Forcepoint [Private Offer Only]

My main use case for Forcepoint Data Loss Prevention  is that I have used it for all three channels: the endpoint, web, and email. The main use case is preventing the exfiltration of personally identifiable information (PII) data. With Forcepoint Data Loss Prevention , I have kept PII data and a few other sensitive items in blocking mode. Whenever a user shares any PII data going outside the organization through any of the channels—whether it is an endpoint, web, or email—the PII data is blocked.

The best features Forcepoint Data Loss Prevention offers help in maintaining compliance and providing visibility. The best feature is the quarantine workflow manager. Whenever my mail gets blocked or quarantined, it gives a notification to the manager. It completely depends on the manager or the user's manager to decide if they want to release the mail. This feature offloads all our IT admin responsibility in releasing the mails.

Forcepoint Data Loss Prevention has changed my day-to-day work by making our tasks easier. Whenever we want to block anything, the operation part responsibility is not on our end, and the verification part is not at our end. It drastically reduces the overall risk. If a user comes to us and wants to release the mail, it completely depends on the business. The risk has been shifted to the business, where if any mail is getting blocked or quarantined, it is up to the business whether they want to release that mail or not, because we cannot justify if a specific mail is required for the business or not. The business is well aware of whether it is required or not.

Regarding Forcepoint Data Loss Prevention, the positive impact is that through visibility, the false positives have drastically reduced, and we have the number of incidents and whatever visibility we need to give to our management with the help of Forcepoint Data Loss Prevention.

Forcepoint Data Loss Prevention can be improved because the options nowadays involve the use of AI. The approach of Forcepoint Data Loss Prevention is still very traditional, where I have to create the policy for each and everything. The AI component is missing in Forcepoint Data Loss Prevention, where based on user behavior analytics, it could give us suggestions. This type of improvement is needed in Forcepoint Data Loss Prevention. Additionally, the hardware costing goes up when it comes to Forcepoint Data Loss Prevention because it requires large resources in the implementation part.

Not regarding the user interface, but nowadays other DLP  solutions have come up with the CASB  part and the SaaS platform they are providing. Forcepoint Data Loss Prevention is still lagging there, and I have to rely on the on-premises setups. The management part has been difficult as I have to patch the servers, restart them, and regularly take backups. These are a few tedious things that I have to do while managing Forcepoint Data Loss Prevention. This part also needs to be improved in Forcepoint Data Loss Prevention.

I have been using Forcepoint Data Loss Prevention for more than six years.

Forcepoint Data Loss Prevention performs well in terms of scalability, as it can handle growth because the license is a trust-based license, so it will not block the growth. The only part required is that it is an on-premises setup, so I need to vertically increase the resources.

Regarding customer support for Forcepoint Data Loss Prevention, I require some expertise either during the initial setup or midway. I expect them to have some sort of expertise, but their support typically sends some level one guys. I need to explain my requirement, and then they escalate to level two guys, and I explain to them again. This type of setup is there by default in Forcepoint Data Loss Prevention. I expect that ticket alignment within Forcepoint Data Loss Prevention support should depend on the type of case, and that is not there.

In my organization, it was quite easy as I was migrating from some other DLP tool, so it was easy and not tedious.

The initial setup and deployment process for Forcepoint Data Loss Prevention is quite easy because there are a lot of technicians, and I am also aware of the setup. In my organization, it was quite easy as I was migrating from some other DLP tool, so it was easy and not tedious.

Forcepoint Data Loss Prevention integrates with my existing security tools or infrastructure with no major issues. It is completely on-premises, so there were some network challenges, but they were not from Forcepoint Data Loss Prevention end; they were completely from my end. Forcepoint Data Loss Prevention provides options including Active Directory integration and SEM integration. There were a few network challenges, but not so significant that they would hold our security integration, so that was not kept on hold.

Forcepoint Data Loss Prevention is deployed in my organization on-premises.

I do not have any other improvements needed for Forcepoint Data Loss Prevention that I have not mentioned yet; all the parts I needed to mention are already covered.

When it comes to Forcepoint Data Loss Prevention, handling policy updates and changes requires effort because one part is our security requirement, then the business requirement is there, and the third one is whatever incident monitoring I am doing. I have to go through a process, which would be with any DLP solution. The implementation part of a policy is easy, but creating it requires more effort.

My experience with Forcepoint Data Loss Prevention's reporting and alerting capabilities is good; whatever report details I generate are actionable. I raise the incident to the respective reporting manager, and depending on that, I close the incidents.

When I think of Forcepoint Data Loss Prevention's accuracy and reliability of output, I can give it a nine out of ten; the accuracy is perfect. The one point I cut is because when the file size is large, Forcepoint Data Loss Prevention struggles a bit. There are a few, not really flaws, in their working method. Having more than six years of experience with Forcepoint Data Loss Prevention, I know how to bypass Forcepoint Data Loss Prevention, so I deduct one point there.

In regard to Forcepoint Data Loss Prevention's AI capabilities, it helps in governance and security as of now in my day-to-day activity and in maintaining compliance. However, the analytic part needs to be improved; the dashboard, the CISO dashboard, should be included, and more visibility is required there. The AI part is still lacking, which I have already mentioned in the improvement part.

If someone is looking into using Forcepoint Data Loss Prevention, I advise that if they are looking for a traditional DLP with proper visibility, then Forcepoint Data Loss Prevention is the best product to go with. However, they also require management and resources for the management of Forcepoint Data Loss Prevention. If they are looking for an on-premises solution, then it is the best product. If they are looking for something extra advanced and they have fewer engineers in their organization, then they should consider any SaaS DLP platform; Forcepoint Data Loss Prevention is not a good product in that case. I would rate this product nine out of ten overall.

In a banking environment, I have worked with Forcepoint Data Loss Prevention , integrating its features with web DLP  solutions and a discovery solution. I have worked with fingerprinting-based methods, creating many custom classifiers, and have fingerprinted all data to ensure that no one can upload and share sensitive information across all those channels.

The main use case is to protect all sensitive information of the organization and prevent uploading it to any external sources, including uploading sensitive information through Gmail, company information, and asset information, which is not shared with anyone without permission or approval.

Forcepoint Data Loss Prevention  is a data protection solution designed to discover, monitor, and prevent sensitive data leakage across endpoint, networks, email, web, and cloud applications, using a single centralized policy framework. It provides unified data protection and advanced data discovery and classification. I have worked with all those features of Forcepoint Data Loss Prevention protections. We are creating predefined custom templates, classifiers, fingerprinting, and machine learning-based text classification. It supports all types of channels including endpoint DLP , network DLP, email DLP, and web DLP. You can also integrate CASB  solutions, and they provide discovery solutions as well. You can have a compliance policy with all geographic locations across 19-plus countries and 160-plus regions. It covers major regulations including GDPR, HIPAA, PCI DSS, SOCS, and ISO 27001.

Forcepoint Data Loss Prevention mainly provides a classifier and fingerprinting for file-based and database systems, allowing you to fingerprint all those databases. You can also use custom classifiers with keyword, regex, and dictionary options, and I have used all types of those properly. Another valuable solution is the predefined classifier with predefined templates available that you can use.

Forcepoint Data Loss Prevention provides unified data protections that protect all types of data across endpoints, networks, cloud, and web. For all types of data, including data at rest, in use, and in motion, you can secure your data. Discovery and classifying is a popular and most-used feature, based on behavioral analytics and risk scoring. Based on behavior, it gives scores and can block messages and users. There is also multi-channel DLP coverage, providing all types of environments to enforce policy across every type of channel, including endpoint DLP, network DLP, web DLP, email DLP, and discovery DLP. Through pen drive, USB, printing, network, and local access, it covers all types of channels.

Forcepoint Data Loss Prevention protects your organizational data and ensures that no outsider can take or modify your data. You can also integrate different solutions, and a main improvement is that you can integrate SIEM  solutions to analyze the risk from different solutions. You can also integrate OCR technology and watermarking, which are third-party vendor solutions you can integrate. Forcepoint Data Loss Prevention has already shared audit reports that are available to review. You can see all those compliances and results, which can minimize risk. If you have integration with different security solutions, all logs will be shared and all users will share information, allowing you to analyze the risk.

Forcepoint Data Loss Prevention is a most critical and complex solution because the deployment models include on-premise solutions, on-cloud solutions, and hybrid solutions. It has a scalable multi-data center architecture that makes it quite complex, with many components. The integrations are very critical, which I have noticed as needing improvement to make it easier for companies.

I did not give it a perfect rating because I have seen complex deployment and multiple challenges, such as multiple integrations and servers, including management, protectors, discovery, OCR, and analytics. These servers are different, and you need to integrate the solutions, which requires network segmentation and port planning that are not shared. It is sometimes very critical as it is not a plug-and-play solution, which can make IT teams struggle without professional services. I have also seen multiple servers, VMs, endpoint agents, and operational modules, and occasionally experience performance impacts due to the endpoint agent. When enabling data discovery, CPU utilization is very high, requiring careful policy tuning. Additionally, Cloud DLP is not a fully native solution.

I have worked with Forcepoint Data Loss Prevention and different data loss prevention vendors for almost the last four years.

Forcepoint Data Loss Prevention is stable.

I have not used a different solution before Forcepoint Data Loss Prevention, but currently I am also working with Microsoft Purview  solutions, which is a totally cloud-native solution.

You can consider Forcepoint Data Loss Prevention a strong solution. I have seen multiple classification methods and high accuracy, allowing you to create fewer false positives compared to many competitors.

My advice to others looking into using Forcepoint Data Loss Prevention is that it is a vendor that is a leader in dedicated security data protection, with strengths in deep content inspection and human risk analytics. It is best suited for large regulated enterprises and hybrid environments, offering all types of deployment options, such as on-premise, cloud, and hybrid.

My company is a partner of Forcepoint, which creates a business relationship beyond just being a customer.

I give Forcepoint Data Loss Prevention a nine out of ten because I am satisfied and very much interested, with not many cons observed in this product.

Kesei has used Forcepoint Data Loss Prevention  for nearly five years, and it was well configured with all features utilized in the last two years.

Forcepoint Data Loss Prevention  is used to fingerprint data and to understand how employees use the data and where it is distributed. An audit rule in DLP  provides this information, and an email workflow manages data leaving employee email accounts.

When specific people want to send data from Kesei via email, Forcepoint Data Loss Prevention checks the email attachment. If the email contains secret or forbidden content according to DLP  rules, DLP notifies the manager of that staff member that the email is forbidden. The manager can then review the email and, if approval is granted, send a simple reply to allow the email to continue to outside recipients.

Forcepoint Data Loss Prevention's database fingerprint feature is also used to help protect personal data in compliance with Indonesia's data protection law.

The best feature of Forcepoint Data Loss Prevention is the email workflow for data prevention.

Forcepoint Data Loss Prevention's email workflow checks whether emails sent from the office are forbidden by DLP rules and sends a notification to the manager accordingly.

Forcepoint Data Loss Prevention provides a greater sense of security regarding data leaving email accounts, particularly when emails contain secret files from employees.

I have not finished studying or exploring all of Forcepoint Data Loss Prevention's features.

I have been in IT security for about seven years.

I have not used a different solution regarding Forcepoint Data Loss Prevention.

Regarding pricing and setup cost for Forcepoint Data Loss Prevention, I do not have any issues, but I do have concerns with the licensing, particularly for the regional Indonesia licensing.

Forcepoint Data Loss Prevention's licensing in Indonesia has experienced delays. There have been situations where the license expired before the purchased license was sent, resulting in the DLP being out of service.

I evaluated other options such as McAfee and other brands regarding Forcepoint Data Loss Prevention.

For others considering Forcepoint Data Loss Prevention, I believe they should conduct a proof of concept with Forcepoint Data Loss Prevention before choosing another brand. My review rating for Forcepoint Data Loss Prevention is nine out of ten.

Forcepoint Data Loss Prevention  controls data exfiltration and manages data in transit, data at rest, and controlling USB and other exit channels of data in an organization.

One example is a Xerox printout as an exit channel. If a user tries to exfiltrate data in a drip method, not all data to be printed at once, but instead copying confidential data in intervals of every hour within the same document, I can configure a policy with Forcepoint Data Loss Prevention  as Drip DLP . It can capture the data matching within a time period and alert the administrator to stop the activity.

Another use case is that I can block very granularly with Forcepoint Data Loss Prevention on an exit channel such as USB. I can control the USB device IDs and by configuring a set of users, I can block USB as a global restriction in an entire organization. I can allow only a few sets of users who are able to access the USB channel to a set of device IDs through unique IDs that we have, and we can give an exception to them. This is one of the other examples that I often use for exceptions. Along with that, I control the data at rest through Forcepoint Data Loss Prevention by encryption methods.

The main heart of Forcepoint Data Loss Prevention that I can discuss is the fingerprinting feature. None of the other Data Loss Prevention products are capable enough to protect the data with fingerprinting. Forcepoint Data Loss Prevention has a unique feature where it can fingerprint the data if it is in structured or unstructured data as well.

Forcepoint Data Loss Prevention offers several best features. They are data at rest, data in motion, and data in use. Along with that, Forcepoint Data Loss Prevention has extensive pre-built classifiers and compliance templates. It also has risk adaptive protection and behavior analytics, and it has centralized and unified policy management and advanced data detection technologies on multiple channels including data, email, and web.

It has special features called OCR (Optical Character Recognition), fingerprinting, exact data matching for high-accuracy detection of sensitive data in unusual formats, and custom encryption identification to uncover hidden or encrypted sensitive content. The existing key features that I would highlight most are OCR and fingerprinting, exact data matching, real-time enforcement, and device control.

Forcepoint Data Loss Prevention has impacted positively by stopping the data exfiltration in multiple exit channels. Especially in a banking environment, it plays a very major role to protect the data. All the features provided by Forcepoint Data Loss Prevention have been implemented in a banking environment and it works as expected, better than all other security products that we have today.

Before we implemented Forcepoint Data Loss Prevention, a lot of data had been exfiltrated and there were external sharings of data, and we didn't have much control over data with respect to any of the data storage techniques. However, post-implementing Forcepoint Data Loss Prevention, we were able to control the external sharing and exfiltration through email and the web channel. Through the extensions that we have on browsers, we can control and stop the data over browsers. We were also able to stop the data with removable media channels. Along with that, we have been utilizing Forcepoint Data Loss Prevention to integrate with Microsoft Information Protection  labeling classification tool, and we were able to stop most of the confidential and intellectual data of an organization with respect to any of the channels.

Forcepoint Data Loss Prevention has two different sorts of implementation methods. One is on-premises, solely independent, where we can implement it. The second method that we have is SaaS-based through SSE. Forcepoint Data Loss Prevention has been already integrated as an SSE solution where we can leverage the on-premises Data Loss Prevention solution to integrate and it can enhance with the classifiers that it has pre-built within the tool. When we integrate with Forcepoint SSE product, a few classifiers cannot be matched as per customer's expectations and customizable workflows can be an added advantage.

Improvement with respect to integration of other products would be beneficial. Rather than relying on the complete sole product alone, if we can integrate with partial integration with any third-party data solutions, that would be helpful. Forcepoint Data Loss Prevention is already capable enough to integrate with data classification tools such as Boldon James and Microsoft MIP. I would recommend having more different enhancement of products where it can integrate and collaboratively work together with detection accuracy and intelligence.

I have been using Forcepoint Data Loss Prevention for the last eight years.

Forcepoint Data Loss Prevention is stable.

It is easily scalable because it is purely deployed on on-premises and with less downtime, we can expand it with easy support from the vendor to have more licenses as per user count and expanding the existing infrastructure as well.

Customer support was really good compared to all other customers and we were very happy with the technical support engineers that are supporting us.

We have used McAfee as a DLP  solution and the Forcepoint SaaS solution as well. We switched because their existing predefined classifiers and content-based inspections and lagging of most of the features such as OCR capabilities and integration made it very difficult to integrate those products with any third party. The log audit and log storage were not accurate, and it was not easy to drill down to the actual cause with those products. Hence, we switched from McAfee and Microsoft Purview  to Forcepoint Data Loss Prevention.

We have evaluated Zscaler DLP  solution as well.

Forcepoint Data Loss Prevention has two different sorts of implementation methods. One is on-premises, solely independent, where we can implement it. The second method that we have is SaaS-based through SSE. Forcepoint Data Loss Prevention has been already integrated as an SSE solution where we can leverage the on-premises Data Loss Prevention solution to integrate and it can enhance with the classifiers that it has pre-built within the tool. When we integrate with Forcepoint SSE product, a few classifiers cannot be matched as per customer's expectations and customizable workflows can be an added advantage.

With Forcepoint Data Loss Prevention, we have limited resources, not much spent on the resources part because we were able to easily forward the logs to our SIEM  solution. We are managing through less resources, which is a major advantage. The market-available technicians for this particular product have been a very big advantage for us.

I would suggest other customers to give a test environment with deploying Forcepoint Data Loss Prevention and compare with the detections, response, and the features that Forcepoint Data Loss Prevention gives. No other product in the industry can give those options. They can troubleshoot and have a complete overview of that product by installing in UAT instead of doing it in POCs. If they can allocate a few sets of users and do a test, they will have more granular visibility of the product and the stabilization of the product.

I have been looped into the pricing and cost estimation of the user consumptions and I have been as an advisory to management. I report to my manager, where my manager takes care of the licensing part and I'm helping him.

Based on the regular updates through agent improvements based on the technology advancements, Forcepoint Data Loss Prevention is always ahead with the latest technology integration with their agents and has the very best support in the industry compared to any other data solution products. The features that we are availing through Forcepoint Data Loss Prevention would be a major advantage I would recommend. I hope I have given the complete insights of Forcepoint Data Loss Prevention, how this has been a market leader, and how it differentiates among the other products in the market. My overall rating for Forcepoint Data Loss Prevention is ten out of ten.

My main use case for Forcepoint Data Loss Prevention  is to prevent data loss via emails and on our social media.

A specific example of how I use Forcepoint Data Loss Prevention  for emails and social media is that with the current company setup, most of the communication is via emails, so it helps us with keeping track of who's sending what and what sensitive information has been leaked or sent without any prior notification or permissions.

Since Forcepoint Data Loss Prevention tracks the metadata of the protected files, you cannot really share it via social media, hence WhatsApp. You cannot really share it via Teams, the web-based app or anything of that nature.

The best features Forcepoint Data Loss Prevention offers include the ability to create custom rules, tracking PCI DSS compliance, and additional capabilities.

The custom features I mentioned allow me to track out-of-the-blue applications and make their own rules apart from the standard rules provided by Forcepoint, which allows me to create my own custom rules.

Forcepoint Data Loss Prevention has positively impacted my organization because we have managed to keep track of all the emails sent, all the data, and all the proprietary information that's shared, and everything is on a proper track, enabling everyone to classify their information so that nothing is leaked.

We track and classify information by noticing improved compliance from us and our customers, where information was previously being shared even across departments, and right now, everything is flowing perfectly.

Forcepoint Data Loss Prevention can be improved by adding more compliance options and making it more regional-based because at the moment, some of the rules are just standard.

I have been using Forcepoint Data Loss Prevention for the best part of three years.

I did not previously use a different solution before Forcepoint Data Loss Prevention; we just started with Forcepoint.

I have seen a return on investment, and the biggest one is saving time.

My experience with pricing, setup cost, and licensing for Forcepoint Data Loss Prevention is that the pricing was reasonable.

Before choosing Forcepoint Data Loss Prevention, I evaluated other options, including the Symantec solution and Microsoft.

The usability, integration, and reporting are perfect, and they actually give you a very detailed report that you can customize and use to meet your needs at that moment. I would rate this product a nine out of ten.