Cisco Umbrella vs Forcepoint CASB comparison

Cisco and Forcepoint are both solutions in the Cloud Access Security Brokers (CASB) category. Cisco is ranked #2 with an average rating of 8.9, while Forcepoint is ranked #16 with an average rating of 7.0. Cisco holds a 13.0% mindshare in CASB, compared to Forcepoint’s 1.0% mindshare. Additionally, 97% of Cisco users are willing to recommend the solution, compared to 71% of Forcepoint users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Mar 9, 2025

Cisco Umbrella and Forcepoint CASB are key competitors in cloud security solutions. Cisco Umbrella seems to have the upper hand in user-friendliness and comprehensive DNS-layer security, while Forcepoint CASB distinguishes itself with its robust management capabilities and integration features.

Features: Cisco Umbrella provides extensive security coverage, particularly excelling in DNS-based attack protection and web content filtering. Its API enhances tracking of internet activity, and its user-friendly reporting tools are valuable for monitoring. Forcepoint CASB offers exceptional cloud application control and seamless integration with existing security protocols, strengthening user access management and data protection.

Room for Improvement: Cisco Umbrella could benefit from adding IPS and IDS protocols and enhancing SIEM-integrated reporting. More granular reporting analytics would also be advantageous. Forcepoint CASB needs to boost its cloud application management and improve support for hybrid environments. Its licensing and pricing models could be adjusted for greater flexibility, accommodating various business needs.

Ease of Deployment and Customer Service: Cisco Umbrella is praised for its straightforward deployment in public cloud environments, with customer service renowned for efficiency despite calls for more transparency. Forcepoint CASB's public cloud deployment is generally reliable, yet users note challenges with hybrid system integration and desire faster support responses.

Pricing and ROI: Cisco Umbrella's pricing is seen as competitive, with users enjoying significant ROI due to reduced operational issues. Forcepoint CASB, though considered medium-expensive, is favored among large enterprises for its extensive security management. Its ROI primarily stems from effective risk mitigation, though pricing adjustments could enhance broader market adoption.

To learn more, read our detailed Cisco Umbrella vs. Forcepoint CASB Report (Updated: March 2025).

Buyer's Guide

Cisco Umbrella vs. Forcepoint CASB

March 2025

Download the complete report

Helped 842,388 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

iboss

Mindshare comparison

As of March 2025, in the Cloud Access Security Brokers (CASB) category, the mindshare of iboss is 1.8%, up from 1.3% compared to the previous year. The mindshare of Cisco Umbrella is 13.0%, down from 14.3% compared to the previous year. The mindshare of Forcepoint CASB is 1.0%, down from 1.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Cloud Access Security Brokers (CASB)

Featured Reviews

Matt Crockford

Head of Cybersecurity at SES Water

It's easy to roll out, and their understanding of our business made it seamless

One aspect we value about iboss is its simplicity. Their customer service is brilliant, and they are super responsive and knowledgeable. It's easy to roll out, and their understanding of our business made it seamless. We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times. The user interface is highly intuitive. Our IT team picked it up with minimal training. It's arranged so that it's easy to find where things are. Another advantage is the single pane of glass console, which gives you visibility into what's happening. We're not fully there yet because we haven't implemented zero trust, but we're excited about the possibilities from the demos we've seen. We launched a POC of iboss' ChatGPT Risk Protection feature two weeks ago. AI is a great tool, but you need to be careful what you put into it. My biggest fear is employees inputting sensitive corporate information or customer PII data into one of these chatbots. I was impressed by our trial of the feature. It's exactly what we wanted. Now, when a user goes to ChatGPT, there's a banner warning them not to share information, and we can block conversations containing customer data like bank details and email addresses. I don't want to stop people from using it, but we need visibility. We've only tried it on a test group of 15 people. You can configure it to look for specific keywords or integrate it with your DLP policy if you have that configured

Read full review

Alessandro Braga

Chief Digital Officer at Talent Garden

Has comprehensive reporting and scales easily

The reports and notifications are the most useful part of the platform. As soon as you deploy the security layers, the reporting is very comprehensive. It helps you to have, at a glance, a clear view of what's going on. The integration between Cisco Secure solutions is pretty good. We have been able to deliver the solution in a few days. The integration of Umbrella and Meraki is literally one click away from the customer. One of the reasons why we chose Umbrella was its capability to perform end-to-end detection of malware and web traffic. In the last two years, we have been covered, detection has been faster, and we have been able to contain some potential threats along the way. We use the Umbrella stack from DNS protection to web and content protection. Our workforce is made up of 150 Macs; thus, we use Mac as a client. We have some PCs and integration with the network in our co-working spaces. Utilizing Cisco Secure has helped us save time. Being a nimble organization, we don't have IT staff who are fully dedicated to security. The maintenance is also not very time-consuming. In terms of the amount of time saved, it would be half an FTE a year, given the fact that we are informed and notified when threats arise. In terms of operating expenditures, we have been able to negotiate a better cyber insurance rate with our insurance company due to the fact that we are covered by Umbrella. Another benefit of using Cisco Umbrella is application scanning. We have been able to understand how many other applications we were consuming in the cloud, address them, and save money. Without Cisco Umbrella, we would not have realized that we had so many cloud applications in the company. We have been able to close at least four or five applications that were duplicates of others that we were already using in the company. We have realized approximately 10,000 to 12,000 euros a year of immediate savings in an organization of 150 people, which is quite significant.

Read full review

Edwin Eze Osiago

Regional Solutions Manager (Sub-Sahara Africa) at Infodata

Reliable, easy to set up and offers good visibility

It could be more robust, especially around custom applications. We've not really seen value around our custom applications, most especially when these applications are hosted on-premise. If there's a way Forcepoint can do something to ensure that the CASB also protects applications that are hosted on-premise, that would be ideal. Currently, basically, cloud-hosted applications, that are internet-facing are protected. If we can also have a CASB sit in front of our on-prem hosted applications, it would be massive. Forcepoint removed the ability to scan for unsanctioned applications on the CASB. Initially, CASB used to have that feature where you can scan for the applications and be able to support unsanctioned applications being used by the user. They moved it to another product. If there is an opportunity to speak to the product managers and get some features back, that would be ideal.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"iboss is easy to use despite its complexity. Multiple engineers manage it, but it's significantly more straightforward to administer than traditional VPNs and web proxies."

"From a use-case scenario, what I like the most is the plug-in. I like the fact that we can do the filtering of these devices offsite independent of the network they are connected to, and we do not have to have traffic coming back inside our network."

"Granular setup, which was able to set different levels of filters using the OUs in the AD."

"Because of iboss, I did not have to assign web filtering tasks to my techs on a daily basis."

"Our primary use case for this product is DLP,"

"Content filtering is the most useful feature of iboss."

"The solution has massively improved our security posture, giving us full visibility into what our staff does online."

"Iboss is a solution that prevents advanced persistent threats, and has a zero tolerance for attacks."

More iboss pros

"Using this solution has meant that we've needed to make fewer firewall changes."

"Cisco's support is fantastic, providing assistance when needed, especially during the initial installation process."

"We use Cisco Umbrella for DNS filtering and as a secure gateway."

"It will protect, give you more robustness, and faster responses, compared to any firewalls or any of the proxy web servers."

"Umbrella, being one pane for managing, being all-encompassing, allows us to quickly go in, make a change, and it applies to either every location, if we want it to, or we can have policies in place that only apply to certain users or certain computers."

"Umbrella enables customers to be secure. We are happy with this and this is the most important benefit for customers."

"It is a good cloud-based solution for DNS security."

"Web proxy adds an effective layer for security."

More Cisco Umbrella pros

"As it is based on AWS, it is not a problem."

"The most valuable aspect for us is the fact that the product seamlessly integrates with the Forcepoint DLP."

"The product offers an easy initial setup."

"Generally, most of our customers are happy with it though."

"It gives you value for your investment."

"The tool's most valuable feature is its management ease."

"Macro integration is a good feature."

Cons

"The area I would like to see improvement in is the ability with in the reporter to navigate directly to the content the user is traversing. It is kind of there, but it's not perfect. Quite frequently, I receive links that lead me to pages with error messages."

"SSL decryption: We had issues with learners using apps instead of using web browsers. This type of encryption is tough for any appliance in a BYOD environment."

"The reporting feature needs improvement. It doesn't give you the expected results. It is quite difficult to get the specific reports needed, and it is not as intuitive as the rest of the platform."

"Sometimes, obviously, there are bugs."

"The dashboards for local use could be better."

"Fold that in with the risk intelligence they're getting from all of the different subscriptions they are a part of. Now, these security companies subscribe to things like emerging threats, databases, etc. You can fold all this intelligence to decide what's happening on an endpoint. I would love to see them start moving into that space. That would compete directly with Microsoft. Maybe that's why they haven't. Having that ability native within the solution would be great. The other area in which I would love to see improvement is more detailed descriptions of why they block websites."

"Sometimes when you call in support, you get someone who is just following a sheet. It feels like a runaround. You feel that you are running into that support wall."

"Its pricing could be better."

More iboss cons

"The integration with Cisco could be better."

"In the next release, I would like to see the integration of VDI NSX with Cisco Umbrella."

"Cisco Umbrella can be improved in terms of limited coverage and wind vulnerability. The product can only shield a small area, making it less effective for larger spaces or multiple users."

"With any Cisco product, it's the licensing side of things that needs improvement."

"Looking at the full umbrella suite in the light of SASE, Secure Access Service Edge, they are clearly lacking in the inline CASB."

"We need to work on integration as it is very complex."

"If you wish to inspect all the traffic and it's integrated with Cisco AnyConnect, all the traffic basically goes through Cisco AnyConnect, which is not a good idea. That means you need to have more internet capacity as a data sampler, so in the case of a split tunnel, we cannot inspect the traffic that is being migrated through the local internet. I'm not sure whether there is a possibility wherein Cisco Umbrella can also inspect the traffic that is outside the AnyConnect tunnel."

"The main issue that we have is with the final steps or the full integration and getting rid of Zscaler. The company still has to fall back to Zscaler when something in Umbrella is not working as expected, such as when we enable SSL inspection. When something is not working 100%, the company is falling back to Zscaler."

More Cisco Umbrella cons

"When using the Forcepoint CASB, and you are a remote worker, basically not in the office, you have to have an agent on your computer, a Forcepoint agent. However, with many other CASB solutions, they can integrate with MDM."

"The solution needs to be easier to install, and they need to clean up the backend, so stuff doesn't break."

"Integration is an area of the solution that needs to be improved."

"Lacks different ways to authenticate users."

"There are various modules to secure a public cloud, such as Cloud Security Posture Management. You might have seen these features available if you've reviewed solutions like Zscaler or Netskope. A full-fledged CASB should be manageable. However, the tool does not seem to offer complete public cloud visibility. While it provides some cloud visibility and can manage API traffic for Web 2.0, it lacks a specific module for securing public cloud environments."

"Forcepoint removed the ability to scan for unsanctioned applications on the CASB."

"They should work on the possibility of consolidating all of the products with the group of agents."

Pricing and Cost Advice

"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."

"It is probably in line with other solutions, but I do not deal with the financial side."

"We have not priced the solution recently, but they were competitive with other vendors in the past."

"It is expensive compared to one of its competitors."

"The overall pricing for iboss is very competitive and transparent."

"Our licensing fees are on a yearly basis."

"The licensing and pricing structure of Cisco Umbrella is in line with standard systems on the market, and we have no specific requirements in this area. Overall, we have found it to be an acceptable pricing model for our organization."

"The pricing is great and very competitive with the rest of the market."

"You get what you pay for if you break the solution up into tiers."

"Our costs were negotiated, and they are okay."

"Pricing and licensing of Cisco Umbrella is a bit confusing because you have to separate the DNS solution and the full-feature solution. Cisco in Portugal helped us understand which one was the right one for us."

"It has a reasonable price. It is certainly not as expensive as it used to be. It is in line with other offerings on the market. There are a number of different flavors of Umbrella. They could bring Umbrella SIG down a bit because its price is a little bit high for what it does, but I also understand why its price is high."

"There are three models for licensing with different feature sets."

More Cisco Umbrella pricing and cost advice

"The solution is not that expensive compared to Zscaler. Netskope is between Forcepoint CASB and Zscaler in terms of cost. Forcepoint CASB would be the first choice because it negotiates well and offers a perpetual license, though it may seem subscription-based. I rate its pricing a six out of ten."

"The pricing really depends on the size of the customer's business because it is price-relevant to the environment."

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Access Security Brokers (CASB) solutions are best for your needs.

See recommendations

842,388 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

12%

Manufacturing Company

Government

Educational Organization

26%

Computer Software Company

17%

Financial Services Firm

Manufacturing Company

Financial Services Firm

18%

Computer Software Company

13%

Manufacturing Company

Educational Organization

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about iboss?

Content filtering is the most useful feature of iboss.

See all answers

What needs improvement with iboss?

I have the same complaint about them that I have about other software companies. Sometimes when you call in support, ...

See all answers

What is your primary use case for iboss?

We are a PreK-12 public school district, and we use iboss to filter internet content for our students at home and sta...

See all answers

Which is the better security solution - Cisco Umbrella or Zscaler?

Cisco Umbrella and Zscaler Internet Access are two broad-spectrum Internet security solutions that I have tried. Zs...

See all answers

Which is the better security solution - Cisco Umbrella or Microsoft Cloud App Security?

Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-nat...

See all answers

What do you like most about Cisco Umbrella?

Cisco Umbrella is easy to monitor, manage, and deploy.

See all answers

What is your experience regarding pricing and costs for Forcepoint CASB?

The solution is not that expensive compared to Zscaler. Netskope is between Forcepoint CASB and Zscaler in terms of c...

See all answers

What needs improvement with Forcepoint CASB?

There are various modules to secure a public cloud, such as Cloud Security Posture Management. You might have seen th...

See all answers

What is your primary use case for Forcepoint CASB?

We use the tool for web security.

See all answers

Comparisons

Zscaler Internet Access vs iboss

Compared 18% of the time

Netskope vs iboss

Compared 12% of the time

Cloudflare One vs iboss

Compared 11% of the time

Prisma Access by Palo Alto Networks vs iboss

Compared 10% of the time

Cato SASE Cloud Platform vs iboss

Compared 7% of the time

More iboss Competitors

Zscaler Internet Access vs Cisco Umbrella

Compared 18% of the time

Prisma Access by Palo Alto Networks vs Cisco Umbrella

Compared 10% of the time

Infoblox Advanced DNS Protection vs Cisco Umbrella

Compared 8% of the time

Microsoft Defender for Cloud Apps vs Cisco Umbrella

Compared 6% of the time

Palo Alto Networks DNS Security vs Cisco Umbrella

Compared 5% of the time

More Cisco Umbrella Competitors

Netskope vs Forcepoint CASB

Compared 22% of the time

Appgate SDP vs Forcepoint CASB

Compared 19% of the time

Zscaler Internet Access vs Forcepoint CASB

Compared 18% of the time

Skyhigh Security vs Forcepoint CASB

Compared 14% of the time

Prisma Access by Palo Alto Networks vs Forcepoint CASB

Compared 10% of the time

More Forcepoint CASB Competitors

Product Reports

Buyer's Guide

iboss

March 2025

Download iboss product report

Buyer's Guide

Cisco Umbrella

March 2025

Download Cisco Umbrella product report

Buyer's Guide

Forcepoint CASB

March 2025

Download Forcepoint CASB product report

Also Known As

iBoss Cloud Platform

OpenDNS

Imperva Skyfence

Overview

iboss offers a comprehensive security platform designed for diverse use cases such as web filtering, data loss protection, corporate proxy services, and URL filtering.

iboss integrates advanced features to address dynamic security needs, leveraging its strength in SASE, ZTNA, AI initiatives, and cloud integration, while ensuring seamless operations for remote work. It excels in historical forensics, malware protection, and flexible cloud deployments. Users benefit from comprehensive traffic scanning, robust malware detection, and PaaS capabilities that reduce hardware management. An intuitive admin console ensures efficient management with content filtering and low false positives. SSL decryption enhances security, while DLP protects data in AI conversations. Deployment is rapid and scalable, allowing effortless integration with emerging technologies.

What features does iboss offer?

Granular Web Filtering: Provides precise control over web content access.
Traffic Scanning: Monitors data through multiple ports for security breaches.
Malware Detection: Ensures superior protection against malware threats.
PaaS Capabilities: Eliminates need for hardware management.
SSL Decryption: Enhances data protection by decrypting secure connections.
DLP Capabilities: Safeguards data during AI interactions.

What benefits and ROI should users consider?

Scalability: Adapts quickly to growing demands and emerging tech integration.
Rapid Deployment: Reduces time to implement security measures.
User-Friendly Admin Console: Facilitates efficient operations management.
Low False Positives: Increases accuracy of threat detection systems.

iboss finds significant application in sectors such as education, where web filtering for K-12 is crucial, and in corporate environments requiring robust proxy services and URL filtering for network security. Its adaptability is essential in scenarios demanding flexible, decentralized security frameworks, particularly for remote work setups.

iboss

Cisco Umbrella delivers rapid DNS security with over 30,000 customers, providing outstanding threat protection and handling more than 600 billion requests daily. It's recognized for high threat efficacy in the SSE domain and integrates elements like SWG, ZTNA, CASB, and more.

Cisco Umbrella is renowned for its effective DNS-layer security against ransomware and phishing. It offers flexible content filtering and integrates seamlessly with existing networks while providing single-pane-of-glass management for centralized monitoring. Its robust threat intelligence and customizable policies are central to its appeal. Users highlight room for improvement in areas like WHOIS data inclusion, malware enhancement, and reporting analytics. Integration with other threat feeds and better client support are requested for more comprehensive coverage.

What are the key features of Cisco Umbrella?

DNS-Layer Security: Blocks malicious domains, preventing ransomware attacks.
Web Content Filtering: Allows users to manage lists for strict content control.
Seamless Integration: Blends with systems like Active Directory and Meraki.
Remote Protection: Keeps remote users safe across different locations.
Single-Pane Management: Facilitates effective monitoring and reporting.

What should users expect in reviews about Cisco Umbrella?

Threat Intelligence: Provides comprehensive malware and attack data.
Customizable Policies: Enables tailored security measures for users.
Integration Options: Works with diverse systems for holistic security.
Ease of Use: Offers a straightforward experience for administrators.
Remote Worker Security: Ensures protection outside traditional networks.

Industries implement Cisco Umbrella primarily for DNS-level security, web filtering, and protecting remote employees. It strengthens cybersecurity frameworks by blocking malware and avoiding access to harmful sites. The tool is widely integrated with Active Directory and Cisco Meraki, providing consistent internet security for employees.

Cisco

Forcepoint CASB (Cloud Access Security Broker) is a security solution which is designed to secure and monitor the use of cloud services within an organization. It helps organizations gain visibility and control over the cloud applications and services being used by their employees. Forcepoint CASB integrates with cloud service providers' APIs and employs various techniques such as traffic analysis, proxying, and API-based controls to provide security and visibility into cloud application usage. It can be deployed as a standalone solution or integrated with other security technologies within an organization's existing infrastructure.

Forcepoint CASB Features:

Cloud Application Visibility: CASB helps organizations discover and gain insights into the cloud applications and services being used across their network.
Data Loss Prevention (DLP): It enables organizations to enforce data protection policies and prevent sensitive information from being leaked or exposed in cloud applications.
User Behavior Monitoring: CASB monitors user activities and behavior within cloud services, allowing organizations to detect and respond to potential insider threats or anomalous behavior.
Compliance and Governance: It helps organizations enforce regulatory compliance requirements and maintain control over data stored and processed in the cloud.
Threat Protection: CASB offers protection against cloud-specific threats such as account hijacking, unauthorized access, malware, and data breaches.
Access Control and Encryption: It provides capabilities to control user access to cloud applications and data, as well as encryption options for securing sensitive information.

Forcepoint CASB Benefits:

Cloud Visibility: Provides a clear view of cloud applications and services used within the network.
Data Protection: Enforces policies to prevent data leakage and ensures compliance with regulations.
Insider Threat Detection: Monitors user behavior to identify potential insider threats or malicious activities.
Compliance and Governance: Helps meet regulatory requirements and maintain control over cloud data.
Threat Protection: Detects and prevents cloud-specific threats like account compromise and data breaches.
Access Control and Encryption: Implements strong access controls and encryption for secure cloud access.
Shadow IT Discovery: Identifies unauthorized cloud applications for risk assessment and control.
Integration and Orchestration: Integrates with existing security technologies for enhanced visibility and response.

Reviews from Real Users

Edwin Eze Osiago, Regional Solutions Manager (Sub-Sahara Africa) at InfodataReliable, says that Forcepoint CASB is "Easy to set up and offers good visibility".

PeerSpot user, Professional Services Coordinator at a tech vendor, writes that Forcepoint CASB "Needs better backend code, requires stronger technical support, and the initial setup should be easier" and also adds that "The most valuable aspect for us is the fact that the product seamlessly integrates with the Forcepoint DLP".

Mahendra Bedre, Lead at Infrastructure Solutions ALM, says that Forcepoint CASB's "Macro integration and IDs for credentials are great features; It is easy to use with a good layout".

Forcepoint

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.

Chart Industries, City of Aspen, Eastern Mountain Sports, FLEXcon, George Washington University, Jackson Municipal Airport Authority, Ohio Public Library Information Network, PTC, Richland Community College, Smart Motors, Tulane University, VeriClaim

Zions Bank, GE Healthcare, HomeAway, Logitech, Universal, California National Resources Agency and many mor

Buyer's Guide

Cisco Umbrella vs. Forcepoint CASB

March 2025

Free Report: Cisco Umbrella vs. Forcepoint CASB

Find out what your peers are saying about Cisco Umbrella vs. Forcepoint CASB and other solutions. Updated: March 2025.

DOWNLOAD NOW

842,388 professionals have used our research since 2012.

See our Cisco Umbrella vs. Forcepoint CASB report.

See our list of best Cloud Access Security Brokers (CASB) vendors.

We monitor all Cloud Access Security Brokers (CASB) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.