Skyhigh Security Reviews

My main use case for Skyhigh Security is for application monitoring to monitor security threats, risk activity, and to create company policies.

I can give you a quick specific example of how I use Skyhigh Security for monitoring threats or enforcing company policies: we were using a lot of cloud apps including Office 365, and we wanted to have control over that. The cloud security provided a dashboard with features including web security and cloud access control, which was very helpful.

I find that we were using Skyhigh Security as a stable and scalable platform; after setting up, it was running smoothly with very little downtime. The Skyhigh Security reports and analytics were also very useful for monitoring and troubleshooting.

In my experience, the best features Skyhigh Security offers include the capability of the Skyhigh Security dashboard to help monitor security threats, and it works well with very large enterprise environments. Skyhigh Security policies are very flexible and useful for large organizations, with features including web security and cloud access control being very helpful as well.

Out of all those features, I find myself relying the most on the dashboard, as it gives the complete picture of the cloud applications we are using.

Skyhigh Security has positively impacted my organization; before using it, we needed to monitor cloud applications including Office 365 and other applications such as Facebook manually. After we started using Skyhigh Security, through the dashboard, we are able to control user monitoring, access control, and everything else effectively.

I can mention that one drawback of Skyhigh Security is that the initial setup and policy configurations take more time, especially in our environment. Some parts of the user interface could be simpler and easier to navigate, and troubleshooting sometimes needs support from Skyhigh Security technical teams. Otherwise, Skyhigh Security is an overall good solution for a larger enterprise.

I think the only needed improvement for Skyhigh Security is that it takes more time to set up policies. If Skyhigh Security could fix that, it would be very helpful.

Troubleshooting takes more time and is not easy; direct support is challenging. We used to contact the Skyhigh Security technical teams for troubleshooting some policy configuration issues, and sometimes we see dashboard delays. Even during that time, the involvement of Skyhigh Security technical teams is required, and improving that area would be beneficial.

I have been using Skyhigh Security for almost six years.

In my experience, Skyhigh Security is stable.

Scalability-wise, for monitoring cloud apps, as we have around 2,000 employees, Skyhigh Security is more scalable, and we never faced any scalability issues on the dashboards.

The customer support is very good; during troubleshooting, when we face issues, even during P1 blocker issues, the customer support people are very helpful.

Before Skyhigh Security, we were using Netscope, but we faced numerous issues during troubleshooting, which led us to switch to Skyhigh Security, and we found it to be very useful compared to Netscope.

I was not directly involved in the purchasing part, but the marketing team handled that. However, I was involved in setting up the entire Skyhigh Security CASB implementation and also did the licensing for Skyhigh Security.

I have seen a return on investment from using Skyhigh Security; we saved a lot of time since the dashboard gives the complete picture of the overall usage of cloud apps.

We evaluated Netscope as an option before choosing Skyhigh Security.

My advice for others looking into using Skyhigh Security is that whoever wants to have control over the cloud applications used across the entire organization can definitely choose Skyhigh Security compared to other products such as Netscope or Cisco. I would rate this review a seven out of ten.

Public Cloud

Amazon Web Services (AWS)

My main use case for Skyhigh Security is its security, applying policy on the user, platform-independent, location-independent policy for users. It is easy to troubleshoot, easy to apply the policy, and easy to refer to the logs.

In my day-to-day work, I use Skyhigh Security to manage two specific people in my team, one being a vendor and the other a full-time employee. I have a different policy for contractors and full-time employees. Using Skyhigh Security, it is easy to implement those policies based on the user, user type, group type, or the device they are using, and the location of the user.

Overall, I personally use Skyhigh Security for Shadow IT discovery, which is very useful. Being able to see which unsanctioned apps employees are accessing helps me prioritize policy decisions, so that secure web gateway and CASB perform reliably for policy enforcement and filtering. Additionally, integration with my existing infrastructure was smoother than expected.

Skyhigh Security offers the best feature of flexibility in applying the policy on the user.

When I mention flexibility in applying policy, it works for me because I have a device provided by the company, but I can take that device to my personal infrastructure, such as personal hotspots or Wi-Fi. Accordingly, those policies should be implemented where I am right now. It is flexible regarding where your device is and which user is using that device. Accordingly, the policy will be applied.

Skyhigh Security has positively impacted my organization by easing my day-to-day job in managing policies and users. If there is an outrage in terms of a policy change, who changed it, or why a certain website is not working, it is very easy to troubleshoot because I have those reporting systems.

Troubleshooting has become easier with Skyhigh Security. For example, if a certain website is not working, I can easily see where it is failing. During the initial handshake, TCP handshake, or DNS, I can identify if the issue is due to a certificate or a policy. If I discuss the policy, I can determine which policy it is—web filter, application filter, or DLP policy.

Skyhigh Security can be improved by making the reporting system and the logging more verbose. By verbose, I mean providing more details. The admin or user should have more flexibility to add custom URLs, HTTP headers, and any filters for viewing the logs. The reporting should also offer an easier way to compare logs. For instance, if I want to compare usage for a specific user over two months.

Regarding Skyhigh Security's AI capabilities, my experience shows it is still in a booming state or still scaling up, so it still needs improvement.

Concerning Skyhigh Security's AI capabilities, I find its accuracy and reliability of output to be something I hardly use. I rely more on manual processes because I know where to look and what to look for.

I have been using Skyhigh Security for almost eight years.

Skyhigh Security is mostly stable.

Skyhigh Security's scalability is good.

Skyhigh Security's customer support is nice.

My experience with pricing, setup cost, and licensing for Skyhigh Security is that it is acceptable when compared with competitors.

Hybrid Cloud

Microsoft Azure

At our company, we mainly use Skyhigh Security as a secure web gateway proxy.

We use Skyhigh Security for web filtering and whitelisting, blacklisting websites, and general web traffic filtering, mainly for HTTP and HTTPS traffic.

Skyhigh Security has all the mainstream features available in the market and offers both hardware and cloud usability. The hardware and cloud usability features help my team by providing easy scalability, which is the main advantage, and it is beneficial to have both options as there has been a shift from hardware to cloud traffic.

Skyhigh Security has positively impacted our organization by helping us secure our network better, secure our HTTP traffic, and assist in compliance with GDPR and HIPAA requirements, especially since we are a health-based company.

Skyhigh Security needs UI improvement, as its user interface is confusing and requires an expert analyst to spend considerable time becoming familiar with it.

Recently, while decommissioning some old Skyhigh hardware, I found that it does not have a CLI command for secure wipe, so we had to manually perform the wipe from a hardware perspective, which takes too much time compared to similar devices like IPS sensors that do have secure wipe commands.

I chose a rating of 8 out of 10 because Skyhigh Security has all the mainstream features that other proxies or secure web gateways have, but its hardware needs refinement and fine-tuning, and its user interface also needs improvement.

I have been using Skyhigh Security for two years.

Skyhigh Security is deployed in my organization on-premises. As a managed security service provider, we purchase Skyhigh Security directly from the vendor. Skyhigh Security is a good product and a decent option based on other products available in the market. I gave this product a rating of 8 out of 10.

On-premises

I find the browsing feature security in Skyhigh Security most valuable; we mainly used it for Forward Proxy.

Skyhigh Security's analytics were providing decent information with respect to top usage, user-wise, and device-wise, and if there are any blacklisted websites being accessed, we used to get notifications, which was helpful.

I think the technical support from Skyhigh Security needs room for improvement; I would give it a six out of 10.

They should improve the overall competence of their technical support; the response is good, but it takes time for the engineer to understand the issues.

I think a single pane of glass wherein you can quickly see what is happening would be an additional feature to make Skyhigh Security better.

I had been using Skyhigh Security for three years.

I did not face any issues with Skyhigh Security; we later moved to Microsoft Defender for Identity and other solutions, but we find this piece of Skyhigh Security quite good, so we will continue to use that and we never used Identity.

Skyhigh Security is scalable; there is no doubt about that.

We did not utilize the Identity and Access Management features from Skyhigh Security; this is the first time I am hearing that Skyhigh Security provides protection on identity and security.

The initial setup of Skyhigh Security was complicated; we were trying to move to the cloud and faced challenges, such as troubleshooting and live web analysis, which was very difficult.

I am not sure about the pricing of Skyhigh Security, as the licensing piece is taken care of by another department, so I am not really sure about that.

I cannot really do a comparison between Skyhigh Security and Microsoft Defender, as Microsoft Defender does not have this Forward Proxy.

We did not use the Threat Protection feature in Skyhigh Security; we purely used it for Forward Proxy.

Regarding Data Loss Prevention capabilities in Skyhigh Security, I have not used that feature.

I would rate this review a 7 out of 10.

Hybrid Cloud

Other

Skyhigh Security is primarily used by us to offer our customers SSE (Secure Service Edge), and Skyhigh fulfills this requirement very effectively.

One of our customers was seeking a CASB (Cloud Access Security Broker) solution and was unable to manage shadow applications. Some applications were sanctioned while others were unsanctioned, and the customer had no visibility into the unsanctioned applications. We offered them Skyhigh Security, and they are now satisfied. Skyhigh Security offers many SSE products including Secure Web Gateway, both cloud-based and on-premises versions. They also provide ZTNA, Data Security Posture Management (DSPM), which is excellent, Remote Browser Isolation for controlling user access to applications, and Cloud-Native Application Protection Platform.

Whenever our customers require Skyhigh Security, we offer it to them, and it provides outstanding SSE capabilities. Their SSE security service is excellent and aligns with customer requirements.

The best features of Skyhigh Security include the on-premises Secure Web Gateway, which is appliance-based. This is particularly valuable for government customers who prefer not to use cloud solutions. Remote Browser Isolation is also excellent.

Skyhigh Security positively impacts our organization by providing category-based blocking. Users can easily block specific website categories such as gambling sites, and policies can be applied based on these categories.

As a global distributor for Skyhigh Security, this is a strong product to pitch to customers. Our customers are satisfied and are enjoying the product features. Deployment is straightforward, and the console is user-friendly.

Skyhigh Security could be improved by offering the SD-WAN component, as SASE comprises two parts.

Some of our customers who are very satisfied with Skyhigh Security have mentioned that the company should also offer Network as a Service. The SSE piece represents Security as a Service, and customers are also seeking a Network as a Service component. Skyhigh Security is currently missing the Network as a Service feature in our organization.

I have been using Skyhigh Security for the last three years.

Hybrid Cloud

Amazon Web Services (AWS)

The solution is primarily being used for data loss prevention in cloud environments and for PCI compliance. Right now, I'm implementing SecureWeb Gateway, Zero Trust, and VMware browser installations. My customers are in the financial or banking sectors, and they normally require new technologies. Skyhigh is mostly complete and it's a security host for other products.

It has improved the organization's PCI compliance with data loss prevention.

Data loss prevention and user behavior analysis are two valuable features. If a customer's password has been compromised, we can then recognize and authorize its login from another country, and we can block it.

I use the solution on a Macintosh computer and it has issues and does not work when I try to log in from the Safari Browser, but it works fine when I log in from the Google Chrome browser. The console has issues when the login is done through a Safari Browser. The console has to be more competitive and the compatibility of the browser needs to be better.

I want to know about Skyhigh's competitiveness with other brands and about the vulnerability assessment and micro segmentations. I know Skyhigh has other products, but right now, I am studying what this new product is about.

They only have English support, so I would like for them to add some Spanish support.

I have been using the solution for two years. 

It is a stable solution. There is no downtime and it's always online. 

At present, we do not have any scalability use cases as we do not have any customers using the solution. The other times when we implemented an Office 365 account for a customer and we keep working with that. There are 1,500 users for my main customer and from my company, there are forty people.

I have spoken to their tech support team about triggered alarm alerts and deploying new policies, but not for any downtime issues. 

My co-workers work directly with the tech support team. They are available in the United States but sometimes I have to speak with people in India. My main language is Spanish hence it's a little difficult to go with English support. 

I rate the technical support an eight out of ten.

Positive

The initial setup is straightforward. As a partner of McAfee, now Trelex, I have access to the e-learning center and learning partner center. The tools and study materials are great because it's detailed and easy to understand. I use the materials to implement the features. 

The deployment is modular, for example, TAPI for Office 365 takes about two weeks. We have another functionality with Shadow IT and it takes another two weeks. Right now, I'm starting Secure Web Gateway in a hybrid solution with a proxy on-premise and secure web level on the cloud. It will take me about a month because it's not my task. It will maybe take two weeks or more. So per model or per functionality, it's about two weeks every time.

For the first time, we took professional help from Trelex for the deployment and it took about two weeks time. The second time, I studied the deployment process with my co-workers and it took us two weeks to deploy the solution.

The solution is quite expensive. As we take add-ons continuously as per our customer's requirements, there are additional charges. 

I rate the overall solution a nine out of ten.

Public Cloud

We use Skyhigh Security to block user access or personal access. We have some services to prevent users from consuming all bandwidth for some applications that are very important for the organization. We also use the solution to permit some users to access personal networks.

The solution provides great security, higher availability, and policy granularity. Its integration with Active Directory and troubleshooting are important. The solution also provides easy integration and implementation.

The only problem I had with the solution was its bad integration with security devices. The feature that we would like to have is a hybrid environment, including both cloud and on-premises. Some users don't have a hybrid model.

I have been using Skyhigh Security for four years.

Skyhigh Security is a very stable solution.

The solution provides very good scalability.

The solution's initial setup is easy. Since our company has a very clear internet surfing policy, it is easy to implement it on the device without any problem. The solution's deployment takes one month. One engineer from my team and one engineer from the vendor side helped with the deployment process.

We have a centralized model where our appliance is centralized. It's easy to maintain and upgrade the solution.

Overall, I rate the solution an eight out of ten.

On-premises

We use the solution to monitor and secure our customers' internet access.

The solution's best feature is the flexibility of use.

The stability of the solution's cloud portal needs improvement. Sometimes, it gets timed out.  

We have been using the solution since 2017.

We need help accessing a few features of the solution. It performs well if you have a good bandwidth in your infrastructure.

It is a scalable solution. We have more than 1,00,000 customers of the solution.

The solution's technical support team's response depends on the subscription plan.

Neutral

We have used a security solution from Cisco before. We switched to Skyhigh for its flexibility, allowing customers to create the rules, and for its premium services.

The solution's initial setup could be more straightforward. It requires knowledge of Linux operating systems.

The solution's hardware is expensive.

I recommend the solution to others and rate it as a six. It has an excellent performance. But its customer service needs to be improved.

Hybrid Cloud

We use Skyhigh Security to audit people for internet behavior and for the discovery of shadow IT devices.

I personally don't have any issues with the performance or the stability of the solution. However, I am not the only person using this tool, and I can't speak for other colleagues using it.

The performance of the tool can be improved to provide faster report generation. On most occasions, the tool takes several hours to generate reports with a large quantity of data, which is too long. The technical support could be more knowledgeable.

I've been using Skyhigh Security for about a year, but we have had the tool in-house for five years.

I rate Skyhigh Security a nine out of ten for stability. On some occasions, we have a service that is stopped, and it's not being alerted in the interface, causing a delayed response time.

Unfortunately, I don't have experience with the tool's scalability. So I can't say whether it's good, or should be better. We only have one partly on-premise and partly cloud solution, and we do not use the scalability features. Approximately 30,000 users use Skyhigh Security in our company, and we do not have plans to increase the number of users.

The experience with technical support depends on the person you get in touch with. I had experience with a couple of engineers who were unfamiliar with the products, and hence the experience was quite frustrating. I also had experience with a couple of engineers who knew what they were talking about, and the problem was resolved immediately.

We use the latest version of Skyhigh Security. Currently, a team of ten people are involved in the maintenance of the solution.

We are currently using Skyhigh Security in combination with another product, and we're trying to use the best features of both products. I prefer the other product we're using, which has similar capabilities. This other product is fully cloud-based, has more efficiency and performance, and gives more insight into the environment than Skyhigh Security.

Overall, I rate Skyhigh Security an eight out of ten.

Hybrid Cloud

So we are using Skyhigh for SWG and CASB. Those are the two primary use cases. We also use it as a web proxy to allow users to access the internet securely. The product includes content filtering and reporting. In addition, we use McAfee EPO to manage McAfee antivirus and proxy agents.

Skyhigh performs well, and we can choose from virtual and hardware plans. We can deploy the ISO on as many virtual machines as possible and easily set up high availability on the web proxy. The location doesn't matter. The user at a site will always access the web proxy for that location. It's suitable for an organization distributed across multiple regions. 

The reporting is also straightforward, which is handy for troubleshooting. You can do live tracing and check the log to see the traffic on a particular IP to determine what happened. You can configure it to say certain websites are blocked by default. If traffic is allowed, you can trace the issue and fix it. The backup features are highly efficient. 

You can integrate Skyhigh's rules with Active Directory groups. For example, you can allow access to a specific website for a defined set of users. I can do that, but the rules are not straightforward. It can look up the group in Active Directory. However, it doesn't always find the proper group name. The rule configuration should be simpler and more granular. The admin should be able to map 80 groups in the rules quickly.

Backups could be more automated. I have to manually back up all the policies and I can't schedule this. That is a pain. I must remind myself to back up the policies weekly. 

I joined this organization seven months ago, but the company has used Skyhigh for five or six years. 

I rate Skyhigh nine out of 10 for stability. It is a highly stable and robust product. 

I rate Skyhigh nine out of 10 for scalability. You can add as many servers as you want to a cluster.

I rate Skyhigh support six out of 10. My experience has been mixed. It depends on the technician you're dealing with. You might not get a satisfactory resolution from level-one support, so you must escalate the call to the right engineer to get the job done. 

Neutral

I previously used TMG Web Proxy. It isn't as good as Skyhigh, which is considered a top-of-the-line product in this segment. TMG wasn't as robust or versatile as Skyhigh. TMG was a Microsoft product, but I believe it was discontinued in 2014. 

I rate Skyhigh eight out of 10 for ease of setup. The setup is pretty straightforward if you have help from the vendor. You need some support initially, but adding servers is easy after you deploy the first one. After installation, you can update the system with a click of a button. 

I rate Skyhigh Security eight out of 10. They've recently released new cloud management features that enable you to control your proxy servers over the cloud. You only need to handle the administration, and they will take care of the infrastructure and all. You can set up a web proxy on-premises and one in the cloud for high availability. If there is a disaster, the traffic will route to the cloud web proxy, which is a fantastic feature. We haven't tried this yet.