Prisma Cloud by Palo Alto Networks vs Zscaler Zero Trust Exchange Platform comparison

Palo Alto Networks and Zscaler are both solutions in the Cloud Security Posture Management (CSPM) category. Palo Alto Networks is ranked #1 with an average rating of 8.4, while Zscaler is ranked #10 with an average rating of 8.4. Additionally, 98% of Palo Alto Networks users are willing to recommend the solution, compared to 98% of Zscaler users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 7, 2024

Prisma Cloud by Palo Alto Networks and Zscaler Zero Trust Exchange Platform both compete in the cloud security market. Users generally favor Zscaler for its comprehensive feature set, which often justifies its higher cost.

Features: Prisma Cloud by Palo Alto Networks includes threat detection, compliance management, and a wide range of security capabilities. Zscaler Zero Trust Exchange Platform offers strong data protection, user identity verification, and advanced security functionalities that are attractive to users with comprehensive security needs.

Room for Improvement: Prisma Cloud requires enhanced integration, improved alert management, and better connectivity. Zscaler users look for improved analytics, enhanced reporting tools, and better data handling transparency.

Ease of Deployment and Customer Service: Prisma Cloud typically provides straightforward deployment and notable customer service. Zscaler, while fast to deploy, demands technical know-how but offers effective customer support that guides users through implementation.

Pricing and ROI: Prisma Cloud is seen as cost-effective with a favorable ROI. Zscaler has a premium pricing model, perceived as worthwhile by users who value its rich security offerings, finding its higher costs justified.

To learn more, read our detailed Cloud Security Posture Management (CSPM) Report (Updated: September 2024).

Buyer's Guide

Cloud Security Posture Management (CSPM)

September 2024

Download the complete report

Helped 812,651 peers since 2012

Categories and Ranking

SentinelOne Singularity Clo...

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Aug 29, 2024

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

VISHWJEET GAIKWAD

Cloud Security Delivery Associate Manager at Accenture

Aug 21, 2024

Works very well for multi-cloud environments and is more cost-effective than cloud-native tools

Some of the clients onboard individual cloud accounts into Prisma Cloud. When any new service comes into the AWS, Azure, or any other cloud, Prisma Cloud generates a warning about the new service and any missing permissions to be able to ingest the logs. We then manually run a Terraform template for Azure or a CFT template for AWS. It is a manual task that we have to do as and when needed. It is a repetitive and manual task. They should find a way to automatically update the role with the CFT or Terraform template. It would be best if this task is automated. When an account is onboarded, if it is missing any permission, it should automatically be updated with the required permissions and policies. If they can do something from the AI security perspective, it will be helpful. I am not sure if it has any AI capabilities, but it would be helpful to have AI integration for finding out issues and remediating alerts.

Read full review

Vikram Srirama.

Deputy General Manager at Sagility

Oct 4, 2023

A VPN alternative that delivers a zero trust model

The primary use cases for the Zscaler include secure channel access for applications, private file service access, and remote connectivity to the active directory. These are the top three essential functionalities provided by Zscaler Previously, we utilized HubSpot, which required connecting to…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Atlas security graph is pretty cool. It maps out relationships between components on AWS, like load balancers and servers. This helps visualize potential attack paths and even suggests attack paths a malicious actor might take."

"The most valuable features of PingSafe are the asset inventory and issue indexing."

"They're responsive to feature requests. If I suggest a feature for Prisma, I will need to wait until the next release on their roadmap. Cloud Native Security will add it right away."

"The tool identifies issues quickly."

"The management console is highly intuitive to comprehend and operate."

"PingSafe's integration is smooth. They are highly customer-oriented, and the integration went well for us."

"Cloud Native Security is user-friendly. Everything in the Cloud Native Security tool is straightforward, including detections, integration, reporting, etc. They are constantly improving their UI by adding plugins and other features."

"The solution's most valuable features are its ability to detect vulnerabilities inside AWS resources and its ability to rescan after a specific duration set by the administrator."

More SentinelOne Singularity Cloud Security pros

"I like Palo Alto's threat protection and Wi-Fi coverage. It has advanced features like DNS security and sandboxing. The automation capabilities are excellent."

"The most valuable feature is the closed VPN connection, which provides better performance than traditional VPN boxes. For example, let's say a user in New York State normally connects in the East, but if they travel to the UK, they can connect to the same portal, which automatically redirects to any VPN gateway. We can control traffic based on Active Directory groups instead of the user's IP. That means a user in New York can access his application based on his user ID and AD group access when he travels to the UK or anywhere else."

"I like Prisma's ability to integrate with other tools. We can integrate it with Jira so that when Prisma triggers an alert, it opens a ticket in Jira. That was a big selling point for the product. There's a feature called the guest custom template that allows you to trigger alerts in Jira based on the template. That can also be added as a feature on Jira."

"What I like most about Prisma Cloud is its zero-day signatures, maximum security, minimal downtime, cloud visibility, control, and ease of deployment."

"This positively affected our confidence in your security and compliance. No matter how complex the environment is, the the seamless integration from the top layer itself give us the immediate visibility on the number of services."

"The ability to monitor the artifact repository is one of the most valuable features because we have a disparate set of development processes, but everything tends to land in a common set of artifact repositories. The solution gives us a single point where we can apply security control for monitoring. That's really helpful."

"It is a good solution. Each team should utilize it. Every good organization is now moving towards or trying to be provider agnostic, so if you are using multiple providers, you should at least give Prisma Cloud a try."

"Prisma Cloud's real-time detection and monitoring of our entire system is the most useful."

More Prisma Cloud by Palo Alto Networks pros

"You can close your data protection gaps with Zscaler. You can quickly find all the classified, sensitive data across the cloud."

"The solution is the best for storage."

"The most valuable features of Zscaler Private Access are its ability to integrate with multiple IDPs and application segmentation."

"We don't need to connect anymore. It is automatically connected when you log on in Windows."

"The most valuable aspect of Zscaler Cloud DLP is its automatic DLP feature."

"SASE's most valuable features are proxy and content filtering."

"The most valuable feature of Zscaler Private Access is the categorization of the dynamic URLs which keeps the customer's environment protected. The threats and the malware are correctly categorized."

"It is straightforward to set up."

More Zscaler Zero Trust Exchange Platform pros

Cons

"There's room for improvement in the graphic explorer."

"The Kubernetes scanning on the Oracle Cloud needs to be improved. It's on the roadmap. AWS has this capability, but it's unavailable for Oracle Cloud."

"With Cloud Native Security, we can't selectively enable or disable alerts based on our specific use case."

"When we request any changes, they must be reflected in the next update."

"PingSafe filtering has some areas that cause problems, and to achieve single sign-on functionality, a break-glass feature, which is currently unavailable, is necessary."

"While it is good, I think the solution's console could be improved."

"If I had to pick a complaint, it would be the way the hosts are listed in the tool. You have different columns separated by endpoint name, Cloud Account, and Cloud Instances ID. I wish there was something where we could change the endpoint name and not use just the IP address. We would like to have custom names or our own names for the instances. If I had a complaint, that would be it, but so far, it meets all the needs that we have."

"The reporting works well, but sometimes the severity classifications are inaccurate. Sometimes, it flags an issue as high-impact, but it should be a lower severity."

More SentinelOne Singularity Cloud Security cons

"Prisma is good about compliance, and their support is excellent, but they struggle with automation and integration. They need to stay on top of the newest types of connectors. How can you connect other applications and other tools in order for this to work cohesively? That's a challenge."

"These tools have a set of signatures or rules that will alert you whenever something meets the criteria. In the future, they might include some machine learning or AI feature that allows you to ask questions about the context of the alert, and it will provide you answers based on the data that they have. Most vendors are doing it, and I believe they will do it in the future. The reporting bar could also use AI to add context based on the environment."

"Getting new guys trained on using the solution requires some thought. If someone is already trained on Palo Alto then he's able to adapt quickly. But, if someone is coming from another platform such as Fortinet, or maybe he's from the system side, that is where we need some help. We need to find out if there is an online track or training that they can go to."

"It's not really on par with, or catering to, what other products are looking at in terms of SAST and DAST capabilities. For those, you'd probably go to the market and look at something like Veracode or WhiteHat."

"We identified two things that we felt would be great to have, but they are under NDA. So, I can't disclose them. Other than those two things, we identified a generic bug in the secret key management service on AWS that needs to be fixed. We reported it to them, and we want them to fix it."

"The user interface should be improved and made easier."

"They should improve the user experience."

"There needs to be a mechanism that allows me to manually configure compliance more easily."

More Prisma Cloud by Palo Alto Networks cons

"It's an expensive solution."

"Having a Zscaler-specific device could streamline this process and provide a more consistent user experience across diverse branches."

"There could be additional ways to define proximity. Additionally, they should provide some exclusion options for specific policies and an ability to control the DLP engine."

"While Zscaler supports client-initiated connections, it does not support server-initiated connections. This is a feature that Zscaler may consider adding in the future."

"The solution's granularity should be improved because it has limited granular options to control, visible, allow, block, delay, and receive."

"The product must allow users to check logs for an entire year in the local console."

"There aren't really any missing features that I have witnessed."

"Zscaler Private Access's reporting is poor. We should have more insight into the reports regarding what is blocked and allowed."

More Zscaler Zero Trust Exchange Platform cons

Pricing and Cost Advice

"The tool is cost-effective."

"Its pricing is okay. It is in line with what other providers were providing. It is not cheap. It is not expensive."

"PingSafe is affordable."

"The features included in PingSafe justify its price point."

"The tool is cost-effective."

"PingSafe is cost-effective for the amount of infrastructure we have. It's reasonable for what they offer compared to our previous solution. It's at least 25 percent to 30 percent less."

"I am personally not taking care of the pricing part, but when we moved from CrowdStrike to PingSafe, there were some savings. The price of CrowdStrike was quite high. Compared to that, the price of PingSafe was low. PingSafe is charging based on the subscription model. If I want to add an AWS subscription, I need to pay more. It should not be based on subscription. It should be based on the number of servers that I am scanning."

"It is cheap."

More SentinelOne Singularity Cloud Security pricing and cost advice

"Regarding Prisma Cloud's pricing, we started small, and then we just kept on growing."

"We are encountering some resistance in the African market regarding the cost of Prisma Cloud."

"The pricing structure is easy to understand. Depending on the use case the pricing of the solution can be different. There are not any additional costs to the standard living fees."

"The product is very expensive, but the cost is a necessary evil; I don't know how we could have any kind of cloud presence without this type of monitoring. The pricing is calculated by module and resource usage. Ultimately, it saves us money in the amount of time we would spend uncovering what it uncovers, and we might not make the required discoveries without it anyway. Prisma offers incredible value, though I wish it were cheaper."

"The purchasing process was easy and quick. It is a very economical solution."

"Prisma Cloud is affordable."

"The pricing is reasonable."

"The licensing cost is a bit high on the compute side."

More Prisma Cloud by Palo Alto Networks pricing and cost advice

"Zscaler SASE software is quite expensive compared to other solutions"

"The price is competitive."

"The product is a little more expensive than other tools."

"Zscaler DLP solution is expensive, with a fixed pricing structure that is billed annually and monthly. There are no additional costs for licenses."

"The cost is expensive. It depends on the number of users."

"Zscaler Private Access is extremely expensive."

"The licensing model for Zscaler Cloud DLP allows you to only buy what you need. You don't need to buy it as a whole, so it's good."

"Zscaler Private Access can be an expensive solution, depending on the license type you will purchase."

More Zscaler Zero Trust Exchange Platform pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.

See recommendations

812,651 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

19%

Financial Services Firm

16%

Manufacturing Company

10%

Insurance Company

Educational Organization

16%

Computer Software Company

13%

Financial Services Firm

13%

Manufacturing Company

Computer Software Company

17%

Financial Services Firm

13%

Manufacturing Company

10%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

I am personally not taking care of the pricing part, but when we moved from CrowdStrike to Singularity Cloud Native S...

See all answers

What needs improvement with PingSafe?

They can provide some kind of alert when a new type of risk is there. There can be a specific type of alert showing t...

See all answers

What is your primary use case for Prisma Cloud by Palo Alto Networks ?

Prisma Cloud helps support DevSecOps methodologies, making those responsibilities easier to manage.

See all answers

What Cloud-Native Application Protection Platform do you recommend?

We like Prisma Cloud by Palo Alto Networks, since it offers us incredible visibility into our entire cloud system. We...

See all answers

What do you think of Aqua Security vs Prisma Cloud?

Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valu...

See all answers

What is the better solution - Prisma Access or Zscaler Private Access?

We looked into Prisma Access before choosing Zscaler Private Access (ZPA). Palo Alto’s Prisma Access is a secure ac...

See all answers

What do you like most about Zscaler SASE?

The most valuable features of Zscaler Private Access are reliability, scalability, and availability.

See all answers

What is your experience regarding pricing and costs for Zscaler SASE?

Zscaler SASE is quite expensive compared to other solutions. The price is not fixed and it does not include all of th...

See all answers

Comparisons

Wiz vs SentinelOne Singularity Cloud Security

Compared 33% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 8% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 7% of the time

Microsoft Defender for Cloud vs SentinelOne Singularity Cloud Security

Compared 4% of the time

Sysdig Secure vs SentinelOne Singularity Cloud Security

Compared 3% of the time

More SentinelOne Singularity Cloud Security Competitors

Wiz vs Prisma Cloud by Palo Alto Networks

Compared 20% of the time

Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks

Compared 13% of the time

Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks

Compared 5% of the time

CrowdStrike Falcon Cloud Security vs Prisma Cloud by Palo Alto Networks

Compared 5% of the time

Dynatrace vs Prisma Cloud by Palo Alto Networks

Compared 2% of the time

More Prisma Cloud by Palo Alto Networks Competitors

Prisma Access by Palo Alto Networks vs Zscaler Zero Trust Exchange Platform

Compared 10% of the time

Microsoft Purview Data Loss Prevention vs Zscaler Zero Trust Exchange Platform

Compared 9% of the time

Cato SASE Cloud Platform vs Zscaler Zero Trust Exchange Platform

Compared 8% of the time

Axis Security vs Zscaler Zero Trust Exchange Platform

Compared 6% of the time

Wiz vs Zscaler Zero Trust Exchange Platform

Compared 5% of the time

More Zscaler Zero Trust Exchange Platform Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

September 2024

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

Prisma Cloud by Palo Alto Networks

September 2024

Prisma Cloud by Palo Alto Networks report

Download Prisma Cloud by Palo Alto Networks product report

Buyer's Guide

Zscaler Zero Trust Exchange Platform

September 2024

Zscaler Zero Trust Exchange Platform report

Download Zscaler Zero Trust Exchange Platform product report

Also Known As

PingSafe

Palo Alto Networks Prisma Cloud, Prisma Public Cloud, RedLock Cloud 360, RedLock, Twistlock, Aporeto

Zscaler SASE, Zscaler DLP, Zscaler CASB, Zscaler CSPM, Zscaler Browser Isolation, Zscaler Posture Control

Learn More

SentinelOne

Palo Alto Networks

Zscaler

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

Prisma Cloud by Palo Alto Networks is a cloud security solution used for cloud security posture management, cloud workload protection, container security, and code security. It provides visibility, monitoring, and alerting for security issues in multi-cloud environments.

The solution is user-friendly, easy to set up, and integrates with SIEM for generating alerts and reports. Its most valuable features include security features, monitoring capabilities, reporting, compliance monitoring, vulnerability dashboard, data security features, and multi-cloud capabilities. Prisma Cloud has helped organizations by providing comprehensive protection, automating workflows, simplifying troubleshooting, and improving collaboration between SecOps and DevOps.

Prisma Cloud Features

Prisma Cloud offers comprehensive security coverage in all areas of the cloud development lifecycle:

Code security: Protect configurations, scan code before it enters production, and integrate with other tools.
Security posture management: Monitor posture, identify and remove threats, and provide compliance across public clouds.
Workload protection: Secure hosts and containers across the application lifecycle.
Network security: Gain network visibility and enforce micro segmentation.
Identity security: Enforce permissions and secure identities across clouds.

Benefits of Prisma Cloud

Unified management: All users use the same dashboards built via shared onboarding, allowing cloud security to be addressed from a single agent framework.
High-speed onboarding: Multiple cloud accounts and users are onboarded within seconds, rapidly activating integrated security capabilities.
Multiple integration options: Prisma Cloud can integrate with widely used IDE, SCM, and CI/CD workflows early in development, enabling users to identify and fix vulnerabilities and compliance issues before they enter production. Prisma Cloud supports all major workflows, automation frameworks, and third-party tools.

Reviews from Real Users

Prisma Cloud stands out among its competitors for a number of reasons. Two major ones are its integration capabilities, as well as its visibility, which makes it very easy for users to get a full picture of the cloud environment.

Alex J., an information security manager at Cobalt.io, writes, “Prisma Cloud has enabled us to take a very strong preventive approach to cloud security. One of the hardest things with cloud is getting visibility into workloads. With Prisma Cloud, you can go in and get that visibility, then set up policies to alert on risky behavior, e.g., if there are security groups or firewall ports open up. So, it is very helpful in preventing configuration errors in the cloud by having visibility. If there are issues, then you can find them and fix them.”

Luke L., a cloud security specialist for a financial services firm, writes, “You can also integrate with Amazon Managed Services. You can also get a snapshot in time, whether that's over a 24-hour period, seven days, or a month, to determine what the estate might look like at a certain point in time and generate reports from that for vulnerability management forums.”

Zscaler Zero Trust Exchange Platform acts as a VPN alternative for secure remote access, cloud protection, and zero-trust strategies. It enables secure data transmission, supports remote work, and enhances compliance through a cloud-based architecture, offering improved performance and simplified management.

Designed for organizations seeking secure application access and robust data protection, Zscaler Zero Trust Exchange Platform delivers a comprehensive solution through seamless VPN connectivity, data loss prevention, and SSL inspection. Its cloud integration ensures scalability and reliability, while its interface provides intuitive management. Companies benefit from automatic secure access, minimizing constant authentication needs, and safeguarding sensitive data. The platform allows easy deployment and integration with diverse identity providers, granting granular control for access and application segmentation. Despite powerful capabilities, enhancements are needed in speed, bandwidth, and legacy support, with users noting interface and configuration challenges.

What are the key features of Zscaler Zero Trust Exchange Platform?

Seamless VPN Connectivity: Provides automatic secure access without repetitive authentication.
Strong Security Measures: Offers DLP and SSL inspection for data protection.
Cloud Integration: Ensures scalability and performance optimization.
Granular Access Control: Manages access with application-specific segmentation.

What benefits should companies look for in reviews when evaluating this platform?

Performance: Enhanced connectivity and reduced latency.
Data Protection: Comprehensive DLP and encryption capabilities.
Scalability: Efficient handling of growing organizational demands.
Ease of Deployment: Quick setup and integration with IDPs.

In specific industries, Zscaler Zero Trust Exchange has been implemented to enhance security protocols in fields like finance and healthcare. By prioritizing data protection and compliance, it assists companies in safely managing sensitive information and meeting regulatory requirements. Organizations leverage its features to ensure secure operations across remote and cloud environments, adapting to industry-specific needs with customizable access and security controls.

Sample Customers

Information Not Available

Amgen, Genpact, Western Asset, Zipongo, Proofpoint, NerdWallet, Axfood, 21st Century Fox, Veeva Systems, Reinsurance Group of America

Siemens, AutoNation, GE, NOV

Buyer's Guide

Cloud Security Posture Management (CSPM)

September 2024

Download Free Report

Find out what your peers are saying about Palo Alto Networks, Wiz, Microsoft and others in Cloud Security Posture Management (CSPM). Updated: September 2024.

DOWNLOAD NOW

812,651 professionals have used our research since 2012.

See our list of best Cloud Security Posture Management (CSPM) vendors and best Cloud-Native Application Protection Platforms (CNAPP) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.