Zscaler Zero Trust Exchange Platform Reviews

I use Zscaler Cloud DLP since my company's clients use Zscaler Cloud Proxy in their environments. I deal with Zscaler Cloud DLP since it meets the requirements of my company's clients and helps to manage data breaches. In general, my company takes care of the configuration part of Zscaler Cloud DLP and provides it to our company's clients as a service.

With Zscaler Cloud DLP, my company benefits from the granular control it provides us. My company provides Zscaler Cloud DLP to our clients as per their requirements, and moreover, we can filter out and deny or allow providing the features related to DLP for a specific user or a location. Basically, Zscaler Cloud DLP provides general control to a person over which files a person wants to allow or deny for a specific user or location. Zscaler Cloud DLP is very easy to configure. With just a few clicks, one can easily take care of the configuration part related to the product.

As of now, no improvements are required in the solution. Though not an improvement from a product perspective, there is no documentation related to Zscaler Cloud DLP on the internet. You won't find anything that can help you with the configuration part and other areas related to the product if you search for proper or exact details of Zscaler Cloud DLP online in very easy language. In short, you can't find any documentation about the product which is exactly arranged in a proper manner. Availability of knowledge related to the product is not there in the public domain.

I have been using Zscaler Cloud DLP for more than three years. My company has a partnership with Zscaler, so we provide solutions from Zscaler to our clients.

Stability-wise, I rate the solution a nine out of ten. I did not have any issues related to the product. For some of the tag-related cases opened with the support team, no proper support was available.

It is a very scalable solution. Scalability-wise, I rate the solution a ten out of ten.

I work in a large organization, so I think more than 1,000 users use Zscaler Cloud DLP.

The solution's technical support is easy for my company to reach out to, and they are also very supportive. I rate the technical support a ten out of ten.

Positive

I have experience with Palo Alto Networks Firewall.

The product's initial setup is easy.

The solution can be deployed in ten to twenty minutes.

The solution is deployed on a private cloud.

Zscaler Cloud DLP offers cutting-edge technology and is easy to configure and use. People should opt for Zscaler Cloud DLP if they have the opportunity.

Considering that there is always some room for improvement, I rate the overall tool a nine out of ten.

Private Cloud

We use Zscaler CASB for DLP and shadow IT.

The most valuable features of Zscaler CASB are API integration and DLP.

Zscaler CASB should include integrations with other SaaS applications.

We just bought Zscaler CASB a week ago.

I rate Zscaler CASB a nine out of ten for stability.

Zscaler CASB has good scalability. I rate Zscaler CASB a seven out of ten for scalability.

The solution's technical support provides a late response; otherwise, it's fine.

Neutral

I have previously worked with McAfee. Compared to Zscaler CASB, McAfee needs to upgrade a lot of things. We chose Zscaler CASB because of more applications and information that we could get to do some fine-tuning on the policies.

The solution's initial setup is supposed to be fairly easy since it's an API.

We haven't yet started to deploy the solution. We will seek the help of professional services to deploy Zscaler CASB.

Zscaler CASB is an expensive solution. On a scale from one to ten, where one is less expensive and ten is more expensive, I rate Zscaler CASB's pricing a seven out of ten.

I recommend users consider the cost and benefit, integration, and supported applications before choosing Zscaler CASB.

Overall, I rate Zscaler CASB a seven out of ten.

Public Cloud

Microsoft Azure

We can use Zscaler Private Access as a recipient for external communication. Zscaler Private Access can help users sitting in our organization domain and trying to access their own internal company sources. The traffic is forwarded to us through the Zscaler Private Access node, which we can have in our own infrastructure, or it can be hosted on the Zscaler private cloud.

We are using Zscaler Private Access to build our own Zscaler private node. Although this node is maintained and managed by Zscaler, it resides in our own data center or domain. So the traffic forwarded from the user system towards any internal resource will go through this private node.

Zscaler Private Access is a platform that eliminates the complexity of VPN configuration. Zscaler Private Access is easy to configure and manage and takes less time to configure. We can manage our own application or secure our application and our own internal traffic. We can create a security node in our own infrastructure.

We are getting some issues with internet access. Authenticating or onboarding something on Zscaler Private Access manually is a troublesome task. Users report application access or latency issues with Zscaler Private Access.

I have been using Zscaler Private Access for the last two and a half years.

I rate Zscaler Private Access eight and a half out of ten for stability.

I rate Zscaler Private Access an eight out of ten for scalability.

Zscaler Private Access' initial setup is not as easy as ZIA, but it's okay compared to other platforms.

Zscaler Private Access will ease your task, equal to a VPN. Lots of companies are using their own VPN access.

Overall, I rate Zscaler Private Access an eight out of ten.

It ensures a secure online environment for our users, irrespective of their location. By routing all internet traffic through the Zscaler Cloud, users can browse safely, shielded from malicious content. Whether connected from the office or home network, Zscaler enforces our defined policies consistently.

Our users experience a safe and secure internet connection, whether they are in the office or connecting via their home Wi-Fi network or a public network. The Zscaler policy governs their internet access consistently, eliminating the reliance on individual IPs.

We utilize a shared security VPN for users to establish a connection between their devices and the Zscaler Cloud, enabling them to access the office network. This secure connection allows users to connect to the Zscaler VPN and access the resources on the office network, making it a highly valuable component of our system.

Occasionally, issues arise in the LogStack by a third party, particularly for government websites accessed by numerous users. This can trigger false positives, causing certain IP ranges to be perceived as a security threat or associated with malicious activities, resulting in blocks. In such instances, we often find ourselves waiting for the block to be lifted or having to engage with the concerned website administrators. This is where Zscaler's expertise becomes crucial in addressing false positive blocks, as these incidents might not necessarily indicate malicious intent but could be errors affecting access to the platform. It is recommended that they incorporate EDR features into their offerings.

We have been working with it for more than a year.

It demonstrates overall stability and effectively upholds the smooth functioning of the entire infrastructure. We haven't encountered any issues with it. I would rate it nine out of ten.

In terms of scalability, our current setup is sufficient for our needs. We have a user base exceeding ten thousand. It's a ubiquitous tool for everyone in the business. Nearly all users utilize it for internet browsing every single day. I would rate it nine out of ten.

The technical support team effectively manages and provides robust support for the solution. I would rate it eight out of ten.

Positive

I used Websense before, but Zscaler maintains consistent policies whether users are in the office, at home, or in public places, offering a more convenient experience.

The initial setup process was time-consuming and encountered issues, particularly with logs. Although I wasn't present during the setup, it has been reported that significant time and numerous challenges were involved. On a scale of one to ten, I would rate it five.

The deployment itself didn't take much time, but the challenge arose in identifying and resolving issues faced by numerous users. It took considerable time to pinpoint these issues. Maintenance is handled with support directly from Zscaler, and our existing security admin team oversees the management of both Zscaler Cloud and their skills.

We have observed a return on investment in a stable setup, ensuring secure internet access for users and instilling trust in the solution.

I would recommend anyone contemplating this product to carefully consider it. They can evaluate and explore the solution by taking a demo to better understand the technology. Once satisfied with the demo, they can proceed with rolling out the solution. Overall, I would rate it eight out of ten.

Public Cloud

Other

We manage multiple customers using ZIA and ZPA to access internal resources and secure their own web applications. It acts like a VPN access connectivity, and ZIA is used as an internet gateway for users.

Sandboxing, DLP, and SSL inspection engine are the most valuable features of Zscaler SASE. Zscaler SASE is an easy-to-use tool that manages the cloud security architecture.

Currently, we are using APIs, and we need some enhancement on the script running with the Zscaler SASE cloud API. Also, it would be better if we could integrate with other vendors. We often face performance and latency issues with Zscaler SASE.

I have been using Zscaler SASE for the last four years.

I rate Zscaler SASE a seven and a half out of ten for stability. We face performance issues if there is any anomaly on the nodes bonded with our architecture from some location. We also face some routing and latency issues on Zscaler SASE that need to be rectified. In addition, there are no dedicated Zscaler nodes in countries like China and Dubai.

I rate Zscaler SASE a six out of ten for scalability.

Zscaler SASE's deployment time depends upon your design, architecture, and infrastructure size. If you have a small network of offices, the deployment will take at least three to four days. But if you have a larger architecture, deployment time will depend upon your planning, staging, and implementation.

With Zscaler SASE, we can manage multiple features in a single platform. We can manage all allocations that we have in our architecture on a single platform. This reduces the operation cost and takes fewer resources to deploy because we have APIs in Zscaler SASE. API would be the simplest way to configure anything across our sites if we have a larger retail architecture.

ZPA is configured on our architecture, but ZIA's traffic goes to the Zscaler-hosted cloud.

Overall, I rate Zscaler SASE an eight out of ten.

We use the solution to restrict uploading over public sites. We control the users’ actions through DLP. Only users who have access can upload files. We manage multiple policies.

The policies are very easy to implement. It's very easy to understand. We have the option to assign time limits to the access we provide. For example, we can implement a policy for one year for a particular user. Once it expires, we can disable it.

We have some limitations while checking logs. The product must allow users to check logs for an entire year in the local console. Currently, we can check logs only for the previous three to four months.

Forcepoint provides multiple services separately, but Zscaler does not provide separate DLP. It will be good if Zscaler provides the DLP module separately.

I have been using the solution for the last two years.

I rate the tool’s stability a ten out of ten.

The tool is very scalable. I rate the scalability a ten out of ten. Approximately 5,200 people are using the solution in our organization.

We are also using Forcepoint.

The initial setup is very easy.

The product is a little more expensive than other tools.

We do not face any challenges with the product. If we have any problems, the vendor helps us. The product is everywhere. Everyone is using it. It's very, very flexible. It provides a single solution for multiple modules like DLP, proxy, and firewall. Overall, I rate the tool a ten out of ten.

The security issues one faces with legacy VPN solutions are addressed using a SaaS VPN platform. If an organization wants to implement a zero-trust network architecture, then a SaaS VPN platform is the way to go about it.

The most valuable features of Zscaler Private Access are its ability to integrate with multiple IDPs and application segmentation.

More on-prem infrastructure is required when Zscaler Private Access is to be implemented as a single point of entry.

Since the whole concept of app segmentation is license based, making the app segmentation extremely granular becomes very expensive for an organization. As a result, not all organizations would adopt a granular approach for rolling out their Zscaler Private Access solution. So the entire approach must be seen differently, not the standard license-based approach. As an organization, if I want to make the access for my employees more granular, then it means that I will have to buy more licenses. Organizations with 10,000 to 20,000 applications, including their business partners also connecting to their applications, would need to invest a lot of money into making it granular. Okay. That kind of investment may not be viable for every organization to make, which could limit the use of Zscaler Private Access.

I have been using Zscaler Private Access for about two and a half years.

I rate Zscaler Private Access a nine out of ten for stability.

I rate Zscaler Private Access a ten out of ten for scalability. Zscaler Private Access can be used for more than 2,00,000 users.

Zscaler tells you right at the front that the implementation needs to be taken up by Zscaler-certified people. It does require a good amount of knowledge of the platform. Other options are available where Zscaler makes professional services and resident engineers available. So Zscaler Private Access is a complicated solution, but they facilitate much of that implementation. I rate Zscaler Private Access a seven out of ten for ease of initial setup.

Zscaler Private Access's deployment depends on how much time an organization spends preparing for the solution's implementation. If you have a checklist prepared beforehand, you can deploy the solution in probably one and a half or two months. But if you start deploying it and then start making the necessary preparations for the change, it could easily take more than a year for a large organization.

To deploy Zscaler Private Access, you need to follow a full-fledged project management process. This process includes requirement definitions, coming up with a high-level design document, preparing your project plan, coming up with a low-level design document, going into a pilot phase, and then the production rollout.

Zscaler Private Access is extremely expensive. I rate Zscaler Private Access an eight out of ten for pricing.

Zscaler Private Access has its own data centers and its own private cloud.

Overall, I rate Zscaler Private Access a seven out of ten.

Private Cloud

We use the solution to build zero-trust networks. We use it to block everything except the trusted URLs. We get a bunch of URLs from the customers, whitelist them in the solution, and everything else is blocked automatically.

An URL must be whitelisted for users to access it. When a customer tells us they need a particular URL, we analyze it and send it for approval. Once it is approved, we whitelist the URL for the user. The solution is useful for zero-trust and DLP.

The UI is easy to use. All the options are accessible.

The product has limited features. We only have the option to monitor URLs and HTTPS logs. The tool must provide IP-blocking features.

I have been using the solution for more than three years.

The tool is stable. For the past three years, I haven't seen it break down. I rate the stability a ten out of ten.

I rate the tool’s scalability a seven out of ten. When we search for logs, it doesn’t take much time. It’s quite fast, even if we have a lot of logs. We use more than 1000 URLs in a day. Getting the logs in real-time is quite important. Four of our customers are using the solution. We have 30,000 to 40,000 users.

I have used Symantec DLP.

The engineering team sets up the tool. We use the tool to analyze user behavior during incidents. We can see whether URLs accessed by the users were approved by the organization.

The product is a bit expensive.

We take support from Zscaler and provide the service to our clients. We are partners. People who want to use the product must explore the options. We can do multiple things for a single URL. We can restrict URLs to only access the GET request or POST request. We can do HTTP control and SSL inspection. We can also access the threat intel. We can look up a URL and get the details in real-time. Overall, I rate the tool an eight out of ten.