Forcepoint ONE Reviews

The primary use case of the product is to ensure security and protection in a SASE (Secure Access Service Edge) environment. It serves multiple purposes, including securing roaming users and protecting users accessing resources outside the office. Another key aspect is safeguarding Insight applications using ZTE (Zero Trust Exchange) and preventing data leakage. In daily operations, it is primarily utilized through ZPA (Zero Trust Network Access), ensuring users have secure access to the internet. It involves protecting corporate devices from advanced threats and malicious sites and enforcing data isolation policies to prevent unauthorized data access or leakage. Additionally, the solution facilitates the secure transfer of sensitive data through various applications like Dropbox, utilizing policies set within the SSE (Secure Web Gateway) solution, potentially incorporating a model such as CASB (Cloud Access Security Broker).

The most valuable features of Forcepoint include Zero Trust Network Access and remote user protection for private applications. These features prioritize data security regardless of the user's location, ensuring that data is always protected. In terms of threat defense, the thread detection feature stands out as particularly valuable. It includes various capabilities such as web isolation to isolate unknown static, blocking access to malicious sites, and employing intelligence-driven checks based on configured policies. Integrating third-party sandboxing further enhances threat detection and response capabilities, providing comprehensive protection against advanced threats. It collectively contributes to a robust defense mechanism, safeguarding organizations against various security threats.

Areas for improvement for the platform include addressing scalability and architecture concerns, especially for large deployments involving more than 500 or 1,000 users. 

Additionally, integrating sandboxing features directly into the solution, either on-premise or in the cloud, is crucial for comprehensive threat detection and response. It would eliminate the need to rely on third-party sandboxing solutions, streamlining security operations and enhancing overall efficiency and effectiveness in combating threats.

We have been using Forcepoint ONE for 14 months.

Regarding stability, I have confidence in Forcepoint's technology and its ability to perform well in the market. However, being hosted on AWS has its architectural challenges, as is typical with any cloud-based solution. While it has the potential to overcome these challenges and further enhance its capabilities, it's important to acknowledge the inherent complexities that can arise in a public cloud environment.

We have around 5,000 Forcepoint ONE users. Scalability is one of the product's notable strengths. Its architecture facilitates rapid scalability, particularly its polytexture architecture deployed on AWS. Spinning a virtual machine (VM) in any location is almost instantaneous. It gives it an edge over solutions like Zscaler, which may require setting up entire private data centers for expansion. While Forcepoint's scalability advantage is evident, it still faces challenges inherent to its architecture.

By consolidating multiple security functions into a single client, particularly incorporating Data Loss Prevention (DLP) and Secure Web Gateway (SWG) functionalities, Forcepoint has streamlined our security infrastructure.

Resolving issues has sometimes taken longer than expected. While the initial response time has been problematic, support effectiveness improves upon escalation.

Neutral

We previously used a different solution before transitioning to Forcepoint. The decision to switch was driven by various factors, including the need for improved sandboxing capabilities, especially regarding onboarding. Additionally, Forcepoint's deployment in a public cloud environment posed challenges for organizations needing to utilize AWS, such as those favoring the Google Cloud Platform. This discrepancy in cloud provider compatibility influenced the decision to transition to a solution that aligns better with our organization's cloud infrastructure preferences and requirements. 

The initial setup was straightforward, primarily because everything was managed from the Forcepoint side, requiring no additional maintenance efforts. Deployment was relatively simple, especially when the organization clearly understood its objectives and requirements. The process took little time as long as the objectives were well-defined. However, if the organization needs to be clearer about its needs, it could prolong the setup process. In general, the technology was simple, and anyone could become proficient in managing it properly. Therefore, while the setup could vary depending on the clarity of objectives, the technology itself was relatively easy to implement.

Integrating services within Forcepoint has significantly enhanced our organization's security posture by enabling seamless authentication, centralized monitoring, comprehensive data correlation, and compatibility with third-party technologies. It ensures streamlined access management, proactive threat detection, informed decision-making, and cohesive security operations, ultimately fortifying our defenses against advanced threats and maintaining a proactive security stance.

Its data protection capabilities have greatly benefited our organization by providing comprehensive protection for our intellectual property and sensitive data. With Forcepoint, users accessing corporate applications and the internet are shielded from accessing malicious sites or falling victim to threats. It ensures that our data remains secure, whether in motion, use, or rest. It safeguards against data leakage, whether intentional or unintentional, by monitoring and controlling data transfer through various channels such as private apps, public SaaS applications, or third-party emails.

Forcepoint ONE shows significant potential for improvement while still being a commendable product. I would give it around an eight out of ten.

Forcepoint ONE's primary use case involves safeguarding the browsing activities of users who bring their laptops home. Specifically, we aim to protect their internet navigation while in their residences. Additionally, we need to secure specific applications to ensure that sensitive data and resources remain protected.

While we have some product information available, there are instances where we need a comprehensive understanding of all the features. We encounter challenges in determining whether certain features for blocking certain file types or preventing automatic downloads are functioning correctly. These particular areas need improvement.

We require high availability of 99.9%, and we believe the platform can effectively meet this requirement.

I rate the scalability of Forcepoint ONE as around seven. It was easy to scale, but as we expand our user base and deployment, we anticipate the need for further exploration and optimization. We expect it to be scalable, but we have yet to deploy the solution fully.

The initial setup was easy to deploy. However, configuring certain features presented challenges.

The platform's feature that has been most beneficial for our web security is its capability to replicate rules. This functionality allows us to maintain consistent navigation policies for users, even when they transition between working from home and in the office. By replicating rules, we can effectively extend our border access control.

With the data protection features, we have noticed a considerable improvement in our control over security incidents. Specifically, we have enhanced control over blocking malicious applications and preventing access to websites with a poor reputation.

I recommend Forcepoint ONE to others. It's a simple and highly useful solution, albeit with room for improvement in certain features, such as application blocking. For instance, blocking applications like Skype, Teams, WhatsApp, or similar could be enhanced.

I rate it a seven out of ten.

The product is important for protecting the environment and information.

The platform's cloud-based console is quite valuable. Additionally, its integration with DLP is effective. 

The solution's integration with other products needs improvement. 

We have been using Forcepoint ONE for two years. 

I rate the product stability an eight. 

Our clients are typically enterprise businesses with around 1000 Forcepoint ONE users.

We have encountered numerous issues with support over the past two years, particularly with response times.

Neutral

We used other solutions before. 

The setup is relatively straightforward. We encountered challenges while integrating it with WhatsApp. I rate the process an eight. 

The product is reasonably priced compared to other vendors. I rate the pricing a two or three. 

The platform has a great capacity for protecting and managing data.

I rate an eight out of ten. 

We use Bitglass for real-time scanning and its unique VM that enables reverse proxy capabilities. Bitglass can also act as an IDP for us when we don't have an identity provider.

The solution enforces our devices no matter where it is located even across our cloud devices reducing the manual work we have to do.

By default without a policy, Bitglass has the capability to notify the admin of multiple or simultaneous logins across a wide range of geographical regions. The solution will take action if the same credentials are used in multiple regions at the same time, preventing unauthorized access.

Bitglass integration with some IDP providers needs improvement. Currently, the solution is not compatible with Azure AD for third-party authentication. The fraud proxy in the SmartEdge agent is not compatible with Forcepoint DLP or a web hybrid agent. I would like the developers to consolidate multiple agents across systems for better integration.

I have been using the solution for seven months.

The solution is stable. I have not seen any performance or availability issues with the solution.

The solution is extremely scalable. The solution can increase as our resources increase. One of our customers has 15,000 users.

The initial setup is straightforward. The solution is a soft application so the portal that is generated gives us access and the vendor does everything required. We get our login as a master administrator and from there we can onboard more addresses. The last step is to integrate with the cloud application.

Bitglass provides a good return on investment eventually.

When considering only the cost, the solution may appear to be costly; however, when evaluated in terms of commercial value, Bitglass is not expensive.

I give the solution a nine out of ten.

Bitglass is a good solution that can be consolidated with other solutions from the same vendor.

Forcepoint ONE is a very, very good product, especially for my SOC (security operations center) team though you'll need to get a lot of training to optimize the solution and ensure that it meets your needs. Forcepoint ONE is a very good monitoring solution, and it gives my organization a lot of information on how to boost security and how to keep new products or new applications secure.

Forcepoint ONE is okay for me, and I find it a very good solution. Its most valuable feature is monitoring. Its monitoring is very good, and it can communicate with a SIEM system. I also find the DLP feature of Forcepoint ONE good.

One area for improvement in Forcepoint ONE is that you'll need more training to install the solution yourself. I practiced in a laboratory and I needed more technical information to do the installation.

In the laboratory, Forcepoint ONE is stable, but I don't know if it's stable in a real environment because I have not installed it yet in the real world. In a laboratory setting, it is pretty stable.

Forcepoint ONE is a very scalable solution.

The technical support for Forcepoint ONE is very good, at least when I needed support in a laboratory setting. On a scale of one to five, with five being the best, I'm rating the support a four.

In terms of the initial setup for Forcepoint ONE, I'm rating it a three out of five. I'm giving it a score of 60 percent out of one hundred percent. I currently don't have an implementation strategy, but if I need to implement the solution, I would need more training, or even take a special course on how to implement Forcepoint ONE.

Forcepoint ONE was deployed through an integrator or consultant.

I don't have information on the ROI from Forcepoint ONE.

The licensing cost for Forcepoint ONE would depend on the features, but the pricing is very competitive here in Brazil. The solution offers a good price, and I would rate it a three or a four in terms of pricing. I don't have information on whether there are additional costs apart from the standard licensing fees for Forcepoint ONE.

My company didn't evaluate other options because it is an integrator of Forcepoint ONE, so it only has Forcepoint ONE as its solution. This means I didn't do any testing with competitors such as Zscaler and Netskope.

My company is a partner and reseller of Forcepoint ONE. I work with the solution, though I'm not as experienced with it. I had my training in the Forcepoint laboratory in Brazil because I just started working with the solution, but I know how Forcepoint ONE works, how to use it, and how to implement it. I'm using the latest version of the solution.

The number of staff required to deploy and maintain Forcepoint ONE depends on the number of users because the solution can also be used individually or by a single user.

My advice for people looking into implementing Forcepoint ONE is to take a course or go into training because the solution may seem easy, but it's not, particularly during implementation, because it would still depend on your tool. You need to understand your tool well and how you can adapt it to Forcepoint ONE. The solution is not easy if it doesn't have a direct integration with your tool. When you go direct to the cloud, there's no problem, but when you need it to be a hybrid solution, it could be a bit difficult in terms of integrating it well. The integration, though it's not very, very difficult, still requires attention and care for it to be successful.

My rating for Forcepoint ONE is eight out of ten. For me to rate it a ten out of ten, the support, price, and functionality should first be improved. There would be a need to speak with the Forcepoint team about it, and the team is very, very dedicated in terms of explaining and helping you understand the solution.

• Location proximity mapping
• Data type inventory
• Simple integration

It allows a window into who is sharing what types of data internally and externally. It allows us know where sensitive data is really stored and offers the ability to quarantine based on data types and sharing criteria.

• Reporting
• Simpler policy creation

I have used it for 16 months.

The cloud-based portal tends to get slow as the number of events increase.

The sales staff promised more than they can deliver, but the technical staff is excellent.

I did not previously use a different solution.

Initial setup was simple.

Negotiate for the pricing model that fits your budget. The vendor is willing to customize pricing.

Before choosing this product, we also evaluated CloudLock, CipherCloud and Skyhigh Networks.

Take your time and have each vendor set up an actual proof of concept, rather than just relying on a demo. Get your network and support staff engaged in the process early on because they will be instrumental in deployment and support. Know what you’re trying to accomplish.