Try our new research platform with insights from 80,000+ expert users

Bitsight vs Zscaler Internet Access comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Bitsight
Average Rating
8.6
Reviews Sentiment
7.8
Number of Reviews
6
Ranking in other categories
IT Vendor Risk Management (4th), Attack Surface Management (ASM) (13th)
Zscaler Internet Access
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
52
Ranking in other categories
Secure Web Gateways (SWG) (2nd), Internet Security (2nd)
 

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Bitsight is designed for IT Vendor Risk Management and holds a mindshare of 10.9%, down 14.8% compared to last year.
Zscaler Internet Access, on the other hand, focuses on Secure Web Gateways (SWG), holds 15.6% mindshare, down 17.2% since last year.
IT Vendor Risk Management
Secure Web Gateways (SWG)
 

Featured Reviews

Marc Chapel - PeerSpot reviewer
Stable product with efficient features for listing vulnerabilities
I recommend BitSight because it is very convenient to use. It has become a standard tool used in many companies. It is easy to share a few components of an algorithm for users. It is not ideal as it only reflects some of the reality of Internet-facing applications. However, it is the best solution at the moment. I rate it an eight out of ten.
ShanavasVK - PeerSpot reviewer
Helps maintain a consistent posture of internet security while getting rid of VPN and hovering into zero trust
There could be a better way for the tool to categorize the traffic. For example, the tool does exceptions and everything overall. If I want to give guest access or provide access to guest users or any other internet access and if it does not go through the SSL inspection because, in our company, we can't have the root certificate on a device that we don't manage, which can be called out as an exception or an exclusion, but that doesn't provide a proper reflection of the picture of what is happening in the environment. There are granularities bringing it down. The tool I used or still have is Zscaler Cloud Connector to protect the cloud environment, which can have a bit more user-friendly installation and setup, and it would help a lot. The deployment process of Zscaler Cloud Connector needs to be more user-friendly. Improvements are required in the exception category. For example, suppose I report on a monthly basis what the breaches and traffic violating the SSL inspection area are coming from. In that case, I may find that half of them may be coming through some guest network, meaning the tool doesn't differentiate between the guest or normal networks or the corporate networks. Having options to differentiate different networks would be ideal so that it can show a true picture of things to users, as half of the things in the tool are not in our control and are not of our concern.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The best thing about BitSight is the comprehensive list of risk vectors, covering compromised systems, diligence failures, and behavioral anomalies."
"Offers open ports from an external point of view."
"I prefer BitSight due to its patch management capabilities. The score is a valuable feature. I have contacted the customer support through e-mail and their response rate is fast. I rate the solution a nine out of ten."
"The solution is user-friendly."
"Its customer service team responds quickly."
"The product helps us identify the vulnerabilities of internet-facing applications."
"We don't have to buy equipment to use it. And when our engineers set it up on our side, we just configured a few settings and we were in."
"The product's initial setup phase is a bit easy, as one doesn't need high technical expertise."
"The most valuable feature is the ability to drop packets."
"Tech support is good."
"We enjoy all of the proxy capabilities and the capability to integrate into the SIEM/SOC solution."
"The best thing about Zscaler Internet Access is the website filtering. In the UAE it's quite an important feature because most of the malware comes through the SQL injection and through downloads from websites. Zscaler helps protect against that."
"Zscaler Internet Access's best feature is the granular policy controls."
"The most valuable feature for me is the ability to see how my network and traffic looks with modules like analytics and insights."
 

Cons

"The solution’s benchmarking should be improved."
"Its factor analysis feature could be better."
"Data enrichment is the major issue."
"At the moment, when the vulnerability score decreases, it remains the same for quite a while, even though issues are resolved in 24 hours."
"BitSight could improve the classes and lower-level detections of anomalies that compound the information used to compute the rating."
"There may be room for improvement in the methodology for identifying findings, as occasional errors occur on the technical side."
"There are some performance issues when we add on additional controls."
"There are many functionalities in Zscaler Internet Access that need improvements, such as an advanced firewall and logging capabilities to track calls."
"Another thing that I would like to see is if Zscaler could have a separate product for direct access. I looked at a private access solution, but I understand there's a separate product that isn't integrated with this."
"The interface for administration could be better. They should upgrade the management portal."
"Zscaler Internet Access could improve by adding a VPN feature."
"Zscaler should provide adjacent services, which would be complementary to their current offering that could to be more pragmatic for a customer. For example, if you take Akamai, you get multiple sets of services, all depending on the customer and the strategy and the complexity and the problems. In some areas, they are more varied in terms of coverage."
"The performance needs improvement. Some areas create performance issues and, depending on the use cases, require reconfiguration to perform again."
"​When you have appliances, SSL inspection is always a headache due to poor performance and/or lack of ciphers implemented. ​"
 

Pricing and Cost Advice

"The solution's price is average."
"The product has a reasonable price."
"It is costlier than other solutions."
"Our monthly fee is around R3000."
"We have found the solution to be expensive."
"It is a few pounds per user per month."
"The price is competitive. It's not cheap and it's not expensive."
"The pricing for Zscaler Internet Access could be made cheaper."
"There are multiple bundles: enterprise, business, and transformation. Transformation includes all the features, but recently I've seen a few more line items that are additional costs. Overall, it's expensive."
"Roughly, we might spend $70,000 a month on the solution. We don't pay for anything beyond the standard licensing fee."
report
Use our free recommendation engine to learn which IT Vendor Risk Management solutions are best for your needs.
849,190 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
18%
Computer Software Company
14%
Manufacturing Company
9%
Insurance Company
9%
Educational Organization
21%
Computer Software Company
14%
Financial Services Firm
9%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for BitSight?
The product is a little expensive and very oriented to large companies.
What needs improvement with BitSight?
BitSight could improve the classes and lower-level detections of anomalies that compound the information used to compute the rating. They could evolve to be a more powerful scanner of cyber hygiene...
Which is the better security solution - Cisco Umbrella or Zscaler?
Cisco Umbrella and Zscaler Internet Access are two broad-spectrum Internet security solutions that I have tried. Zscaler Internet Access is a good option for carrying out multiple security functi...
Which is better, Zscaler internet access or Netsckope CASB?
We researched Netskope but ultimately chose Zscaler. Netskope is a cloud access security broker that helps identify and manage cloud applications, protecting your sensitive data from exfiltration....
 

Also Known As

No data available
ZIA
 

Overview

 

Sample Customers

Fannie Mae, Cabela's, BNP Paribas, PWC, AIR Worldwide, Con Edison, The Container Store, OshKosh, Steris, University of South Florida, Emblem Health, Lloyds Bank
Ulster-Greene ARC, BanRegio, HDFC, Ralcorp Holdings Inc., British American Tobacco, Med America Billing Services Inc., Lanco Group, Aquafil, Telefonica, Swisscom, Brigade Group
Find out what your peers are saying about OneTrust, RSA, SecurityScorecard and others in IT Vendor Risk Management. Updated: April 2025.
849,190 professionals have used our research since 2012.