Forcepoint Data Loss Prevention Reviews

Our main use case for the product involves classifying and protecting organizational data from unauthorized transfers, especially when users attempt to upload or transfer classified data to public cloud services or data-sharing platforms.

The main challenge is the solution's high cost. Additionally, there is no discount for bulk purchases, making it difficult to get budget approvals.

It could benefit from more AI-based features, such as predictive capabilities and expanded coverage of versatile platforms beyond Google Drive and a few cloud platforms. AI could also suggest appropriate policies during deployment based on the specific environment.

We have been using Forcepoint Data Loss Prevention for about five years.

The solution is very stable. I rate the stability a nine out of ten. 

The product is easy to scale by increasing licenses and deployment for large volumes. I rate the scalability a nine out of ten. 

Sometimes, we receive a delayed response from the technical support team. 

Positive

The setup was quite straightforward.

The deployment took approximately one week and required remote and physical support from a local partner and the necessary hardware and appliances.

I rate the process a nine out of ten. 

We have seen significant benefits in compliance, audit controls, and preventing data leakage, making it effective from an ROI perspective.

The platform's key features include blocking unauthorized data copying to USB drives, preventing data transfers to the cloud, and discovering, classifying, and monitoring data without causing friction for users.

The real-time analytics feature is helpful. It alerts within seconds and promptly informs management of any potential security issues.

I suggest thoroughly understanding your organization's data leakage channels and the criticality of your data. With this understanding, you may fully benefit from using DLP.

Overall, I rate it an eight out of ten. 

Some implementations in Forcepoint are easy to do. 

We cannot implement very complex policies or use cases with Forcepoint.

Forcepoint's data visibility is the most valuable feature. 

They need to improve their reporting feature as well as the incident response. They have very limited and basic response rules available for incident management so they need to improve them.

I have been using Forcepoint Data Loss Prevention fora year and a half.

I rate the stability an eight out of ten.

The scalability is an eight out of ten. 

The technical support is average.

Positive

The initial setup is straightforward. It takes about three to four hours to implement this solution.

The solution is expensive. 

Overall, the solution is an eight out of ten. 

Our primary use case for this solution is for malicious activities.

The feature I found most valuable is the DLP. We are using it to do encryptions.

My opinion is that the dashboard could be improved and made more user-friendly. They do not enable a wide range of proper inquiries and we need to identify much of what we need on our own, like incident severity.

In the next release, I'd like to see the updates working properly as the priority apps we have are not upgrading the agent that we have installed.

I have been using this solution for about a year and a half.

I would rate the stability of this solution an eight, on a scale from one to 10, with one being the worst and 10 being the best.

I would rate the scalability of this solution a six, on a scale from one to 10, with one being the worst and 10 being the best.

I would say that their technical support is quite helpful. I would rate them a seven, on a scale from one to 10, with one being the worst and 10 being the best.

Neutral

Our model of deployment is on-premises. The only issue with deployment that we've found is that sometimes OPC is not able to connect to SCM or to a particular vendor. The deployment took around 20 minutes. Everyone was involved in the deployment of this solution, every department. It takes about two to three people to maintain this solution.

We used an in-house team to do the deployment of this solution.

There are around 16,000 users of this solution in our company.

I would recommend this solution to other people.

I would rate this solution as a whole a 10, on a scale from one to 10, with one being the worst and 10 being the best.

Forcepoint is installed on our company-issued laptops to act as an on-premises firewall. This ensures that we cannot access websites that are not whitelisted in the Data Loss Prevention (DLP) system, even when working from home.

The most valuable feature is security.

The administration should take a proactive approach to ensure that research-related websites can be accessed without having to be whitelisted, even if there are some sites that remain off-limits.

The setup is complex and has room for improvement.

The support is slow and has room for improvement.

I have been using the solution for three years.

The solution is as stable as our internet connection.

I give the scalability a nine out of ten.

We have 3,000 employees using the solution.

We use third-party technical support. The turnaround time for support is slow.

I believe the initial setup is complex and is handled by another team.

The deployment was done over the weekends and it took the IT team approximately two to three months to deploy bank-wide.

The licensing is on an annual basis.

I give the solution a nine out of ten.

The solution requires around 15 people for deployment and maintenance.

I recommend the solution to others.

The main use case for Forcepoint DLP is its OCR feature, which many customers need. The OCR capability can only be used at the network level, not at the endpoint level. It enables network-based data security, such as scanning emails or web traffic for potential data leaks. It's useful when dealing with scanned documents or screenshots containing sensitive information, preventing data leakage for multiple customers who require this level of security.

DLP also provides a test suite and integrates with a cloud access security broker. This helps protect data in cloud storage environments and gives you more control over data security in the cloud.

First, you need to categorize your data—what kind of data it is, the severity of its sensitivity, how long it needs protection, and the destinations that need protection. Forcepoint provides a dedicated solution with a user-friendly interface that makes it easy to manage. Remember that DLP doesn't handle data classification independently, so you'll need another tool to classify your data. For instance, you might use a classification tool to label documents as confidential, private, or internal.

Once the classification agent is installed on the endpoint, users need to label their data accordingly. For example, a Word document containing sensitive information should be labeled confidential. After labeling, you can create a policy in the DLP solution, such as Forcepoint, to block any data labeled as confidential from being shared. You can specify destination addresses to block at various levels, like the network, email, or RDP.

It is a bit expensive.

When deploying a DLP solution in your environment, it is important to follow best practices and start with monitoring mode. Initially, you may not know where your data resides, which users need access to it, or the nature of the data itself. Deploying an agent and monitoring the data flow and usage for three to six months is essential. 

Forcepoint DLP helped customers save some money at the end of the cyber security field. Data is the most important thing you need to implement for a DLP solution in your environment. You could also face insider threats. Implementing a DLP solution helps prevent potential data leaks by giving you control over what kind of data is being accessed, where it's stored, and how it's being used within your environment. It also allows you to monitor and prevent unauthorized sharing of sensitive data, ensuring better security across your organization.

You have two primary use cases for encryption: one for USB devices and the other for network-level data, like email. For email encryption, you can use an appliance that encrypts emails before sending them to another recipient. You can set up DLP for USB devices to manage and secure the data copied to the USB. By registering the USB with your DLP administrator or security tool, such as Forcepoint Security Manager, you can ensure that any data transferred to the USB is protected through encryption, preventing unauthorized access.

Integrating a DLP solution with your Active Directory is a prerequisite for implementing it in your environment. Ensuring your Active Directory follows best practices and benchmarks is crucial for seamless integration and optimal functionality of the DLP solution. You need to add the Active Directory to the environment. It must be integrated because you cannot block your data if your endpoint is not integrated with the endpoint level.

Overall, I rate the solution a nine out of ten.

We use it for monitoring and blocking sensitive data in emails, following our new governance policy.

We like the ability to customize our requirements and rules, as well as its ease of use and management. It also has a cloud feature and proxy functionality.

The product is good, but the biggest issue is needing direct support from Forcepoint.

In future releases, it would be helpful if the OCR feature supported more standard formats, as currently, Forcepoint cannot block some standard data formats.

I have been using it for three years. 

I would rate the stability a seven out of ten. We occasionally experience some downtime and glitches, mainly on the cloud side.

It is very scalable and we have not encountered any issues.  There are around 11,000 end users using this solution.

I would rate the scalability an eight out of ten.  

It can be hard to contact customer service and support, and their response times and solutions can be slow and sometimes irrelevant.

A lot of time their feedback is not helpful. 

Neutral

Forcepoint offers a more cost-effective solution because everything, including OCR, is included in one package, unlike Symantec, where it is an add-on with an additional cost. We also considered McAfee before choosing Forcepoint.

So, the main reason we chose Forcepoint is the cost because it's a single package.

The initial setup is simple. It's now easier than Microsoft, for example.

We currently use a hybrid model with on-premises deployment for the top and cloud access for laptops.

There are five people in our technical team handling deployment and maintenance of this solution. 

I would rate the pricing a six out of ten, where one is high price, and ten is low price. It can be a low price. 

Overall, I would rate the solution a seven out of ten. There is some room for improvement.

We're trying to use the solution for data loss prevention on the endpoints.

Every time I pushed the agent to laptops, I wasn't able to gain visibility.

I do not have any real valuable features at the moment. 

It was mostly stable. 

There is a lot of articles and documentation that technical support direct you to.

Getting tech support to assist us took too long. 

The communication between endpoints and the DLP over the internet was difficult.

The ease of deployment wasn't as flexible as Digital Guardian. We did not have a good deployment experience. 

It needs better pricing.

There is too much going on. We need help understanding all of their tools and offerings. We need to understand their offering, and we don't right now.

An integration deployment feature would be great for APIs. They need to use standard APIs and tools.

They need more resources online to assist users in looking for the most up-to-date documentation. 

I've used the solution for two months. 

I'd rate the stability six out of ten. It was okay. It could have been better. 

I did not look into scalability. 

Customer support simply directs us to links to read up on our own. When we contact support, we need one on one help, not directions to articles. They need to improve the way they deal with customers and be more hands-on. 

Neutral

I've also used Digital Guardian. It is an easier solution to deploy.

The initial setup was not that simple. The solution itself is too big, too vast, to really learn properly. It also wasn't as flexible as we needed it to be 

The cost is too high. They need to work on their pricing model. 

I wasn't a part of the decision-making process. 

I cannot recall the version number we're using. 

I'd advise potential new users to do a proof of concept and check vendor integrations. Increase the POC to two or three months, and don't be rushed into the product until you are ready.

The solution is too fast to learn everything. Digital Guardian was much more manageable. 

I'd rate the solution seven out of ten. 

The primary use for the product is to protect our intellectual property. Additionally, I use the product for compliance and regulatory purposes, which means ensuring that certain data is protected in accordance with regulations and standard policies. 

I have seen benefits, particularly in terms of increased confidence in compliance with data protection regulations. When it comes to external auditors, I am confident that they won't find any issues related to data protection. Additionally, it has increased my confidence that our organization's intellectual property is not misused or extracted without permission.

I like the product's integration at the network layer, which allows for integration with other vendors' security solutions as long as they are compatible with ICAP integration. For example, integrating DLP with web security or email security solutions. This flexibility is a valuable feature for me as it allows for more efficient use of the product, without necessarily requiring the use of all of Forcepoint's products.

I would like to see the product extended into the cloud as a single solution. It currently requires another product, the Cloud Access Security Brokers, to protect both on-premise and cloud data. I hope it can be consolidated into a single suite, offering protection for both On-Premise and cloud data, users on and off the corporate network, and users using corporate devices and BYOD. It would make the whole DLP process much more linear and efficient. I agree that moving to the cloud is the future and the present, and many people who use DLP have already made a move to the cloud.

I have been using Forcepoint Data Loss Prevention for six years, and I am currently using the latest version, which is 10.0. 

I have used over eight versions in the past and kept up with the updates as they were released.

I would rate it a nine out of ten.

I rate the scalability of Forcepoint DLP as a nine out of ten. It has a supplemental server feature that allows for easy scaling. As the number of users and data traffic increases, all that is needed is to add an additional supplemental server, which is not complex and only requires a Windows machine with minimal specifications.

Let's say you have 10,000 users and one management console or server with two supplemental servers. Your management server stays the same as your user base grows to 20,000. You don't need to increase your management server. All you need to do is add supplemental servers, and you're ready to handle the increased user base and traffic.

Implementing Forcepoint DLP can be a bit complex, as it requires a DLP expert to help with the setup. However, day-to-day administration is quite user-friendly. We are currently using the on-Prem version of Forcepoint DLP as no cloud version is available yet.

We are Forcepoint partners. So as much as we sell the products, we have the technical skill sets to implement the solution.

The term "expensive" is relative. If the ROI is good, no matter the amount of money invested, it is a win-win. If the cost meets the demands or it meets what you set out to do, what you set out to achieve. Holistically, it's not the most expensive compared to its competitors.

Forcepoint is being fully transparent with its costs. There are no hidden costs or extra costs.

Overall, I would rate it a ten out of ten.

If you are considering using Forcepoint DLP, it is miles ahead of its competitors in the realm of DLP. Forcepoint stands out as the clear leader when we compare pure DLP solutions. The closest competitor would be Symantec, but even they are miles behind in terms of capabilities. So, if you're looking for a top-performing DLP solution, Forcepoint is the way to go.