Cisco Umbrella Reviews

Cisco is a very efficient and on-point solution that controls the whole network and settings on one page. We can monitor the entire network.

The solution could be faster as the process is very slow.

I have been using Cisco Umbrella as a reseller for four to five years.

I rate the solution’s stability an eight and a half out of ten.

We have deployed it to small businesses.

I rate the solution’s scalability an eight out of ten.

The initial setup is straightforward and takes few hours to complete.

I rate the initial setup a nine out of ten, where one is difficult, and ten is easy.

ROI is pretty good. I rate it as eight out of ten.

You need to buy an additional license for customer services. The licensing is moderate.

I recommend the solution.

Overall, I rate the solution as eight and a half out of ten.

We use the solution for DNS security and web filtering. Our industries include banking and insurance. 

The customer experience is very good, and the product improves security posture. 

Cisco Umbrella is difficult to manage and needs to include a dashboard. It needs to improve pricing as well. 

I have been using the product for three years. 

I rate Cisco Umbrella's stability a nine out of ten. 

I rate the tool's scalability an eight out of ten. 

The tool's deployment is easy; I rate it a nine out of ten. The speed of deployment depends on various factors, including our communication with other customer contacts.

I rate the tool's pricing a five out of ten. 

Cisco Umbrella is the best solution for DNS security in the market. Our customers are enterprise businesses. I rate it an eight out of ten. 

Our customers use Umbrella for a security network. They want to have DNS connectivity and drop traffic before it becomes dodgy. 

Clients implement Umbrella with the full proxy. 

Umbrella enables customers to be secure. We are happy with this and this is the most important benefit for customers.

DNS is the most valuable feature of Umbrella. We want to have DNS integration with data directories and we have customers asking about the Azure Integration. 

We try to fit all the Cisco Secure products together. This is the value the customers can see as well. We enable the Firewalls, Umbrella, and AMP so that the customer can see the whole view of what Cisco is doing. 

Our customers want to be able to work remotely. They want Umbrella to work securely from the office and to work securely outside of the office. 

We have been using Umbrella for years now. We have an Umbrella internally as well. I sell Umbrella to customers. We offer the full setup to them.

We are resellers and integrators.

The stability is getting better.

The scalability is fine. The central management, that comes with most solutions, is really good. It's easier for us to go from two devices to 20 devices.

We have had quite a good experience with their support so I can't complain about it. Most of the time TAC cases are quite straightforward and do not take a long time to fix.

Positive

Our clients deploy on public cloud, private cloud, hybrid cloud, on-premise, or SaaS.

I am an engineer and do the initial deployment for them and make tweaks until it works for them. 

The complexity of the deployment will depend on the client's requirements. Some of them have straightforward requirements and some of them are quite detailed. The implementation itself is fine but there can be details where we need to check the documentation and make sure we're following what they require. 

Customers use the Firewall Migration for the migration mostly from the ASAs. We do the ASA to FTD migration, which doesn't work well.

Two or three engineers are required for the deployment. The installation is done by different engineers.  

We also do the maintenance. So whatever we deployed, we also support. We do all the support requirements, updating and reviewing the deployment that we did. We do the config that is required. For example, for the migration, if we deploy something, we come back to review what we did because we want to make sure that the customer is more secure than it was before. So we just rerun the same configuration, trying to find out if there's a gap that we can fix and make sure that the customer is secure.

The pricing changes too fast. We get the license and we need to relicense it because they already made changes to it. We always need to be on top of the licenses because they're always changing.

Cisco Talos seems to be working fine for our customers. 

My advice to somebody considering this solution is to try it. It's probably the best option to try it and see if it works. Do a proof of concept and proof of value for the customer.

Most of the time, it's for security reasons in terms of looking at what DNS requests are being done and other things like that.

It has certainly saved us time. If we go and look at what's rejected on the requests from the hospital itself, it has saved about 5% or 6% time.

It's there to keep everything secure. Hospitals are a very nice target for attacks. We have been under an attack from Russia once, which was a DDoS attack.

It secures our infrastructure from end to end so we can detect and remediate threats.

The protection from users doing stupid things is valuable. The dashboard gives me the information I need.

Its price could be better.

I've been using it for about two years.

It's very stable. I've never seen any problems with it.

It's perfect for the things we have with it. There is a quick resolution. There are no problems at all. I'd rate them a nine out of ten.

Positive

I've not used a similar solution. We went for Cisco Umbrella because they are delivering good products. We also have all Cisco switches in place, and then we have Cisco ACI and DNA Center. We only don't have Cisco firewalls.

I am not aware of any tools that we could consolidate or get rid of by using Cisco Umbrella because it was installed about five or six years before I came here.

Cisco is expensive. For example, we are looking at Nexus Dashboard, and it's costing about 250,000 euros. I ask, "What do I get from it?" I'm still not convinced that we have to spend on it, so pricing is a problem.

It's a very good product. I'd rate it an eight out of ten. Overall, I am satisfied with the product.

Our clients use Cisco Umbrella compared with SD-WAN or Meraki solutions. They use layer 7 firewall and web proxy in most use cases and fewer DNS security functionalities.

Cisco Umbrella has replaced on-premises firewalls in our client's branches. Our client had one central cloud solution, and now, they no longer need the local firewall.

Our clients have found that Cisco Umbrella increases its security posture because there is a central policy that fits everything.

Though Cisco Talos is usually part of the backend, it is mandatory to have a good solution.

We've been implementing Cisco Umbrella for three years.

I have not seen any issues with scalability.

Cisco's technical support is pretty good. When a solution is available, they will find it. On a scale from one to ten with ten being the best, I'd rate Cisco's technical support at nine.

Positive

We sell both Cisco and Zscaler. If the client already has a Cisco solution, then Umbrella is usually a better fit. In cases when a customer already uses Zscaler, has another SD-WAN solution, or has a different vendor, Zscaler may be the first choice.

As a Cisco Secure reseller, we bring value to our customers through our technicians and engineers who consult with them and implement the solution. This is a benefit from our partner side.

The initial deployment is quite easy. It's internal, and with a few clicks, Cisco Umbrella can be up and running.

Cisco should make the solution cheaper.

The locks and management could be better. The product is fairly new, and it may take some time to get all the features up and running.

Overall, I would rate Cisco Umbrella an eight on a scale from one to ten.

What I find most valuable about Cisco Umbrella is its ease of use. I also value the clearness of the categories. We have not experienced any issues or incidents with the categories. However, we are looking more deeply at the product now. 

We are very new users of the solution and are still in the exploration stages, but we are happy with the product thus far. However, there are some features available in Fortinet and Palo Alto that are not available in Cisco, like objects, for example. I would like to see Cisco enable us to get objects from the internet. I would also like to be able to choose groups. 

I have been using Cisco Umbrella for two to three months now. 

For most of our technical support needs, we mostly go through our partner. However, for some infrastructure-related inquiries, we have had to contact Cisco's technical support and we were happy with the experience.  

Positive

The initial setup was simple. Deployment at our main sites took about three to four weeks. 

We received help from a local partner, NTT Global, during the deployment. They helped us set up Meraki and Umbrella. 

We hope to see a return on investment with Cisco Umbrella. We have a big team managing the infrastructure, so we hope to save time in the day-to-day protection of the tower, which would be the return on investment.

Globally, we also hope to save time on the LAN. We aim for a single pane of glass management model with the dashboard. 

From what I remember about the pricing, Cisco Umbrella is a bit more expensive than the quotes we got from its competitors. 

We looked at several products, including Fortinet and Palo Alto. We experienced a bug with Fortinet during testing and ultimately ended up going with Cisco Meraki products. We have not had an incident yet with Cisco Umbrella.

The solution helped us save time and this was a major reason we chose it. We expect to save 15% to 20% in time.

We are aiming to consolidate our entire network and LAN infrastructure with Cisco Umbrella. We are on the way to achieving that with this solution.

As a Cisco partner, try to test things on our own before we position the product to our customers or educate partners on it. So, the primary use case was to test things out and to be our own first customer. We started using it internally for our own purposes to secure our access to the internet with Umbrella.

We use Cisco Umbrella to secure internet connectivity and especially to focus on the threats introduced through web browsing. This is because most of the applications the workers use are browser-based.

The traffic, by default, is typically encrypted with HPS, and we use Cisco Umbrella to get more insight into that traffic. The classical security appliances have very low visibility into them. This is where we see Cisco Umbrella have the most traction.

In general, it increases the security level. It helps us prevent threats from being accessed. Also, the visibility into internet bounce traffic is increased. So, in general, it increases the overall internet security of the organization.

One valuable feature is definitely its simplicity in terms of deployment. It is very easy to integrate it into the environment without any heavy lifting. Users didn't notice that we implemented it. You can start with a very low monitoring mode and start observing what Cisco Umbrella sees.

In terms of helping workers feel safe, secure, supported, and included, the solution is pretty transparent to the end user in most cases. They don't necessarily get any confidence from it, but it's supposed to be that way. It's supposed to be as transparent as possible. However, when the end-user accesses a site that is blacklisted or treated as potentially suspicious, he or she will see a warning displayed. This gives them additional confidence that somebody else is taking care of the details and that they can confidently browse around. If they come across a suspicious site, they know that they will get a warning or advice on how to proceed.

Cisco Umbrella supporting hybrid work environments is important. Within our organization, even before COVID, a lot of us worked remotely from time to time. For companies that we work with, it has become a reality with COVID. Before, everybody was working on site, and now, that's no longer the case. It is important to have flexibility and know that even if we work from home or from another place we're still secure.

For all Umbrella-related things, it does provide single-pane-of-glass management, but it's one component. If I look at the typical employee, he is only one piece of the puzzle. Other solutions, like, for example, AnyConnect for remote access, are managed separately. For Umbrella-specific items, it's a single interface for management. For monitoring, policies, and troubleshooting a specific case, everything is in one place. I don't need to go through the logs to know where to look.

My organization is not very large, and I'd say my colleagues are pretty proficient. So, it's not a high priority to have single-pane-of-glass management, but it's always good if solutions are capable of integrating together. If by enabling single-pane-of-glass management the workflow is simplified and the day-to-day operations are a little easier, then that's something we definitely want to benefit from.

The administrator user experience is definitely optimized by single-pane-of-glass management, especially if the personnel are busy. Then, it helps if all the relevant details are in one place.

In terms of maintaining network connectivity, Umbrella on its own is pretty user-friendly. It is easy to set up and maintain. It's one of its strong suits.

For the branch and campus, it's very simple to apply and maintain network connectivity. For the home environments, there are options to integrate it into the employee's PC as well. Cisco Umbrella supports different methods for different environments so that you can achieve the level of implementation that you need. It's where it should be.

It's very efficient in securing the infrastructure from end to end so that we can detect and remediate threats. You can simply adopt it right into the environment, and you don't need to build the rule sets on your own. It utilizes best practices, and it's very easy to set up policies such as potential malicious categories on the internet, what you want to block, what you want to filter out, etc. It's very easy to implement those.

When you go through the reports, you can see what kind of threats were blocked. Luckily, we haven't had an incident where something got through and caused a security incident.

In terms of metrics on how Cisco Umbrella has been able to remediate threats, the numbers look pretty impressive. However, it's hard to assess how serious that potential threat really was. It's hard to put actual weight on the numbers to determine how meaningful those numbers are.

The value that resilience helps offer in cyber security is pretty high. Cyber security resilience is a high priority in our organization. It's important to our customers that we handle what we do for them in a secure manner.

I'd like to see this solution more closely integrate with other products Cisco has in its portfolio.

I would also like to be able to manage the identities, for example. If you define them in ISE, it would be good to be able to use the same identities also within Umbrella. It would simplify the use of multiple products within the organization from the same vendor.

I've been using it for about three years now.

Stability-wise, Cisco Umbrella is pretty robust. The uptime statistics are very high. There are, generally, no issues with stability.

Our organization isn't very large, but it's pretty scalable for larger organizations. At the moment, it's not a limiting factor.

Technical support is one of Cisco's strong suits. In my experience, the Umbrella team has been very quick to turn around requests. It's even been above average by Cisco's standard compared to the turnaround time for other Cisco solutions and products.

I would give Cisco's support a rating of nine on a scale from one to ten.

Positive

We deployed it by configuring local devices to redirect the DNS request to the SAS service Umbrella provides.

The solution is cloud-based. You just send your DNS request or your traffic to it. You can start with a monitoring-only mode. So for example, you can redirect the DNS request and start observing what Umbrella recognizes. Later, you can start defining the policies, setting up the enforcements, etc. You can very quickly get to the first results.

Actual ROI numbers are really hard to measure and determine. Generally, we see that customers who implement Cisco Umbrella and start using it tend to renew their licenses. They adopt the product, and they recognize the value it brings. I think this shows that there was a return of investment for them and that it achieved the desired level.

Licensing with Cisco can be a little complex, but I think it's comparable with that of other similar products. It's always hard to put a price on security, but the price is fair for the value it provides.

We're a Cisco partner, and we work with a lot of Cisco solutions. So, it was pretty easy for us to decide what we wanted to try and test. We didn't really do competitive selection and assessment, and it was pretty straightforward for us to go with Umbrella.

I would rate Cisco Umbrella at nine on a scale from one to ten.

We're actually in the process of using this to replace our current web proxies. We use both, side-by-side, at the moment. The plan in the future is to eventually get those replaced with Umbrella so that we can have an overall, overarching proxy either that's based in the cloud or whatever we need. But this currently is our most convenient way of replacing web proxies across all of our locations at our company.

It's definitely made things more centralized. Our current setup is that we have proxies, either physical or virtual, throughout our different locations. Each location has its own proxy at the moment. What's nice about Umbrella is that we can just go into the site and see all of our locations in one place and look at all of our computers, users—everything. It's not divided into separate proxies that we have to go into and figure out which person's using which proxy. Umbrella lets us just see everybody at once, which is really handy for us, and we don't have to spend too much time messing around with figuring out who's where and which location needs this change. [We can just make] changes throughout every location at once, rather than one at a time with those proxies that we currently use.

The past couple of years, [the fact that the solution helps support hybrid work has been] especially important because now we can't use those proxies if people aren't onsite. The way our network was set up was that we had it filtering through the firewall and the firewall was taking certain subnets and filtering those through the proxy. But obviously, when people work from home, we had to get a VPN connection set up. Before COVID, we did not have a work-from-home solution at the time, so everybody had to be in the office. Obviously, that all changed very quickly and Umbrella became a much bigger priority for us because that was our main replacement for those proxies at the time.

We had to expedite the process of setting it up, but what was nice about Umbrella was that it was so user-friendly, it was so easy to set up on our end, that it didn't take as much time as we thought it would. It just simplified the entire process throughout the couple of years that we have especially needed it. But what's cool about that is that now, it's a permanent part of our network. Thanks to the last couple of years, we use it all the time now. It wasn't just a temporary solution for hybrid work because now we use it for both. We have the ability to do hybrid work, but we also have the ability to use it for our employees onsite as well.

[When it comes to threat remediation] most of it is automatic so we don't really have to worry about it too much. Umbrella will just block something if it detects it as malware. That is a super convenient feature for us, that we don't have to manually review every single site. If we do have to review a site, it's nice to have that investigative tool. We put in the URL and it gives us a risk score, depending on how dangerous that site might be. That's super helpful for us to analyze that site, take a look at it, and make a decision on whether we need to block it, or if it can be unblocked. Every situation is different, but Umbrella makes that summary page very convenient for us. It allows us to make decisions much faster and more efficiently.

Our cyber team is a bit different from our network team. We have a separate team for that, but it's nice because they also use Umbrella for a lot of that, depending on what the site is. We use the investigative tool for the risk score, but it also comes with a few other tools, and part of that is just so that they can assess what's safe and what's not safe and what might be detected as malware. Obviously, they have other tools for that as well, so Umbrella is just one cog in the big system. But it definitely allows for easier communication between our teams because we both use it and we can both understand it. It's user-friendly enough so that we can make decisions with them based on what Umbrella tells us and how we interpret that information depending on the site, the situation, the risk score, everything.

We have a lot of employees, a few tens of thousands. We get probably hundreds [of threats blocked] every day. I wouldn't be able to give an exact number on how many are blocked. The main ones we look at are the ones that people request us to specifically look at because they might not think that something was supposed to be blocked, or something is not working properly, and we can go in and investigate that. But there are probably hundreds to thousands of blocks per day on the sites, across all of our locations. That automation allows us to relax a little bit easier and know that our network is much safer with Umbrella on it than it is off. The automatic side of it is basically saving our jobs. That really helps, and we're able to look at anything. Overall, as a program, it has saved us a ton of time and stress by not having to worry about malware or viruses or anything malicious.

One of the coolest features, for me at least, is to be able to type in a website and have it  give an overall summary of how safe that website appears. Part of that is just so that we can investigate. And if there's any sort of confusion between our cyber team and us, we can look further into that site and dive more into that risk score that Umbrella gives us. We can just analyze [those sites] and make sure that we're unblocking safe sites and blocking sites that we deem could be harmful for our employees.

I would say it provides single-pane-of-glass management. We still, of course, use those old WSAs, but in the long run, our plan is to get those replaced with Umbrella. We have locations in Japan, Korea, China. So it's a little bit more difficult to go through one proxy for all of those, especially because it's a bit slower. What's nice is, [with] Umbrella being in the cloud, we can just go into the site, see everything from the management console in that page. Nothing is slow [and] nothing is hosted by us so that we don't have to worry about network issues or management issues. Everything is just laid out right in front of us from the Umbrella dashboard on the internet, in the cloud. And that makes it super helpful for us to just manage all that from one spot across all of our locations across the world.

We aren't a very big team, so that's the main thing. Going through filtering web traffic or blocking sites or unblocking sites, whatever we need to do, can be a bit tedious, especially when we have all these different locations and we would have to go into each location specifically to perform these tasks. Umbrella, being one pane for managing, being all-encompassing, allows us to quickly go in, make a change, and it applies to either every location, if we want it to, or we can have policies in place that only apply to certain users or certain computers. And that makes it super useful for us because we're not messing around with jumping into all these different locations and manually doing each and every one individually. It is extremely helpful for us and it improves efficiency exponentially.

I have personally been using Cisco Umbrella for almost a couple of years. Our company implemented it about five or six years ago. Most of that time was spent getting it set up, but we've really been using it more within the last two or three years now, so it's still pretty new to us at the moment.

[In terms of maintaining network connectivity] obviously it depends on the situation. With Umbrella, it's a bit easier, for sure. There are times where Umbrella, on their side, is having an issue and we're notified of that issue. But in that case, there isn't really much on our side that we can do. To that extent though, the pros outweigh the cons. It's pretty rare that Umbrella is having a problem. The way that our network is set up is that we can reroute traffic pretty quickly using our other Cisco devices, so it's not usually a big issue for us. We have fewer problems with Umbrella than we do with our physical WSA proxies that we currently use, because that is something that we would have to troubleshoot on our end, and we're not always there on site to be able to do that. Then we have to go through someone else who's over there and they have to console us in and we have to troubleshoot whatever's going on over there.

With Umbrella, it's nice to have them tell us what's going on so that we're aware of the situation. If there are any problems, then we'd know what the issue was and how we could work around it. That makes it a bit simpler for us.

Network connectivity isn't really a huge issue for us with Umbrella, specifically. Our use case mainly is just for blocking internet traffic, making groups. We have social media groups where we allow certain computers in places to have access to certain social media sites that we wouldn't normally do. We have other sites being blocked, depending on their use case. That's mainly our function with Umbrella. Internet connectivity is usually not a huge issue regarding Umbrella with us, but if it ever is, it's nice that they communicate the issue to us, [so] that we can work around it.

In my experience with Umbrella support, sometimes the response times take a bit more time than we would like. Obviously, it depends on how they're contacted. But usually, when I contact them via phone, their support team is great. They help me out with everything. But sometimes, if you go through email, it can take quite a while to get a response. Obviously, if it's through email, the issue's probably not as pressing as it would be through a phone call, but the response times could be a little bit better. Email, I usually just avoid. I usually just call them now.

They're super helpful. In terms of response times, it could be a little bit better. Some issues are more urgent than others, but if it's an urgent issue, obviously we just call. Sometimes it takes a little bit [of time] for them to get back. I would probably rate them a seven out of ten.

Neutral

We've had to deploy connectors across certain locations, but [in] all the locations we have a domain controller and that needs to be deployed on those domain controllers throughout all of our different places. I've done a couple of deployments. Most of it was already deployed just by the time I got here. 

[In] my experience of how deployment went, it was very easily laid out, very simple. The instructions were super clear. I didn't have any issues with that. As more of a newcomer to the entire industry, this has been much easier than I expected it to be. Umbrella, as a product, is very simply laid out, very user-friendly. I couldn't praise it enough for helping me out with my job. 

While the support [can] sometimes take a while, overall they're super helpful, they make it very easy and they make you feel like you're not doing anything wrong. They're super friendly and make everything super easy for you. Umbrella as a product, overall, is very user-friendly, as a newcomer to my company.

The plan is to replace those physical proxies that we have. In terms of return on investment, getting rid of those across each location [has been valuable]. In terms of the efficiency with time, it's definitely saved us a lot of time and money troubleshooting different issues and securing the network and helping people access what they need to access. Just in terms of time and efficiency, it definitely has a return on investment.

Trying to replace those physical ones as well, getting rid of those, just having this be the all-encompassing way of filtering traffic and unblocking, of making policies, it definitely saves us a lot of time with the solution that's offered.

In terms of [our employees] feeling supported, they have the ability to submit a request to us very easily. When they get blocked from a site, it's not just one page saying you're not allowed here. They have the ability to submit a request to us so that we can look further into that site. That makes our employees feel more included in the process of helping the company access the sites that it needs to use, [as does our] communicating with those employees [about] why a site might be blocked; or a site that needs to be blocked based on what they find and what they're doing for their job. The important thing is that they're able to talk to us in case there's a site that they think that they need to access and helps them feel included in the entire process.

Like I mentioned earlier, it's one cog in the big system that we have out of our solutions for cybersecurity. We also use products like AMP, we have certain firewalls that also block certain things, the way they're configured. But overall, Umbrella, if we're talking about users on the internet, using sites or accessing different websites, is a big help in determining what exactly they need. We can go into Umbrella and help them understand why something might be blocked, or if they need to get into something, we can make certain policies within Umbrella. It's obviously just one tool out of the many that we have, so these configurations are pretty involved and even I don't know how they all work. It's divided amongst our team. For cybersecurity in general, it's great. It simplifies it. It's very useful in terms of the automation and how it blocks everything, and how all that stuff is interconnected. I would say that it is a lifesaver for us.

As somebody who is pretty familiar with networks and just learning everything, but being an inexperienced network manager, I would say that it makes the entire process very painless, very super simple to understand. In my experience, it's a nine out of ten.