Forcepoint Data Loss Prevention Reviews

Some implementations in Forcepoint are easy to do. 

We cannot implement very complex policies or use cases with Forcepoint.

Forcepoint's data visibility is the most valuable feature. 

They need to improve their reporting feature as well as the incident response. They have very limited and basic response rules available for incident management so they need to improve them.

I have been using Forcepoint Data Loss Prevention fora year and a half.

I rate the stability an eight out of ten.

The scalability is an eight out of ten. 

The technical support is average.

The initial setup is straightforward. It takes about three to four hours to implement this solution.

The solution is expensive. 

Overall, the solution is an eight out of ten. 

The main use case for Forcepoint DLP is its OCR feature, which many customers need. The OCR capability can only be used at the network level, not at the endpoint level. It enables network-based data security, such as scanning emails or web traffic for potential data leaks. It's useful when dealing with scanned documents or screenshots containing sensitive information, preventing data leakage for multiple customers who require this level of security.

DLP also provides a test suite and integrates with a cloud access security broker. This helps protect data in cloud storage environments and gives you more control over data security in the cloud.

First, you need to categorize your data—what kind of data it is, the severity of its sensitivity, how long it needs protection, and the destinations that need protection. Forcepoint provides a dedicated solution with a user-friendly interface that makes it easy to manage. Remember that DLP doesn't handle data classification independently, so you'll need another tool to classify your data. For instance, you might use a classification tool to label documents as confidential, private, or internal.

Once the classification agent is installed on the endpoint, users need to label their data accordingly. For example, a Word document containing sensitive information should be labeled confidential. After labeling, you can create a policy in the DLP solution, such as Forcepoint, to block any data labeled as confidential from being shared. You can specify destination addresses to block at various levels, like the network, email, or RDP.

It is a bit expensive.

When deploying a DLP solution in your environment, it is important to follow best practices and start with monitoring mode. Initially, you may not know where your data resides, which users need access to it, or the nature of the data itself. Deploying an agent and monitoring the data flow and usage for three to six months is essential. 

Forcepoint DLP helped customers save some money at the end of the cyber security field. Data is the most important thing you need to implement for a DLP solution in your environment. You could also face insider threats. Implementing a DLP solution helps prevent potential data leaks by giving you control over what kind of data is being accessed, where it's stored, and how it's being used within your environment. It also allows you to monitor and prevent unauthorized sharing of sensitive data, ensuring better security across your organization.

You have two primary use cases for encryption: one for USB devices and the other for network-level data, like email. For email encryption, you can use an appliance that encrypts emails before sending them to another recipient. You can set up DLP for USB devices to manage and secure the data copied to the USB. By registering the USB with your DLP administrator or security tool, such as Forcepoint Security Manager, you can ensure that any data transferred to the USB is protected through encryption, preventing unauthorized access.

Integrating a DLP solution with your Active Directory is a prerequisite for implementing it in your environment. Ensuring your Active Directory follows best practices and benchmarks is crucial for seamless integration and optimal functionality of the DLP solution. You need to add the Active Directory to the environment. It must be integrated because you cannot block your data if your endpoint is not integrated with the endpoint level.

Overall, I rate the solution a nine out of ten.

Major compliance issues are faced by every manufacturer or by those who use customer data. From a compliance point of view, people want a DLP solution for their organization. Every organization needs a DLP solution to prevent data leakage to external sources outside the company, making it one of the major use cases for every customer as they require a DLP tool that covers multiple channels like email, web, network, printers, USB, and removable devices.

Some of our company's customers who want the tool to deal with some of their use cases are macOS users. When it comes to the area of USB control, macOS takes five to ten seconds, meaning there are some solution-designing problems attached to it. With Forcepoint Data Loss Prevention, policies can be applied in Windows within a fraction of a second, but for MacOS users, it takes five to ten seconds, and during these seconds, data leakage from inside to outside an organization can happen. The product is compliant with Windows. My company suggests the product to those who have a Windows operating system in their environment. If you are a macOS user, the problem or concern arises due to the issues attached to the area of USB control. As a whole, macOS is good for users. The aforementioned details regarding macOS need to be considered for improvement.

I have been using Forcepoint Data Loss Prevention for 5 years. I am a reseller of the tool.

The product's stability is very good, and it is a major reason why it is considered a market leader.

Scalability-wise, I rate the solution a nine out of ten.

My company caters to the needs of multiple customers who use the product.

The technical support for the solution is very good.

The product's initial setup phase was easy.

The solution is deployed on an on-premises model.

The time taken to deploy the product is something which depends on the solution or the setup. Mostly, the solution can be deployed within three days, after which some finetuning is required to meet the requirements of our company's customers.

Speaking about how the tool improves data security and compliance posture, I would say that there are multiple products, one of which is a DLP tool, required from a complaint point of view when it comes to data security.

The product's most valuable features for protecting sensitive data revolve around areas like data discovery, data classification, and data leakage. Forcepoint also provides pre-defined templates for data classification covering components like PII, PHI, and PCI.

Forcepoint DLP is a leading tool in the market.

The policy management and the incident reporting system are very easy since, in our company, we just need to integrate it with our user group and users, based on which we configure the policy and apply it within a fraction of a second. The aforementioned details explain why Forcepoint is leading in the market with respect to DLP products.

The data fingerprinting part is a major reason why my company chose Forcepoint Data Loss Prevention. In our company, we need to use areas like PII, PHI, and PCI, so that, though we can share data via emails or any other channels, we get to block specific areas with the fingerprinting feature of Forcepoint Data Loss Prevention .

From a DLP perspective, Forcepoint Data Loss Prevention is the best. There are no other competitors who can compete with Forcepoint in the area of DLP.

In Forcepoint Data Loss Prevention, the user risk scoring impacts security operations and incident response since it is very easy to deploy from our company's customers' perspective, and it makes their day-to-day operations very easy with respect to incident response.

The main benefits of the use of the solution stem from the fact that it ensures that there are no chances of data leakage of any confidential data from inside to outside of the organization.

I rate the tool an eight out of ten.

We use it for monitoring and blocking sensitive data in emails, following our new governance policy.

We like the ability to customize our requirements and rules, as well as its ease of use and management. It also has a cloud feature and proxy functionality.

The product is good, but the biggest issue is needing direct support from Forcepoint.

In future releases, it would be helpful if the OCR feature supported more standard formats, as currently, Forcepoint cannot block some standard data formats.

I have been using it for three years. 

I would rate the stability a seven out of ten. We occasionally experience some downtime and glitches, mainly on the cloud side.

It is very scalable and we have not encountered any issues.  There are around 11,000 end users using this solution.

I would rate the scalability an eight out of ten.  

It can be hard to contact customer service and support, and their response times and solutions can be slow and sometimes irrelevant.

A lot of time their feedback is not helpful. 

Neutral

Forcepoint offers a more cost-effective solution because everything, including OCR, is included in one package, unlike Symantec, where it is an add-on with an additional cost. We also considered McAfee before choosing Forcepoint.

So, the main reason we chose Forcepoint is the cost because it's a single package.

The initial setup is simple. It's now easier than Microsoft, for example.

We currently use a hybrid model with on-premises deployment for the top and cloud access for laptops.

There are five people in our technical team handling deployment and maintenance of this solution. 

I would rate the pricing a six out of ten, where one is high price, and ten is low price. It can be a low price. 

Overall, I would rate the solution a seven out of ten. There is some room for improvement.

Our primary use case for this solution is for malicious activities.

The feature I found most valuable is the DLP. We are using it to do encryptions.

My opinion is that the dashboard could be improved and made more user-friendly. They do not enable a wide range of proper inquiries and we need to identify much of what we need on our own, like incident severity.

In the next release, I'd like to see the updates working properly as the priority apps we have are not upgrading the agent that we have installed.

I have been using this solution for about a year and a half.

I would rate the stability of this solution an eight, on a scale from one to 10, with one being the worst and 10 being the best.

I would rate the scalability of this solution a six, on a scale from one to 10, with one being the worst and 10 being the best.

I would say that their technical support is quite helpful. I would rate them a seven, on a scale from one to 10, with one being the worst and 10 being the best.

Neutral

Our model of deployment is on-premises. The only issue with deployment that we've found is that sometimes OPC is not able to connect to SCM or to a particular vendor. The deployment took around 20 minutes. Everyone was involved in the deployment of this solution, every department. It takes about two to three people to maintain this solution.

We used an in-house team to do the deployment of this solution.

There are around 16,000 users of this solution in our company.

I would recommend this solution to other people.

I would rate this solution as a whole a 10, on a scale from one to 10, with one being the worst and 10 being the best.

Forcepoint Data Loss Prevention works to protect data from attacks, which is a company requirement. It works on networks and has an OCR feature, with OCR being the primary use case for it in my company.

The most valuable feature of Forcepoint Data Loss Prevention is the OCR.

An area for improvement in Forcepoint Data Loss Prevention is the complex UI and policy deployment. You have to find the policies, and then designing the policies is also tricky.

As Forcepoint Data Loss Prevention has some complex policy implementations, I want a more straightforward policy deployment from it in the future.

I've been using Forcepoint Data Loss Prevention for the last few years.

Forcepoint Data Loss Prevention is a stable product.

My company logs tickets in the Forcepoint Data Loss Prevention support portal whenever there's an issue. Support-wise, I'm giving the team eight out of ten.

Positive

The initial setup for Forcepoint Data Loss Prevention is easy. My company did a POC and demo session, and the solution is currently in the deployment phase.

The pricing for Forcepoint Data Loss Prevention is more expensive than Symantec, but it's negotiable. It depends on how well you negotiate. The solution is worth the money, though, based on the services and facilities it provides to my company.

My company uses Forcepoint Data Loss Prevention.

I'm using the latest version of the solution because my company updates Forcepoint Data Loss Prevention every time there's a new version.

My company has more than one thousand Forcepoint Data Loss Prevention licenses.

I would recommend Forcepoint Data Loss Prevention, depending on your scenario and the industry you're working in. The primary consideration for using the solution would be your use cases. If it fits your use case, I'd tell you to go for Forcepoint Data Loss Prevention.

The solution is quite mature compared to other DLP products, so my rating for Forcepoint Data Loss Prevention is eight out of ten.

My company is a Forcepoint Data Loss Prevention user.

I primarily use the solution for endpoint network and cloud application channels.

From the coverage perspective, it has better insights. 

The solution is stable.

It can scale. 

Technical support has been helpful. 

The pricing is fine. 

It can be giving better insights. 

The footprint could be lower. We'd like fewer devices and components. We'd like to have something unified. Maybe they could reduce the number of servers or hardware that need to be implemented as part of the solution. 

The setup could be streamlined. 

Feature requests do take some time to implement. 

I'd like to have fewer workflows on-prem. Still, I'd like to ensure I get endpoint protection.

Managing the resources and managing the hardware requires multiple people. I have to rely on my server and network administrators, and I have to rely on the DLP administrator, who is managing the solution. That's too many resources, I have to look into it. I want to have a SaaS-based solution to reduce my cost and administration effort in terms of server management, et cetera.

I've used the solution for more than three years. 

It is stable. My only requirement is to be able to invest further or maintain the hardware.

I haven't faced any scalability issues thus far. 

I have 5,000 users on the solution in my organization. We use it regularly. We started with just 3,000 users and have since scaled up. I'm not sure if we will scale more. 

Technical support is fine. I didn't face many challenges yet. However, I have made requests for some of the features and some time requirements. Some of them have to be gone to their development team to add such features, and I do have a couple of enhancements that were done with the latest updates. That said, usually, feature requests maybe take some time. They have their own priorities to address. In general, however, support-wise, I'm good.

Positive

I'm also aware of Symantec and McAfee. 

Forcepoint has extensive coverage compared to Symantec or McAfee. The reliability was good. I'm getting better coverage in terms of security, and I get better insights as well.

Symantec also seems to be good. That's my understanding of the market. However, due to their recent acquisition via Broadcom, they have some higher renewal costs. 

Forcepoint, from a coverage perspective, it is giving better insights on the content. We cannot compare the insights with Microsoft, Palo Alto, or even Trend Micro.

In terms of the initial setup, they have bifurcated in a way so that each and every channel has to be protected. I don't understand why can't we enable something on the fly. For example, with a checkbox, I should be able to enable it as part of the feature to enable the future. That is not available, so I have to go ahead and deploy different components on different channels.

However, it is rather easy. I'd rate it a four out of five in terms of ease of setup.

Skill-wise and license-wise there is no major challenge. 

The value you get with this solution in terms of price is good. Other options don't give the same coverage. 

I'm just looking for a SaaS-based model. That's what I am exploring right now.

Fortunately or unfortunately, Forcepoint has not come up with a pure SaaS-based DLP. I'm just looking in the market to see what the best solution I can get is in terms of the same sort of production or to see how I can gradually migrate it or have a one-time migration of my Forcepoint policies directly to the SaaS-based solution. I'm hoping I can reduce my administration efforts in terms of managing the hardware.

I'm an end-user. 

I use a combination of on-premises and cloud deployments. 

I'd rate the solution eight out of ten. 

I deployed the solution for three of our customers, and the primary use case is data loss prevention.

The feature with which the solution integrates with the proxy, the ICAP protocol that logs the inline traffic or real-time traffic, is valuable.

The Optical Character Recognition (OCR) functionality is another helpful feature, especially for unstructured data. Being able to discover sensitive data in an unstructured format is the most beneficial element of the solution.

We can add tags to table format or Excel documents, such as ''confidential'' or ''sensitive information'', and the DLP suite takes action according to the defined policy for each tag.

The APIs for device integration are limited, so that could be improved.

If a feature known as Exact Data Match is present, I cannot detect it. This is an easily accessible feature in the Symantec DLP product and those from other vendors, such as Zscaler. EDM either needs to be added as a feature or made easier to find, as I couldn't find it. It's possible none of my customers got a license for this particular feature, but that seems unlikely.

Forcepoint is very stable; I rate it a nine out of ten for stability. 

The solution has excellent scalability; I rate it eight out of ten here. 

The customer support is outstanding. 

Positive

The deployment is straightforward once you understand the solution's architecture. A proper understanding of the different components of Forcepoint DLP is essential, as deploying an enterprise-level DLP could be confusing because the policy server is separate from the main engine sitting on the Triton server. Understanding the components of the enterprise DLP suite is the most critical element for a successful deployment. Still, I rate the solution seven out of ten in terms of ease of setup.

The scale of the particular DLP deployment is also a factor; we had cases where the customer only required endpoint or network DLP, a relatively quick job that two staff can complete. A complete DLP suite, including email, web, and network DLP, plus data classification and labelling, would require four associates. Our most recent deployment was a complete enterprise DLP, which required four staff. The entire deployment took almost three months, including a one-month planning phase. During the planning phase, we prepared the documentation, designed the HLDs and LLDs, and high and low-level diagrams. Following acceptance from the customer, we started the implementation, which took roughly 50 to 60 days.

The level of maintenance required depends on how many events per hour a particular tool is putting out. If a customer wants to check analytics or identify an email or data leak, that situation doesn't require much policy fine-tuning, and a single staff member could deal with it. The customer can also decide what coverage they want, which may be 24/7, an admin to monitor events only, or Monday-to-Friday support. The coverage determines how many engineers will be required.

Another factor in maintenance requirements is the volume of events, as an extensive client could have more than 10,000 servers with many sensitive data in motion. The customer had 24,000 users for our last deployment, and there wasn't a dedicated team for the DLP. The engineering team took care of the network, endpoint, and data security together. There were ten of us on the team, with two engineers per shift for 24/7 coverage.

I can't comment on the cost, as a different department handles that.

I rate the solution eight out of ten. 

Forcepoint is the best DLP solution in the industry. I have yet to see another DLP solution on the market that provides as much security for endpoints; their endpoint DLP is unbeatable. Forcepoint also has an enormous number of features. It's handy, lightweight, easy to deploy, captures all the details, and never gives false positives; it's an excellent product.