What's most valuable in Skyhigh Security is its level of security. Another valuable feature of the solution is threat analysis.
Senior Vice President IT at a tech services company with 11-50 employees
Has a valuable level of security and threat analysis
Pros and Cons
- "What's most valuable in Skyhigh Security is its level of security. Another valuable feature of the solution is threat analysis."
- "Skyhigh Security, as a product, is excellent, but in terms of the right services and support, those are lagging very much, for example, in Trellix. From one hundred, its score has gone down to ten, so ten out of one hundred, otherwise, it's the number one product."
What is most valuable?
What needs improvement?
Skyhigh Security, as a product, is excellent, but in terms of the right services and support, those are lagging very much, for example, in Trellix. From one hundred, its score has gone down to ten, so ten out of one hundred, otherwise, it's the number one product. Pricing and design are fine, so no further changes are required on those.
What I'd like to see in the next release of Skyhigh Security is a single console for all the products, for example, under the Trellix portfolio, it would be good if it could be managed by a single console because it's not possible currently.
Competition is running much faster than the solution, so to improve Skyhigh Security and catch up to the competition, there's a need to add these additional features into one console.
For how long have I used the solution?
I've been working with Skyhigh Security (formerly MVISION Cloud) since the day it was launched, so it's been four or five years now. It's not being used in the organization. My organization sells it, governs, and implements it for clients. My organization is still supporting Skyhigh Security.
What do I think about the stability of the solution?
Skyhigh Security is a stable solution.
Buyer's Guide
Skyhigh Security
November 2024
Learn what your peers think about Skyhigh Security. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
824,067 professionals have used our research since 2012.
What do I think about the scalability of the solution?
Skyhigh Security is a scalable solution.
How are customer service and support?
I'm rating the technical support for Skyhigh Security a zero. Support for the solution is not good, though the tutorials and documentation are excellent.
Support is not easy to reach, and the engineer who handles the issue first-hand isn't much aware of the issue. Rather than understanding the issue, he simply told me: "Okay, follow this. What is the version? Is Windows updated? Which version of Windows are you using?" By the time you're done talking with the engineer, the ransomware attack would have happened and people would have lost their data.
When a person contacts support, he's one hundred percent done with L1 and L2 troubleshooting, but the support team for Skyhigh Security doesn't listen when you tell them that you're already done with L1 and L2 troubleshooting and can now move forward to the next level of troubleshooting and support. Support will do L1 & L2 again, take and capture the logs, then do the analysis, even if you're giving them your analysis, your report. Support will tell you: "No, we don't want this analysis report, though it is the same. We will do it again, and then we will report."
Which solution did I use previously and why did I switch?
We compared Skyhigh Security with SentinelOne which is also quite good, but the limitation is there because SentinelOne is just an EDR solution, while Skyhigh Security has many other things to offer. There is no apple to apple comparison possible.
How was the initial setup?
The initial setup for Skyhigh Security is simple. Clients can do it themselves because they have already been using the ePolicy server on-premises solution and now are moving out onto Skyhigh Security, and with the added features, they're more comfortable with the setup.
What's my experience with pricing, setup cost, and licensing?
Pricing for Skyhigh Security is fine.
Which other solutions did I evaluate?
We evaluated SentinelOne.
What other advice do I have?
The deployment model for Skyhigh Security depends on the customers. Some customers deploy it via the public cloud, while some deploy it via the hybrid cloud. Customers use the latest version of the solution.
I'm rating Skyhigh Security ten out of ten. Its current version is 100%.
I'm recommending Skyhigh Security to others.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
Technical Presales Consultant/ Engineer at a tech vendor with 10,001+ employees
Excellent integration capabilities, good alerts, and very stable
Pros and Cons
- "In terms of their compatibility with major cloud providers, in terms of their abilities, capabilities, and features, they exceed everyone's capabilities in the CASB market."
- "One thing that can be improved is their ability to integrate with other web proxies to discover unsanctioned IP apps."
What is our primary use case?
The solution is basically it's a cloud access security broker. It's basically the leading cloud access security broker in the market. If you are talking about getting controlling access to AWS, Azure or Google cloud, or most of the major cloud providers, they can integrate that to help protect an organization from data loss, breaches, or from unauthorized access in general.
How has it helped my organization?
I actually had an encounter with a government entity. They had a lot of their staff leaking government data, and they were using a website, a known website called WeTransfer. It's a Chinese website that's used to transfer big files without you needing to create an account. Users in the company were basically, whenever they wanted to transfer files, doing it through this site and unintentionally leaking data.
This week, the POC installed the McAfee web gateway, integrated the MVISION Cloud, and got insights. A lot of their business was done on WhatsApp within their systems. An yet, until this moment, they had no visibility over this. Now they have it. Now they know, and they can initiate changes.
What is most valuable?
What I really like about the product is something called the ability to view the sanctioned IP apps, which is a major challenge for organizations today. There are sanctioned IP apps or unsanctioned IP apps. In an organization, you will find employees that will use services or applications for the business, which are not authorized by the IT department, and the organization fails to have visibility over this.
What McAfee can provide is full details into what your users are doing on the cloud. For example, lots of employees may be using WhatsApp for conducting critical business workflows, and yet their organization is not permitting them to use WhatsApp. Without a solution such as this, the company will never find out if they actually are using WhatsApp and to what rates. With MVISION Cloud and their web gateway, companies basically get visibility and insights into what their users are using on the cloud.
The product has the ability to provide insights and also to advise on misconfigurations on the cloud. For example, I may be a cloud customer and I'm using IS workloads or infrastructure and service workloads on Azure. I may have object storage configured on Azure, however, this object storage didn't get secured properly. It was publicly open. The system can suggest changes to alert you to this item and advise on how to fix the issue.
With MVISION Cloud, you can actually get detection notices. It will notify you, tell you, hey, be careful. You have object storage that is open to the public. You should lock it down, should have restricted access. You should have some credentials here or there. It will basically act like an advisor for your cloud configuration as well. This is what I really like about it, to be honest. It can tell you if something can go wrong before it happens. It allows you to fix things before situations can get out of hand.
In terms of their compatibility with major cloud providers, in terms of their abilities, capabilities, and features, they exceed everyone's capabilities in the CASB market.
Their integration capabilities are vast. They seem to be able to integrate all major clouds.
The solution is very stable.
The solution can scale.
Technical support has been very helpful.
What needs improvement?
The solution is the leader in the market right now. It's hard to consider where it falls short, as it is so far ahead of everything else.
One thing that can be improved is their ability to integrate with other web proxies to discover unsanctioned IP apps. That can be room for improvement.
I'd love to see an on-prem version of the product. Instead of McAfee providing the service, it should be also software available for customers in the market to install on their data centers.
What do I think about the stability of the solution?
The solution has been very stable. We haven't had issues with it. It doesn't crash or freeze. It's reliable.
What do I think about the scalability of the solution?
It's not software that you can install. Scalability is on McAfee's end. It's not on the end-user or the partner or any of them, as it's a cloud service basically. However, it scales to meet your company's needs.
We have about ten customers currently using the solution.
How are customer service and technical support?
Technical support has been very good. It's amazing, especially for the MVISION Cloud portfolio as it's a different team. In general, it's good. We are quite satisfied with their level of support.
How was the initial setup?
You don't install the solution. The dashboard comes from McAfee Cloud. You just integrate it with your cloud, and you enter your credentials to your cloud providers. If you want, you can integrate it with an on-premise McAfee web gateway to get insights, shadow IP, sanction IT apps, look for unsanctioned apps, and whatnot. However, it's not software that you can take and install wherever you like. It's a service, basically.
Which other solutions did I evaluate?
Honestly speaking, there is no competitor for MVISION Cloud. There are competitors in the market, of course, in the CASB market, lots of them. However, there's no one that's reached the level of MVISION Cloud just yet.
What other advice do I have?
I don't have much experience with McAfee MVISION Cloud, however, I do have a good understanding of it. I also managed to pitch it and demo it to one customer and sold it a couple of times.
It's originally not a McAfee product. It belonged to a company called Skyhigh before, which was acquired by McAfee.
I'd rate the solution at a nine out of ten. I don't believe in perfect solutions, however, this is quite good. I haven't ever seen anything quite like it.
I'd recommend it to other users. If a company is having workloads on the cloud, whether it be on Office 365 or AWS or Azure or Google cloud or IBM cloud, whatever cloud, it's highly recommended for them to at least consider MVISION Cloud as it can really help them secure their access to their cloud workloads. Especially those customers who have a hybrid cloud. They will most likely want a CASB that will be able to manage both clouds from the same dashboard.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Distributor
Buyer's Guide
Skyhigh Security
November 2024
Learn what your peers think about Skyhigh Security. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
824,067 professionals have used our research since 2012.
Security Analyst IV - Risk Management at a energy/utilities company with 1,001-5,000 employees
We are able to identify the high-risk websites and block them. I have encountered some stability issues.
What is most valuable?
Currently, we are using cloud discovery and analytics. This has given us an insight to which services our end users are subscribing to and where our business data may be held.
How has it helped my organization?
We are able to identify the high-risk websites and block them before the end users start using them to ensure that a business case is made for unblocking a high-risk site (rather than having to run interference after the fact). It also allows us to suggest other alternatives and safer services to the end user.
What needs improvement?
One feature offered is a 48-hour turnaround to add a service to the global registry upon request. While they do turn around risk assessments very quickly, often many of the answers are unknown which drives the risk scores of the services up. When provided with contact information, they will reach out to the service provider and get answers to those questions, but it doesn’t provide a lot of value to show a service as high risk just because they haven’t had the opportunity to ask yet.
I have experienced a few cases where I provided a direct contact name (who was expecting a call from someone at Skyhigh) for the cloud service provider being evaluated, and have received feedback from the contact that no one reached out to them after several days or, in some cases, weeks.
For how long have I used the solution?
I have used this product for about 16 months.
What do I think about the stability of the solution?
I have encountered some stability issues. However, these seem to have improved over the last couple of releases.
What do I think about the scalability of the solution?
I have also encountered scalability issues.
Some logging was turned on that filled up the log file shares very quickly; it took some time to determine the cause of the issue and remediate it.
How are customer service and technical support?
The technical support level is good. They are responsive and truly desire to solve problems. The support staff can update versions of the software on our on-premises log processors in less than an hour via a WebEx session.
Which solution did I use previously and why did I switch?
I have not used any other solution.
How was the initial setup?
The setup was straightforward. We set up some on-site log processor devices to gather the firewall logs and send them encrypted to the server for analysis. The results were processed and then appeared on our dashboard.
What's my experience with pricing, setup cost, and licensing?
The pricing policy is based on the employee/contractor count (people with a user ID in your active directory domain). The pricing policy is best if you enter a multi-year agreement.
Which other solutions did I evaluate?
I have evaluated other solutions such as Imperva Skyfence, Netskope, and Elastica.
What other advice do I have?
If possible, have them run a simulation in your live environment for 30 days and you will be impressed with the kind of data that is collected. I, personally, highly recommend this product.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Director, GRC Applications and Systems Delivery at a tech company with 501-1,000 employees
A SaaS-friendly tool that integrates well with DLP but better integration with on-premise tools is needed
Pros and Cons
- "It gives us visibility into how the data is being used within our cloud environment."
- "The biggest challenge we have with McAfee is their cross-cloud support."
What is our primary use case?
We use this solution as a CASB, a Cloud Access Security Broker, to gain insight into our cloud environment. We integrate this solution for our clients as a companion service to our main cloud product.
How has it helped my organization?
It gives us visibility into how the data is being used within our cloud environment. It shows the flow of information, and in our case, it has to with documentation that is restricted. For example, if a document contains credit card information or social security numbers then we are able to track it when somebody tries to delete them or do something else that is prohibited. We get flagged, which is the key. It enhances the visibility of what's in our cloud environment.
What is most valuable?
The most valuable feature for us is the integration with DLP.
What needs improvement?
The biggest challenge we have with McAfee is their cross-cloud support. They tend to lag by a few months, in terms of providing support for new cloud platforms, or new cloud features. We're primarily focused on SaaS, so the other opportunities for them to improve their integration is with AWS and PaaS.
I would like to see better integration with on-premise tools.
For how long have I used the solution?
Two years.
What do I think about the stability of the solution?
That stability is good. It's a very good tool.
What do I think about the scalability of the solution?
We have had no problems in terms of scalability.
We have a team of about forty people who use it. There is the DLP team, the various tenant cloud security administration team, and we also have our staff that uses it.
How are customer service and technical support?
We found that the documentation is meager, but the response time from technical support is very good.
Which solution did I use previously and why did I switch?
We did not use another solution prior to this one.
How was the initial setup?
This solution is very easy to set up.
It took us about a month to get it up and running, but it took us four months to figure out how to use it amongst the different teams.
What's my experience with pricing, setup cost, and licensing?
The licensing fees are based on what environments you are monitoring.
Which other solutions did I evaluate?
We did evaluate a couple of other options, and we have other solutions as well. We have Evident.io, one from Cisco, and one from Palo Alto. None of them are good in every environment, so we use a combination of these solutions.
I have found, based on implementations for multiple clients, that Evident.io doesn't meet the needs of all of the people. Evident.io is not a security protocol. It gives you visibility into your cloud, but it's not a broker. It's just an analysis tool. It is very PaaS-friendly, but not a SaaS-friendly tool. This is opposed to Skyhigh, which is SaaS-friendly but not PaaS-friendly.
What other advice do I have?
My advice for anyone who is implementing this solution is to know what roles you will need to grant access to and have your roles predefined.
This solution has good coverage and good integration with other McAfee products. I am not giving it a perfect score because of the uneven coverage for other platforms. They tend to lag in terms of support for new platforms and new tools that come out on the cloud.
I would rate this product a seven out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Sr. Analyst Governance and Compliance at a aerospace/defense firm with 10,001+ employees
Cloud registry provides cloud services risk assessments, but at times the portal is slow
Pros and Cons
- "There is [a feature] called cloud registry where we can see a risk assessment for the cloud services being used. If we want to add a new cloud service or a new cloud application, we can check into it and do an assessment through the cloud registry."
- "The only thing we have faced is that sometimes, randomly, the portal becomes too slow."
What is our primary use case?
We use it for cloud risk services.
How has it helped my organization?
It monitors the cloud usage of our company and shows the status on the main dashboard. There, we can see what kind of cloud applications are being used and see a risk assessment for each one, indicating low, medium, or high. For each cloud application, we can see how many users are using it. It's like auditing for each cloud application. In that way, it gives in-depth visibility and a granular monitoring facility for the company: What is happening inside the company, what people are using, what kind of data is going through the company. It really helps in understanding cloud traffic.
What is most valuable?
There is one feature called data governance that shows all the cloud services which are used.
There is another one called cloud registry where we can see a risk assessment for the cloud services being used. If we want to add a new cloud service or a new cloud application, we can check into it and do an assessment through the cloud registry. That is the feature that I like most.
For how long have I used the solution?
One to three years.
What do I think about the stability of the solution?
Generally, it is available.
What do I think about the scalability of the solution?
The scalability is pretty good. The only thing we have faced is that sometimes, randomly, the portal becomes too slow. We only have between 100 and 150 users of the portal, which is a fairly small number, but scalability is not really an issue.
In terms of extent of use, it will monitor all the cloud usage in the company, whether there are 100k or 200k users. It will monitor everything, whatever comes from the logs, and present the data in an understandable format.
How are customer service and technical support?
Technical support is pretty good.
Which solution did I use previously and why did I switch?
This is our first solution of its kind.
What was our ROI?
We have definitely seen an ROI over the years we have been using it; not from a dollars perspective but in different ways.
What's my experience with pricing, setup cost, and licensing?
They definitely charge a huge amount. All the security service providers charge a huge amount.
Which other solutions did I evaluate?
At the time we chose this product, we did not evaluate others, but recently we have a looked at a couple of other products. The others are pretty good. They have come up with a lot of innovation, improved security, and developed a lot of enhancements. In different ways, everybody is good.
What other advice do I have?
Do a PoC for a week or ten days. If you don't like it, go with another vendor. But I believe you will like it.
It's not necessary to give access to everyone in the company to monitor their cloud usage. There are specific teams that use the platform for a specific purpose.
They have improved a lot. Every month or every three months they are coming out with a new update. Whatever we have asked for recently, they have added it to their roadmap. Since McAfee acquired the SkyHigh applications, there will be a lot more features to come. We are expecting a lot of features to be onboarded to the platform.
For our use case, what we currently have is good enough.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
IT Security at a financial services firm with 5,001-10,000 employees
Provides categorization and rating of websites separate from what the web proxy places on the logs
Pros and Cons
- "Skyhigh has given us categorization and rating of websites separate from what the web proxy places on the logs."
- "Improves creation of security alerts on web proxy logs by having a separate system interpret said logs."
- "The tool could improve flexibility with the creation of reports/querying data."
What is our primary use case?
Insight into services being accessed and/or used in corporate environment. Additionally, Shadow IT as a whole and provides another set of eyes on web proxy logs.
How has it helped my organization?
It has allowed insight into gaps that may exist in current web proxy tool policies. Improves creation of security alerts on web proxy logs by having a separate system interpret said logs.
What is most valuable?
Skyhigh has given us categorization and rating of websites separate from what the web proxy places on the logs.
What needs improvement?
The tool could improve flexibility with the creation of reports/querying data. A better search capability, similar to a SIEM, would also allow deeper log analysis.
For how long have I used the solution?
One to three years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Works at a healthcare company with 1,001-5,000 employees
Provides full control of the infrastructure process, but needs to improve its support
What is our primary use case?
- The user analytics
- Having a full idea about infrastructure
What is most valuable?
DLP rules.
How has it helped my organization?
Having full control of infrastructure.
What needs improvement?
Iteration process.
For how long have I used the solution?
Two years.
What was my experience with deployment of the solution?
Yes.
What do I think about the stability of the solution?
Yes.
What do I think about the scalability of the solution?
No.
How are customer service and technical support?
Five out of 10.
Which solution did I use previously and why did I switch?
No.
How was the initial setup?
The support team implemented the solution.
What was our ROI?
Not applicable.
What's my experience with pricing, setup cost, and licensing?
It is good.
Which other solutions did I evaluate?
Yes.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
IT Security Support Analyst with 5,001-10,000 employees
Provides quite a bit of visibility into cloud services being utilized in our environment
Pros and Cons
- "All the information available on each service, including its risk assessment."
- "Iron out the few bugs that I've seen."
What is most valuable?
All the information available on each service, including its risk assessment. Service groups, automatic assignment of services based on designated conditions, and the ability to utilize multiple log sources for the data.
How has it helped my organization?
Provides quite a bit of visibility into cloud services being utilized in our environment. I've been able to take the data available in Skyhigh and create discussions about whether we should be allowing or blocking certain services. This has also allowed us to start developing policies/procedures around new services which get introduced into our environment.
What needs improvement?
Iron out the few bugs that I've seen.
For how long have I used the solution?
Less than one year.
What was my experience with deployment of the solution?
None that I'm aware of.
What do I think about the stability of the solution?
No issues with stability.
What do I think about the scalability of the solution?
No issues with scalability.
How are customer service and technical support?
Customer Service:
A 10 out of 10.
Technical Support:A 10 out of 10.
Which solution did I use previously and why did I switch?
We did not previously use a different solution.
How was the initial setup?
Unknown, as I was not involved in the setup process.
What about the implementation team?
Unknown, as I was not involved in the procurement process.
What was our ROI?
Unfortunately, I don't have this information.
Which other solutions did I evaluate?
Not applicable, as I was not involved in the decision to go with this product.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free Skyhigh Security Report and get advice and tips from experienced pros
sharing their opinions.
Updated: November 2024
Product Categories
Secure Access Service Edge (SASE) Secure Web Gateways (SWG) Cloud Access Security Brokers (CASB) ZTNA as a Service Cloud Security Posture Management (CSPM) Cloud-Native Application Protection Platforms (CNAPP)Popular Comparisons
Cisco Umbrella
Prisma Access by Palo Alto Networks
Zscaler Zero Trust Exchange Platform
Lookout
Netskope
Cloudflare One
Cato SASE Cloud Platform
VMware VeloCloud SD-WAN
Check Point Harmony SASE (formerly Perimeter 81)
Appgate SDP
FortiSASE
Forcepoint ONE
Buyer's Guide
Download our free Skyhigh Security Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Evaluating CASBs. Looking for community feedback on some vendors.
- What is the difference between point solutions (SD-WAN, NGFW, SWG, VPN) and SASE?
- What questions do you need to ask when choosing a Secure Access Service Edge (SASE) solution?
- When evaluating Secure Access Service Edge (SASE), what aspect do you think is the most important to look for?
- Has anyone ever heard of secureaccess.com?
- What is the difference between SASE and SD-WAN?
- What is the difference between SASE and CASB?
- What SASE solution does your company use?
- Why is SASE (Secure Access Service Edge) important?
- What SASE solution do you recommend?