Sold by: Cisco Systems, Inc.
Deployed on AWS
Cisco Secure Access is a cloud-delivered Security Service Edge (SSE) solution that provides secure and seamless access to the internet, cloud services, and private applications, helping users securely access whatever they need to do their best work from anywhere. It protects access to AWS applications while ensuring a seamless user access experience. Cisco Secure Access consolidates industry-leading Cisco Secure SaaS solutions (Zero Trust Access, Secure Web Gateway, Cloud Access Security Broker, data leakage prevention, FWaaS, DNS security, remote browser isolation, Digital Experience Monitoring, and more) to mitigate security threats at all levels while ensuring seamless and secure user access.
4.2
Overview
Cisco Secure Access makes life better for users, easier for IT, and safer for everyone. It addresses cybersecurity challenges driven by the rapid software as a service (SaaS) adoption and the expansion of hybrid work.
Cisco Secure Access is a cloud-delivered Security Service Edge (SSE) solution that fundamentally reduces risk, radically simplifies IT operations, and eliminates remote access complexity for end users. With Secure Access, IT and security teams can effectively protect and defend their users from fast-moving internet-based attacks while providing them secure connectivity to the public and private applications they need, all in a single platform.
Cisco Secure Access is a full SSE solution, with ZTNA, SWG, DLP, CASB, RBI, and FWaaS with further differentiated capabilities including VPN-as-a-Service (VPNaaS), AI Assistant for policy creation help, and AI Access for visibility, control, and exclusive guardrails for third-party AI applications. Further, Secure Access is the only SSE which includes a recursive DNS-layer security service for lower latency, Experience Insights monitoring by Cisco ThousandEyes, and much more, in one license and management platform, all delivered with a single client.
Highlights
- Deliver unified and secure end user access to AWS apps.
- Simplify IT operations via a single console, with a single policy construct, featuring aggregated reporting across datacenter-hosted and AWS environments.
- Reduce business risk with advanced cybersecurity protection, zero trust, and granular security policies.
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. Request a private offer to receive a custom quote. Sign in to view any offers that have been extended to you.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
You can reach for the Cisco Secure Access support at: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Cisco Secure Access, Cisco's Security Service Edge (SSE) solution, includes secure Zero Trust Network Access to your company's private/internal resources. Resource connectors are virtual machines deployed in your AWS environment that forward remote user traffic to your applications without requiring open inbound ports in your firewall.
Ideal for remote worker and multi-tenant environments, Secure Firewall ASA Virtual provides scalable VPN options including remote access, site-to-site, clientless, and more. Experience Cisco's industry-leading firewall to protect your cloud resources.
Ideal for remote worker and multi-tenant environments, Secure Firewall ASA Virtual provides scalable VPN options including remote access, site-to-site, clientless, and more. Experience Cisco's industry-leading firewall to protect your cloud resources.
Cisco Security Cloud Control is a unified, cloud-native security management interface for the Cisco Security Cloud. It simplifies and strengthens defenses by centralizing security solutions into a single, cohesive interface. This approach eliminates silos, reduces complexity, and provides end-to-end visibility, empowering organizations to proactively address security challenges across their entire infrastructure.
Customer reviews
Chris Crotteau
Unified security has supported hybrid workforces and protected responsible AI adoption
Reviewed on Jun 03, 2026
Review provided by PeerSpot
What is our primary use case?
Our main use case for Cisco Secure Access is providing security for hybrid and mobile workforces. One of the big challenges these days is the fact that you will have users in the office, working remotely, and all will have different access policies.
You will have users that will be technically hopping between offices, remote work, and working on the road. The trick is determining how we can have a single, consistent security policy for those users. Cisco Secure Access helps us with that quite a bit.
We did our first pilot deployment of Cisco Secure Access about three years ago, and we have deployed it successfully at several customers since then.
What is most valuable?
The VPN as a service is the feature that we like the most and the one that our customers like the most. Historically, you would have to maintain a firewall or other local VPN concentrator device. With Cisco Secure Access, now you can VPN in directly to Cisco Secure Access cloud, have that security policy applied, and then get directed either to the internet for SaaS apps or cloud services or to local on-premises resources through Cisco Secure Access system.
AI Access feature is a relatively new feature in Cisco Secure Access, but it is one that has become very important, especially in the last year or so, as end users have started to make a lot of use of the big AI tools, ChatGPT, Claude, and all that. There is now a big concern about those users putting inappropriate information into them, confidential information, regulated information. Being able to more tightly control what models my end users use, what services they use, and what information they submit has become a major part of end-user security in general. With Cisco Secure Access, I can do that whether you are in the office, on the road, or working from home. I can ensure that wherever you are at, you are not using AI models inappropriately and exposing us to risk.
Digital Experience Monitoring is for Cisco Secure Access and really any kind of SASE deployment. You need to know how the users are using the system and what their experience is so that it is easier to troubleshoot. Because you could have users anywhere, how are they getting access to the resources? If they are having problems, how can we help troubleshoot that? ThousandEyes integration with Cisco Secure Access is a pretty comprehensive visibility tool. It works everywhere from, for example, a work-from-home user. Are they having poor connectivity? ThousandEyes will let us see that it is their home network. They have bad wireless signal. We can work with them to fix that. Alternatively, it reveals problems with their internet connection. Or if they are traveling, what is the total visibility within the entire path between them and the application, whether it be a SaaS app, locally hosted, or something hosted in Azure , AWS , or any of the big cloud providers.
What needs improvement?
These days with supply chain attacks being a major problem, being able to vet anything that is downloaded by developers, by end users for business use, is almost a requirement these days. With Cisco Secure Access, because I can do that, this goes back to that security anywhere for any user at any time. Being able to ensure that we have that coverage for someone working from home, someone working remotely, someone on-premises, keeps that supply chain risk low.
I think it is a matter of especially keeping up with the times. I mentioned AI defense earlier, but as AI use and especially as we get into agentic AI use, seeing how Cisco Secure Access works to control those agentic uses especially is important. I think that is where we expect the big improvement to be.
For how long have I used the solution?
I have been working in IT consulting for about 22 years.
What do I think about the stability of the solution?
It has been rock solid and stable. I can only think of one service disruption that I have seen with it in the last several years we have been using it, and that was really only for a very short amount of time.
What do I think about the scalability of the solution?
Cisco Secure Access is a very scalable solution. Being cloud-native, scalability is really built in. The user management controls work well even for our larger customers with large numbers of users. I would say scalability for Cisco Secure Access is a very strong point. It builds on Umbrella , which is a highly scalable security solution. We see that there as well.
How are customer service and support?
When we have had problems, they have been very quickly resolved. The support engineers have always been of a high quality. The only bad experiences we have had were really sort of when the platform launched and I think even Cisco was still learning how to support it.
Which solution did I use previously and why did I switch?
There was no single solution before. What we were doing before Cisco Secure Access was just a traditional on-premises VPN or other standalone remote access solutions, which was always, I think, a management headache. Multiple products were needed for different use cases. Moving to Cisco Secure Access really helped consolidate all that into one overarching end-user security platform.
How was the initial setup?
Overall, it has been a fairly good experience. Deploying Cisco Secure Access, because for a lot of customers they started with Umbrella , and it goes back to that same operational model, that same user interface, the same configuration model, has made it probably one of the easier SASE solutions to deploy compared to some of the other vendors out there.
What about the implementation team?
For our customers, it has been a big time saver in terms of policy management. Because now, I do not have to maintain separate policies for my remote users versus my on-premises users or people in a hybrid environment. For our customers, there has been a pretty good ROI and pretty quickly too.
What was our ROI?
For our customers, it has been a big time saver in terms of policy management. Because now, I do not have to maintain separate policies for my remote users versus my on-premises users or people in a hybrid environment. For our customers, there has been a pretty good ROI and pretty quickly too.
What's my experience with pricing, setup cost, and licensing?
Pricing for Cisco Secure Access has been very reasonable in the context of the entire world of SASE solutions. Setup costs for customers coming off of Umbrella, because of the fact that it is an evolution, the setup costs for our customers have been low. A little bit higher for greenfield, but Umbrella has always been a fairly easy product to turn up and Cisco Secure Access sort of continues that. Getting customers up and running with it is pretty easy and not too expensive.
Which other solutions did I evaluate?
The other solution that we considered heavily was Palo Alto's Prisma Access , or what they call Prisma SASE now. What we found is that with Cisco Secure Access, it was a much easier on-ramp for our customer base. It was easier to get that quick ROI.
What other advice do I have?
One of the things about policy verification is with Cisco Secure Access and modern security products in general, policies can become very complicated, very quickly, especially once you start doing role-based policies. To have a tool that helps you validate the policy before you push it out to the end users ensures that the end user satisfaction is higher, fewer complaints, and fewer headaches for the IT staff when making big policy changes.
It is a solid 10. It does exactly what we need it to do. It does so in a way that is easy to manage, easy to control, and gives us the information that we need to make sure our end users have a good experience wherever they are working. My overall rating for Cisco Secure Access is 9.
The biggest advice I give to anyone looking at Cisco Secure Access or really any other SASE solution is a lot of planning. SASE deployments tend to be complex, and while Cisco Secure Access does a great job of simplifying things compared to some of the other vendors out there, a good solid project plan, a good solid assessment of your needs before deploying is always something that I would recommend anyone does.
Madhu Endravath
Secure remote access has strengthened identity control and simplified our enterprise connectivity
Reviewed on Jun 03, 2026
Review provided by PeerSpot
What is our primary use case?
We use Cisco Secure Access as a VPN where people are able to connect back to Cisco Secure Access , and from there we have an infrastructure that comes down to the inside enterprise level. We open a port for the firewall to be able to have VPN access.
We use Cisco Secure Client and Cisco Secure Endpoint , so there are two different clients that are able to have VPN access back to the users. Cisco Secure Client is really efficient for all the users and mostly for the enterprise, so I would say Cisco Secure Client would be the primary one.
What is most valuable?
Cisco Secure Client is really efficient for all the users and mostly for the enterprise, so I would say Cisco Secure Client would be the one.
At the firewall, we manage identity through identity management. We also have Cisco ICE as an identity management tool. We have TACACS+ and RADIUS to be able to find out who is actually trying to hit the access and who is not.
We have integrated it, and ICE is playing a crucial role in that.
What needs improvement?
I do not have answers for that now, though it is an interesting question. Hopefully, that is something I have to investigate based upon what problem I have and bring it up, but I do not really seem to be having any problem with that right now.
For how long have I used the solution?
I have been there for two and a half years so far. Since I am aware of it, it has been two years. I do not know what is behind that, but since I am aware of it, it is two and a half years.
What do I think about the stability of the solution?
Based upon the user levels, users have a little bit of a problem, but as IT people, we deploy it and there is no inconsistency with that. Everything looks to be fine from my standpoint. If we see there is a problem, then there is no point in putting that infrastructure into an environment. Everything is efficient and strong enough for now.
How are customer service and support?
If they have access, they will reach out to us, and then we support them.
We open a ticket with Cisco, and the support team usually handles most of the communications.
They are all good. I do not really have an answer for that question, but since I have not heard anything negative, it would be positive.
Which solution did I use previously and why did I switch?
They used to have Cisco DNA, but this is not something I have known. Based upon the references and documentation that I have seen, they used to have Cisco DNA. After that, when I joined, we were using Cisco Secure Client. From then on, that is what I am aware of.
What other advice do I have?
Cisco Secure Client is what we use.
We do not use other solutions.
It is a pretty much small shop, so it is okay. It is simple and it is basic efficiency for us to be able to manage. I guess that question is probably with the management systems, and I do not deal with the numbering systems.
It is decent.
I would rate it to nine for now, and during the deployment, I was not there, so I do not really have an understanding of how smooth and how efficient that was. I rate this review a ten overall.
Which deployment model are you using for this solution?
On-premises
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Nick Szmania
Secure remote access has simplified zero trust adoption and supports clientless RDP sessions
Reviewed on Jun 03, 2026
Review provided by PeerSpot
What is our primary use case?
Cisco Secure Access is used primarily for remote access into on-premises servers. We are currently in a hybrid ZTNA and VPN solution, and with ZTNA , we have more flexibility about what traffic goes over VPN and what traffic stays through the internet.
We still have the VPN aspect, and with ZTNA we also have the ability to make those on-premises servers accessible securely anywhere in the world.
How has it helped my organization?
Cisco Secure Access has affected our transition to zero trust and least privilege principles by enabling us to run an RDP session through a web browser and tie it in with our Azure AD SSO , so users do not even need a client and can still log into these servers securely.
I am happy with the performance and security levels it provides. I feel it is a robust and high-performing product, and it has both the clientless and the client aspects, which I really appreciate.
What is most valuable?
The features of Cisco Secure Access that I like the most include its ease of use.
Cisco Secure Access is both client-based and clientless.
The multi-organization management capability of Cisco Secure Access is very usable and very user-friendly, and the end users are happy with it. I try to make the product and the process as painless as possible for all our end users, so it runs well.
Cisco Secure Access has affected our transition to zero trust and least privilege principles by enabling us to run an RDP session through a web browser and tie it in with our Azure AD SSO , so users do not even need a client and can still log into these servers securely.
I am happy with the performance and security levels it provides. I feel it is a robust and high-performing product with both the clientless and the client aspects.
What needs improvement?
We have not explored much of the Experience Insights feature powered by ThousandEyes of Cisco Secure Access, as it is part of our Meraki package, but we have not really done much with it yet.
For how long have I used the solution?
We have been using Cisco Secure Access for about five years now.
What do I think about the stability of the solution?
I would assess the stability and reliability of Cisco Secure Access as very good. Nothing comes to mind regarding downtime, crashes, or performance issues.
How are customer service and support?
My experience with customer service and tech support is great, and I am very happy. Every time I run into an issue, I can get a hold of someone at Cisco to get it fixed.
They are responsive and quick on their feet.
Which solution did I use previously and why did I switch?
To address the same issues, my organization did not have any solution put in place.
How was the initial setup?
I have not used the policy verification to help reduce policy misconfigurations.
Policy configurations have not caused slowdowns or blocked access for users in the past.
What about the implementation team?
My experience with deploying Cisco Secure Access is that it is very easy to integrate with the Meraki products.
What was our ROI?
We implemented Cisco Secure Access about five years ago.
What's my experience with pricing, setup cost, and licensing?
The pricing setup cost and licensing was not complicated; it was painless.
Which other solutions did I evaluate?
When selecting Cisco Secure Access, we were not looking at different options in comparison. We knew we were going to move all of our hardware over to Cisco, and so it made sense.
Comparing Cisco Secure Access to something like Cloudflare One , in the future the cost can come down. I have also looked at Zscaler for ZTNA, but overall, it is a robust product. Obviously, we always look at cost. I think Cloudflare may not have as robust of a product, but the cost is very minimal.
What other advice do I have?
I would give Cisco Secure Access a rating of eight.
I would give customer service and tech support a rating of nine.
My overall review rating for Cisco Secure Access is eight.
reviewer2848779
Secure access has strengthened OT network segmentation and enabled reliable remote visibility
Reviewed on Jun 03, 2026
Review provided by PeerSpot
What is our primary use case?
My main use cases for Cisco Secure Access are firewalls between our IT and OT networks and VPN access to our OT network. For the most part, I am strictly using Cisco Secure Access as a next-gen firewall, using it for deep packet inspection visibility, but mostly for VPN remote access.
What is most valuable?
The integration has been really good for my identity management and security measures. There have been some difficulties at times, but we have been able to get it to work.
I would describe my multi-organization management capability of Cisco Secure Access as having its ups and downs. There are times it feels difficult to navigate and get things configured, but that is coming from a CLI perspective. I can see improvements from the previous versions and generations. It is getting better. I think I just need to get acclimated to it and get used to it.
For us on the OT side, Cisco Secure Access has been good in scaling with the growing needs of my organization.
What needs improvement?
I am not sure which features of Cisco Secure Access I appreciate the most.
I have not used the policy verification feature of Cisco Secure Access to help reduce policy misconfigurations.
I am not certain how Cisco Secure Access can be improved or what additional features should be included in the next release.
My experience with deploying Cisco Secure Access has faced a few challenges, I believe, just as with policy configurations. That is getting familiar with the interfaces and other aspects. I think these are things that I was able to work through.
For how long have I used the solution?
I have been using Cisco Secure Access for approximately three to five years.
What do I think about the stability of the solution?
I have not experienced any downtime, crashes, or performance issues with Cisco Secure Access, so I assess its stability and reliability as good.
What do I think about the scalability of the solution?
I have not expanded usage of Cisco Secure Access significantly. Only client user-wise have I expanded, but not infrastructure-wise.
How are customer service and support?
I would rate my customer service and technical support for Cisco Secure Access a five out of five. I give them a ten on a scale from one being the worst to ten being the best because they are very responsive.
Which solution did I use previously and why did I switch?
Prior to adopting Cisco Secure Access, I was not using another solution to address similar needs.
How was the initial setup?
My experience with the pricing, setup costs, and licensing of Cisco Secure Access has been straightforward with our Cisco partner.
What about the implementation team?
I did not upgrade from Umbrella to Cisco Secure Access.
What was our ROI?
I have seen a return on investment with Cisco Secure Access.
Which other solutions did I evaluate?
I have always been a Cisco shop and did not consider other solutions before selecting Cisco Secure Access.
What other advice do I have?
My advice to another organization considering using Cisco Secure Access is to do your homework. I would rate this review a nine out of ten.
reviewer2848743
Secure access has strengthened application protection and supports a seamless VPN transition
Reviewed on Jun 03, 2026
Review from a verified AWS customer
What is our primary use case?
Our main use case is application security and user security.
What is most valuable?
The feature I like the most about Cisco Secure Access is the rate at which you can secure your application in-depth, similar to DPI on the security side of it.
Using the VPN SaaS in Cisco has influenced us greatly because it gives you a seamless transition from your legacy systems to this new system that is available, so the transition has been seamless.
What needs improvement?
So far, I have not had any issue with Cisco Secure Access , so in terms of areas to improve, we are satisfied.
For how long have I used the solution?
I have been using Cisco Secure Access for the past four years.
What do I think about the stability of the solution?
So far, we have not experienced any issue with the stability and reliability of Cisco Secure Access. In terms of reliability, it has been doing what we wanted it to do, and we are hoping that it stays that way.
How are customer service and support?
On this product, I would rate customer service and tech support an eight. I have other products with Cisco, but for this specific product, I would rate it about an eight.
Which solution did I use previously and why did I switch?
I think we were using Zscaler before Cisco Secure Access.
I do not remember what prompted the change, but moving to Cisco Secure Access has been good.
How was the initial setup?
I was more involved in the pilot phase when we were setting up Cisco Secure Access, but I'm not involved in the pricing for that; the architect team handles that.
What about the implementation team?
We had help from Cisco deploying Cisco Secure Access, so we did not have that many challenges because the support was there.
Which other solutions did I evaluate?
When we were picking Cisco Secure Access, I did not consider other options. I started getting involved when it was down to two products, one being something that comes with Palo Alto. Since we are a Cisco shop, it makes things easy to get the Cisco product and then integrate everything together.
What other advice do I have?
I have had experience with the Experience Insights feature, but not as much as my security team because I'm more on the networking side. However, sometimes I work with the security team, and from what I have heard from them so far, they have not had any issues since we made the transition.
We have not evaluated the AI Access feature of Cisco Secure Access for providing deep visibility and control over AI applications, tools, and large models because I have not actually used the AI side of things. However, we use many Cisco products that come with the AI feature.
I do not know if they are still using the hybrid private access feature for varying the enforcement location.
I have not used the policy verification to help produce policy misconfigurations.
I am satisfied so far with the product. My overall review rating for Cisco Secure Access is 8.5 out of 10.
Which deployment model are you using for this solution?
Hybrid Cloud