Forcepoint ONE Reviews

My main use case for Forcepoint ONE is delivering data loss prevention and data protection to help customers comply with corporate or regulatory data protection requirements such as PII protection, and I also use it to prevent data leaks through web uploads, cloud storage, and email, while monitoring and controlling sensitive data transfer from managed endpoints.

From a vendor perspective, Forcepoint ONE helps us deliver centralized data protection for multiple clients under a single management framework, reducing operational overhead and providing visibility into how sensitive data moves across different channels, and it is essential for compliance and data governance.

No other use case for Forcepoint ONE comes to mind.

The best features Forcepoint ONE offers include the DLP engine with predefined policies for common data types that help us determine and use it directly, as well as cloud app control to protect SaaS platforms like Microsoft 365 and Google Workspace. We are also helped by the Incident Management Dashboard for quick review and policy tuning, along with integration with Forcepoint Endpoint DLP, allowing us consistent enforcement across devices.

The DLP engine and Incident Management Dashboard have made our work much more efficient in daily operations, as detection accuracy reduces the need for manual review, and the centralized dashboard helps us quickly identify which incidents need escalation or policy adjustment. It shortens response time for our clients, allowing their security team to view incidents in real-time, classify them easily, and focus on genuine risks instead of sorting through false positives, and it simplifies reporting and audit preparation since all the relevant data is consolidated in one place.

One feature that really stands out for us and our client is the seamless integration between Forcepoint ONE and the on-premise Forcepoint DLP, as it allows consistent data protection policy across both cloud and endpoint environments, making it much easier to manage.

Forcepoint ONE has positively impacted our organization by streamlining DLP policy management and reducing time spent on troubleshooting and manual reviews, providing faster compliance reporting for internal needs and compliance with local regulation, and improving visibility into how sensitive data moves across cloud and endpoint environments. Overall, it helps our customers operate more efficiently and confidently in enforcing data protection controls.

Overall, Forcepoint ONE performs well, but I think the dashboard could be made more intuitive, and the policy synchronization between cloud and on-prem components could also be faster and more transparent, alongside having more flexible reporting and alert customization to tailor insights for different clients and compliance needs.

It would be more helpful to have better integration documentation for complex hybrid deployments.

I have been working in my current field for five months, and for Forcepoint ONE specifically, my hands-on experience is two months.

I think Forcepoint ONE is pretty stable, as the connection and agent synchronization are reliable, but it can still be improved.

Forcepoint ONE offers good scalability overall, as it is a cloud-native SSE platform built on a multi-tenant architecture. It can easily scale to support thousands of users and devices without requiring major infrastructure changes, and from what I've seen while supporting clients, performance remains stable as the environment grows, whether that's adding more endpoints, expanding DLP coverage, or integrating with additional SaaS apps.

Customer support has been responsive and professional in my experience, as the Forcepoint support team usually replies within a reasonable timeframe and provides clear guidance for troubleshooting. Having a local principal support available also helps speed up communication and coordination, especially for urgent or region-specific cases.

I would rate customer support 8 out of 10, as they are generally responsive and helpful when we open tickets, and having a local principal team really helps with faster issue resolution. There is still room for improvement in response time during complex cases, but overall, the experience has been positive and reliable.

Positive

Since I'm on the technical side, I don't handle ROI or financial metrics directly, but based on client feedback, many have seen improvements in operational efficiency mainly through centralized policy management and reduced manual investigation time, resulting in time savings and better visibility across their environments.

My advice would be to clearly define your data protection goals before deployment and take time to properly configure policies that match your organization workflows. Forcepoint ONE is a powerful platform, especially when integrated with DLP and CASB capabilities, but it works best when you plan your deployment architecture early, whether for endpoints, cloud apps, or web channels, and also ensure to involve both IT, security, and business teams so the protection policies don't interfere with productivity.

On a scale of 1-10, I rate Forcepoint ONE an 8.

My main use case for Forcepoint ONE is SWG and CASB.

For my use case of Forcepoint ONE, we protect our data on the browser using SWG by granting or denying access to users based on web reputations, URLs, and category-based URLs, and we can restrict access if any user downloads something malicious through scanning. For CASB, we have integrated our Office 365 with CASB to protect our sensitive data shared with other users from Office 365 mail and Teams.

Forcepoint ONE essentially prevents or secures our users from accessing public domains without hesitation, ensuring that we scan all activities.

The best features that Forcepoint ONE offers are RBI and CDR in SWG.

RBI helps me specifically by removing all the malicious JavaScript codes from websites that users might visit, allowing them to access the URL without encountering the actual malicious codes. Regarding CDR, when a user downloads malicious executable files or something injected with malicious codes, CDR assists by creating the same package with other files, effectively removing the original malicious content.

I love the features of SWG and RBI because they secure our users by removing JavaScript and malicious file codes, particularly since many attackers employ codeless or fileless patterns or signatureless attacks. Additionally, if any user is uncertain about any data or its origin, CrowdStrike anti-malware sensors scan it for us. CDR is crucial as it protects our end users from unknown third-party files, ensuring the authenticity of shared files.

Forcepoint ONE has positively impacted our organization by providing visibility through CASB, caching user activities, and preventing threats by guiding users to the correct cloud services like Office 365 instead of blocking access to more vulnerable services.

Forcepoint ONE can be improved with better guidance on token implementation for ease of use.

While implementing Forcepoint ONE has been very smooth and efficient, the proof of concept phase can be slow, particularly on S3. It would be beneficial for end users if performance improves during this stage.

I have been working in my current field for three years, so I have three years of experience.

Forcepoint ONE is very stable.

Forcepoint ONE runs smoothly, and scaling is easy. When we need more licenses, we simply request them, which we have done after utilizing it for 1.5 years.

Forcepoint ONE runs smoothly, and scaling is easy. When we need more licenses, we simply request them, which we have done after utilizing it for 1.5 years.

Customer support is quite good. After raising a case on the support portal, I call the support number to prioritize it, and an engineer comes to resolve the issue.

We have not previously used a different solution.

With Forcepoint ONE, we can import firewall logs, resulting in Shadow IT reports that give us visibility into our data's movement, enabling us to block or allow operations effectively.

We are using AWS and Azure as our cloud providers.

We are utilizing Forcepoint ONE directly from Forcepoint OEM as partners, so we do not purchase it from the AWS Marketplace.

We are utilizing Forcepoint ONE directly from Forcepoint OEM as partners, so we do not purchase it from the AWS Marketplace.

We have seen a return on investment with Forcepoint ONE. It saves us money and time as all metrics can be achieved through a single console, which simplifies employee training and implementation.

The aspects of pricing, setup cost, and licensing are managed by our sales team, as I handle the technical side.

Before choosing Forcepoint ONE, we evaluated other options including Netskope and Zscaler.

If your users frequently access unknown sites or use browsers extensively, you should definitely use SWG. If you are uncertain about your users' data origins—whether it is genuine or malicious—you should utilize features such as CDR and RBI to prevent upcoming threats. If you are on a cloud platform without data visibility, integrating Forcepoint ONE will give you control over your SaaS data.

Forcepoint ONE has positively impacted our organization by providing visibility through CASB, caching user activities, and preventing threats by guiding users to the correct cloud services like Office 365 instead of blocking access to more vulnerable services.

I would rate this product and experience a 10 out of 10.

My main use case for Forcepoint ONE is deploying Force for customers, so I help them to configure policies according to my customer environment; what they mainly want to do is use it from a content filtering perspective, where they would want to block users from accessing the internet or certain parts of the URL or anything like that.

A quick specific example of how I've set up Forcepoint ONE for a customer is that they were trying to port over from an on-prem Forcepoint Content Gateway to a cloud one. As a deployment team, I receive a purchase order where my pre-sales and sales size the customer environment and suggest going with Forcepoint ONE, and what we did was port over certain parts of the policies, so it's more of a migration where we migrated the URLs that can be allowed and cannot be allowed to the particular Forcepoint ONE portal.

I have nothing unique to add about how my customers use Forcepoint ONE; they mainly use it for the content filtering perspective of it.

From my experience, the best features Forcepoint ONE offers include that most of their URLs are quite updated and it's easy to reclassify certain URLs or certain domains, making it quite user-friendly. I don't have much experience with other solutions because I've been working with Forcepoint most of the time, but I can say that compared to their on-prem or even cloud Content Gateway, Forcepoint ONE is a bit less easy to configure the policies due to certain limitations or the number of domains that can be added for one particular policy, whereas for the cloud one and the on-prem one, there are no such limits.

I feel that the on-prem one is more user-friendly apart from Forcepoint ONE, but I understand that Forcepoint ONE's main focus is not on content filtering; it has other features as well.

Their RBI is pretty useful as well as CASB, allowing certain people to access the app, and their ZTNA is also quite helpful; all those are actually pretty useful features in Forcepoint ONE.

Forcepoint ONE has positively impacted my organization and my customers, as it pretty much meets the expectations because they migrated from an on-prem one to a cloud one.

I believe that Forcepoint ONE could be improved when configuring certain policies; for content filtering, when trying to whitelist or blacklist certain domains, you can only do up to about 50 domains or URLs, which is a limitation that could be addressed.

Additionally, the administrating portion is quite messy in the sense that there are multiple places that need to be changed in order to reach one particular goal, so streamlining this could be much better. They could take example from their current tools, which are their cloud proxy as well as the on-prem proxy, to use as a baseline.

I have been using Forcepoint ONE specifically for close to six months.

There have been some specific outcomes since switching to Forcepoint ONE. I did hear customer feedback that says it was slower in their portion, but I believe it's not due to Forcepoint ONE, it's due to their bandwidth issue. Other than that, there are no complaints because we didn't actually receive any particular feedback or any positive or negative feedback on this.

We did not purchase Forcepoint ONE through the AWS Marketplace; it was purchased through Forcepoint.

My advice for others looking into using Forcepoint ONE is that if you're solely getting it for content filtering, I wouldn't recommend it; however, if you're aiming for ZTNA or CASB, as an all-in-one solution, then I would recommend it. If it's only for specific tools, I wouldn't recommend it, but for a wholesome approach, I would recommend it.

There are areas for improvement as mentioned previously, so focusing on that could yield better results.

On a scale of 1-10, I rate Forcepoint ONE a 7.

I use Forcepoint ONE to protect sensitive data, enforce security and compliance policies, and ensure secure access to cloud applications, web resources, and endpoints. It enables me to monitor user activity, detect and prevent unauthorized data sharing, enforce access controls based on roles, devices, or locations, and secure interactions across cloud and web platforms. Additionally, it helps safeguard against malware, phishing, and other threats, providing comprehensive visibility and control over the organization’s IT environment while maintaining compliance and reducing risk.

Forcepoint ONE has significantly improved our data security by preventing unauthorized access and the sharing of sensitive information. It provides clear visibility into user activity across endpoints, cloud applications, and web resources, allowing me to detect and respond to potential risks quickly. The platform enforces security and compliance policies consistently across the organization, helping us maintain regulatory adherence. It also streamlines monitoring and management, reduces operational overhead, and enhances our overall security posture, giving the team confidence that critical data and systems are well protected.

Forcepoint ONE offers Zero Day Trust Network Access, DLP, and Data Loss Prevention as the best features. Zero Day Trust Network Access and DLP features help my team significantly in daily operations by assigning trust to users. Zero Day Trust Network Access provides access to network, cloud apps, network endpoints, and related resources. DLP also helps in preventing users from uploading or taking sensitive data outside the environment.

Forcepoint ONE has positively impacted my organization in a very good way. I can share a specific example of measurable outcomes where Forcepoint ONE made a difference, particularly regarding cost reduction because all the features that Forcepoint ONE bundles are in one package, as opposed to other solutions where you have to buy every single module individually.

Forcepoint ONE could be improved in terms of scalability to better support hybrid environments, as many organizations still operate partially on-premises while gradually moving to the cloud. Enhancing its ability to handle such mixed setups would make migrations smoother and adoption easier. Additionally, customer support could be strengthened by prioritizing enterprise license holders and addressing critical issues more promptly, ensuring faster resolution and a more reliable overall user experience.

I have been using Forcepoint ONE for one year.

Forcepoint ONE is very stable.

Its scalability is very good, and it can handle a high workload.

Customer support is very good, but it can be better.

Positive

I did not use any solution before.

My experience with pricing, setup cost, and licensing was very good. It was a very seamless experience. Forcepoint salespeople helped me to achieve a seamless deployment, and it was good.

I have seen a return on investment, and the improvement is very good. Money saved is evident because the license for Forcepoint ONE is a bundled package. Time saved is also noticeable because more incidents are handled and reviewed in a short period of time. Additionally, I have fewer employees because Forcepoint ONE does the work that I used to rely on a team of engineers to previously detect.

I did not evaluate other options before choosing Forcepoint ONE.

I advise others looking into using Forcepoint ONE to study its features, as it covers many of the use cases usually associated with customers looking into solutions like this. I would rate this product a 7.

I've been using Forcepoint ONE to apply web security policies across my organization.

Forcepoint ONE's best feature is its ease of use. The UI is basic, so users don't have to spend much time learning.

The UI looks modern without particular shortcuts or dashboards, making it simple to find options.

The integration with the local LDAP server is particularly useful. By using the agent, you can connect the local LDAP server to Forcepoint ONE. The Azure integration is also beneficial.

Using a cloud-based application means giving up controlling the resources. This eliminates the need to maintain on-premise servers or handle their maintenance.

While I don't have specific metrics, I'm confident it reduced costs because when we used non-cloud-based solutions, we had to upgrade them periodically, which consumed our engineers' time. Instead, we now delegate that responsibility to the cloud provider.

Though there aren't metrics to share, we now require fewer employees for specific tasks that we used to do for this solution. Forcepoint ONE provides an easy-to-use UI, reducing time and effort on day-to-day tasks.

Additional integrations could be useful.

More documentation would be beneficial as there aren't many articles about the solution.

I rate Forcepoint ONE a seven because it needs improvement in reporting and integrations. Currently, there's an issue with the WebSocket protocol when using a proxy. The reporting tab could be enhanced by adding more product reports. On the troubleshooting side, more documentation about current issues would be helpful.

I've been using Forcepoint ONE for the last one year.

Currently, there's no downtime or reliability issues because it's a cloud-based solution.

It can handle growth because it's a cloud-based solution without any challenges.

I haven't had much interaction with customer support because we haven't encountered significant issues. During our limited interactions, they were very helpful.

Neutral

We used Forcepoint Web Security on-premises and changed to Forcepoint ONE because we needed to move to cloud. We needed a better-administered solution that offered improved control.

It's not expensive and we can afford it. The licensing is straightforward and easy to understand.

We evaluated Symantec's cloud solution for proxies.

When a customer requests to browse a website, it's simple to go to the page and add that customer to the exceptions list.

I would suggest using Forcepoint ONE.

I rate this solution seven out of ten.

My main use case for Forcepoint ONE is for data protection in the cloud. I use Forcepoint ONE for data loss prevention, specifically data loss prevention in the cloud for my client. Forcepoint ONE helps me in data protection for a particular case of my client.

I use Forcepoint ONE for data protection in the cloud, and the CASB feature stands out for me as it allows me to view how the data is managed in the cloud. The features of Forcepoint ONE for data protection in the cloud are very useful and are very easy to configure for use cases; I think it is easier and safer. Forcepoint ONE is very positive for my organization because with this product, I know how the data and information are working around the company, and I can have all the information for this.

Forcepoint ONE could be improved.

I have been using Forcepoint ONE for more or less three years.

Forcepoint ONE is a stable solution.

Forcepoint ONE is very scalable because it is located in the cloud, and I don't have to manage the machines or anything with the infrastructure.

Customer support for Forcepoint ONE is very good because they help a lot of the time.

Positive

I did not use a different solution before Forcepoint ONE.

My company has a business relationship with this vendor other than being a customer.

It is very difficult to measure the return on investment, but the control for the data is very important for companies because without an application similar to Forcepoint ONE, there is no control. My company needs to deploy regularization and controls, and I find Forcepoint ONE very useful for this.

My experience with pricing, setup cost, and licensing is positive; the pricing is better than all, and the setup cost is very simple, making it very useful to deploy the solution and manage the use case.

My company evaluated other options because it didn't have all the investment in Microsoft before choosing Forcepoint ONE.

It would be very useful to have the product available in the Azure Marketplace. My advice for others looking into using Forcepoint ONE is that it is a very useful solution, and in one console, you have all of this. The review rating for Forcepoint ONE is 7.

Neutral

I use the solution as a secure web gateway, similar to a proxy, to control access to the Internet for users. It is implemented on our equipment, such as laptops, to block certain categories like gambling and games. This is particularly important in the financial services industry where clients access the Internet through our network.

The control of web access by category is very effective. For example, I can access social networks but block specific platforms like Instagram and Facebook while allowing access to LinkedIn, a professional network. This helps me manage what users can access efficiently. The experience has generally been good, especially with how I can control web categories and give access to clients. It also helps me block tweets or other unwanted content.

I have some requirements that the solution cannot currently fulfill. For example, I need control over access to web WhatsApp, which the solution cannot resolve yet. 

Additionally, I need to control specific functionalities within certain applications, like preventing the transfer of certain file types. This requirement is not yet resolved.

I have had the solution for around one year. Previously, I used an on-premises version of the same product. Last year, I migrated the service to the cloud for Forcepoint ONE web security.

Customer service and tech support are rated eight out of ten. They are responsive and assist me with creating cases for any complex issues.

Positive

I previously used a solution on-premises with the same product, the first one web, before migrating to the cloud-based Forcepoint ONE.

The service setup was straightforward and very easy, partly because of my prior experience with the on-premises solution. 

I would rate the ease of setup as eight out of ten.

I have a distributor here who helps with some requirements. The personnel is efficient, and I do not encounter problems with that.

The pricing is very good and cheaper than other solutions like Netskope and Forcepoint.

I have compared it to Netskope. Netskope allows certain controls like blocking WhatsApp and downloading restrictions, which are requirements for my enterprise.

My overall rating for Forcepoint ONE is closer to six than seven, because of some initial setup troubles and unresolved requirements regarding WhatsApp. I recommend it as a solution that works well, however, Forcepoint needs to communicate more efficiently with its clients about changes and recommendations. 

I would rate the overall solution six out of ten.

The primary use case of the product is to ensure security and protection in a SASE (Secure Access Service Edge) environment. It serves multiple purposes, including securing roaming users and protecting users accessing resources outside the office. Another key aspect is safeguarding Insight applications using ZTE (Zero Trust Exchange) and preventing data leakage. In daily operations, it is primarily utilized through ZPA (Zero Trust Network Access), ensuring users have secure access to the internet. It involves protecting corporate devices from advanced threats and malicious sites and enforcing data isolation policies to prevent unauthorized data access or leakage. Additionally, the solution facilitates the secure transfer of sensitive data through various applications like Dropbox, utilizing policies set within the SSE (Secure Web Gateway) solution, potentially incorporating a model such as CASB (Cloud Access Security Broker).

The most valuable features of Forcepoint include Zero Trust Network Access and remote user protection for private applications. These features prioritize data security regardless of the user's location, ensuring that data is always protected. In terms of threat defense, the thread detection feature stands out as particularly valuable. It includes various capabilities such as web isolation to isolate unknown static, blocking access to malicious sites, and employing intelligence-driven checks based on configured policies. Integrating third-party sandboxing further enhances threat detection and response capabilities, providing comprehensive protection against advanced threats. It collectively contributes to a robust defense mechanism, safeguarding organizations against various security threats.

Areas for improvement for the platform include addressing scalability and architecture concerns, especially for large deployments involving more than 500 or 1,000 users. 

Additionally, integrating sandboxing features directly into the solution, either on-premise or in the cloud, is crucial for comprehensive threat detection and response. It would eliminate the need to rely on third-party sandboxing solutions, streamlining security operations and enhancing overall efficiency and effectiveness in combating threats.

We have been using Forcepoint ONE for 14 months.

Regarding stability, I have confidence in Forcepoint's technology and its ability to perform well in the market. However, being hosted on AWS has its architectural challenges, as is typical with any cloud-based solution. While it has the potential to overcome these challenges and further enhance its capabilities, it's important to acknowledge the inherent complexities that can arise in a public cloud environment.

We have around 5,000 Forcepoint ONE users. Scalability is one of the product's notable strengths. Its architecture facilitates rapid scalability, particularly its polytexture architecture deployed on AWS. Spinning a virtual machine (VM) in any location is almost instantaneous. It gives it an edge over solutions like Zscaler, which may require setting up entire private data centers for expansion. While Forcepoint's scalability advantage is evident, it still faces challenges inherent to its architecture.

By consolidating multiple security functions into a single client, particularly incorporating Data Loss Prevention (DLP) and Secure Web Gateway (SWG) functionalities, Forcepoint has streamlined our security infrastructure.

Resolving issues has sometimes taken longer than expected. While the initial response time has been problematic, support effectiveness improves upon escalation.

Neutral

We previously used a different solution before transitioning to Forcepoint. The decision to switch was driven by various factors, including the need for improved sandboxing capabilities, especially regarding onboarding. Additionally, Forcepoint's deployment in a public cloud environment posed challenges for organizations needing to utilize AWS, such as those favoring the Google Cloud Platform. This discrepancy in cloud provider compatibility influenced the decision to transition to a solution that aligns better with our organization's cloud infrastructure preferences and requirements. 

The initial setup was straightforward, primarily because everything was managed from the Forcepoint side, requiring no additional maintenance efforts. Deployment was relatively simple, especially when the organization clearly understood its objectives and requirements. The process took little time as long as the objectives were well-defined. However, if the organization needs to be clearer about its needs, it could prolong the setup process. In general, the technology was simple, and anyone could become proficient in managing it properly. Therefore, while the setup could vary depending on the clarity of objectives, the technology itself was relatively easy to implement.

Integrating services within Forcepoint has significantly enhanced our organization's security posture by enabling seamless authentication, centralized monitoring, comprehensive data correlation, and compatibility with third-party technologies. It ensures streamlined access management, proactive threat detection, informed decision-making, and cohesive security operations, ultimately fortifying our defenses against advanced threats and maintaining a proactive security stance.

Its data protection capabilities have greatly benefited our organization by providing comprehensive protection for our intellectual property and sensitive data. With Forcepoint, users accessing corporate applications and the internet are shielded from accessing malicious sites or falling victim to threats. It ensures that our data remains secure, whether in motion, use, or rest. It safeguards against data leakage, whether intentional or unintentional, by monitoring and controlling data transfer through various channels such as private apps, public SaaS applications, or third-party emails.

Forcepoint ONE shows significant potential for improvement while still being a commendable product. I would give it around an eight out of ten.

Forcepoint ONE's primary use case involves safeguarding the browsing activities of users who bring their laptops home. Specifically, we aim to protect their internet navigation while in their residences. Additionally, we need to secure specific applications to ensure that sensitive data and resources remain protected.

While we have some product information available, there are instances where we need a comprehensive understanding of all the features. We encounter challenges in determining whether certain features for blocking certain file types or preventing automatic downloads are functioning correctly. These particular areas need improvement.

We require high availability of 99.9%, and we believe the platform can effectively meet this requirement.

I rate the scalability of Forcepoint ONE as around seven. It was easy to scale, but as we expand our user base and deployment, we anticipate the need for further exploration and optimization. We expect it to be scalable, but we have yet to deploy the solution fully.

The initial setup was easy to deploy. However, configuring certain features presented challenges.

The platform's feature that has been most beneficial for our web security is its capability to replicate rules. This functionality allows us to maintain consistent navigation policies for users, even when they transition between working from home and in the office. By replicating rules, we can effectively extend our border access control.

With the data protection features, we have noticed a considerable improvement in our control over security incidents. Specifically, we have enhanced control over blocking malicious applications and preventing access to websites with a poor reputation.

I recommend Forcepoint ONE to others. It's a simple and highly useful solution, albeit with room for improvement in certain features, such as application blocking. For instance, blocking applications like Skype, Teams, WhatsApp, or similar could be enhanced.

I rate it a seven out of ten.