Try our new research platform with insights from 80,000+ expert users

Bitsight vs Zscaler Internet Access comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Bitsight
Average Rating
8.6
Reviews Sentiment
7.8
Number of Reviews
6
Ranking in other categories
IT Vendor Risk Management (4th), Attack Surface Management (ASM) (13th)
Zscaler Internet Access
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
52
Ranking in other categories
Secure Web Gateways (SWG) (2nd), Internet Security (2nd)
 

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Bitsight is designed for IT Vendor Risk Management and holds a mindshare of 10.9%, down 14.8% compared to last year.
Zscaler Internet Access, on the other hand, focuses on Secure Web Gateways (SWG), holds 15.6% mindshare, down 17.2% since last year.
IT Vendor Risk Management
Secure Web Gateways (SWG)
 

Featured Reviews

Marc Chapel - PeerSpot reviewer
Stable product with efficient features for listing vulnerabilities
I recommend BitSight because it is very convenient to use. It has become a standard tool used in many companies. It is easy to share a few components of an algorithm for users. It is not ideal as it only reflects some of the reality of Internet-facing applications. However, it is the best solution at the moment. I rate it an eight out of ten.
ShanavasVK - PeerSpot reviewer
Helps maintain a consistent posture of internet security while getting rid of VPN and hovering into zero trust
There could be a better way for the tool to categorize the traffic. For example, the tool does exceptions and everything overall. If I want to give guest access or provide access to guest users or any other internet access and if it does not go through the SSL inspection because, in our company, we can't have the root certificate on a device that we don't manage, which can be called out as an exception or an exclusion, but that doesn't provide a proper reflection of the picture of what is happening in the environment. There are granularities bringing it down. The tool I used or still have is Zscaler Cloud Connector to protect the cloud environment, which can have a bit more user-friendly installation and setup, and it would help a lot. The deployment process of Zscaler Cloud Connector needs to be more user-friendly. Improvements are required in the exception category. For example, suppose I report on a monthly basis what the breaches and traffic violating the SSL inspection area are coming from. In that case, I may find that half of them may be coming through some guest network, meaning the tool doesn't differentiate between the guest or normal networks or the corporate networks. Having options to differentiate different networks would be ideal so that it can show a true picture of things to users, as half of the things in the tool are not in our control and are not of our concern.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The best thing about BitSight is the comprehensive list of risk vectors, covering compromised systems, diligence failures, and behavioral anomalies."
"The product helps us identify the vulnerabilities of internet-facing applications."
"Offers open ports from an external point of view."
"The solution is user-friendly."
"Its customer service team responds quickly."
"I prefer BitSight due to its patch management capabilities. The score is a valuable feature. I have contacted the customer support through e-mail and their response rate is fast. I rate the solution a nine out of ten."
"The protection is most valuable."
"The cloud proxy and integration are some of the key features. Since there is cloud waste, we can quickly provision it and start working on the configuration. On top of that, they have added a few more features. They have integrated CASB, and file sandboxing is part of it."
"In terms of management and visibility, there is a single panel where you can configure the policies for your entire organisation worldwide."
"The most valuable feature for me is the ability to see how my network and traffic looks with modules like analytics and insights."
"Whether you are in a hotel somewhere, or in Africa, it does not matter. You will get the Zscaler protection presence anywhere."
"The scanning feature is impressive, because they do not introduce a big latency to the traffic."
"The most valuable feature is the ability to drop packets."
"The solution’s customer service is good."
 

Cons

"Its factor analysis feature could be better."
"There may be room for improvement in the methodology for identifying findings, as occasional errors occur on the technical side."
"The solution’s benchmarking should be improved."
"At the moment, when the vulnerability score decreases, it remains the same for quite a while, even though issues are resolved in 24 hours."
"BitSight could improve the classes and lower-level detections of anomalies that compound the information used to compute the rating."
"Data enrichment is the major issue."
"We'd like to have more plugins and integration."
"Sometimes it's not easy to use during large deployments of workstations."
"In every cloud service in the world, you have multiple upstream internet providers to create diversity so that if one of your providers fails, your network just continues. In South Africa, there is only one upstream provider, and that's not right. That that's a problem."
"Another thing that I would like to see is if Zscaler could have a separate product for direct access. I looked at a private access solution, but I understand there's a separate product that isn't integrated with this."
"They could provide more time for the onboarding the training of an IT person."
"If they can also integrate with the multi-factor authentication to prompt users to do another, second-factor authentication, that would be ideal."
"Do not expect to pay for the service and start using it, like Gmail. Zscaler requires a proper implementation to be done to make it successful."
"The reporting functionality could be a bit easier to use. There is a reporting function, but it's quite hard to do any good reporting, from a user-management perspective. For example, if a department manager wants to know how his department is using the web, there is a way to get the data, but it's quite cumbersome to get it and show it well. And that's true for comparing between departments."
 

Pricing and Cost Advice

"The solution's price is average."
"The product has a reasonable price."
"The solution is a little bit expensive. On a scale of one to five, I would rate it as a three."
"The pricing is an issue. It is expensive compared to other firewalls on the market."
"Licenses are available on a per-host basis. Some features like sandboxing require an additional fee, but most standard features are included in the license."
"Zscaler is transparent about its pricing model."
"It is a few pounds per user per month."
"ZIA follows a subscription model pricing and charges you based on the number of users. I would say its price is good."
"​Be aware that you will need to invest some time and money to adapt your environment for Zscaler (traffic redirection, software deployment, authentication, etc).​"
"Our monthly fee is around R3000."
report
Use our free recommendation engine to learn which IT Vendor Risk Management solutions are best for your needs.
845,040 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
18%
Computer Software Company
14%
Manufacturing Company
9%
Insurance Company
8%
Educational Organization
24%
Computer Software Company
13%
Financial Services Firm
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for BitSight?
The product is a little expensive and very oriented to large companies.
What needs improvement with BitSight?
BitSight could improve the classes and lower-level detections of anomalies that compound the information used to compute the rating. They could evolve to be a more powerful scanner of cyber hygiene...
Which is the better security solution - Cisco Umbrella or Zscaler?
Cisco Umbrella and Zscaler Internet Access are two broad-spectrum Internet security solutions that I have tried. Zscaler Internet Access is a good option for carrying out multiple security functi...
Which is better, Zscaler internet access or Netsckope CASB?
We researched Netskope but ultimately chose Zscaler. Netskope is a cloud access security broker that helps identify and manage cloud applications, protecting your sensitive data from exfiltration....
 

Also Known As

No data available
ZIA
 

Overview

 

Sample Customers

Fannie Mae, Cabela's, BNP Paribas, PWC, AIR Worldwide, Con Edison, The Container Store, OshKosh, Steris, University of South Florida, Emblem Health, Lloyds Bank
Ulster-Greene ARC, BanRegio, HDFC, Ralcorp Holdings Inc., British American Tobacco, Med America Billing Services Inc., Lanco Group, Aquafil, Telefonica, Swisscom, Brigade Group
Find out what your peers are saying about OneTrust, RSA, SecurityScorecard and others in IT Vendor Risk Management. Updated: March 2025.
845,040 professionals have used our research since 2012.