Menlo Secure vs Zscaler Internet Access comparison

Menlo Security and Zscaler are both solutions in the Secure Web Gateways (SWG) category. Menlo Security is ranked #31, while Zscaler is ranked #2 with an average rating of 8.2. Menlo Security holds a 1.3% mindshare in WSG, compared to Zscaler’s 15.6% mindshare. Additionally, 100% of Menlo Security users are willing to recommend the solution, compared to 98% of Zscaler users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 4, 2024

Menlo Secure and Zscaler Internet Access compete in cybersecurity, focusing on secure internet access and data protection. Zscaler has the upper hand due to its comprehensive features and cloud integration, appealing to businesses prioritizing these aspects.

Features: Menlo Secure provides an isolation-based architecture, open browsing with selective blocking, and single-console management for security policies. Zscaler Internet Access offers cloud-native architecture, advanced threat protection, and secure access to cloud applications.

Room for Improvement: Menlo Secure could enhance logging capabilities, reduce site bypass needs, and improve SSL decryption strategies. Zscaler Internet Access could improve on latency issues, expand its DLP features, and enhance customization for specific user requirements.

Ease of Deployment and Customer Service: Zscaler Internet Access offers swift deployment with its cloud-based setup and a responsive customer service team. Menlo Secure provides reliable customer support but emphasizes security over deployment ease.

Pricing and ROI: Menlo Secure is cost-effective with a promising ROI due to affordability and strong support. Zscaler requires a higher investment, justified by its extensive features and higher long-term ROI from advanced security services.

To learn more, read our detailed Menlo Secure vs. Zscaler Internet Access Report (Updated: April 2025).

Buyer's Guide

Menlo Secure vs. Zscaler Internet Access

April 2025

Download the complete report

Helped 848,989 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

iboss

Mindshare comparison

As of April 2025, in the Secure Web Gateways (SWG) category, the mindshare of iboss is 2.0%, up from 1.7% compared to the previous year. The mindshare of Menlo Secure is 1.3%, up from 0.9% compared to the previous year. The mindshare of Zscaler Internet Access is 15.6%, down from 17.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Secure Web Gateways (SWG)

Featured Reviews

Matt Crockford

Head of Cybersecurity at SES Water

It's easy to roll out, and their understanding of our business made it seamless

One aspect we value about iboss is its simplicity. Their customer service is brilliant, and they are super responsive and knowledgeable. It's easy to roll out, and their understanding of our business made it seamless. We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times. The user interface is highly intuitive. Our IT team picked it up with minimal training. It's arranged so that it's easy to find where things are. Another advantage is the single pane of glass console, which gives you visibility into what's happening. We're not fully there yet because we haven't implemented zero trust, but we're excited about the possibilities from the demos we've seen. We launched a POC of iboss' ChatGPT Risk Protection feature two weeks ago. AI is a great tool, but you need to be careful what you put into it. My biggest fear is employees inputting sensitive corporate information or customer PII data into one of these chatbots. I was impressed by our trial of the feature. It's exactly what we wanted. Now, when a user goes to ChatGPT, there's a banner warning them not to share information, and we can block conversations containing customer data like bank details and email addresses. I don't want to stop people from using it, but we need visibility. We've only tried it on a test group of 15 people. You can configure it to look for specific keywords or integrate it with your DLP policy if you have that configured

Read full review

Olivier DALOY

Group Information Systems Security Director - CISO at Faurecia

Secures users wherever they are and enable us to inspect SSL traffic, but we encountered too many issues

The solution should have no impact but it does have a bit of impact on end-users. For example, we encountered some issues in the downloads that took longer than they did without using Menlo. That is clearly not transparent for users. We expected not to have any latency when downloading anything from the internet with Menlo compared to without Menlo. We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution. In other words, we hope to get the same level of protection, while reducing the number of visible bugs, issues, latencies, impacts on performance, et cetera, that we have today with Menlo. We already solved most of them, but we still have too many such instances of issues with Menlo, even though it is protecting us for sure. The weak point of the solution is that it has consumed far too much of my team's time, taking them away from operations and projects and design. It took far too much time to implement it and get rid of all of the live issues that we encountered when our users started using the solution. The good point is that I'm sure it is protecting us and it's probably protecting us more than any other solution, which is something I appreciate a lot as a CISO. But on the other hand, the number of issues reported by the users, and the amount of time that has been necessary for either my team or the infrastructure team to spend diagnosing, troubleshooting, and fixing the issues that we had with the solution was too much. And that doesn't include the need to still use our previous solution, Blue Coat, that we have kept active so that whatever is not compatible or doesn't work with Menlo, can be handled by that other solution. It is far too demanding in terms of effort and workload and even cost, at the end of the day. That is why we decided to transition to another solution. If we had known in the beginning that we would not be able to get rid of Blue Coat, we probably would not have chosen Menlo because we were planning to replace Blue Coat with something that was at least able to do the same and more. We discovered that it was able to do more but it was not able to replace it, which is an issue. It is not only a matter of cost but is also a matter of not being able to reduce the number of partners that you have to deal with. In addition, they could enhance the ability to troubleshoot. Whenever a connection going through Menlo fails for any reason, being able to troubleshoot what the configuration of Menlo should be to allow it through would help, as would knowing what level of additional risk we would be taking with that configuration.

Read full review

ShanavasVK

Consultant at Essentra PIC

Helps maintain a consistent posture of internet security while getting rid of VPN and hovering into zero trust

There could be a better way for the tool to categorize the traffic. For example, the tool does exceptions and everything overall. If I want to give guest access or provide access to guest users or any other internet access and if it does not go through the SSL inspection because, in our company, we can't have the root certificate on a device that we don't manage, which can be called out as an exception or an exclusion, but that doesn't provide a proper reflection of the picture of what is happening in the environment. There are granularities bringing it down. The tool I used or still have is Zscaler Cloud Connector to protect the cloud environment, which can have a bit more user-friendly installation and setup, and it would help a lot. The deployment process of Zscaler Cloud Connector needs to be more user-friendly. Improvements are required in the exception category. For example, suppose I report on a monthly basis what the breaches and traffic violating the SSL inspection area are coming from. In that case, I may find that half of them may be coming through some guest network, meaning the tool doesn't differentiate between the guest or normal networks or the corporate networks. Having options to differentiate different networks would be ideal so that it can show a true picture of things to users, as half of the things in the tool are not in our control and are not of our concern.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Iboss is a solution that prevents advanced persistent threats, and has a zero tolerance for attacks."

"Its initial setup was straightforward."

"The solution has massively improved our security posture, giving us full visibility into what our staff does online."

"The security aspect of the solution, particularly the malware behind it, is excellent. That's something that really helped us out. It's not just a simple proxy that just blocks the insights of potential threats that come on behind it. They do malware detection and that helps us a lot."

"iboss is easy to use despite its complexity. Multiple engineers manage it, but it's significantly more straightforward to administer than traditional VPNs and web proxies."

"I would definitely recommend iboss for web filtering purposes to other organizations or individuals."

"We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times."

"The console is cloud-based, which is something I really appreciate."

More iboss pros

"For us, the primary goal is protection on the web, and that's extremely important. We're not using any of the other services at this time. The web part is key to the success of the organization. It gives us the ability to protect. It can isolate. It opens the session in an isolated format so that the code isn't running locally. It is running over in the Menlo environment, not in ours. It is not running on the local computer, whereas if you were to go to a normal website, it would run Java or something else on the local machine and potentially execute the malicious code locally. So, it does give us that level of protection."

"Accessing the internet with a proxy from anywhere is the most valuable feature. It ensures that users are only able to browse legitimate websites. If they happen to go to a legitimate website with a malicious payload, the isolation feature will take care of that."

"It has reduced security events to follow up on. While it is not 100%, there has been probably a 90% or more reduction. We were getting hit left, right, and center constantly from people browsing the Internet and hitting bad websites. It was not just bad websites that were stood up to be malicious, but good sites that were compromised."

"The fact that it is a cloud proxy solution is another feature we like. For example, if you acquire a new company, you can use it to protect that new company without the need to install anything physically on their networks."

"Overall, we're very happy with our product."

"The solution's most valuable features are its reliability and availability, measured by the number of ports it offers."

"We enjoy all of the proxy capabilities and the capability to integrate into the SIEM/SOC solution."

"For our needs, the cloud-native proxy architecture is a very good solution. We are moving away from on-prem appliances and moving more toward cloud-based solutions. Zscaler is a good fit for our strategy. This architecture helps with cyber threats because we inspect most of the traffic and we can see that a lot of threats are stopped directly in the secure web gateway."

"The data loss prevention feature is the most valuable. It stops our users from inadvertently leaking our customers' data to the Internet or anywhere else it shouldn't go."

"We like Zscaler's traffic filtering, web security, DLP, and IPS features. The real-time threat protection is excellent."

"Zscaler Internet Access's best feature is the granular policy controls."

"There is no lag in service when accessing the internet."

More Zscaler Internet Access pros

Cons

"Their on-premise hardware's network interface is capped at one gigabit, which is sort of a problem. If you stand a filter up where all traffic flows through that, according to them, in order to go above a gigabit, you have to have multiple devices, which in today's IT seems a little bit silly. They could easily put in an SFP port into their device that could accommodate 10 gigs or at least offer a box."

"To scale up, a new iboss Node Blade Chassis must be purchased."

"The solution could be stronger on the integration side and offer more cloud applications like G Suite or Oracle."

"Sometimes when you call in support, you get someone who is just following a sheet. It feels like a runaround. You feel that you are running into that support wall."

"Our iboss subscription access should be more secure with an OTP or VPN etc. It is easy to gain access if, for example, hackers obtain my username and password."

"Iboss is growing so fast that it is often hard for them to keep up with the challenges."

"The area I would like to see improvement in is the ability with in the reporter to navigate directly to the content the user is traversing. It is kind of there, but it's not perfect. Quite frequently, I receive links that lead me to pages with error messages."

"I'd like to see them accelerate development on the security side, particularly around data loss prevention."

More iboss cons

"The user monitoring could still be improved."

"In the best of all worlds, we wouldn't have to make any exceptions. However, that is a big ask because a lot of that depends on how websites are constructed. For example, there are some very complex, application-oriented sites that we end up making exceptions for. It is really not that big an issue for us to make the exceptions. We feel like we are doing that without a huge impact on our security posture, but we do have to make some exceptions for complex sites, e.g., mostly SaaS-type sites and applications."

"We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution."

"Currently, I don't have a good way to see which of my rules are being used in the access control lists. I have numerous entries, but are they all still needed? A report that would show me my list of who is allowed and whether we're actually using it would be useful because I can then go clean up my list. It would be easier to manage. We would eliminate the vulnerability of unused services."

"The tool should improve the predefined dictionaries."

"One thing that needs to be improved is their presence in China. I'm not sure if that's a Zscaler thing or if it's a problem with all vendors in this space, but it would be nice to have better coverage in China. This concern is a common one for vendors across the board when dealing with the Chinese market."

"The solution's pricing is on the higher side. It would be better if it could be lower."

"Zscaler Internet Access could improve by adding a VPN feature."

"They should enhance the audit reporting feature."

"Zscaler should provide adjacent services, which would be complementary to their current offering that could to be more pragmatic for a customer. For example, if you take Akamai, you get multiple sets of services, all depending on the customer and the strategy and the complexity and the problems. In some areas, they are more varied in terms of coverage."

"There are a few features that are not compatible with the Azure cloud."

"The deployment process of Zscaler Cloud Connector needs to be more user-friendly."

More Zscaler Internet Access cons

Pricing and Cost Advice

"We had the cost of purchasing a new appliance along with the implementation and licensing costs. However, the following year, the cost of just licensing was similar to what was paid the previous year for a new appliance along with the implementation and licensing costs."

"We have not priced the solution recently, but they were competitive with other vendors in the past."

"The overall pricing for iboss is very competitive and transparent."

"It is expensive compared to one of its competitors."

"It is probably in line with other solutions, but I do not deal with the financial side."

"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."

"We save a ton of money and time. Previously, the numerous hits that we were receiving from our security tools, prior to implementing them, had to all be chased down, dispositioned, and endpoints had to be reimaged. It was just a ton of effort to do all that. That is where the savings from time and money come in."

"The solution is expensive. It's more expensive than the solution I previously used. Compared with the other cloud-based solutions, it's very competitive."

"It is appropriately priced for what they're doing for us. Considering the protection provided, I feel their pricing is spot-on."

"The pricing is an issue. It is expensive compared to other firewalls on the market."

"The price of Zscaler Internet Access should improve, it is expensive."

"If we need any extra features, the price will increase."

"Price-wise, the tool is reasonable compared to the other products in the market but it is not a very low-priced tool. The solution does provide value for money."

"It is a few pounds per user per month."

"Be aware that you will need to invest some time and money to adapt your environment for Zscaler (traffic redirection, software deployment, authentication, etc)."

"It is quite expensive. It does its job, but it is quite expensive for what we need."

"The solution is a little bit expensive. On a scale of one to five, I would rate it as a three."

More Zscaler Internet Access pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Secure Web Gateways (SWG) solutions are best for your needs.

See recommendations

848,989 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

12%

Manufacturing Company

Government

Computer Software Company

19%

Financial Services Firm

16%

Manufacturing Company

Healthcare Company

Educational Organization

22%

Computer Software Company

14%

Financial Services Firm

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about iboss?

Content filtering is the most useful feature of iboss.

See all answers

What needs improvement with iboss?

Our biggest problem with their service was it did not recognize the device and filtering did not always work correctl...

See all answers

What is your primary use case for iboss?

We used it for student and faculty filtering on campus.

See all answers

Ask a question

Earn 20 points

Which is the better security solution - Cisco Umbrella or Zscaler?

Cisco Umbrella and Zscaler Internet Access are two broad-spectrum Internet security solutions that I have tried. Zs...

See all answers

Which is better, Zscaler internet access or Netsckope CASB?

We researched Netskope but ultimately chose Zscaler. Netskope is a cloud access security broker that helps identify ...

See all answers

What do you like most about Zscaler Internet Access?

The solution has reduced cyberattacks.

See all answers

Comparisons

Cisco Umbrella vs iboss

Compared 15% of the time

Netskope vs iboss

Compared 13% of the time

Cloudflare One vs iboss

Compared 11% of the time

Prisma Access by Palo Alto Networks vs iboss

Compared 10% of the time

Cato SASE Cloud Platform vs iboss

Compared 8% of the time

More iboss Competitors

Cisco Umbrella vs Menlo Secure

Compared 20% of the time

Talon vs Menlo Secure

Compared 13% of the time

Prisma Access by Palo Alto Networks vs Menlo Secure

Compared 12% of the time

Netskope Next Gen Secure Web Gateway vs Menlo Secure

Compared 11% of the time

Cisco Web Security Appliance vs Menlo Secure

Compared 9% of the time

More Menlo Secure Competitors

Cisco Umbrella vs Zscaler Internet Access

Compared 23% of the time

Netskope vs Zscaler Internet Access

Compared 14% of the time

Microsoft Defender for Cloud Apps vs Zscaler Internet Access

Compared 11% of the time

Prisma Access by Palo Alto Networks vs Zscaler Internet Access

Compared 8% of the time

Fortinet FortiGate vs Zscaler Internet Access

Compared 1% of the time

More Zscaler Internet Access Competitors

Product Reports

Buyer's Guide

iboss

April 2025

Download iboss product report

Buyer's Guide

Menlo Secure

April 2025

Download Menlo Secure product report

Buyer's Guide

Zscaler Internet Access

March 2025

Download Zscaler Internet Access product report

Also Known As

iBoss Cloud Platform

Menlo Security Web Security, Menlo Web Security

ZIA

Overview

iboss offers a comprehensive security platform designed for diverse use cases such as web filtering, data loss protection, corporate proxy services, and URL filtering.

iboss integrates advanced features to address dynamic security needs, leveraging its strength in SASE, ZTNA, AI initiatives, and cloud integration, while ensuring seamless operations for remote work. It excels in historical forensics, malware protection, and flexible cloud deployments. Users benefit from comprehensive traffic scanning, robust malware detection, and PaaS capabilities that reduce hardware management. An intuitive admin console ensures efficient management with content filtering and low false positives. SSL decryption enhances security, while DLP protects data in AI conversations. Deployment is rapid and scalable, allowing effortless integration with emerging technologies.

What features does iboss offer?

Granular Web Filtering: Provides precise control over web content access.
Traffic Scanning: Monitors data through multiple ports for security breaches.
Malware Detection: Ensures superior protection against malware threats.
PaaS Capabilities: Eliminates need for hardware management.
SSL Decryption: Enhances data protection by decrypting secure connections.
DLP Capabilities: Safeguards data during AI interactions.

What benefits and ROI should users consider?

Scalability: Adapts quickly to growing demands and emerging tech integration.
Rapid Deployment: Reduces time to implement security measures.
User-Friendly Admin Console: Facilitates efficient operations management.
Low False Positives: Increases accuracy of threat detection systems.

iboss finds significant application in sectors such as education, where web filtering for K-12 is crucial, and in corporate environments requiring robust proxy services and URL filtering for network security. Its adaptability is essential in scenarios demanding flexible, decentralized security frameworks, particularly for remote work setups.

iboss

Menlo Security Secure Application Access

Menlo Security Secure Application Access makes zero trust access easy, giving users secure connectivity to private applications, including web and legacy applications. At the core of Secure Application Access is the Menlo Secure Cloud Browser, which fetches, secures and delivers the content for users.

In addition to providing simple-to-deploy, clientless ZTA, Secure Application Access and the Menlo Secure Cloud Browser protect applications from attacks such as session hijacking, cookie manipulation, and other tactics that employ protocol manipulation.

Secure Application Access protects applications from Internet threats and provides granular controls for added protection of the application and associated data. These security controls include Read-only/Read-write, Upload/download, Copy/paste, AV scanning, Sandboxing, and Data Loss Prevention.

Last Mile Data Protection

Menlo Last-Mile Data Protection identifies and prevents sensitive data from leaving your company by meticulously inspecting all file uploads and user input across browsing sessions. Leveraging the Secure Cloud Browser, users are protected from the internet and you can protect your organization from data loss with comprehensive traffic monitoring and controls. This approach addresses the growing concerns surrounding data leakage in the age of AI tools like ChatGPT.

By identifying sensitive data through file types, regular expressions, or predefined libraries, Menlo Last-Mile Data Protection empowers security teams to regulate data input into AI platforms and prevent unauthorized uploads. This capability provides crucial protection for intellectual property, PII, and other confidential information.

The solution leverages the Menlo Cloud Security Platform's visibility and control over traffic to reliably detect and prevent data leaks originating from both browser submission forms and non-browser traffic. With the ability to inspect encrypted web traffic, Menlo Last-Mile Data Protection enforces DLP policies consistently across all users and devices, ensuring comprehensive data protection.

Menlo Security

Zscaler Internet Access is a cloud-native security service edge (SSE) platform. Its main purpose is to provide AI-powered protection for all users, all applications, and all locations. The solution replaces other legacy network security solutions to stop advanced attacks and prevent data loss by using a comprehensive zero trust approach.

Zscaler Internet Access Features

Zscaler Internet Access has many valuable key features. Some of the most useful ones include:

Proxy (native SSL)
IPS and advanced protection
Cloud sandbox
DNS security
Cloud firewall
URL filtering
Bandwidth control
DNS filtering
Cloud DLP w/EDM and IDM
Cloud access security broker (CASB)
Cloud security posture management (CSPM)
CloudBrowser isolation
Cloud secure web gateway (SWG)
Zero trust network access (ZTNA)
Digital experience monitoring

Zscaler Internet Access Benefits

There are several benefits to implementing Zscaler Internet Access. Some of the biggest advantages the solution offers include:

Fast access with zero infrastructure: Zscaler Internet Access creates a fast, seamless user experience because of its direct-to-cloud architecture. With no infrastructure, Zscaler Internet Access helps you eliminate backhauling, which improves performance and simplifies network administration.

Threat intelligence: By using threat intelligence, Zscaler Internet Access can stop ransomware, zero-day malware, and advanced attacks via Inline inspection of all internet traffic, including SSL decryption, and a suite of AI-powered cloud security services.

Consistent security: With Zscaler Internet Access, your security policy goes everywhere your users go. When you move security to the cloud, all users, applications, devices, and locations remain protected and secure based on identity and context.

Hybrid workforce: Zscaler Internet Access enables secure access to all external and internal apps from anywhere, so remote work is not an issue. You can also enforce business policies that follow the user, making security identical regardless of location.

Reviews from Real Users

Below are some reviews and helpful feedback written by Zscaler Internet Access users.

A Service Manager at a construction company says, "There are a bunch of different capabilities that are valuable within the platform. We use quite a lot of them, but not everything. The ones that are most important to us are the URL Filtering and the application control. For our needs, the cloud-native proxy architecture is a very good solution. This architecture helps with cyber threats because we inspect most of the traffic and we can see that a lot of threats are stopped directly in the secure web gateway."

Owen N., Security Architect at Claro Enterprise Solutions, explains that the solution’s most valuable features include “The integration of the gateway that inspects all ports and protocols. So, there is threat prevention; The cloud sandbox; VNS security; Access control that will protect URL filtering and the cloud firewall; Data protection that will protect your gateway, like your CASB or your cloud DLP; The capabilities of this will point your traffic to Zscaler Cloud.”

An Architecture Senior Manager at an insurance company mentions, "The data loss prevention feature is the most valuable. It stops our users from inadvertently leaking our customers' data to the Internet or anywhere else it shouldn't go." He also adds, “The solution provides quick access to cloud services, securing our data and allowing us to inspect all our traffic.”

Zscaler

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.

Information Not Available

Ulster-Greene ARC, BanRegio, HDFC, Ralcorp Holdings Inc., British American Tobacco, Med America Billing Services Inc., Lanco Group, Aquafil, Telefonica, Swisscom, Brigade Group

Buyer's Guide

Menlo Secure vs. Zscaler Internet Access

April 2025

Free Report: Menlo Secure vs. Zscaler Internet Access

Find out what your peers are saying about Menlo Secure vs. Zscaler Internet Access and other solutions. Updated: April 2025.

DOWNLOAD NOW

848,989 professionals have used our research since 2012.

See our Menlo Secure vs. Zscaler Internet Access report.

See our list of best Secure Web Gateways (SWG) vendors.

We monitor all Secure Web Gateways (SWG) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.