No more typing reviews! Try our Samantha, our new voice AI agent.

Forcepoint ONE vs Microsoft Defender for Cloud Apps comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 7, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

iboss
Sponsored
Ranking in Cloud Access Security Brokers (CASB)
7th
Average Rating
8.4
Reviews Sentiment
6.9
Number of Reviews
20
Ranking in other categories
Secure Web Gateways (SWG) (5th), Internet Security (3rd), Web Content Filtering (1st), ZTNA as a Service (7th), Secure Access Service Edge (SASE) (8th)
Forcepoint ONE
Ranking in Cloud Access Security Brokers (CASB)
10th
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
20
Ranking in other categories
Secure Web Gateways (SWG) (10th), Secure Access Service Edge (SASE) (11th)
Microsoft Defender for Clou...
Ranking in Cloud Access Security Brokers (CASB)
5th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
42
Ranking in other categories
Advanced Threat Protection (ATP) (14th), Microsoft Security Suite (11th)
 

Mindshare comparison

As of April 2026, in the Cloud Access Security Brokers (CASB) category, the mindshare of iboss is 2.7%, up from 1.8% compared to the previous year. The mindshare of Forcepoint ONE is 2.1%, up from 2.0% compared to the previous year. The mindshare of Microsoft Defender for Cloud Apps is 6.0%, down from 10.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Access Security Brokers (CASB) Mindshare Distribution
ProductMindshare (%)
Microsoft Defender for Cloud Apps6.0%
iboss2.7%
Forcepoint ONE2.1%
Other89.2%
Cloud Access Security Brokers (CASB)
 

Featured Reviews

reviewer2701851 - PeerSpot reviewer
Managing Director
Enhances web security with a single pane of glass and flexible deployment
I don't see any need for improvement; one of the really good things about iboss as a company is that they listen to customer feedback. I have suggested enhancements, and they are responsive, making changes for the better, and they do a lot of testing. To improve iboss, although we haven't used it, we considered the VPN solution that comes with the highest tier licensing, which includes DLP and various other add-ons. We prefer using another product which automatically logs you back onto your network when turning on your PC. With iboss, the connection is manual, which doesn't meet our needs. Additionally, sizing can be tricky because, although the initial recommendations may seem adequate, actual usage may require more gateways than anticipated.
reviewer2765397 - PeerSpot reviewer
Security Engineer at a tech services company with 201-500 employees
Delivers reliable policy control and improves data protection across cloud and endpoints
The best features Forcepoint ONE offers include the DLP engine with predefined policies for common data types that help us determine and use it directly, as well as cloud app control to protect SaaS platforms like Microsoft 365 and Google Workspace. We are also helped by the Incident Management Dashboard for quick review and policy tuning, along with integration with Forcepoint Endpoint DLP, allowing us consistent enforcement across devices. The DLP engine and Incident Management Dashboard have made our work much more efficient in daily operations, as detection accuracy reduces the need for manual review, and the centralized dashboard helps us quickly identify which incidents need escalation or policy adjustment. It shortens response time for our clients, allowing their security team to view incidents in real-time, classify them easily, and focus on genuine risks instead of sorting through false positives, and it simplifies reporting and audit preparation since all the relevant data is consolidated in one place. One feature that really stands out for us and our client is the seamless integration between Forcepoint ONE and the on-premise Forcepoint DLP, as it allows consistent data protection policy across both cloud and endpoint environments, making it much easier to manage. Forcepoint ONE has positively impacted our organization by streamlining DLP policy management and reducing time spent on troubleshooting and manual reviews, providing faster compliance reporting for internal needs and compliance with local regulation, and improving visibility into how sensitive data moves across cloud and endpoint environments. Overall, it helps our customers operate more efficiently and confidently in enforcing data protection controls.
FV
Security and Continuity Manager at Rolinco NV
Deployment has been seamless with insightful data categorization and enhanced control
The features of Microsoft Defender for Cloud Apps that I have found most valuable include the overall portal view, with bubble graphs which give us insight into what goes where in the categorization, nowadays with Generative AI but all kinds of categorization, collaboration, etc. That central view of the portal is very useful for us. The impact of Microsoft Defender for Cloud Apps on our organization's ability to assess and manage app related risks has been significant because we have more visibility. Therefore, we can add more control, and we have already done so. This was not possible in the old solution, in the old CASB solution with Netskope. We now can see on the spot, and we do that almost weekly, what the end users are utilizing, which cloud providers or cloud apps they're using. The visibility into OAuth apps provided by Microsoft Defender for Cloud Apps is very good. The visibility into risk and risk management of our organization's Generative AI apps is very nice, as you can choose the category Generative AI and then see exactly what traffic has been going to and from Generative AI in the cloud. This makes us very insightful on what is used within the company. We have some policies on blocking specific Generative AI, and we use within our company one particular AI part, which is CoPilot of Microsoft. In this way, we can see what the end users are using other than CoPilot, and that makes us more in control. The effectiveness of the integration of Microsoft Defender for Cloud Apps with Defender XDR and defending against SaaS attacks is very intuitive. It works immediately if we create a new policy or in Purview or in Microsoft Defender for Cloud Apps, or when we make an app unsanctioned by blocking it, then it is almost immediately, or at least within a couple of hours, effective on all the endpoints where the EDR is running. This gives us much better control over things than before.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"From a use-case scenario, what I like the most is the plug-in. I like the fact that we can do the filtering of these devices offsite independent of the network they are connected to, and we do not have to have traffic coming back inside our network."
"Iboss is a solution that prevents advanced persistent threats, and has a zero tolerance for attacks."
"This product is solid, fairly easy to use, and reliable."
"I would definitely recommend iboss for web filtering purposes to other organizations or individuals."
"iboss has significantly lowered the number of security incidents. It is crazy how much it blocks and how much it is aware of the outside danger."
"The iboss solution gives me the ability to scan the traffic through all the ports, through all the 131,000 PCP and UDP ports, and with this ability, we have the granularity also for consults over social media and applications on mobile, and this is an advantage that the customers are looking for right now."
"From a corporate perspective, I understand that it's important to keep the company data safe."
"The iboss system is highly reliable. The false positive rates are small compared to some other systems we've experienced through other partner agencies who use competing solutions."
"By default without a policy, Bitglass has the capability to notify the admin of multiple or simultaneous logins across a wide range of geographical regions."
"The pricing is very good and cheaper than other solutions like Netskope and Forcepoint."
"It is overall a good solution for securing against data breaches and attacks, but there is no 100 percent guarantee in software."
"The platform's feature that has been most beneficial for our web security is its capability to replicate rules."
"The features of Forcepoint ONE for data protection in the cloud are very useful and are very easy to configure for use cases; I think it is easier and safer."
"Forcepoint ONE has positively impacted our organization by streamlining DLP policy management and reducing time spent on troubleshooting and manual reviews, providing faster compliance reporting for internal needs and compliance with local regulation, and improving visibility into how sensitive data moves across cloud and endpoint environments."
"The solution is very good when it comes to securing us against data leakage, because of the other proxy. It also has API scanning or data at rest. It inspects data in motion, which is the proxy, and then it has the data at rest, which is the API scanning. We can inspect for anything we want: file fingerprinting, PHI-sensitive data, PCI-sensitive data. It does not matter. We can usually find it and block it in transit and do our remediation with it. It could either be block, encrypt, or allow and watermark the file to follow it and see where it goes. It allows for those different scenarios."
"I have seen a return on investment, and the improvement is very good, with evident money saved because the license for Forcepoint ONE is a bundled package and noticeable time saved because more incidents are handled and reviewed in a short period of time with fewer employees since Forcepoint ONE does the work that I used to rely on a team of engineers to previously detect."
"The solution does not affect a user's workflow."
"After creating the policy you can be assured that a user's data is being protected."
"The favorite feature of Microsoft Defender for Cloud Apps is the categorical blocking capability, which appears to be fed from Microsoft Security Intelligence feeds that seem to be better than other solutions and allows for dynamic configuration, cutting down on potential issues from manually managing block lists."
"Overall, Microsoft Defender for Cloud Apps is very convenient for investigation, in terms of security breaches, or if there is file exfiltration."
"I like the web GUI/the management interface, and I also like the security of Microsoft because, as compared to other manufacturers, it's less complex and easy to understand and work with."
"From what I've seen, it's a good product."
"The most effective features for data protection are data loss prevention (DLP) and data classification."
"We have seen a 35% to 45% cost reduction with this solution."
 

Cons

"To scale up, a new iboss Node Blade Chassis must be purchased."
"For zero trust implementation, we encountered complexity issues, especially with a large infrastructure company ExxonMobil."
"The dashboards for local use could be better."
"Their on-premise hardware's network interface is capped at one gigabit, which is sort of a problem. If you stand a filter up where all traffic flows through that, according to them, in order to go above a gigabit, you have to have multiple devices, which in today's IT seems a little bit silly. They could easily put in an SFP port into their device that could accommodate 10 gigs or at least offer a box."
"Sometimes the agent stops working in iboss, and we have to reinstall the agent."
"Our iboss subscription access should be more secure with an OTP or VPN etc. It is easy to gain access if, for example, hackers obtain my username and password."
"Sometimes when you call in support, you get someone who is just following a sheet. It feels like a runaround. You feel that you are running into that support wall."
"One thing I would like to see differently with their Zero Trust platform is that some of the AI aspects related to high-risk activities have more false positives."
"There is room for improvement in making the reporting closer to real-time, ideally around five or ten minutes instead of half an hour. The interface could also be updated as it was quite dated."
"A few minor items for consideration: Enhanced reporting (e.g. a report to find out how many users are in specific Bitglass group). MFA Enhancement: Perhaps adding an MFA Application."
"I rate Forcepoint ONE a seven because it needs improvement in reporting and integrations."
"Forcepoint ONE can be improved in scalability to handle more hybrid environments."
"The solution's integration with other products needs improvement."
"I wish they would advance more into the endpoint DLP solution."
"Integration into different multi-factor authentication tools. On their page, they tout Duo, but I don't use Duo. I use another vendor. Not that they don't interact, but it takes a little bit more doing. Any amount of efficiencies here would help."
"In our environment, when an Active Directory password changes, we tend to have some latency issues with access. It takes about 15 minutes before that password is accessible through Bitglass after the change."
"We would like to get more information from the endpoint. I don't get enough detailed information right now on why something failed."
"I would like to see them include more features in the older licenses. There are some features that are not available, such as preventing or analyzing cloud attacks."
"They need to improve the attack surface reduction (ASR) rules. In the latest version, you can implement ASR rules, which are quite useful, but you have to enable those because if they're not enabled, they flag false positives. In the Defender portal, it logs a block for WMI processes and PowerShell. Apparently, it's because ASR rules are not configured. So, you generally have to enable them to exclude, for example, WMI queries or PowerShell because they have a habit of blocking your security scanners. It's a bit weird that they have to be enabled to be configured, and it's not the other way around."
"I believe it's only set to be integrated with Microsoft Defender for identity and identity protection. I would like to see it available for use with something like Office 365 Defender. I don't think it's integrated with that yet."
"If this solution were more robust then it would be much more useful."
"Generally, the pricing can always be improved along with the management system."
"There are some features, such as user navigation content filtering, that are disabled by default, and it probably makes sense to enable them by default."
"Microsoft Defender for Cloud Apps' initial setup was quite technical but we were prepared. The time of the implementation depends on the job and how many users are being set up."
 

Pricing and Cost Advice

"It is expensive compared to one of its competitors."
"We had the cost of purchasing a new appliance along with the implementation and licensing costs. However, the following year, the cost of just licensing was similar to what was paid the previous year for a new appliance along with the implementation and licensing costs."
"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."
"We have not priced the solution recently, but they were competitive with other vendors in the past."
"The overall pricing for iboss is very competitive and transparent."
"It is probably in line with other solutions, but I do not deal with the financial side."
"There is training involved. If you're going to add more people to it, such as cross train more of your group, there's a cost. Other than that, that's it. We have paid exactly what the invoices have said. We signed a three-year contract and not gone above it."
"We have our pricing by user. We do our pricing agreements annually. There are also additional costs for maintenance."
"The licensing cost for Forcepoint ONE would depend on the features, but the pricing is very competitive here in Brazil. The solution offers a good price, and I would rate it a three or a four in terms of pricing. I don't have information on whether there are additional costs apart from the standard licensing fees for Forcepoint ONE."
"Typically, the longer you price forward, the better off you're going to be. They have been very willing to work with us on pricing."
"The product is reasonably priced compared to other vendors. I rate the pricing a two or three."
"When considering only the cost, the solution may appear to be costly; however, when evaluated in terms of commercial value, Bitglass is not expensive."
"The pricing is fair."
"The product's pricing seems fair."
"The E5 license offers everything bundled. People are moving to Microsoft because you buy one license and it gives you everything."
"We utilize the Microsoft E5 licensing, which encompasses the entire Microsoft suite; however, it is costly."
"I'm not totally involved in the pricing part, but I think its pricing is quite aggressive, and its price is quite similar to Netskope. Netskope has separate licensing fees or additional charges if you want to monitor certain SaaS services, whereas, with MCAS, you get 5,000 applications with their Office 365. It is all bundled, and there's no cost for using that. You only have the operational costs. In the country I am in, it is a bit difficult to get people with the required skill sets."
"The pricing is a little bit high but right now, we are okay with it because of the compatibility with Office 365, Teams, and Azure AD."
"The price could be better and should be reconsidered."
"We have an educational licensing agreement. It's a customer agreement for multiple years."
report
Use our free recommendation engine to learn which Cloud Access Security Brokers (CASB) solutions are best for your needs.
885,728 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Computer Software Company
9%
Manufacturing Company
9%
Construction Company
7%
Financial Services Firm
12%
Computer Software Company
9%
Comms Service Provider
7%
Manufacturing Company
6%
Financial Services Firm
11%
Computer Software Company
9%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise7
Large Enterprise6
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise3
Large Enterprise12
By reviewers
Company SizeCount
Small Business15
Midsize Enterprise10
Large Enterprise19
 

Questions from the Community

What needs improvement with iboss?
For zero trust implementation, we encountered complexity issues, especially with a large infrastructure company Exxon...
What is your primary use case for iboss?
Previously when I used iboss, we did the POC for iboss for ExxonMobil. Four or five people wanted to move from our ol...
What is your experience regarding pricing and costs for iboss?
Regarding pricing, setup costs, and licensing, iboss is not cheap, and that's my only concern. There are cheaper alte...
What do you like most about Forcepoint ONE?
The platform's feature that has been most beneficial for our web security is its capability to replicate rules.
What is your experience regarding pricing and costs for Forcepoint ONE?
The aspects of pricing, setup cost, and licensing are managed by our sales team, as I handle the technical side.
What needs improvement with Forcepoint ONE?
Forcepoint ONE could be improved in terms of scalability to better support hybrid environments, as many organizations...
Which is the better security solution - Cisco Umbrella or Microsoft Cloud App Security?
Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-nat...
What is your experience regarding pricing and costs for Microsoft Cloud App Security?
At the time of implementation, when the size of our organization was small, it was a more affordable product. Since a...
What needs improvement with Microsoft Cloud App Security?
The fidelity of the signal in Microsoft Defender for Cloud Apps has been a challenge in some areas. There have been i...
 

Also Known As

iBoss Cloud Platform
Bitglass
MS Cloud App Security, Microsoft Cloud App Security
 

Overview

 

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.
UNC-Charlotte
Customers for Microsoft Defender for Cloud Apps include Accenture, St. Luke’s University Health Network, Ansell, and Nakilat.
Find out what your peers are saying about Forcepoint ONE vs. Microsoft Defender for Cloud Apps and other solutions. Updated: March 2026.
885,728 professionals have used our research since 2012.