Try our new research platform with insights from 80,000+ expert users
Drake Kapler - PeerSpot reviewer
Network Planning Associate at a manufacturing company with 1,001-5,000 employees
Video Review
Real User
We can see all of our locations in one place and only have to make changes once for all our locations
Pros and Cons
  • "Umbrella, being one pane for managing, being all-encompassing, allows us to quickly go in, make a change, and it applies to either every location, if we want it to, or we can have policies in place that only apply to certain users or certain computers."
  • "In my experience with Umbrella support, sometimes the response times take a bit more time than we would like... sometimes, if you go through email, it can take quite a while to get a response."

What is our primary use case?

We're actually in the process of using this to replace our current web proxies. We use both, side-by-side, at the moment. The plan in the future is to eventually get those replaced with Umbrella so that we can have an overall, overarching proxy either that's based in the cloud or whatever we need. But this currently is our most convenient way of replacing web proxies across all of our locations at our company.

How has it helped my organization?

It's definitely made things more centralized. Our current setup is that we have proxies, either physical or virtual, throughout our different locations. Each location has its own proxy at the moment. What's nice about Umbrella is that we can just go into the site and see all of our locations in one place and look at all of our computers, users—everything. It's not divided into separate proxies that we have to go into and figure out which person's using which proxy. Umbrella lets us just see everybody at once, which is really handy for us, and we don't have to spend too much time messing around with figuring out who's where and which location needs this change. [We can just make] changes throughout every location at once, rather than one at a time with those proxies that we currently use.

The past couple of years, [the fact that the solution helps support hybrid work has been] especially important because now we can't use those proxies if people aren't onsite. The way our network was set up was that we had it filtering through the firewall and the firewall was taking certain subnets and filtering those through the proxy. But obviously, when people work from home, we had to get a VPN connection set up. Before COVID, we did not have a work-from-home solution at the time, so everybody had to be in the office. Obviously, that all changed very quickly and Umbrella became a much bigger priority for us because that was our main replacement for those proxies at the time.

We had to expedite the process of setting it up, but what was nice about Umbrella was that it was so user-friendly, it was so easy to set up on our end, that it didn't take as much time as we thought it would. It just simplified the entire process throughout the couple of years that we have especially needed it. But what's cool about that is that now, it's a permanent part of our network. Thanks to the last couple of years, we use it all the time now. It wasn't just a temporary solution for hybrid work because now we use it for both. We have the ability to do hybrid work, but we also have the ability to use it for our employees onsite as well.

[When it comes to threat remediation] most of it is automatic so we don't really have to worry about it too much. Umbrella will just block something if it detects it as malware. That is a super convenient feature for us, that we don't have to manually review every single site. If we do have to review a site, it's nice to have that investigative tool. We put in the URL and it gives us a risk score, depending on how dangerous that site might be. That's super helpful for us to analyze that site, take a look at it, and make a decision on whether we need to block it, or if it can be unblocked. Every situation is different, but Umbrella makes that summary page very convenient for us. It allows us to make decisions much faster and more efficiently.

Our cyber team is a bit different from our network team. We have a separate team for that, but it's nice because they also use Umbrella for a lot of that, depending on what the site is. We use the investigative tool for the risk score, but it also comes with a few other tools, and part of that is just so that they can assess what's safe and what's not safe and what might be detected as malware. Obviously, they have other tools for that as well, so Umbrella is just one cog in the big system. But it definitely allows for easier communication between our teams because we both use it and we can both understand it. It's user-friendly enough so that we can make decisions with them based on what Umbrella tells us and how we interpret that information depending on the site, the situation, the risk score, everything.

We have a lot of employees, a few tens of thousands. We get probably hundreds [of threats blocked] every day. I wouldn't be able to give an exact number on how many are blocked. The main ones we look at are the ones that people request us to specifically look at because they might not think that something was supposed to be blocked, or something is not working properly, and we can go in and investigate that. But there are probably hundreds to thousands of blocks per day on the sites, across all of our locations. That automation allows us to relax a little bit easier and know that our network is much safer with Umbrella on it than it is off. The automatic side of it is basically saving our jobs. That really helps, and we're able to look at anything. Overall, as a program, it has saved us a ton of time and stress by not having to worry about malware or viruses or anything malicious.

What is most valuable?

One of the coolest features, for me at least, is to be able to type in a website and have it  give an overall summary of how safe that website appears. Part of that is just so that we can investigate. And if there's any sort of confusion between our cyber team and us, we can look further into that site and dive more into that risk score that Umbrella gives us. We can just analyze [those sites] and make sure that we're unblocking safe sites and blocking sites that we deem could be harmful for our employees.

I would say it provides single-pane-of-glass management. We still, of course, use those old WSAs, but in the long run, our plan is to get those replaced with Umbrella. We have locations in Japan, Korea, China. So it's a little bit more difficult to go through one proxy for all of those, especially because it's a bit slower. What's nice is, [with] Umbrella being in the cloud, we can just go into the site, see everything from the management console in that page. Nothing is slow [and] nothing is hosted by us so that we don't have to worry about network issues or management issues. Everything is just laid out right in front of us from the Umbrella dashboard on the internet, in the cloud. And that makes it super helpful for us to just manage all that from one spot across all of our locations across the world.

We aren't a very big team, so that's the main thing. Going through filtering web traffic or blocking sites or unblocking sites, whatever we need to do, can be a bit tedious, especially when we have all these different locations and we would have to go into each location specifically to perform these tasks. Umbrella, being one pane for managing, being all-encompassing, allows us to quickly go in, make a change, and it applies to either every location, if we want it to, or we can have policies in place that only apply to certain users or certain computers. And that makes it super useful for us because we're not messing around with jumping into all these different locations and manually doing each and every one individually. It is extremely helpful for us and it improves efficiency exponentially.

For how long have I used the solution?

I have personally been using Cisco Umbrella for almost a couple of years. Our company implemented it about five or six years ago. Most of that time was spent getting it set up, but we've really been using it more within the last two or three years now, so it's still pretty new to us at the moment.

Buyer's Guide
Cisco Umbrella
April 2025
Learn what your peers think about Cisco Umbrella. Get advice and tips from experienced pros sharing their opinions. Updated: April 2025.
849,190 professionals have used our research since 2012.

What do I think about the stability of the solution?

[In terms of maintaining network connectivity] obviously it depends on the situation. With Umbrella, it's a bit easier, for sure. There are times where Umbrella, on their side, is having an issue and we're notified of that issue. But in that case, there isn't really much on our side that we can do. To that extent though, the pros outweigh the cons. It's pretty rare that Umbrella is having a problem. The way that our network is set up is that we can reroute traffic pretty quickly using our other Cisco devices, so it's not usually a big issue for us. We have fewer problems with Umbrella than we do with our physical WSA proxies that we currently use, because that is something that we would have to troubleshoot on our end, and we're not always there on site to be able to do that. Then we have to go through someone else who's over there and they have to console us in and we have to troubleshoot whatever's going on over there.

With Umbrella, it's nice to have them tell us what's going on so that we're aware of the situation. If there are any problems, then we'd know what the issue was and how we could work around it. That makes it a bit simpler for us.

Network connectivity isn't really a huge issue for us with Umbrella, specifically. Our use case mainly is just for blocking internet traffic, making groups. We have social media groups where we allow certain computers in places to have access to certain social media sites that we wouldn't normally do. We have other sites being blocked, depending on their use case. That's mainly our function with Umbrella. Internet connectivity is usually not a huge issue regarding Umbrella with us, but if it ever is, it's nice that they communicate the issue to us, [so] that we can work around it.

How are customer service and support?

In my experience with Umbrella support, sometimes the response times take a bit more time than we would like. Obviously, it depends on how they're contacted. But usually, when I contact them via phone, their support team is great. They help me out with everything. But sometimes, if you go through email, it can take quite a while to get a response. Obviously, if it's through email, the issue's probably not as pressing as it would be through a phone call, but the response times could be a little bit better. Email, I usually just avoid. I usually just call them now.

They're super helpful. In terms of response times, it could be a little bit better. Some issues are more urgent than others, but if it's an urgent issue, obviously we just call. Sometimes it takes a little bit [of time] for them to get back. I would probably rate them a seven out of ten.

How would you rate customer service and support?

Neutral

How was the initial setup?

We've had to deploy connectors across certain locations, but [in] all the locations we have a domain controller and that needs to be deployed on those domain controllers throughout all of our different places. I've done a couple of deployments. Most of it was already deployed just by the time I got here. 

[In] my experience of how deployment went, it was very easily laid out, very simple. The instructions were super clear. I didn't have any issues with that. As more of a newcomer to the entire industry, this has been much easier than I expected it to be. Umbrella, as a product, is very simply laid out, very user-friendly. I couldn't praise it enough for helping me out with my job. 

While the support [can] sometimes take a while, overall they're super helpful, they make it very easy and they make you feel like you're not doing anything wrong. They're super friendly and make everything super easy for you. Umbrella as a product, overall, is very user-friendly, as a newcomer to my company.

What was our ROI?

The plan is to replace those physical proxies that we have. In terms of return on investment, getting rid of those across each location [has been valuable]. In terms of the efficiency with time, it's definitely saved us a lot of time and money troubleshooting different issues and securing the network and helping people access what they need to access. Just in terms of time and efficiency, it definitely has a return on investment.

Trying to replace those physical ones as well, getting rid of those, just having this be the all-encompassing way of filtering traffic and unblocking, of making policies, it definitely saves us a lot of time with the solution that's offered.

What other advice do I have?

In terms of [our employees] feeling supported, they have the ability to submit a request to us very easily. When they get blocked from a site, it's not just one page saying you're not allowed here. They have the ability to submit a request to us so that we can look further into that site. That makes our employees feel more included in the process of helping the company access the sites that it needs to use, [as does our] communicating with those employees [about] why a site might be blocked; or a site that needs to be blocked based on what they find and what they're doing for their job. The important thing is that they're able to talk to us in case there's a site that they think that they need to access and helps them feel included in the entire process.

Like I mentioned earlier, it's one cog in the big system that we have out of our solutions for cybersecurity. We also use products like AMP, we have certain firewalls that also block certain things, the way they're configured. But overall, Umbrella, if we're talking about users on the internet, using sites or accessing different websites, is a big help in determining what exactly they need. We can go into Umbrella and help them understand why something might be blocked, or if they need to get into something, we can make certain policies within Umbrella. It's obviously just one tool out of the many that we have, so these configurations are pretty involved and even I don't know how they all work. It's divided amongst our team. For cybersecurity in general, it's great. It simplifies it. It's very useful in terms of the automation and how it blocks everything, and how all that stuff is interconnected. I would say that it is a lifesaver for us.

As somebody who is pretty familiar with networks and just learning everything, but being an inexperienced network manager, I would say that it makes the entire process very painless, very super simple to understand. In my experience, it's a nine out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Francisco Cano - PeerSpot reviewer
Engineer at a retailer with 10,001+ employees
Real User
Gives us control and visibility of our network
Pros and Cons
  • "It has excellent resilience in cybersecurity. Cybersecurity for my organization is very important because we are a banking organization. We need this security to protect the personal information of our clients. This is very important for our security."
  • "I feel that the application needs other characteristics that are available with other applications in the market."

What is our primary use case?

The solution is for filtering web content. We can control user access to applications as well as have visibility into Internet usage.

We are using it on approximately 300 servers. The solution is deployed across three departments. There are about 8,000 users.

How has it helped my organization?

Umbrella gives us control and visibility of our network using administration tools. This is helpful for us. 

The solution is very good for helping workers feel safe, secured, supported, and included.

Employees have accepted the solution. The solution is very good for them and their morale.

It has excellent resilience in cybersecurity. Cybersecurity for my organization is very important because we are a banking organization. We need this security to protect the personal information of our clients. This is very important for our security.

What is most valuable?

The most valuable feature is its web content filtering.

It is very important for our organization that the solution offers single-pane-of-glass management.

It is very easy to maintain network connectivity. 

The customer experience has been very good.

What needs improvement?

I feel that the application needs other characteristics that are available with other applications in the market.

For how long have I used the solution?

I have been using it for three years.

What do I think about the stability of the solution?

It works very well across platforms with other providers.

What do I think about the scalability of the solution?

It is very easy to scale.

How are customer service and support?

I have never needed to use their technical support.

Which solution did I use previously and why did I switch?

We have just used this solution.

How was the initial setup?

Our initial setup was very easy.

What about the implementation team?

We used an internal consultant.

What other advice do I have?

Our leaders say that cybersecurity and resilience for our services is very important. They say technology is necessary for developing business with our clients. 

I would rate the solution as nine out of 10. The solution is very good, easy to implement, and manage. The visibility is very user-friendly. 

Which deployment model are you using for this solution?

Private Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Cisco Umbrella
April 2025
Learn what your peers think about Cisco Umbrella. Get advice and tips from experienced pros sharing their opinions. Updated: April 2025.
849,190 professionals have used our research since 2012.
Zaigham Abbas - PeerSpot reviewer
Senior Network Security Engineer at a tech vendor with 201-500 employees
Reseller
We don't need to access multiple devices in order to give access to our internal resources
Pros and Cons
  • "The single-pane-of-glass management is really important. In today's era, administration costs and operational expenses will cost you a lot, and it reduces that as well. You don't need extra resources to manage all your parameter firewalls, looking at every single device to allow resources internal access. By just introducing the single-pane-of-glass management, it has lifted the burden off of management, especially the network management."
  • "We faced an issue regarding virtual appliances (VAs) during deployment. They could improve the quality and management of the virtual appliances offered right now. You can't see much because it is a Linux machine, and they have customized it. You don't have any route access to the machine, only seeing limited things in it. When we opened a ticket, they didn't know much about VAs themselves. So, that is where it is lacking right now. I know this will improve in the long run."

What is our primary use case?

We have deployed an on-prem virtual appliance for Active Directory (AD) and user mapping. We have integrated our AD with it as well as all the pre-reqs that come with it.

How has it helped my organization?

It is a DNS solution. It stops us at the first layer of Layer 7, stopping at the DNS level. It just removes the burden for opening a connection, then looking at the firewalls and all the parameter devices. It has a single pane of glass that keeps you secure.

It has helped us in terms of the roaming client. That has helped us in terms of security. Whereas, previously the roaming client was bothering us, which got us into this solution. That has helped the end user with laptops and devices for different sites. This keeps us secure at all times wherever they go.

We are not using a DNS solution, but we have been using the firewalls and all the proxy firewalls instead, which has really helped us since we now know that the entire network environment is being secured by Umbrella. It gives us a real pat on the back that we are being backed by the Talos cloud and its security. We are monitoring in real-time. It works by itself to assess all the security features and parameters through Talos, which is really interesting and good for our environment.

What is most valuable?

The most valuable features are actually the reporting with all the visibility. It gives a hawk-eye view when we map AD with Umbrella. It gives us the visibility of every user, e.g., which sites and content are being used and who is accessing what. That has really been a good new addition for me.

We don't need to access multiple devices in order to give access to our internal resources. We are secured in having everything on a single pane of glass, which keeps us secure as well. We can enter the configuration to reach our destinations based on the main names. Other than that, it also secures us by not looking at only the destination, but also the predefined security parameters that Cisco Umbrella has provided. For example, if I coded command and control centers (CNCs), then most phishing websites, where there are known websites caught by Talos, are being categorized as the bad domain. That is where it gives us a nice, handy lift.

The single-pane-of-glass management is really important. In today's era, administration costs and operational expenses will cost you a lot, and it reduces that as well. You don't need extra resources to manage all your parameter firewalls, looking at every single device to allow resources internal access. By just introducing the single-pane-of-glass management, it has lifted the burden off of management, especially the network management.

It gives us a quick view into what we are looking at. We don't need to go to the different devices and see where our traffic is starving, etc. So, we have better visibility, when using Umbrella, from its single pane of glass.

What needs improvement?

We faced an issue regarding virtual appliances (VAs) during deployment. They could improve the quality and management of the virtual appliances offered right now. You can't see much because it is a Linux machine, and they have customized it. You don't have any route access to the machine, only seeing limited things in it. When we opened a ticket, they didn't know much about VAs themselves. So, that is where it is lacking right now. I know this will improve in the long run.

For how long have I used the solution?

I have been using it for seven or eight months.

How are customer service and support?

We used support when we were deploying the VAs. So, we have opened tickets a couple of times when we were stuck.

The technical support is alright. I would rate it as eight of 10. There was one time when I opened a ticket regarding the VAs, which didn't go quite well. However, it has been a good experience overall.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

We did not previously use another DNS solution. This solution was our first.

How was the initial setup?

It is very easy to maintain network connectivity. For medium- and large- enterprises, it is not going to take more than a week or so to deploy the solution. Or, you can deploy it with fewer complexities in a couple of hours. Therefore, it is not that hard to gel it into your existing network. So, it works like a charm for us.

In our environment, all traffic was going to the data center. It didn't take us much time, or the complexity of the network wasn't much, so it didn't bother us to pre-plan its migration. We just had to change all our DNSs on the perimeter firewalls and point them towards Umbrella, and that was it.

What was our ROI?

It has helped us to remediate threats more quickly.

It is pretty much handy in terms of what it offers. Actually, it is all about how it caters to your security. Every solution has their pros and cons, but Cisco Umbrella catches all the vulnerabilities and things that could hit any organization.

Which other solutions did I evaluate?

Previously, we were not tracking roaming clients, which were changing networks every time. I was wondering if something was hitting the endpoints, because we wouldn't know. When Cisco Umbrella joined our network, it explored all our networks. This was really interesting and a key part of why we chose it.

What other advice do I have?

The end user isn't tech-savvy and doesn't care what is being done. As far as the system admin and network admins are concerned, their work has been reduced in terms of management and managing the entire network.

I would rate the solution as nine out of 10.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
PeerSpot user
Andraz Piletic - PeerSpot reviewer
Technical Solutions Architect at Flint
Video Review
Real User
Is user friendly and easy to deploy, and provides single-pane-of-glass management
Pros and Cons
  • "One valuable feature is definitely its simplicity in terms of deployment. It is very easy to integrate it into the environment without any heavy lifting. Users didn't notice that we implemented it. You can start with a very low monitoring mode and start observing what Cisco Umbrella sees."
  • "I'd like to see this solution more closely integrate with other products Cisco has in its portfolio."

What is our primary use case?

As a Cisco partner, try to test things on our own before we position the product to our customers or educate partners on it. So, the primary use case was to test things out and to be our own first customer. We started using it internally for our own purposes to secure our access to the internet with Umbrella.

We use Cisco Umbrella to secure internet connectivity and especially to focus on the threats introduced through web browsing. This is because most of the applications the workers use are browser-based.

The traffic, by default, is typically encrypted with HPS, and we use Cisco Umbrella to get more insight into that traffic. The classical security appliances have very low visibility into them. This is where we see Cisco Umbrella have the most traction.

How has it helped my organization?

In general, it increases the security level. It helps us prevent threats from being accessed. Also, the visibility into internet bounce traffic is increased. So, in general, it increases the overall internet security of the organization.

What is most valuable?

One valuable feature is definitely its simplicity in terms of deployment. It is very easy to integrate it into the environment without any heavy lifting. Users didn't notice that we implemented it. You can start with a very low monitoring mode and start observing what Cisco Umbrella sees.

In terms of helping workers feel safe, secure, supported, and included, the solution is pretty transparent to the end user in most cases. They don't necessarily get any confidence from it, but it's supposed to be that way. It's supposed to be as transparent as possible. However, when the end-user accesses a site that is blacklisted or treated as potentially suspicious, he or she will see a warning displayed. This gives them additional confidence that somebody else is taking care of the details and that they can confidently browse around. If they come across a suspicious site, they know that they will get a warning or advice on how to proceed.

Cisco Umbrella supporting hybrid work environments is important. Within our organization, even before COVID, a lot of us worked remotely from time to time. For companies that we work with, it has become a reality with COVID. Before, everybody was working on site, and now, that's no longer the case. It is important to have flexibility and know that even if we work from home or from another place we're still secure.

For all Umbrella-related things, it does provide single-pane-of-glass management, but it's one component. If I look at the typical employee, he is only one piece of the puzzle. Other solutions, like, for example, AnyConnect for remote access, are managed separately. For Umbrella-specific items, it's a single interface for management. For monitoring, policies, and troubleshooting a specific case, everything is in one place. I don't need to go through the logs to know where to look.

My organization is not very large, and I'd say my colleagues are pretty proficient. So, it's not a high priority to have single-pane-of-glass management, but it's always good if solutions are capable of integrating together. If by enabling single-pane-of-glass management the workflow is simplified and the day-to-day operations are a little easier, then that's something we definitely want to benefit from.

The administrator user experience is definitely optimized by single-pane-of-glass management, especially if the personnel are busy. Then, it helps if all the relevant details are in one place.

In terms of maintaining network connectivity, Umbrella on its own is pretty user-friendly. It is easy to set up and maintain. It's one of its strong suits.

For the branch and campus, it's very simple to apply and maintain network connectivity. For the home environments, there are options to integrate it into the employee's PC as well. Cisco Umbrella supports different methods for different environments so that you can achieve the level of implementation that you need. It's where it should be.

It's very efficient in securing the infrastructure from end to end so that we can detect and remediate threats. You can simply adopt it right into the environment, and you don't need to build the rule sets on your own. It utilizes best practices, and it's very easy to set up policies such as potential malicious categories on the internet, what you want to block, what you want to filter out, etc. It's very easy to implement those.

When you go through the reports, you can see what kind of threats were blocked. Luckily, we haven't had an incident where something got through and caused a security incident.

In terms of metrics on how Cisco Umbrella has been able to remediate threats, the numbers look pretty impressive. However, it's hard to assess how serious that potential threat really was. It's hard to put actual weight on the numbers to determine how meaningful those numbers are.

The value that resilience helps offer in cyber security is pretty high. Cyber security resilience is a high priority in our organization. It's important to our customers that we handle what we do for them in a secure manner.

What needs improvement?

I'd like to see this solution more closely integrate with other products Cisco has in its portfolio.

I would also like to be able to manage the identities, for example. If you define them in ISE, it would be good to be able to use the same identities also within Umbrella. It would simplify the use of multiple products within the organization from the same vendor.

For how long have I used the solution?

I've been using it for about three years now.

What do I think about the stability of the solution?

Stability-wise, Cisco Umbrella is pretty robust. The uptime statistics are very high. There are, generally, no issues with stability.

What do I think about the scalability of the solution?

Our organization isn't very large, but it's pretty scalable for larger organizations. At the moment, it's not a limiting factor.

How are customer service and support?

Technical support is one of Cisco's strong suits. In my experience, the Umbrella team has been very quick to turn around requests. It's even been above average by Cisco's standard compared to the turnaround time for other Cisco solutions and products.

I would give Cisco's support a rating of nine on a scale from one to ten.

How would you rate customer service and support?

Positive

How was the initial setup?

We deployed it by configuring local devices to redirect the DNS request to the SAS service Umbrella provides.

The solution is cloud-based. You just send your DNS request or your traffic to it. You can start with a monitoring-only mode. So for example, you can redirect the DNS request and start observing what Umbrella recognizes. Later, you can start defining the policies, setting up the enforcements, etc. You can very quickly get to the first results.

What was our ROI?

Actual ROI numbers are really hard to measure and determine. Generally, we see that customers who implement Cisco Umbrella and start using it tend to renew their licenses. They adopt the product, and they recognize the value it brings. I think this shows that there was a return of investment for them and that it achieved the desired level.

What's my experience with pricing, setup cost, and licensing?

Licensing with Cisco can be a little complex, but I think it's comparable with that of other similar products. It's always hard to put a price on security, but the price is fair for the value it provides.

Which other solutions did I evaluate?

We're a Cisco partner, and we work with a lot of Cisco solutions. So, it was pretty easy for us to decide what we wanted to try and test. We didn't really do competitive selection and assessment, and it was pretty straightforward for us to go with Umbrella.

What other advice do I have?

I would rate Cisco Umbrella at nine on a scale from one to ten.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Thomas Bodentien - PeerSpot reviewer
Solution Architect at Philips
Real User
Improves security and has good integration capability and stability
Pros and Cons
  • "The integration features within, for example, the Cisco VPN product and the Umbrella module are valuable."
  • "The main issue that we have is with the final steps or the full integration and getting rid of Zscaler. The company still has to fall back to Zscaler when something in Umbrella is not working as expected, such as when we enable SSL inspection. When something is not working 100%, the company is falling back to Zscaler."

What is our primary use case?

We are using the Cisco Umbrella proxy product. Cisco Umbrella is part of our ongoing project for moving, more or less, to the full Cisco suite. We have Cisco ISE, DNAC, and SD-LAN. We are getting the new SD-WAN from Cisco. It's part of the whole portfolio we are getting from Cisco.

What is most valuable?

The integration features within, for example, the Cisco VPN product and the Umbrella module are valuable. The new features, mainly the security ones, are also valuable. It improves our security, and it's much more integrated and better than the one we have from Zscaler.

What needs improvement?

The main issue that we have is with the final steps or the full integration and getting rid of Zscaler. The company still has to fall back to Zscaler when something in Umbrella is not working as expected, such as when we enable SSL inspection. When something is not working 100%, the company is falling back to Zscaler. We have very good support, and I don't know whether this can be improved, but that is one thing to do for the final steps to get rid of the other product.

Its scalability could also be improved.

For how long have I used the solution?

I've been using this solution for two years.

What do I think about the stability of the solution?

The stability of the solution is very good.

What do I think about the scalability of the solution?

It could be improved mainly because the proxy is based on countries, and when you have no point to connect in a country, you can create issues. So, the spread around the world could be better.

We have 80,000 end users, and it's all over the globe.

How are customer service and support?

Their TAC support is very good, but it always depends on people. So, there is no in-general there, but the people we are dealing with are very good. I'd rate them a nine out of ten.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

For proxy services, we have been using Zscaler, and for SD-WAN, we have been using Nokia Nuage. For the SD-WAN solution, we made a switch because we had a lot of issues with Nokia Nuage. Don't use Nokia Nuage. It's pretty bad.

For proxy services, we are replacing the Zscaler solution with Umbrella proxy services, but I'm not sure about the reason. It's probably for more security features where using Cisco Umbrella helps us improve our security within. It's much better than the one we have from Zscaler for securing our infrastructure from end to end.

How was the initial setup?

It was very complex because of a little bit of immaturity of the Cisco Umbrella solution in the beginning. All the features were not already enabled. In addition, we also had a moving target where we said, "We would like to have this, and we would like to have that," and when it was not there, we insisted to have it in. It was very difficult and challenging.

What about the implementation team?

We are using BT. I would define our experience with them as big trouble. It's in the name.

On our side, we have three to five people, but it depends on following the sun. We probably have five people worldwide who are supporting this solution.

What other advice do I have?

I'd advise looking into your needs and then comparing those with the features that are really valuable. It has been improved over the last two years, but just look at your needs and what the solution can really deliver.

I'd rate Cisco Umbrella an eight out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Christian Graber - PeerSpot reviewer
Senior Product Manager Security B2B at Sunrise UPC
Video Review
Real User
Is easy to install, works seamlessly in the background, and is stable and easy to scale
Pros and Cons
  • "One of the great advantages of Umbrella DNS is that it's really simple to deploy. It's easy to install, the users do not notice that it's there, and it doesn't interfere with your work. The simplicity and transparency are great advantages of Cisco Umbrella."
  • "It would be good if the more complex versions of Umbrella are simplified so that we can offer them in a more standardized way. We, as a telco, do not operate the same as a traditional integration partner would, who can sell all its services. We try to have a standardized approach as much as we can so that we can sell the solution with as many services added to it as possible. If you look at the structure of businesses in Switzerland, 95% of them have 10 persons or less, and they do not have a security specialist. Therefore, the higher the automated and standardized features, the better it is for them."

What is our primary use case?

Cisco Umbrella is a first line of defense. It protects the users from going to sites that should be avoided. Cisco Umbrella also protects against malware and phishing. It's a simple and very effective product that works seamlessly in the background. It doesn't disturb you in any way unless you access a website you shouldn't. Then, it will interfere with it and stop you from going there.

What needs improvement?

It would be good if the more complex versions of Umbrella are simplified so that we can offer them in a more standardized way. We, as a telco, do not operate the same as a traditional integration partner would, who can sell all its services. We try to have a standardized approach as much as we can so that we can sell the solution with as many services added to it as possible. If you look at the structure of businesses in Switzerland, 95% of them have 10 persons or less, and they do not have a security specialist. Therefore, the higher the automated and standardized features, the better it is for them.

For how long have I used the solution?

We've been offering Umbrella for three to four years.

I've been working with Cisco's products for several years now. We in the B2B area of Sunrise work with Cisco kind of exclusively, it's really our main partner. I look after security products and Umbrella. The cloud-based security products around Umbrella have been the focus of my work.

As a reseller, the value we bring to our customers is the fact that instead of just selling them connectivity or access to the internet, we offer them a base level of security with it. I think that is highly valued by customers since security is typically a topic they struggle to deal with.

What do I think about the stability of the solution?

When it comes to the stability or performance of Umbrella, we have been very pleased. When you add security on top of unsecured transport, you may have certain delays, but our technical colleagues consider them to be not too bad. Stability has never come up in a customer context as an issue.

What do I think about the scalability of the solution?

When we look at the scalability of Umbrella, we can see the great advantage of it being a cloud-based service. Therefore, scalability is not an issue on our side. We can assume that it will always be around and that the performance will always be good.

How are customer service and support?

I've had very few interactions with Cisco support, and the ones I've had have been good. I'd give Cisco's technical support a rating of nine out of ten.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

We sold a different solution previously, which provided a much simpler DNS protection. It did not have the power and is not really comparable to Umbrella. It was more of a consumer-level product that did not have much of an impact. I had it installed on my internet access at home, and it never intercepted anything I did. It's only once I installed Umbrella that I saw differences in the ways my DNS calls were intercepted. The main reason why we offer Umbrella is its business-grade security.

How was the initial setup?

One of the great advantages of Umbrella DNS is that it's really simple to deploy. It's easy to install, the users do not notice that it's there, and it doesn't interfere with your work. The simplicity and transparency are great advantages of Cisco Umbrella. Cisco could take Umbrella DNS as a good example and also improve on other products.

What's my experience with pricing, setup cost, and licensing?

Cisco solutions are generally perceived to be rather expensive. We have constant internal discussions as to whether we should offer lower-priced security solutions from some of the competitors.

What other advice do I have?

If you are looking for the first time at Umbrella, you should really understand what is behind the solution. Behind Umbrella is Cisco Talos, a research team within Cisco, which is one of the largest private ones in the world. All the input out of the activities of Talos goes into Umbrella and makes it a really valuable product.

As a service provider, we know that other service providers are using Cisco Umbrella, and that was a big factor for us in choosing it as well. Also, we had seen large telcos like TIM in Italy using it for many years and being satisfied with it.

Customers are always worried that somebody in their organization will click on something he or she should not click on. Umbrella does a good job of protecting a business from ruin in worst-case scenarios. It works in the background and is like an airbag.

I would rate Umbrella Easy Protect, which is the simplest on the Umbrella DNS side, at nine out of ten. Because Umbrella SIG is still under development and is very promising, I'd give it an eight out of ten.

Our partnership with Cisco is overall good. It has its ups and downs. Cisco is not always an easy beast to work with. Sometimes you see that traditionally they have a very strong enterprise focus, but we as a service provider have a different need than enterprises, and that sometimes has its challenges.

Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
PeerSpot user
Jessica Boutin - PeerSpot reviewer
Senior Network Engineer at a computer software company with 201-500 employees
Real User
Blocks a lot of threats and that means we don't have to remediate them
Pros and Cons
  • "The most valuable features for us include tenant lock, content filtering, and DLP solutions, looking for PII and information being exfiltrated."
  • "There are a couple of different pieces that have different portals. I know they're working on getting them all into one portal, but that's probably the biggest thing that needs improvement right now. It's not a single pane of glass yet."

What is our primary use case?

We were looking to solve multiple challenges, from DLP all the way through to regular content filtering offsite for our hybrid and remote employees.

How has it helped my organization?

Using Cisco Umbrella has brought us into compliance with our customers on a number of points.

Also, it's very important that the solution helps support hybrid work. That was one of the main reasons we got it. About 45 to 50 percent of our employees are either fully remote or hybrid. We needed a solution that would follow them home.

In addition, it's very helpful for securing infrastructure from end to end and detecting threats. It's blocking a lot of stuff, so we don't even have to remediate. It's blocking things before they get to us.

Resilience in cyber security is very helpful and this product has increased our security posture quite a bit.

What is most valuable?

The most valuable features for us include

  • Tenant lock
  • Content filtering 
  • DLP solutions, looking for PII and information being exfiltrated.

Also, the policies are applied wherever you go, and that's good.

What needs improvement?

There are a couple of different pieces that have different portals. I know they're working on getting them all into one portal, but that's probably the biggest thing that needs improvement right now. It's not a single pane of glass yet.

For how long have I used the solution?

I've been using Cisco Umbrella for about a year.

What do I think about the stability of the solution?

We haven't had any issues with the stability of the product.

What do I think about the scalability of the solution?

The scalability is very good and that's another one of the reasons that we chose this product. You can slowly ramp up the policies. You don't have to build it all at once. We started small and have been deploying more and more of the features of the full SIG Essentials package that we have. We can add more users when need be. It scales on a policy and a user and a deployment basis.

We have about 400 end-users and five sites. We use the AnyConnect module on the local workstations.

How are customer service and support?

The solution's technical support has been very good. I haven't had to call them very much, but the technical support has been good when I have needed it.

How would you rate customer service and support?

Neutral

Which solution did I use previously and why did I switch?

Previously, our users were only in-house and we had internal firewalls that were doing a lot of this work. But now that they're hybrid, we had to come up with a new solution.

Which other solutions did I evaluate?

We evaluated Prisma because we have Palo Alto firewalls, but it was more expensive and more difficult to set up.

What other advice do I have?

I don't think our workers like it all that much. It has actually made employee morale worse because we block a lot of stuff. But that's not really the product's fault. It's our policy. It makes things a little bit more cumbersome for them, but it definitely makes us feel safer.

I would tell leaders who want to build more resilience within their workplaces to do it. It's important because one hack and your business is done. Your reputation is everything in this day and age. Being resilient and being able to recover from that type of stuff before you're actually exfiltrated is a big deal.

Overall, Cisco Umbrella is pretty easy to use, pretty easy to deploy, and it does what we want it to do.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Michael Abadeer - PeerSpot reviewer
IT Security Operations Manager at BeyondTrust
Real User
Securing DNS, specifically for the remote workforce we have today, fills a big gap
Pros and Cons
  • "It enables us to go granular in the customization of blocking some categories on the DNS."
  • "Having ready-to-go templates with best practices is definitely something that would be an improvement. Deployment, from day one, is something that definitely needs to be improved for Cisco customers."

What is our primary use case?

We use it for DNS filtration across all data centers, offices, and remote users.

How has it helped my organization?

The blocking of all the non-malicious traffic from DNS request queries has been huge. DNS is very important from a security perspective. Securing this layer, specifically for the remote users and the remote workforce that we're seeing today, is definitely a big gap that needed to be filled.

The DNS Umbrella agent is already installed on the core machine. So from day one, when our CEO sent all employees to work remotely, all we had to do was flip a switch to have a DNS filter on all core machines.

The visibility that Umbrella gives us into what a user is doing, versus what we want to block, is huge. It's not that we're policing things. It's just a matter of watching and having visibility. We're definitely not going to block every domain, but having visibility is very big.

What is most valuable?

It enables us to go granular in the customization of blocking some categories on the DNS. 

Also managing all the DNS aspects from one portal is definitely great from a security perspective. Sometimes we get a malicious URL in a phishing campaign on the email side. Blocking a domain across the whole company in one minute is definitely great. To block a DNS request very quickly you just add the domain to the Global Block List and in one second it's blocked.

Another feature that is good in Umbrella is applying and maintaining network connectivity consistently across all workplaces. You can go through the categories and do templates based on the sites, such as a data center or a branch and apply policies based on that.

What needs improvement?

Having ready-to-go templates with best practices is definitely something that would be an improvement. Deployment, from day one, is something that definitely needs to be improved for Cisco customers.

For how long have I used the solution?

I have been using Cisco Umbrella for four years.

What do I think about the stability of the solution?

The stability is a 10 out of 10.

What do I think about the scalability of the solution?

The scalability is also a 10 out of 10. We use it across all the company's offices and data centers. We have 1,500 users.

How are customer service and support?

The Umbrella service itself is great. Sometimes, with technical support, we go through "tag" problems, but otherwise, it's pretty smooth.

How would you rate customer service and support?

Neutral

Which solution did I use previously and why did I switch?

We did not have a previous solution. We used to use CWS, which was Umbrella before it was named Umbrella.

What was our ROI?

The ROI is visible in the portal through the executive reports. They show how many times we block malicious sites. Management definitely gets a view of the fact that we're blocking a lot of malicious domains with Umbrella.

What's my experience with pricing, setup cost, and licensing?

We have a security Enterprise Agreement with Cisco, so the pricing is good. We take many security products in one agreement, so we have no complaints about the price.

What other advice do I have?

From a DNS perspective, Cisco Umbrella is the number-one technology now.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free Cisco Umbrella Report and get advice and tips from experienced pros sharing their opinions.
Updated: April 2025
Buyer's Guide
Download our free Cisco Umbrella Report and get advice and tips from experienced pros sharing their opinions.