Skyhigh Security Reviews

The ability to identify shadow IT within our environment through proxy log analysis based on risk assessments provided by Skyhigh Registry have been invaluable in helping us reduce our overall data risk

Once implemented we were able to identify 100+ high risk cloud services used by our users.  Once identified we worked with our users to migrate their data to IT sanctioned services, then blocked all high risk services.

Sometimes the console performance is slow and updating custom attributes can be cumbersome as you have to do each attribute for a cloud service individually, the click the popup box to continue. 

The console performance is sometime slow, meaning that switch screens or generating reports can sometime feel sluggish.  Data and graphics takes time to load in the browser, and also performance can depend on which browser you are using. 

There is a customizable part of the SkyHigh global registry called custom attributes.  We use these attributes to identity and record details of our own interactions with the cloud service to show which we are reviewed, which services are approved, blocked, sanctioned, etc..  Entering information into these custom fields requires you to confirm changes for each field individually, a UI improvement could be to add a save or update button to the site instead of doing each field individually.

We have 2 customers using McAfee Web Gateway. It is very useful as a complement to endpoint security. It is used to monitor incoming and outgoing traffic, as well as production.

McAfee has a very strong URL spam filtering feature.

McAfee Web Gateway has two kinds of solutions, one is for on-premises and the other is virtual. Their virtual solution is not as strong as their on-premises solution.

I am a reseller and partner of McAfee. I have been using McAfee Web Gateway for about 5 or 6 years.

It is a very stable solution.

McAfee offers good support.

The initial setup is not straightforward. You must know technology and networking. It would also be helpful if you have some expertise with McAfee products. If you have one person who is certified on McAfee products you can do the setup yourself.

It took approximately 3 days to deploy and implement 2 boxes on-premises. It then takes 5 to 10 days to fine-tune it. In total it takes about two weeks to set up.

Compared to other solutions and their prices, it is a bit on the costly side. However, it is not out of reach. Our customers pay a yearly license.

Although it is costly, I would recommend this solution to anyone. I would rate it a 9 out of 10.

The solution is basically it's a cloud access security broker. It's basically the leading cloud access security broker in the market. If you are talking about getting controlling access to AWS, Azure or Google cloud, or most of the major cloud providers, they can integrate that to help protect an organization from data loss, breaches, or from unauthorized access in general.

I actually had an encounter with a government entity. They had a lot of their staff leaking government data, and they were using a website, a known website called WeTransfer. It's a Chinese website that's used to transfer big files without you needing to create an account. Users in the company were basically, whenever they wanted to transfer files, doing it through this site and unintentionally leaking data.

This week, the POC installed the McAfee web gateway, integrated the MVISION Cloud, and got insights. A lot of their business was done on WhatsApp within their systems. An yet, until this moment, they had no visibility over this. Now they have it. Now they know, and they can initiate changes.

What I really like about the product is something called the ability to view the sanctioned IP apps, which is a major challenge for organizations today. There are sanctioned IP apps or unsanctioned IP apps. In an organization, you will find employees that will use services or applications for the business, which are not authorized by the IT department, and the organization fails to have visibility over this.

What McAfee can provide is full details into what your users are doing on the cloud. For example, lots of employees may be using WhatsApp for conducting critical business workflows, and yet their organization is not permitting them to use WhatsApp. Without a solution such as this, the company will never find out if they actually are using WhatsApp and to what rates. With MVISION Cloud and their web gateway, companies basically get visibility and insights into what their users are using on the cloud.

The product has the ability to provide insights and also to advise on misconfigurations on the cloud. For example, I may be a cloud customer and I'm using IS workloads or infrastructure and service workloads on Azure. I may have object storage configured on Azure, however, this object storage didn't get secured properly. It was publicly open. The system can suggest changes to alert you to this item and advise on how to fix the issue.

With MVISION Cloud, you can actually get detection notices. It will notify you, tell you, hey, be careful. You have object storage that is open to the public. You should lock it down, should have restricted access. You should have some credentials here or there. It will basically act like an advisor for your cloud configuration as well. This is what I really like about it, to be honest. It can tell you if something can go wrong before it happens. It allows you to fix things before situations can get out of hand.

In terms of their compatibility with major cloud providers, in terms of their abilities, capabilities, and features, they exceed everyone's capabilities in the CASB market.

Their integration capabilities are vast. They seem to be able to integrate all major clouds. 

The solution is very stable.

The solution can scale.

Technical support has been very helpful.

The solution is the leader in the market right now. It's hard to consider where it falls short, as it is so far ahead of everything else.

One thing that can be improved is their ability to integrate with other web proxies to discover unsanctioned IP apps. That can be room for improvement.

I'd love to see an on-prem version of the product. Instead of McAfee providing the service, it should be also software available for customers in the market to install on their data centers.

The solution has been very stable. We haven't had issues with it. It doesn't crash or freeze. It's reliable.

It's not software that you can install. Scalability is on McAfee's end. It's not on the end-user or the partner or any of them, as it's a cloud service basically. However, it scales to meet your company's needs.

We have about ten customers currently using the solution.

Technical support has been very good. It's amazing, especially for the MVISION Cloud portfolio as it's a different team. In general, it's good. We are quite satisfied with their level of support.

You don't install the solution. The dashboard comes from McAfee Cloud. You just integrate it with your cloud, and you enter your credentials to your cloud providers. If you want, you can integrate it with an on-premise McAfee web gateway to get insights, shadow IP, sanction IT apps, look for unsanctioned apps, and whatnot. However, it's not software that you can take and install wherever you like. It's a service, basically. 

Honestly speaking, there is no competitor for MVISION Cloud. There are competitors in the market, of course, in the CASB market, lots of them. However, there's no one that's reached the level of MVISION Cloud just yet.

I don't have much experience with McAfee MVISION Cloud, however, I do have a good understanding of it. I also managed to pitch it and demo it to one customer and sold it a couple of times. 

It's originally not a McAfee product. It belonged to a company called Skyhigh before, which was acquired by McAfee. 

I'd rate the solution at a nine out of ten. I don't believe in perfect solutions, however, this is quite good. I haven't ever seen anything quite like it. 

I'd recommend it to other users. If a company is having workloads on the cloud, whether it be on Office 365 or AWS or Azure or Google cloud or IBM cloud, whatever cloud, it's highly recommended for them to at least consider MVISION Cloud as it can really help them secure their access to their cloud workloads. Especially those customers who have a hybrid cloud. They will most likely want a CASB that will be able to manage both clouds from the same dashboard.

My experience with this product is from an evaluation standpoint. Since everybody is adopting cloud technologies such as SaaS, PaaS, and IaaS, they want to ensure that their data is secure. This product can be used to help people access our cloud applications securely, control users, and manage data movement over the cloud with respect to our data classification policies.

We have conducted a PoC but have not used it in our production environment.

They provide a variety of options for scalability, where we can use it over the cloud, or we can deploy it on-premises through our proxy. We can also use agent-based installation. Together, from a coverage point of view, the solution is pretty good. The other products that I have evaluated do not have the scalability options that McAfee has.

It needs to be more user-friendly, as it is a little bit complicated to use.

They should implement straightforward automation capabilities that include the integration of AI and ML. It should be able to handle solutions quickly whenever a rule has to be created. It should, for example, suggest to the admin that if there is any indication of data corruption then a notification will be sent. In addition, initial steps will be taken to ensure that the data is safe.

We evaluated McAfee MVISION Cloud for a couple of weeks. 

It is meant for large organizations and it will support more than 10,000 users.

The technical support is good and they are customer-friendly. We don't use the support for MVISION Cloud but we use McAfee support for other products, and we are satisfied.

As part of our evaluation process, we have used several solutions from different vendors.

This is an expensive product, although it is made for larger enterprises and not for small organizations. This is generally the case with McAfree enterprise solutions.

This is a product that I recommend.

I would rate this solution an eight out of ten.

We are currently using Skyhigh Security with Office 365. We are, however, looking for another similar tool to be able to compare capacities with Skyhigh Security.

Our primary use case is the protection of sensitive information.

The feature I found most valuable is the API.

I think that the User Interface could be improved.

In the next release, I would like to see some seeking functions so we can see origination.

I have been using this solution for about two years.

My impression is that the stability of this solution is good.

My impression is that it's easy to scale this solution. In my opinion, this solution is most suitable for medium-sized businesses.

We have compared solutions and in our opinion, Skyhigh has a good spot on the market as it's a good solution.

My impression is that the initial setup process is both straightforward and complex.

I would rate this solution as a whole an eight, on a scale from one to 10, with one being the worst and 10 being the best. I would recommend this solution to other people.

We use the solution for endpoint security. 

The solution is hard to configure, our team does not have specific training requirements for McAfee making it difficult. Another issue is with decreasing performance with desktop and laptop due to the solution.  

In a future release, I would like them to add email protection as part of their offerings. 

We have been using the solution for one year.

I found the solution to be stable.

We have not tried to expand the solution. There are 40 users using it in our organization.

The initial setup of the solution is not easy, it is complex. 

The solution requires a technical team for deployment because it is challenging. 

The price of the solution is good and we pay an annual license.

I will recommend the solution to other users. However, I would suggest having a deployment team assisting with the installation. 

I rate McAfee MVISION Cloud a seven out of ten. 

We use this solution as a CASB, a Cloud Access Security Broker, to gain insight into our cloud environment. We integrate this solution for our clients as a companion service to our main cloud product.

It gives us visibility into how the data is being used within our cloud environment. It shows the flow of information, and in our case, it has to with documentation that is restricted. For example, if a document contains credit card information or social security numbers then we are able to track it when somebody tries to delete them or do something else that is prohibited. We get flagged, which is the key. It enhances the visibility of what's in our cloud environment.

The most valuable feature for us is the integration with DLP. 

The biggest challenge we have with McAfee is their cross-cloud support. They tend to lag by a few months, in terms of providing support for new cloud platforms, or new cloud features. We're primarily focused on SaaS, so the other opportunities for them to improve their integration is with AWS and PaaS.

I would like to see better integration with on-premise tools.

That stability is good. It's a very good tool.

We have had no problems in terms of scalability.

We have a team of about forty people who use it. There is the DLP team, the various tenant cloud security administration team, and we also have our staff that uses it.

We found that the documentation is meager, but the response time from technical support is very good.

We did not use another solution prior to this one.

This solution is very easy to set up.

It took us about a month to get it up and running, but it took us four months to figure out how to use it amongst the different teams.

The licensing fees are based on what environments you are monitoring.

We did evaluate a couple of other options, and we have other solutions as well. We have Evident.io, one from Cisco, and one from Palo Alto. None of them are good in every environment, so we use a combination of these solutions.

I have found, based on implementations for multiple clients, that Evident.io doesn't meet the needs of all of the people. Evident.io is not a security protocol. It gives you visibility into your cloud, but it's not a broker. It's just an analysis tool. It is very PaaS-friendly, but not a SaaS-friendly tool. This is opposed to Skyhigh, which is SaaS-friendly but not PaaS-friendly.

My advice for anyone who is implementing this solution is to know what roles you will need to grant access to and have your roles predefined.

This solution has good coverage and good integration with other McAfee products. I am not giving it a perfect score because of the uneven coverage for other platforms. They tend to lag in terms of support for new platforms and new tools that come out on the cloud. 

I would rate this product a seven out of ten.

We implemented Skyhigh for Shadow IT monitoring as well as Microsoft Office 365 real-time auditing. We monitor these on a daily basis and are currently in the process of implementing policies if certain activities are done by our end users.

We have gained a deep insight into our Shadow IT usage as well as the different activities involved in Office 365. Without Skyhigh, we had zero visibility, but now we are aware of so much more.

The risk rating of each cloud application has been very useful. Whenever we discover a new application is use, we are able to quickly determine if this application is safe to use and whether or not we should allow our end users to be able to access it.

Though the Skyhigh Dashboard is processing large amounts of data, the speed of the Dashboard could be improved. Also, it would be nice to be able to get more advanced search functions to filter out data and quickly obtain the data that we need.