can really deliver.

I'd rate Cisco Umbrella an eight out of ten.

Cisco Umbrella is a first line of defense. It protects the users from going to sites that should be avoided. Cisco Umbrella also protects against malware and phishing. It's a simple and very effective product that works seamlessly in the background. It doesn't disturb you in any way unless you access a website you shouldn't. Then, it will interfere with it and stop you from going there.

It would be good if the more complex versions of Umbrella are simplified so that we can offer them in a more standardized way. We, as a telco, do not operate the same as a traditional integration partner would, who can sell all its services. We try to have a standardized approach as much as we can so that we can sell the solution with as many services added to it as possible. If you look at the structure of businesses in Switzerland, 95% of them have 10 persons or less, and they do not have a security specialist. Therefore, the higher the automated and standardized features, the better it is for them.

We've been offering Umbrella for three to four years.

I've been working with Cisco's products for several years now. We in the B2B area of Sunrise work with Cisco kind of exclusively, it's really our main partner. I look after security products and Umbrella. The cloud-based security products around Umbrella have been the focus of my work.

As a reseller, the value we bring to our customers is the fact that instead of just selling them connectivity or access to the internet, we offer them a base level of security with it. I think that is highly valued by customers since security is typically a topic they struggle to deal with.

When it comes to the stability or performance of Umbrella, we have been very pleased. When you add security on top of unsecured transport, you may have certain delays, but our technical colleagues consider them to be not too bad. Stability has never come up in a customer context as an issue.

When we look at the scalability of Umbrella, we can see the great advantage of it being a cloud-based service. Therefore, scalability is not an issue on our side. We can assume that it will always be around and that the performance will always be good.

I've had very few interactions with Cisco support, and the ones I've had have been good. I'd give Cisco's technical support a rating of nine out of ten.

Positive

We sold a different solution previously, which provided a much simpler DNS protection. It did not have the power and is not really comparable to Umbrella. It was more of a consumer-level product that did not have much of an impact. I had it installed on my internet access at home, and it never intercepted anything I did. It's only once I installed Umbrella that I saw differences in the ways my DNS calls were intercepted. The main reason why we offer Umbrella is its business-grade security.

One of the great advantages of Umbrella DNS is that it's really simple to deploy. It's easy to install, the users do not notice that it's there, and it doesn't interfere with your work. The simplicity and transparency are great advantages of Cisco Umbrella. Cisco could take Umbrella DNS as a good example and also improve on other products.

Cisco solutions are generally perceived to be rather expensive. We have constant internal discussions as to whether we should offer lower-priced security solutions from some of the competitors.

If you are looking for the first time at Umbrella, you should really understand what is behind the solution. Behind Umbrella is Cisco Talos, a research team within Cisco, which is one of the largest private ones in the world. All the input out of the activities of Talos goes into Umbrella and makes it a really valuable product.

As a service provider, we know that other service providers are using Cisco Umbrella, and that was a big factor for us in choosing it as well. Also, we had seen large telcos like TIM in Italy using it for many years and being satisfied with it.

Customers are always worried that somebody in their organization will click on something he or she should not click on. Umbrella does a good job of protecting a business from ruin in worst-case scenarios. It works in the background and is like an airbag.

I would rate Umbrella Easy Protect, which is the simplest on the Umbrella DNS side, at nine out of ten. Because Umbrella SIG is still under development and is very promising, I'd give it an eight out of ten.

Our partnership with Cisco is overall good. It has its ups and downs. Cisco is not always an easy beast to work with. Sometimes you see that traditionally they have a very strong enterprise focus, but we as a service provider have a different need than enterprises, and that sometimes has its challenges.

We use Cisco Umbrella to secure our gateway. All of the DNS forwarding coming out of the company from any site or all the DNS requests are forwarded through Cisco Umbrella, and then they determine if that is a safe address and if the content coming back is safe. They will either reject the addressing out of hand, or they'll look at the Layer 7 content and reject that from making it back to us.

We are using the Secure Internet Gateway (SIG) Advantage package. In terms of deployment, effectively, it's deployed from our private cloud. It's in our data closet on our servers.

It enables us to finally allow laptops to be used as workstations and allow data to leave the building. In the past, laptops were only used for VPN access, but they would connect back to their data inside the company. This has allowed us to have a level of confidence that they're protected as if they were behind our firewall. So, now, we've got work-from-home people who literally have their workstations with them.

We have six sites with 60 to 70 users. The baseline configuration allows for additional protection for any DNS requests as they leave those sites, and then the secondary policy is for the mobile devices as they leave the premises. When they're connected to public WiFi, they have an additional policy that kicks in for that time that they're not connected back to the company. So, when they're on public WiFi without a VPN, the tool will actually put that second policy in place that's more aggressive and offers a higher level of protection when it's not sitting behind the firewall. All that is automated. It's all built into the agent.

We don't allow WiFi inside of our network for connection to our actual business network. As soon as a device is docked, it disables WiFi on that mobile device.

When we have laptops that leave the building, they could connect to public WiFi before they establish a VPN connection back into the company. For that duration or that period of time when they're not docked in the network or on a VPN, they effectively don't have that full layer of security that I provide inside the building. This tool stands in during that period of time, and we extend the security settings through their basic firewall or their cloud-based firewall at that time. So, we do content filtering and control access, but they also are looking at new domains, IP addresses, and bad requests. They're blocking them on my behalf when a laptop is not sitting behind our security appliances.

There are a couple of interface issues. I know that they say that there are feature enhancements that are noted. For example, we've got the Cisco Meraki security appliances, and there, we geofence our company to where we're allowed to send and receive traffic. So, in our case, by default, we only allow traffic to six different countries, which allows us to effectively prevent traffic for the majority of bad players in the world, but they don't give you an easy way to do that in Cisco Umbrella. With Cisco Meraki, I can specify or pick the countries. I can say that I want to only allow traffic from these six countries, and I'm done. With Cisco Umbrella, I have to rely on the fact that they're going to prevent traffic to other countries. They're going to decide if it's good or bad. I can't geofence out. I can plot top-level domains, but .com and .net go global. I can certainly block a China (CN) or a Russia (RU) domain, but that doesn't give me the same level of granularity. 

Apparently, Cisco Umbrella has got that as a feature request to allow an administrator to say, "I specifically only want traffic to and from these countries. Everything else should be dumped." That way, when they're sitting behind my network or they go out in the wild, they have that same level of traffic being blocked.

I have been using it for 14 to 15 years.

We've had no issues. It has done exactly what it's supposed to do.

It is cloud-based. So, scalability should not be an issue. 

Any increase in its usage is all relative to the growth of our staff. Currently, we deploy the laptops for people who need to work from home or are traveling between the banks. That's roughly about 20% of our total staff. Some people aren't going to be working from home, and some of their jobs can't be done from home. They have no need for mobile devices. If there is a need to work from home, its usage will increase. It is there if we need it to scale, but at this point, it is not scheduled to change.

Once I became a paying customer, it was much better. The preliminary training is there, but when you get into the nuances and the details of some of its capabilities, you need to talk to tech support. Once you're a paid customer, you get direct access, and then it's good. When I'm able to get a hold of them, their technical support is a 10 out of 10.

Positive

I didn't use any similar solution previously. 

I was a hundred percent involved in its deployment. We had a couple of issues. The proof of concept was done without a lot of planning. So, there were some mistakes made along the way. If I was doing it again the second time, I wouldn't make the same mistakes. 

The default configurations have your baselines. Those are never supposed to get changed, and I changed and tweaked those for our proof of concept. After a couple of weeks, I had some additional guidance from the Cisco Umbrella team. You leave the baseline configuration, and then you clone and create a new configuration that sits in front of it. So, everyone gets the baseline, and you don't change that. If you want to change it, you make a new policy and then make the changes to that. If you change the baseline default policy and you make a mistake in it, you've to back that all out. If you make it in the new policy, in the worst case, you just delete it, and automatically everyone goes back to baseline. So, there's still a policy in effect. That was a training issue that should have been resolved. Now that I've done it, if somebody asks me, I would say that this is the way you've got to do it.

It was just me taking care of its deployment. In terms of maintenance, once it's configured, unless you're retweaking and adding or removing something that was blocked, it pretty much runs itself.

I have less maintenance to resolve, fix, and reconfigure VPN clients personally, and the feedback from the end-users is that they're more productive.

We were using the free version, and we implemented the paid version about two months ago.

I'm paying a fair price, but everything is negotiable with Cisco. One of the benefits that I got by having Cisco Umbrella is the licensing of the Cisco AnyConnect VPN client. There has always been an issue for years and years with Cisco Meraki in terms of VPN clients and using the native built-in Windows client. It keeps reconfiguring itself. By using Cisco AnyConnect as the VPN client, it's not affected by Windows patching or people typing in passwords by mistake. It's more resilient and doesn't change. With just Meraki solution, there was an extra expense for the Cisco AnyConnect VPN client. By having Cisco Umbrella, that licensing is now included.

There were a couple of other options, and I discussed them with another consultant. As a regulated industry, we have to do vendor management, and vendors have to be vetted. So, Cisco was already a vetted vendor. There are other companies that do the same thing, but Cisco didn't require me to do any more vetting. They were already a vendor.

When it's configured the way it's supposed to work, it turns itself on and off based on the status of the VPN or the dock condition. Once it's configured, it does exactly what it's supposed to do. 

If you're doing a proof of concept on it, fully understand how the policies are configured and what the flow is. You should understand the hierarchical status of the policies to configure it right the first time. You don't really want to guess it.

I would rate it a 10 out of 10.

Cisco Umbrella enables all of our end users to browse the internet and internal networks securely. It can block different things like sites and applications that they shouldn't access according to company policies. For example, we can block different applications or specific site categories.

We also use Cisco SecurePort and SecureX, which is a platform for integrating various Cisco products. We have already integrated Cisco Secure Endpoint and Cisco Umbrella through SecureX, which offers a single pane of glass so you can see all the problems. We have also integrated our Meraki firewalls and access points. We have 500 users, and each of them has the Umbrella agent installed. If you're working in the office, you don't need it because every computer is protected by Umbrella. 

The main benefit of Cisco Umbrella is to prevent the end users from becoming victims of phishing attacks or malicious links in an email. It isn't necessarily about making the users more efficient or productive, but it could help with that. For example, if someone mistakenly clicks on a link and their device is infected, we may need to take it offline for a day or two in order to resolve it. We don't have these incidents, so we can ensure that users won't be affected by any malicious activities and can continue doing what they're doing without worrying about other departments getting infected.

Umbrella lets you inspect client Internet traffic as if it were flowing through a traditional data center security stack. The main thing you can do is check the destination they're trying to access, but you cannot inspect the package. You can see the URL, but you cannot fully inspect the way we're actually using it. The primary goal is to block or allow specific URLs. We don't do any inspection or use any proxy to inspect traffic. 

I would say that we save money using this product because it's easy to use, so you don't need an expert to operate it. It requires some expertise, but it's simple to monitor and maintain. Also, when we want to set up offices in new areas, it's easy to integrate. 

Umbrella is constantly discovering new vulnerabilities. The solution's ability to discover zero-day attacks without significant changes to the platform is crucial. For example, we prohibit certain categories of websites like gaming or gambling, and the categories are constantly updated. We don't need to update the categories to add new websites or constantly check those reports because we know that Umbrella does what it's supposed to. 

The interface is well organized, so you can easily find everything. Even if you don't have much experience with Cisco, you can easily navigate the solution and find your way around. Everything has been done well, from the deployment to monitoring. 

The application is really stable. We never have problems with Cisco not working for our end users. We have an internal communication hub. The office implementation is integrated with our security systems and firewalls, but we also have users worldwide working from home. Our employees are pleased with the user experience, and we've never had reports about Umbrella not working properly or being unable to access a site. It's integrated with Cisco AnyConnect, so our users can access it through a VPN solution.

Umbrella actively processes and blocks malicious DNS queries daily, which is helpful for us because we're a small team. We heavily depend on the tool to do its job properly. It works nicely out of the box. You have to do a little initial configuration, but after that, it blocks everything we want and nothing we don't. We've gotten some false positives with other products, but we've never experienced that with Cisco Umbrella.

Guest internet access is easy to configure. We set more restrictive policies for our guest users, but it hasn't been difficult to spin up consistent policies in three or four different offices. We just attached the policy that we have for guest users to a specific wireless SSID.

Umbrella combines multiple security functions into a single dashboard. If you use Cisco SecureX, there is a dashboard in Umbrella, but you have to look at different areas. In Cisco SecureWorks, you can add the tasks and dashboards you want to monitor, but Umbrella is more standardized, so you cannot make many changes. In addition to the dashboard, we have some daily reports and email alerts. It does what we want. 

Cisco Umbrella hasn't integrated customized reporting yet. With Cisco Secure Endpoint Hub, I can see a report on user downloads and set it up to constantly get an email alert. Based on my understanding, Cisco Umbrella can't do that. You can set it up with third parties, but it would be better if that were built into the platform. 

I joined this company a year ago, but they had already been using Cisco Umbrella for more than three years. 

I have never experienced any outages or downtime. It works all the time.

I rate Cisco support nine out of 10. We had to open a ticket because we had some issues installing the agents, but we haven't had trouble since then. The technical team responded and fixed our issues quickly.

Positive

I used a similar SaaS solution by Palo Alto, but Cisco Umbrella seems to be quite unique because it's a DNS layer. I'm not sure if any other company is doing the same thing. We integrate Cisco Secure Endpoint and Cisco Umbrella to provide end-user detection and prevention. It does what it's supposed to do with most of a lot of admin work. It's a gateway.

I wasn't part of the deployment, but it seems to be straightforward based on what I have seen. It requires a few adjustments to the firewalls and some integration, but it seems relatively simple. We needed to help the users working from home install the agents for Umbrella and AnyConnect, and this was also straightforward to deploy with Kandji, our MDM system.

After deployment, Umbrella doesn't require much maintenance because it's a SaaS application like Gmail. You don't have to do anything except the admin work, such as adding websites or categories. However, Umbrella uses an agent, so we need to update the engine. We can automate all these things, so the maintenance is minimal. 

It's hard to quantify a return, but the cost of a malware attack or customers losing private information is potentially very high. I don't have the numbers for those things, but Cisco Umbrella helps us to avoid those issues. A breach can harm our reputation and damage the entire organization.

Cisco Umbrella is reasonably priced for what it does. I don't have any numbers to compare it with because I don't recall what the other solutions cost. 

I rate Cisco Umbrella nine out of 10.

We started using the standard version of the Cisco Umbrella to upgrade to a newer version last year.

As a company with a global presence spanning over 110 countries, Cosentino requires a uniform security solution that can ensure the safety of its users. Our search for an ideal solution led us to seek one that was easily deployable, integrated seamlessly with our existing systems, and offered robust protection. After thorough market research, we found that Umbrella was the most suitable solution for our needs.

Cisco Umbrella has notably enhanced the perception of security among our users. The solution is seamless and transparent for them to use, and they feel protected at all times. This makes it an excellent solution for users in terms of their experience. Additionally, as mentioned earlier, the quick deployment time is critical for our organization, and Umbrella has significantly improved it.

Cisco Umbrella is an ideal product for our organization because it is a standardized solution that can be implemented uniformly across the entire organization. It adheres to industry standards and provides the same high level of security to all users, regardless of their location or role within the organization. This consistency in security measures ensures that every user in the organization is protected to the same degree.

Thanks to the standardized solution offered by Cisco Umbrella, our IT staff has been able to focus on other projects. Once deployed, we no longer have to worry about security in that particular area. The solution is easy to deploy and seamlessly integrated with our infrastructure, making our lives much easier in this regard. Overall, it has significantly reduced the burden on our IT staff and allowed them to focus on other critical projects.

Cisco Umbrella has enabled us to consolidate our various tools and applications by providing comprehensive security coverage for our users, whether they are working in our office or remotely from home. With Cisco Umbrella, we can address all our security needs related to browsing and network security. While it's not mandatory, we have eliminated the need for most physical firewalls worldwide by leveraging Cisco Umbrella's capabilities. This solution has proved to be a game-changer for us, as it simplifies the deployment process significantly, as previously discussed.

The primary advantage of Cisco Umbrella is its ability to safeguard our users no matter where they are working from - whether it's in the office or remotely, as per the new work model that has emerged globally. This integrated security solution has simplified our lives by combining all the necessary security measures in one product. Additionally, deploying the product is all it takes to protect all our users.

Although Cisco Umbrella has an excellent global network footprint, there is still room for improvement and growth in this area. Additionally, there are bandwidth limitations associated with the connectors that need to be addressed. To be a viable solution for larger offices, Cisco Umbrella must continue to expand and improve its capabilities in these areas.

I have used Cisco Umbrella for approximately four years.

Cisco Umbrella has generally been a stable solution for us, although we have encountered some issues with the new connectors. Currently, we are experiencing some minor problems with disconnections or other issues, but these occurrences have been infrequent.

While the solution is currently scalable, we recognize the need to continue expanding our connection points and bandwidth in order to accommodate future growth.

The support provided by Cisco Umbrella is excellent. In addition to the standard support included with the product, we have also opted for an additional support layer provided directly by Cisco. We have been extremely pleased with the level of service we have received thus far.

While there are areas where improvements could be made, such as the RMA process, overall we are satisfied with the level of service provided by Cisco Umbrella.

I rate the support from Cisco Umbrella an eight out of ten.

Positive

Deploying Cisco Umbrella proved to be a hassle-free experience for us. Since our SD-WAN is based on Cisco Meraki products, integrating Cisco Umbrella with Cisco Meraki was an effortless process. This integration has enabled us to implement the first SASE solution in our organization, and the combined solution of Cisco Umbrella and Cisco Meraki has helped us to set up new offices in less than 30 days, which is a significant improvement compared to the five to six months it used to take us earlier. This has led to a remarkable enhancement in our deployment speed, which is truly amazing.

Calculating the return on investment for a security solution is a challenging task, as it can be difficult to measure. While we have not performed a formal assessment of the return on our Umbrella implementation, I am confident that it has yielded a favorable outcome for our organization.

The licensing and pricing structure of Cisco Umbrella is in line with standard systems on the market, and we have no specific requirements in this area. Overall, we have found it to be an acceptable pricing model for our organization.

One of the main reasons we chose to implement Umbrella over its competitors was due to its extensive global network footprint, which closely matched our own footprint at Cosentino. Additionally, Umbrella's user-friendly interface was preferred by our users over other solutions, making it a more appealing option overall.

My advice to others would be to ensure that the Cisco Umbrella footprint aligns with the organization's needs. This is a crucial factor in ensuring that the product works well for the company.

I rate Cisco Umbrella a nine out of ten.

My main goal with Cisco Umbrella is to ensure protection for my users, regardless of their location. Additionally, the solution provides a positive user experience and is overall a great product.

I'm a principal consultant for one of the energy sector companies, which basically extracts oil and gas and also deals with solar energy. We are dealing with anything related to energy. It's a supply chain as well.

We have been using Cisco Umbrella for more than one year. Basically, after the COVID situation, when the hybrid model came, we needed to give work-from-home options to the employees and look into cybersecurity. We had to get some cloud security. That is why we have introduced Cisco Umbrella.

We chose Cisco Umbrella because it's a better option industry-wide. It can inspect all the web traffic from anywhere. When traffic is generated from any local internet, it might be anything. It doesn't qualify for cyber security for any company. That's why you have to have something to inspect all the traffic. Cisco is a good vendor for us. That's why we chose Cisco Umbrella.

By using Cisco Umbrella, you are sure of inspecting all the traffic. Whenever the user machine is connected to your network, it is inspected. That's the best thing. It means you are sure that nothing is being exported or imported without your choice. That is the best feature.

It generates alerts, and you can integrate it with your ticketing tool. When it's integrated, it can also generate a ticket. That means you know when something is wrong or what's going on. It has helped a lot during this hybrid model, and I don't think that this hybrid model is going anywhere. So, you can simply say that Cisco Umbrella is a good tool for the future as well.

It hasn't freed up our IT staff for other projects because no one thought about this work-from-home model before COVID. There were many alerts after Cisco Umbrella was installed, which means many staff members were invested, but its automation, such as automatically generating alerts and automatically assigning tickets to a queue, has helped a lot. We don't need to do any physical or manual inspection. It's being done automatically, which is a good point, but it hasn't decreased any resource hours.

It's the best tool to inspect everything. We can inspect all the user traffic generated from anything.

If you wish to inspect all the traffic and it's integrated with Cisco AnyConnect, all the traffic basically goes through Cisco AnyConnect, which is not a good idea. That means you need to have more internet capacity as a data sampler, so in the case of a split tunnel, we cannot inspect the traffic that is being migrated through the local internet. I'm not sure whether there is a possibility wherein Cisco Umbrella can also inspect the traffic that is outside the AnyConnect tunnel.

We have been using Cisco Umbrella for more than one year.

We're using Cisco Firepower to replace the ASAs as perimeter firewalls to the university's network. We're predominantly using Cisco Umbrella for web filtering of staff and student web traffic that is generated from the university campuses.

Cisco solutions are simple, efficient, and effective. We're definitely seeing that our users are protected by using these solutions. We're using Cisco Umbrella to protect around 1,500 staff and about 15,000 to 16,000 students. At any one time, on our campus, we could have 3,000 student endpoints protected and about 1,500 members of staff with laptops who are working hybrid since COVID. So, they're protected when they're on campus and when they're off campus. As a university in Edinburgh with three main campuses, we have two internet connections where firewalls protect us from bad stuff on the internet.

Cisco solutions have invariably saved us time. Without them, we would've had ransomware attacks and cyber attacks. So, they have helped protect us as much as they can. I don't have the metrics, but it's a university, so we're probably quite often under attack.

Our operating expenditures (OpEx) haven't really reduced. With moving to subscription-based, our OpEx has probably gone up rather than our CapEx coming down. 

The insight into what our users are doing via Cisco Umbrella is valuable. Knowing that we're protecting our users as they leave our network is also valuable now because we've got more hybrid working. With Cisco Umbrella and Cisco Secure clients on all our hybrid working laptops, we know that our staff is secure even when they're working from home.

They should provide more integrations and bring things together so that there is a more standard feel to their platform. We also use Cisco ISE, and it has a very different feel from Cisco Umbrella. We also have some Meraki products which feel very different from others. It's like you have to learn something new with every product you buy.

We've had Cisco ASAs, but we're just in the process of replacing them with Firepower, so Firepower is quite new. We've been using Cisco Umbrella since 2020.

We have a good Cisco partner called Ping Network Solutions in Scotland, so anytime we need to reach out for a bit of advice, we can ask them. We had good pre-sale support with Cisco as well to ensure that we get the right products that match our requirements. I'd rate their customer service a nine out of ten.

Positive

Instead of Cisco Umbrella, we used Zscaler for web filtering, but we've always had Cisco firewalls.

When we switched in 2020, Zscaler didn't seem to be developing their product as well. It didn't match our requirements anymore.

I was involved in its deployment although I had a technical team working underneath me. It was easier than Zscaler because Zscaler made us have two instances, one for staff and one for students. It was very complicated, and we had to route traffic in different ways. Being able to do it by DNS with Cisco Umbrella was just easy.

I managed the team that was deploying it. My role involved making decisions about what traffic and which groups of users we put through first, some early field tests, and things like that.

We did it all by ourselves.

We have seen an ROI. With Zscaler, we had more operational issues than we've had with Cisco Umbrella.

You get what you pay for.

We use Cisco Firepower, and we use Cisco Umbrella. Currently, these two products are not very integrated. We don't have the complete suite of Cisco solutions. We just have two that aren't joined. We also work with other technology partners, such as Microsoft, but in terms of the perimeter of our network, it has always been a solid product like the Cisco firewall.

I'd rate Cisco Umbrella a nine out of ten.