No more typing reviews! Try our Samantha, our new voice AI agent.

Forcepoint ONE vs Microsoft Defender for Cloud Apps comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 7, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

iboss
Sponsored
Ranking in Cloud Access Security Brokers (CASB)
7th
Average Rating
8.4
Reviews Sentiment
6.9
Number of Reviews
21
Ranking in other categories
Secure Web Gateways (SWG) (5th), Internet Security (3rd), Web Content Filtering (1st), ZTNA as a Service (8th), Secure Access Service Edge (SASE) (8th)
Forcepoint ONE
Ranking in Cloud Access Security Brokers (CASB)
10th
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
20
Ranking in other categories
Secure Web Gateways (SWG) (9th), Secure Access Service Edge (SASE) (11th)
Microsoft Defender for Clou...
Ranking in Cloud Access Security Brokers (CASB)
5th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
42
Ranking in other categories
Advanced Threat Protection (ATP) (14th), Microsoft Security Suite (11th)
 

Mindshare comparison

As of April 2026, in the Cloud Access Security Brokers (CASB) category, the mindshare of iboss is 3.3%, up from 1.7% compared to the previous year. The mindshare of Forcepoint ONE is 2.1%, up from 2.0% compared to the previous year. The mindshare of Microsoft Defender for Cloud Apps is 5.5%, down from 9.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Access Security Brokers (CASB) Mindshare Distribution
ProductMindshare (%)
Microsoft Defender for Cloud Apps5.5%
iboss3.3%
Forcepoint ONE2.1%
Other89.1%
Cloud Access Security Brokers (CASB)
 

Featured Reviews

Ashok Ananthula - PeerSpot reviewer
Senior Consultant Proxy Engineering at a financial services firm with 10,001+ employees
Cloud gateway has strengthened remote web security and now needs better Mac and ISP support
The problem our organization had is that iboss failed for the Mac devices. It is not able to give a successful agent for the Mac agents. That is where in 2025, we had to migrate to the Palo Alto-based platform. If your use case is for just Windows laptops,you can consider this platform as an option One issue is the data center resiliency part. In India especially, they are not tied up with the Tier 1 ISPs like Tata or Airtel; they were having Tier 2 ISPs and encountered many issues reaching few major sites that my organization depends on, and they were having problems that they could not fix quickly. They also lack a mechanism to route that traffic within their data center; rather, they ask customers to make a pac file change to route it to Singapore explicitly. It would be better if they route from their backend , i mean even if I send it to India DC, they should be able to route it internally to make that work; however, they fail to do that and ask the customer to route it in the pac file. Another suggestion is that in China, they do not have the proper setup; they used to have numerous problems with slowness and lack of premium circuits in China as well. That leads to multiple sites working slowly with latency-related issues. So the main issue is the ISP-related problems that need to be solved.
reviewer2765397 - PeerSpot reviewer
Security Engineer at a tech services company with 201-500 employees
Delivers reliable policy control and improves data protection across cloud and endpoints
The best features Forcepoint ONE offers include the DLP engine with predefined policies for common data types that help us determine and use it directly, as well as cloud app control to protect SaaS platforms like Microsoft 365 and Google Workspace. We are also helped by the Incident Management Dashboard for quick review and policy tuning, along with integration with Forcepoint Endpoint DLP, allowing us consistent enforcement across devices. The DLP engine and Incident Management Dashboard have made our work much more efficient in daily operations, as detection accuracy reduces the need for manual review, and the centralized dashboard helps us quickly identify which incidents need escalation or policy adjustment. It shortens response time for our clients, allowing their security team to view incidents in real-time, classify them easily, and focus on genuine risks instead of sorting through false positives, and it simplifies reporting and audit preparation since all the relevant data is consolidated in one place. One feature that really stands out for us and our client is the seamless integration between Forcepoint ONE and the on-premise Forcepoint DLP, as it allows consistent data protection policy across both cloud and endpoint environments, making it much easier to manage. Forcepoint ONE has positively impacted our organization by streamlining DLP policy management and reducing time spent on troubleshooting and manual reviews, providing faster compliance reporting for internal needs and compliance with local regulation, and improving visibility into how sensitive data moves across cloud and endpoint environments. Overall, it helps our customers operate more efficiently and confidently in enforcing data protection controls.
FV
Security and Continuity Manager at Rolinco NV
Deployment has been seamless with insightful data categorization and enhanced control
The features of Microsoft Defender for Cloud Apps that I have found most valuable include the overall portal view, with bubble graphs which give us insight into what goes where in the categorization, nowadays with Generative AI but all kinds of categorization, collaboration, etc. That central view of the portal is very useful for us. The impact of Microsoft Defender for Cloud Apps on our organization's ability to assess and manage app related risks has been significant because we have more visibility. Therefore, we can add more control, and we have already done so. This was not possible in the old solution, in the old CASB solution with Netskope. We now can see on the spot, and we do that almost weekly, what the end users are utilizing, which cloud providers or cloud apps they're using. The visibility into OAuth apps provided by Microsoft Defender for Cloud Apps is very good. The visibility into risk and risk management of our organization's Generative AI apps is very nice, as you can choose the category Generative AI and then see exactly what traffic has been going to and from Generative AI in the cloud. This makes us very insightful on what is used within the company. We have some policies on blocking specific Generative AI, and we use within our company one particular AI part, which is CoPilot of Microsoft. In this way, we can see what the end users are using other than CoPilot, and that makes us more in control. The effectiveness of the integration of Microsoft Defender for Cloud Apps with Defender XDR and defending against SaaS attacks is very intuitive. It works immediately if we create a new policy or in Purview or in Microsoft Defender for Cloud Apps, or when we make an app unsanctioned by blocking it, then it is almost immediately, or at least within a couple of hours, effective on all the endpoints where the EDR is running. This gives us much better control over things than before.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Because of iboss, I did not have to assign web filtering tasks to my techs on a daily basis."
"iboss is easy to use despite its complexity. Multiple engineers manage it, but it's significantly more straightforward to administer than traditional VPNs and web proxies."
"This product is solid, fairly easy to use, and reliable."
"We chose iboss for both zero trust and proxy (SWG) because their SWG was superior."
"The security aspect of the solution, particularly the malware behind it, is excellent. That's something that really helped us out. It's not just a simple proxy that just blocks the insights of potential threats that come on behind it. They do malware detection and that helps us a lot."
"It was a very easy product to install. It can be deployed very fast."
"Technical support is pretty sharp and very responsive."
"iboss has significantly lowered the number of security incidents. It is crazy how much it blocks and how much it is aware of the outside danger."
"It allows a window into who is sharing what types of data internally and externally."
"The platform's feature that has been most beneficial for our web security is its capability to replicate rules."
"It has given us a more secure environment."
"The core CASB solution is the most valuable part. It allows us to put policies in place around which devices can log into our cloud applications. We have a policy that states that only company devices can access these cloud applications."
"Overall, knowing what I know now, a year and two months later, and having been through this whole Bitglass deployment with the issues that we've had that were not Bitglass' fault, I would still choose the same product today."
"Forcepoint ONE has positively impacted our organization by streamlining DLP policy management and reducing time spent on troubleshooting and manual reviews, providing faster compliance reporting for internal needs and compliance with local regulation, and improving visibility into how sensitive data moves across cloud and endpoint environments."
"I have seen a return on investment, and the improvement is very good, with evident money saved because the license for Forcepoint ONE is a bundled package and noticeable time saved because more incidents are handled and reviewed in a short period of time with fewer employees since Forcepoint ONE does the work that I used to rely on a team of engineers to previously detect."
"The solution’s AJAX-VM provides constant reverse proxy uptime. It has been very positive for our security operations. When people are trying to access the SaaS solution, it protects us from downloading any of that data and experiencing any type of attacks"
"The product helps us with privileged identity management to control who has access to what and for how long."
"The most valuable feature is the seamless integration across different clouds."
"The most valuable feature is the ease of management; the management is cloud-based and we can work inside or outside on public networks."
"Defender helps us control which applications are being used and gain more security insight into remote and hybrid users based on user identity and log in location. You can also integrate Defender for Cloud Apps with Defender for Endpoint to extend its capabilities."
"It's very easy to install and it includes the Intune portal from Microsoft where I can control all the devices from one place."
"The product’s most valuable feature is SQL database."
"The most valuable feature of Microsoft Defender for Cloud Apps is to stop shadow IT."
"The favorite feature of Microsoft Defender for Cloud Apps is the categorical blocking capability, which appears to be fed from Microsoft Security Intelligence feeds that seem to be better than other solutions and allows for dynamic configuration, cutting down on potential issues from manually managing block lists."
 

Cons

"File integrity monitoring would be very advantageous as an additional feature."
"Iboss is growing so fast that it is often hard for them to keep up with the challenges."
"For zero trust implementation, we encountered complexity issues, especially with a large infrastructure company ExxonMobil."
"To scale up, a new iboss Node Blade Chassis must be purchased."
"It is stable, but due to growth, it can sometimes be less stable than wanted."
"The reporting feature needs improvement. It doesn't give you the expected results. It is quite difficult to get the specific reports needed, and it is not as intuitive as the rest of the platform."
"Its pricing could be better."
"Our biggest problem with their service was it did not recognize the device and filtering did not always work correctly."
"I rate Forcepoint ONE a seven because it needs improvement in reporting and integrations."
"Integration into different multi-factor authentication tools. On their page, they tout Duo, but I don't use Duo. I use another vendor. Not that they don't interact, but it takes a little bit more doing. Any amount of efficiencies here would help."
"I wish they would advance more into the endpoint DLP solution."
"I believe that Forcepoint ONE could be improved when configuring certain policies; for content filtering, when trying to whitelist or blacklist certain domains, you can only do up to about 50 domains or URLs, which is a limitation that could be addressed."
"Areas for improvement for the platform include addressing scalability and architecture concerns, especially for large deployments involving more than 500 or 1,000 users."
"I need control over access to web WhatsApp, which the solution cannot resolve yet."
"Their new SASE (secure access service edge) product would have been the one thing I would have requested. Now that they have that platform, I'd like to see it as integrated and seamless as possible with the core product. That's what they're working towards and that's where we're seeing the advancements."
"I wish they would advance more into the endpoint DLP solution. Currently they do not do anything around endpoint, they're still strictly cloud-based. The forward proxy is really the only thing they do. What I would like to see them do is to scan machines, workstations and servers, for information we might not want on those machines. That would be huge."
"The insights could be improved, especially in reporting."
"We would like to get more information from the endpoint. I don't get enough detailed information right now on why something failed. There is not enough visibility."
"A significant improvement I would like to see is the integration into a single pane of glass, which would allow me to view everything in one place rather than having to switch between different areas."
"They should continue integration with all other Microsoft security-related products."
"Generally, the pricing can always be improved along with the management system."
"Currently, reporting is not very straightforward and it needs to be enhanced. Specific reports are not included and you need to run a query, drill down, and then export it and share it. I would love to have reports with more fine-tuning or granularity, and more predefined reports."
"We are having trouble with our continuous reporting configuration and struggling with configuring the collector properly with our log parsing. We've also faced difficulties getting support for this issue. It's taken us months to figure this out after going through a couple of different support channels."
"I would like more customization of notifications. Currently, you either get everything or you get limited information. I would like to have something in between where we can customize the data that is included in notifications."
 

Pricing and Cost Advice

"It is probably in line with other solutions, but I do not deal with the financial side."
"We had the cost of purchasing a new appliance along with the implementation and licensing costs. However, the following year, the cost of just licensing was similar to what was paid the previous year for a new appliance along with the implementation and licensing costs."
"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."
"The overall pricing for iboss is very competitive and transparent."
"We have not priced the solution recently, but they were competitive with other vendors in the past."
"It is expensive compared to one of its competitors."
"The licensing cost for Forcepoint ONE would depend on the features, but the pricing is very competitive here in Brazil. The solution offers a good price, and I would rate it a three or a four in terms of pricing. I don't have information on whether there are additional costs apart from the standard licensing fees for Forcepoint ONE."
"There is training involved. If you're going to add more people to it, such as cross train more of your group, there's a cost. Other than that, that's it. We have paid exactly what the invoices have said. We signed a three-year contract and not gone above it."
"The product is reasonably priced compared to other vendors. I rate the pricing a two or three."
"We have our pricing by user. We do our pricing agreements annually. There are also additional costs for maintenance."
"Typically, the longer you price forward, the better off you're going to be. They have been very willing to work with us on pricing."
"When considering only the cost, the solution may appear to be costly; however, when evaluated in terms of commercial value, Bitglass is not expensive."
"The cost could be improved when you need to pay for anything. For example, refreshing files takes time to load, though it may be my Internet. To improve the refresh time, Microsoft says that we need to pay for a Premium license, and I don't like paying for things that help make a solution better."
"The E5 license offers everything bundled. People are moving to Microsoft because you buy one license and it gives you everything."
"The pricing is in the middle. It isn't too cheap or expensive compared to other antivirus or security products. It is priced according to industry standards."
"The pricing is fair."
"Its pricing is on the higher side. Its price is definitely very high for a small-scale company. As an enterprise client, we do get benefits from Microsoft. We get a discounted price because of the number of users we have in our company. We have a premier package, and with that, we do get a lot of discounts. There are no additional costs. It only comes in the top-tier packages. Generally, the top-tier license is the best license that you can get for your organization. If you want, you can buy it separately, but that's not a good idea."
"This product is not expensive."
"It has pretty good pricing."
"I'm not totally involved in the pricing part, but I think its pricing is quite aggressive, and its price is quite similar to Netskope. Netskope has separate licensing fees or additional charges if you want to monitor certain SaaS services, whereas, with MCAS, you get 5,000 applications with their Office 365. It is all bundled, and there's no cost for using that. You only have the operational costs. In the country I am in, it is a bit difficult to get people with the required skill sets."
report
Use our free recommendation engine to learn which Cloud Access Security Brokers (CASB) solutions are best for your needs.
889,855 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Computer Software Company
9%
Manufacturing Company
9%
Construction Company
7%
Financial Services Firm
14%
Computer Software Company
9%
Comms Service Provider
7%
Outsourcing Company
6%
Financial Services Firm
12%
Computer Software Company
9%
Manufacturing Company
8%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise7
Large Enterprise8
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise3
Large Enterprise12
By reviewers
Company SizeCount
Small Business15
Midsize Enterprise10
Large Enterprise19
 

Questions from the Community

What needs improvement with iboss?
iboss can increase security in cyberspace. I have heard they are doing DDoS filtering, but I am not certain if they a...
What is your primary use case for iboss?
I use iboss for corporate VPN and all the corporate VRF, with basically all user traffic proxying to the internet.
What is your experience regarding pricing and costs for iboss?
Regarding pricing, setup costs, and licensing, iboss is not cheap, and that's my only concern. There are cheaper alte...
What is your experience regarding pricing and costs for Forcepoint ONE?
The aspects of pricing, setup cost, and licensing are managed by our sales team, as I handle the technical side.
What needs improvement with Forcepoint ONE?
Forcepoint ONE could be improved in terms of scalability to better support hybrid environments, as many organizations...
What advice do you have for others considering Forcepoint ONE?
I advise others looking into using Forcepoint ONE to study its features, as it covers many of the use cases usually a...
Which is the better security solution - Cisco Umbrella or Microsoft Cloud App Security?
Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-nat...
What is your experience regarding pricing and costs for Microsoft Cloud App Security?
At the time of implementation, when the size of our organization was small, it was a more affordable product. Since a...
What needs improvement with Microsoft Cloud App Security?
The fidelity of the signal in Microsoft Defender for Cloud Apps has been a challenge in some areas. There have been i...
 

Also Known As

iBoss Cloud Platform
Bitglass
MS Cloud App Security, Microsoft Cloud App Security
 

Overview

 

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.
UNC-Charlotte
Customers for Microsoft Defender for Cloud Apps include Accenture, St. Luke’s University Health Network, Ansell, and Nakilat.
Find out what your peers are saying about Forcepoint ONE vs. Microsoft Defender for Cloud Apps and other solutions. Updated: April 2026.
889,855 professionals have used our research since 2012.