Forcepoint [Private Offer Only]

Forcepoint Data Loss Prevention  controls data exfiltration and manages data in transit, data at rest, and controlling USB and other exit channels of data in an organization.

One example is a Xerox printout as an exit channel. If a user tries to exfiltrate data in a drip method, not all data to be printed at once, but instead copying confidential data in intervals of every hour within the same document, I can configure a policy with Forcepoint Data Loss Prevention  as Drip DLP . It can capture the data matching within a time period and alert the administrator to stop the activity.

Another use case is that I can block very granularly with Forcepoint Data Loss Prevention on an exit channel such as USB. I can control the USB device IDs and by configuring a set of users, I can block USB as a global restriction in an entire organization. I can allow only a few sets of users who are able to access the USB channel to a set of device IDs through unique IDs that we have, and we can give an exception to them. This is one of the other examples that I often use for exceptions. Along with that, I control the data at rest through Forcepoint Data Loss Prevention by encryption methods.

The main heart of Forcepoint Data Loss Prevention that I can discuss is the fingerprinting feature. None of the other Data Loss Prevention products are capable enough to protect the data with fingerprinting. Forcepoint Data Loss Prevention has a unique feature where it can fingerprint the data if it is in structured or unstructured data as well.

Forcepoint Data Loss Prevention offers several best features. They are data at rest, data in motion, and data in use. Along with that, Forcepoint Data Loss Prevention has extensive pre-built classifiers and compliance templates. It also has risk adaptive protection and behavior analytics, and it has centralized and unified policy management and advanced data detection technologies on multiple channels including data, email, and web.

It has special features called OCR (Optical Character Recognition), fingerprinting, exact data matching for high-accuracy detection of sensitive data in unusual formats, and custom encryption identification to uncover hidden or encrypted sensitive content. The existing key features that I would highlight most are OCR and fingerprinting, exact data matching, real-time enforcement, and device control.

Forcepoint Data Loss Prevention has impacted positively by stopping the data exfiltration in multiple exit channels. Especially in a banking environment, it plays a very major role to protect the data. All the features provided by Forcepoint Data Loss Prevention have been implemented in a banking environment and it works as expected, better than all other security products that we have today.

Before we implemented Forcepoint Data Loss Prevention, a lot of data had been exfiltrated and there were external sharings of data, and we didn't have much control over data with respect to any of the data storage techniques. However, post-implementing Forcepoint Data Loss Prevention, we were able to control the external sharing and exfiltration through email and the web channel. Through the extensions that we have on browsers, we can control and stop the data over browsers. We were also able to stop the data with removable media channels. Along with that, we have been utilizing Forcepoint Data Loss Prevention to integrate with Microsoft Information Protection  labeling classification tool, and we were able to stop most of the confidential and intellectual data of an organization with respect to any of the channels.

Forcepoint Data Loss Prevention has two different sorts of implementation methods. One is on-premises, solely independent, where we can implement it. The second method that we have is SaaS-based through SSE. Forcepoint Data Loss Prevention has been already integrated as an SSE solution where we can leverage the on-premises Data Loss Prevention solution to integrate and it can enhance with the classifiers that it has pre-built within the tool. When we integrate with Forcepoint SSE product, a few classifiers cannot be matched as per customer's expectations and customizable workflows can be an added advantage.

Improvement with respect to integration of other products would be beneficial. Rather than relying on the complete sole product alone, if we can integrate with partial integration with any third-party data solutions, that would be helpful. Forcepoint Data Loss Prevention is already capable enough to integrate with data classification tools such as Boldon James and Microsoft MIP. I would recommend having more different enhancement of products where it can integrate and collaboratively work together with detection accuracy and intelligence.

I have been using Forcepoint Data Loss Prevention for the last eight years.

Forcepoint Data Loss Prevention is stable.

It is easily scalable because it is purely deployed on on-premises and with less downtime, we can expand it with easy support from the vendor to have more licenses as per user count and expanding the existing infrastructure as well.

Customer support was really good compared to all other customers and we were very happy with the technical support engineers that are supporting us.

We have used McAfee as a DLP  solution and the Forcepoint SaaS solution as well. We switched because their existing predefined classifiers and content-based inspections and lagging of most of the features such as OCR capabilities and integration made it very difficult to integrate those products with any third party. The log audit and log storage were not accurate, and it was not easy to drill down to the actual cause with those products. Hence, we switched from McAfee and Microsoft Purview  to Forcepoint Data Loss Prevention.

We have evaluated Zscaler DLP  solution as well.

Forcepoint Data Loss Prevention has two different sorts of implementation methods. One is on-premises, solely independent, where we can implement it. The second method that we have is SaaS-based through SSE. Forcepoint Data Loss Prevention has been already integrated as an SSE solution where we can leverage the on-premises Data Loss Prevention solution to integrate and it can enhance with the classifiers that it has pre-built within the tool. When we integrate with Forcepoint SSE product, a few classifiers cannot be matched as per customer's expectations and customizable workflows can be an added advantage.

With Forcepoint Data Loss Prevention, we have limited resources, not much spent on the resources part because we were able to easily forward the logs to our SIEM  solution. We are managing through less resources, which is a major advantage. The market-available technicians for this particular product have been a very big advantage for us.

I would suggest other customers to give a test environment with deploying Forcepoint Data Loss Prevention and compare with the detections, response, and the features that Forcepoint Data Loss Prevention gives. No other product in the industry can give those options. They can troubleshoot and have a complete overview of that product by installing in UAT instead of doing it in POCs. If they can allocate a few sets of users and do a test, they will have more granular visibility of the product and the stabilization of the product.

I have been looped into the pricing and cost estimation of the user consumptions and I have been as an advisory to management. I report to my manager, where my manager takes care of the licensing part and I'm helping him.

Based on the regular updates through agent improvements based on the technology advancements, Forcepoint Data Loss Prevention is always ahead with the latest technology integration with their agents and has the very best support in the industry compared to any other data solution products. The features that we are availing through Forcepoint Data Loss Prevention would be a major advantage I would recommend. I hope I have given the complete insights of Forcepoint Data Loss Prevention, how this has been a market leader, and how it differentiates among the other products in the market. My overall rating for Forcepoint Data Loss Prevention is ten out of ten.

My main use case for Forcepoint Data Loss Prevention  is to prevent data loss via emails and on our social media.

A specific example of how I use Forcepoint Data Loss Prevention  for emails and social media is that with the current company setup, most of the communication is via emails, so it helps us with keeping track of who's sending what and what sensitive information has been leaked or sent without any prior notification or permissions.

Since Forcepoint Data Loss Prevention tracks the metadata of the protected files, you cannot really share it via social media, hence WhatsApp. You cannot really share it via Teams, the web-based app or anything of that nature.

The best features Forcepoint Data Loss Prevention offers include the ability to create custom rules, tracking PCI DSS compliance, and additional capabilities.

The custom features I mentioned allow me to track out-of-the-blue applications and make their own rules apart from the standard rules provided by Forcepoint, which allows me to create my own custom rules.

Forcepoint Data Loss Prevention has positively impacted my organization because we have managed to keep track of all the emails sent, all the data, and all the proprietary information that's shared, and everything is on a proper track, enabling everyone to classify their information so that nothing is leaked.

We track and classify information by noticing improved compliance from us and our customers, where information was previously being shared even across departments, and right now, everything is flowing perfectly.

Forcepoint Data Loss Prevention can be improved by adding more compliance options and making it more regional-based because at the moment, some of the rules are just standard.

I have been using Forcepoint Data Loss Prevention for the best part of three years.

I did not previously use a different solution before Forcepoint Data Loss Prevention; we just started with Forcepoint.

I have seen a return on investment, and the biggest one is saving time.

My experience with pricing, setup cost, and licensing for Forcepoint Data Loss Prevention is that the pricing was reasonable.

Before choosing Forcepoint Data Loss Prevention, I evaluated other options, including the Symantec solution and Microsoft.

The usability, integration, and reporting are perfect, and they actually give you a very detailed report that you can customize and use to meet your needs at that moment. I would rate this product a nine out of ten.

We are using Forcepoint Data Loss Prevention  to prevent our organization's data from unauthorized access. Forcepoint Data Loss Prevention  is a tool that prevents, monitors, detects and prevents sensitive data from leaving our organization.

Forcepoint Data Loss Prevention is a good product that provides deep fingerprinting capabilities in data exploring and data discovery. They have an excellent feature for discovering data automatically through policies available in their portal, and they excel in data discovery and classification.

The solution offers database fingerprinting, file fingerprinting, and script-based policies, along with automatic data discovery exploration.

Fingerprinting automatically discovers customer data in our database and, based on sensitivity, detects and blocks the data if someone attempts unauthorized access.

Forcepoint Data Loss Prevention is a web threat security product offering content inspection and URL filtering with built-in DLP  capabilities. It proactively identifies web-based threats using tools such as advanced classification, browser isolation, and malware detection.

Forcepoint Data Loss Prevention's solution focuses on internal risks and monitoring user activity to identify abnormal behavior, offering forensic tools such as login and video replay to understand intent.

Data classification is an advanced tool we have used for classifying our data. The main feature is AI-powered, called DSP. The classification capability leverages a distributed AI architecture feature and GenAI small language models to classify both structured and unstructured data. It supports 50 file types and continuously improves accuracy with user feedback, enabling auto-discovery across cloud, endpoint, and on-premises data stores without extra cost of repeated scans.

Improvement in Forcepoint Data Loss Prevention, especially when applying a positive DLP  approach, needs to focus on decreasing false positive incidents. Currently, false positive incidents need to be improved.

I have been using Forcepoint Data Loss Prevention for the last year. Before that, I was working with Symantec.

Until now, everything has been working very well.

My experience with this solution has been positive. The stability of Forcepoint Data Loss Prevention is reliable, with minimum crashes, errors, or performance issues. Regarding policy stability, the rules and workflow behave as expected without false positives or negative user impact. Operationally, it is easy to manage and maintain with proper failure and backup updates.

It is important in any financial context, especially within the positive DLP model if user-aware, risk-adapted, and business-aligned. Scalability should focus on more than just technical expansion, accounting for operational policy and organizational growth. The key principle of a scalable DLP uses a single policy engine across multiple data channels such as endpoint, email, web, cloud, and network. Forcepoint Data Loss Prevention provides centralized management via the security manager and integrates with the security management center and many other products.

I have raised one or two tickets with technical support during my experience in this organization.

I joined this organization almost a year ago, and before my arrival, they were using Symantec DLP . When I came, they had already deployed Forcepoint Data Loss Prevention.

Before implementing DLP, we hadn't used any product for data prevention. We deployed Forcepoint Data Loss Prevention almost four years ago.

We have integrated Forcepoint Data Loss Prevention with our Active Directory, SIEM  solution, and Exchange server.

The positive impact of Forcepoint Data Loss Prevention is that it protects our organization's sensitive information. The DLP strategy and technology focus on enabling secure and productive data usage, not just blocking or restricting actions. Instead of being overly restricted or reactive, it emphasizes content-aware and intent-based adaptive policy that balances security with business productivity.

Through the effectiveness of the solution, we are able to create rules and monitor multiple user incidents through the console.

We have features available in the console that help us export reports of user incidents, monitor multiple users that hide sensitive data, and generate DB fingerprinting reports.

Currently, we are using the on-premises deployment, but we have plans to upgrade to cloud next year.

On a scale of 1-10, I rate Forcepoint Data Loss Prevention a 7.

Forcepoint Data Loss Prevention  is used for endpoint email security and data loss prevention for web.

Forcepoint Data Loss Prevention  is a user-friendly product, particularly regarding upgrades. Every  function and task, such as backups, forensics, and policy creation, is defined clearly and is easy to manage. It provides multiple customization options for policies, which makes it superior to Symantec. Fingerprinting technology is supported, although I primarily monitor with a data classification tool.

I would recommend aligning OCR with endpoints. This is a highly demanded technology globally, especially for endpoints. Forcepoint should focus on improving this aspect to draw more users from Symantec's side. Additionally, while Forcepoint is mostly on-premises, I suggest that to compete with Symantec, they should consider cloud solutions.

I have been working with Forcepoint Data Loss Prevention for around four years.

I rate the stability of Forcepoint Data Loss Prevention at eight out of ten.

I rate the scalability of Forcepoint Data Loss Prevention at eight out of ten.

Whenever there are issues, the support engineer is available to handle them. They conduct sessions to check logs and policies, unlike Symantec, where engineers may temporarily check and ask for logs, causing delays.

I previously worked with Symantec but currently use Forcepoint Data Loss Prevention.

The initial setup is simple. Each component is installed separately if needed, allowing flexibility in implementing data loss prevention with large numbers of users.

The pricing is reasonable and medium, not very low, but fair for the product offered.

Overall, I rate Forcepoint Data Loss Prevention eight out of ten. I recommend it to users looking for on-premise solutions. Proofpoint is a main competitor for on-premise solutions.

The main use case is the built-in OCR feature that the customer needs, but the OCR feature is limited to the network level. You cannot use this at the endpoint level, where there's a risk of data leakage. End-users can leak scanned pictures or screenshots, so customers need protection against these data leaks.

Forcepoint protects against insider threats. If you have many employees, you can implement a DLP  that protects against the loss of data where it's stored. It covers encrypted data. You have two use cases for encryption at the USB and network levels. You can encrypt data in email from person to person or encrypt data that you need to copy via USB from your DLP  administrator.

Forcepoint enables you to clarify aspects of your data, including which data to protect for how long, what priority to assign to the data and the destinations. It's a comprehensive, dedicated solution. The interface is user-friendly and easy to manage. No other product will give you the same visibility and data classification functions as this tool.

You install the agent to your endpoint, and the end user needs to label the data as confidential, private, internal, etc. After you label the document, you can confirm the confidentiality and go to the DLP to make a new policy to block the specified destination addresses at the Forcepoint level, such as network, email, RDP, etc.

Forcepoint uses machine learning and AI file or database fingerprinting. This can give you an early chance to prevent incidents fast. File fingerprinting gives you 100 percent accurate DLP results.

I rate Forcepoint support six out of 10. It depends on if you get support from the Indian or European side. Overall, Forcepoint support is not very good.

Before deploying, you have to set up your prerequisites. Your Active Directory should be integrated, and the best practices should be established in your environment. The time needed to deploy depends on the scope of your environment. You need some technical expertise to implement a DLP solution. It generally takes three to six months of testing and monitoring.

In banking, data loss is a critical aspect of cybersecurity, so you need to protect your data by implementing a DLP solution in your environment.

Forcepoint DLP  is expensive. Not every customer can afford it. We work in the financial sector, and banking is the primary use case for DLP in Pakistan. There are four types of licensing. Most of our customers only use DLP on their endpoints, but if you need it at a network level, there is an additional license. Also, there are extra licenses for discovery and the DLP suite, which contains all the licenses for the add-ons.

I rate Forcepoint Data Loss Prevention  eight out of 10. Maybe we can find a better DLP solution, but I always prefer Forcepoint because I have experience and expertise with it.