We are using Forcepoint Data Loss Prevention to prevent our organization's data from unauthorized access. Forcepoint Data Loss Prevention is a tool that prevents, monitors, detects and prevents sensitive data from leaving our organization.

Forcepoint Data Loss Prevention is a good product that provides deep fingerprinting capabilities in data exploring and data discovery. They have an excellent feature for discovering data automatically through policies available in their portal, and they excel in data discovery and classification.

The solution offers database fingerprinting, file fingerprinting, and script-based policies, along with automatic data discovery exploration.

Fingerprinting automatically discovers customer data in our database and, based on sensitivity, detects and blocks the data if someone attempts unauthorized access.

Forcepoint Data Loss Prevention is a web threat security product offering content inspection and URL filtering with built-in DLP capabilities. It proactively identifies web-based threats using tools such as advanced classification, browser isolation, and malware detection.

Forcepoint Data Loss Prevention's solution focuses on internal risks and monitoring user activity to identify abnormal behavior, offering forensic tools such as login and video replay to understand intent.

Data classification is an advanced tool we have used for classifying our data. The main feature is AI-powered, called DSP. The classification capability leverages a distributed AI architecture feature and GenAI small language models to classify both structured and unstructured data. It supports 50 file types and continuously improves accuracy with user feedback, enabling auto-discovery across cloud, endpoint, and on-premises data stores without extra cost of repeated scans.

Improvement in Forcepoint Data Loss Prevention, especially when applying a positive DLP approach, needs to focus on decreasing false positive incidents. Currently, false positive incidents need to be improved.

I have been using Forcepoint Data Loss Prevention for the last year. Before that, I was working with Symantec.

Until now, everything has been working very well.

My experience with this solution has been positive. The stability of Forcepoint Data Loss Prevention is reliable, with minimum crashes, errors, or performance issues. Regarding policy stability, the rules and workflow behave as expected without false positives or negative user impact. Operationally, it is easy to manage and maintain with proper failure and backup updates.

It is important in any financial context, especially within the positive DLP model if user-aware, risk-adapted, and business-aligned. Scalability should focus on more than just technical expansion, accounting for operational policy and organizational growth. The key principle of a scalable DLP uses a single policy engine across multiple data channels such as endpoint, email, web, cloud, and network. Forcepoint Data Loss Prevention provides centralized management via the security manager and integrates with the security management center and many other products.

I have raised one or two tickets with technical support during my experience in this organization.

Positive

I joined this organization almost a year ago, and before my arrival, they were using Symantec DLP. When I came, they had already deployed Forcepoint Data Loss Prevention.

Before implementing DLP, we hadn't used any product for data prevention. We deployed Forcepoint Data Loss Prevention almost four years ago.

We have integrated Forcepoint Data Loss Prevention with our Active Directory, SIEM solution, and Exchange server.

The positive impact of Forcepoint Data Loss Prevention is that it protects our organization's sensitive information. The DLP strategy and technology focus on enabling secure and productive data usage, not just blocking or restricting actions. Instead of being overly restricted or reactive, it emphasizes content-aware and intent-based adaptive policy that balances security with business productivity.

Through the effectiveness of the solution, we are able to create rules and monitor multiple user incidents through the console.

We have features available in the console that help us export reports of user incidents, monitor multiple users that hide sensitive data, and generate DB fingerprinting reports.

Currently, we are using the on-premises deployment, but we have plans to upgrade to cloud next year.

On a scale of 1-10, I rate Forcepoint Data Loss Prevention a 7.

Forcepoint Data Loss Prevention is used for endpoint email security and data loss prevention for web.

Forcepoint Data Loss Prevention is a user-friendly product, particularly regarding upgrades. Every function and task, such as backups, forensics, and policy creation, is defined clearly and is easy to manage. It provides multiple customization options for policies, which makes it superior to Symantec. Fingerprinting technology is supported, although I primarily monitor with a data classification tool.

I would recommend aligning OCR with endpoints. This is a highly demanded technology globally, especially for endpoints. Forcepoint should focus on improving this aspect to draw more users from Symantec's side. Additionally, while Forcepoint is mostly on-premises, I suggest that to compete with Symantec, they should consider cloud solutions.

I have been working with Forcepoint Data Loss Prevention for around four years.

I rate the stability of Forcepoint Data Loss Prevention at eight out of ten.

I rate the scalability of Forcepoint Data Loss Prevention at eight out of ten.

Whenever there are issues, the support engineer is available to handle them. They conduct sessions to check logs and policies, unlike Symantec, where engineers may temporarily check and ask for logs, causing delays.

Positive

I previously worked with Symantec but currently use Forcepoint Data Loss Prevention.

The initial setup is simple. Each component is installed separately if needed, allowing flexibility in implementing data loss prevention with large numbers of users.

The pricing is reasonable and medium, not very low, but fair for the product offered.

Overall, I rate Forcepoint Data Loss Prevention eight out of ten. I recommend it to users looking for on-premise solutions. Proofpoint is a main competitor for on-premise solutions.

The main use case is the built-in OCR feature that the customer needs, but the OCR feature is limited to the network level. You cannot use this at the endpoint level, where there's a risk of data leakage. End-users can leak scanned pictures or screenshots, so customers need protection against these data leaks.

Forcepoint protects against insider threats. If you have many employees, you can implement a DLP that protects against the loss of data where it's stored. It covers encrypted data. You have two use cases for encryption at the USB and network levels. You can encrypt data in email from person to person or encrypt data that you need to copy via USB from your DLP administrator.

Forcepoint enables you to clarify aspects of your data, including which data to protect for how long, what priority to assign to the data and the destinations. It's a comprehensive, dedicated solution. The interface is user-friendly and easy to manage.  No other product will give you the same visibility and data classification functions as this tool. 

You install the agent to your endpoint, and the end user needs to label the data as confidential, private, internal, etc.  After you label the document, you can confirm the confidentiality and go to the DLP to make a new policy to block the specified destination addresses at the Forcepoint level, such as network, email, RDP, etc. 

Forcepoint uses machine learning and AI file or database fingerprinting. This can give you an early chance to prevent incidents fast. File fingerprinting gives you 100 percent accurate DLP results. 

I rate Forcepoint support six out of 10. It depends on if you get support from the Indian or European side. Overall, Forcepoint support is not very good.

Neutral

Before deploying, you have to set up your prerequisites. Your Active Directory should be integrated, and the best practices should be established in your environment. The time needed to deploy depends on the scope of your environment. You need some technical expertise to implement a DLP solution. It generally takes three to six months of testing and monitoring. 

In banking, data loss is a critical aspect of cybersecurity, so you need to protect your data by implementing a DLP solution in your environment. 

Forcepoint DLP is expensive. Not every customer can afford it. We work in the financial sector, and banking is the primary use case for DLP in Pakistan. There are four types of licensing. Most of our customers only use DLP on their endpoints, but if you need it at a network level, there is an additional license. Also, there are extra licenses for discovery and the DLP suite, which contains all the licenses for the add-ons. 

I rate Forcepoint Data Loss Prevention eight out of 10. Maybe we can find a better DLP solution, but I always prefer Forcepoint because I have experience and expertise with it. 

I am not satisfied with the tool and will replace it since its integration with the Microsoft platform solution, which the company has chosen currently, would be difficult, and we don't want to spend too much time on it. It is easier to have a fully integrated stack. Forcepoint Data Loss Prevention is not a very well-integrated tool. We also have artificial intelligence, which is easier to directly integrate into the heart of the platform.

The main issue is that you cannot be in security staff and put your data center in Dubai. You need to master your data redundancies. Putting two data centers in Switzerland is fine, and we can use it, but you cannot have DLP rules, and you put your data in Dubai, which can lead to mistakes. Even the rules are really sensitive data. We could think that only the patterns would go in Dubai or whatever, but the rules are the most important part because the rules define what is going to be detected and what won't be detected, and inside the rules, we have everything customized.

No financial institution will be able to keep Forcepoint in Switzerland when they move outside of the data center. The other issue is that when you are doing a setup with the on-premises version of Forcepoint, the big mistake here is the way the software is split. Speaking about the version of Forcepoint you are going to install in your data centers, the issue here is that it is done for a VMware setup inside the data center, so you can have many servers. In the cloud, you are going to pay for what you are using. If you are using eight or ten servers, you are going to pay for ten, making it really expensive. The web version that you can set up of Forcepoint has not been designed for the cloud. The cloud version is located in Dubai.

I have been using Forcepoint Data Loss Prevention for ten years.

The solution's technical support was bad as they have no skills at all. We are not able to get replies from the tool's support team. I am not sure if the tool's team could offer advice or consultations because a local company used to do it for the product, as there are just a few skilled people available at Forcepoint, which is also an issue.

Instead of Forcepoint Data Loss Prevention, I recommend Purview to others, especially if you are located on Microsoft platform, since it helps with compliance and not only as a DLP tool. There is a gap we need to close in Forcepoint Data Loss Prevention as it is useful for security operations. For example, it can be used to ask an end user to unlock your blocked emails.

AI is mostly used when you have to check the DLP inside artificial intelligence, and it is not perfect. We were also looking for SSE solutions, and the point is that Forcepoint could have been a good candidate, but it is located in some bad countries, making it one of the main issues why the tool was no longer a satisfying solution for our company. The tool is also quite heavy. In some cases, it is slow, making it not so comfortable to operate.

The tool is fine for the DLP features, especially when you are on an on-premises model with a data center. If you are on the cloud, I would not recommend it.

Purview and Forcepoint are almost the same, as both can be used to block, upload data, or send emails. Once something is blocked, you ask the security operations, who will start, to provide us with the document we can look at to see if it is legitimate or not.

The incident management process is not based directly on Forcepoint. Forcepoint is used to detect and block, but the response is not done inside of Forcepoint. It is done at the data level.

I rate the tool a seven out of ten.

Our main use case for the product involves classifying and protecting organizational data from unauthorized transfers, especially when users attempt to upload or transfer classified data to public cloud services or data-sharing platforms.

The main challenge is the solution's high cost. Additionally, there is no discount for bulk purchases, making it difficult to get budget approvals.

It could benefit from more AI-based features, such as predictive capabilities and expanded coverage of versatile platforms beyond Google Drive and a few cloud platforms. AI could also suggest appropriate policies during deployment based on the specific environment.

We have been using Forcepoint Data Loss Prevention for about five years.

The solution is very stable. I rate the stability a nine out of ten. 

The product is easy to scale by increasing licenses and deployment for large volumes. I rate the scalability a nine out of ten. 

Sometimes, we receive a delayed response from the technical support team. 

Positive

The setup was quite straightforward.

The deployment took approximately one week and required remote and physical support from a local partner and the necessary hardware and appliances.

I rate the process a nine out of ten. 

We have seen significant benefits in compliance, audit controls, and preventing data leakage, making it effective from an ROI perspective.

The platform's key features include blocking unauthorized data copying to USB drives, preventing data transfers to the cloud, and discovering, classifying, and monitoring data without causing friction for users.

The real-time analytics feature is helpful. It alerts within seconds and promptly informs management of any potential security issues.

I suggest thoroughly understanding your organization's data leakage channels and the criticality of your data. With this understanding, you may fully benefit from using DLP.

Overall, I rate it an eight out of ten. 

The main use case for Forcepoint DLP is its OCR feature, which many customers need. The OCR capability can only be used at the network level, not at the endpoint level. It enables network-based data security, such as scanning emails or web traffic for potential data leaks. It's useful when dealing with scanned documents or screenshots containing sensitive information, preventing data leakage for multiple customers who require this level of security.

DLP also provides a test suite and integrates with a cloud access security broker. This helps protect data in cloud storage environments and gives you more control over data security in the cloud.

First, you need to categorize your data—what kind of data it is, the severity of its sensitivity, how long it needs protection, and the destinations that need protection. Forcepoint provides a dedicated solution with a user-friendly interface that makes it easy to manage. Remember that DLP doesn't handle data classification independently, so you'll need another tool to classify your data. For instance, you might use a classification tool to label documents as confidential, private, or internal.

Once the classification agent is installed on the endpoint, users need to label their data accordingly. For example, a Word document containing sensitive information should be labeled confidential. After labeling, you can create a policy in the DLP solution, such as Forcepoint, to block any data labeled as confidential from being shared. You can specify destination addresses to block at various levels, like the network, email, or RDP.

It is a bit expensive.

When deploying a DLP solution in your environment, it is important to follow best practices and start with monitoring mode. Initially, you may not know where your data resides, which users need access to it, or the nature of the data itself. Deploying an agent and monitoring the data flow and usage for three to six months is essential. 

Forcepoint DLP helped customers save some money at the end of the cyber security field. Data is the most important thing you need to implement for a DLP solution in your environment. You could also face insider threats. Implementing a DLP solution helps prevent potential data leaks by giving you control over what kind of data is being accessed, where it's stored, and how it's being used within your environment. It also allows you to monitor and prevent unauthorized sharing of sensitive data, ensuring better security across your organization.

You have two primary use cases for encryption: one for USB devices and the other for network-level data, like email. For email encryption, you can use an appliance that encrypts emails before sending them to another recipient. You can set up DLP for USB devices to manage and secure the data copied to the USB. By registering the USB with your DLP administrator or security tool, such as Forcepoint Security Manager, you can ensure that any data transferred to the USB is protected through encryption, preventing unauthorized access.

Integrating a DLP solution with your Active Directory is a prerequisite for implementing it in your environment. Ensuring your Active Directory follows best practices and benchmarks is crucial for seamless integration and optimal functionality of the DLP solution. You need to add the Active Directory to the environment. It must be integrated because you cannot block your data if your endpoint is not integrated with the endpoint level.

Overall, I rate the solution a nine out of ten.

In most of the banks that my company has implemented the tool, we have EMI and credit card information, and they don't want it to go outside the bank. It is also used to prevent company and other financial information.

There is a feature in the product that I use the bank with which it is really easy to capture any data leakages.

The main area of concern is the tool's technical support. I would suggest the technical engineers reply to users as soon as possible since it usually takes them some time to respond.

I have been using Forcepoint Data Loss Prevention for six months. My company functions as a distributor of the tool.

I would suggest that the tool's interface or UI needs to be redesigned since it is a bit outdated. The UI needs to be redesigned for the tool's productive working.

For scalability, we just have to deploy the agent, and we can push it through a CCM tool or something like that to manage it, making it an easy process.

I rate the technical support a five or six out of ten.

Neutral

The product's configuration phase is easy.

Less than two people can deploy the solution.

The solution can be deployed in less than an hour.

Cost-saving is possible with the tool. The tool has saved time and costs.

I don't actually know about prices. I am the technical support engineer of the tool.

The real-time analytics feature is good, and the tool is really easy to use. I have no concerns regarding the tool.

It is easy to integrate the product with other solutions like SIEM solutions. We have multiple products that we have integrated with Forcepoint Data Loss Prevention, including Microsoft.

I have only used the machine learning part of the tool, which is easy to use.

I recommend the tool to others.

I rate the tool an eight out of ten.

Some implementations in Forcepoint are easy to do. 

We cannot implement very complex policies or use cases with Forcepoint.

Forcepoint's data visibility is the most valuable feature. 

They need to improve their reporting feature as well as the incident response. They have very limited and basic response rules available for incident management so they need to improve them.

I have been using Forcepoint Data Loss Prevention fora year and a half.

I rate the stability an eight out of ten.

The scalability is an eight out of ten. 

The technical support is average.

Positive

The initial setup is straightforward. It takes about three to four hours to implement this solution.

The solution is expensive. 

Overall, the solution is an eight out of ten. 

Major compliance issues are faced by every manufacturer or by those who use customer data. From a compliance point of view, people want a DLP solution for their organization. Every organization needs a DLP solution to prevent data leakage to external sources outside the company, making it one of the major use cases for every customer as they require a DLP tool that covers multiple channels like email, web, network, printers, USB, and removable devices.

Some of our company's customers who want the tool to deal with some of their use cases are macOS users. When it comes to the area of USB control, macOS takes five to ten seconds, meaning there are some solution-designing problems attached to it. With Forcepoint Data Loss Prevention, policies can be applied in Windows within a fraction of a second, but for MacOS users, it takes five to ten seconds, and during these seconds, data leakage from inside to outside an organization can happen. The product is compliant with Windows. My company suggests the product to those who have a Windows operating system in their environment. If you are a macOS user, the problem or concern arises due to the issues attached to the area of USB control. As a whole, macOS is good for users. The aforementioned details regarding macOS need to be considered for improvement.

I have been using Forcepoint Data Loss Prevention for 5 years. I am a reseller of the tool.

The product's stability is very good, and it is a major reason why it is considered a market leader.

Scalability-wise, I rate the solution a nine out of ten.

My company caters to the needs of multiple customers who use the product.

The technical support for the solution is very good.

The product's initial setup phase was easy.

The solution is deployed on an on-premises model.

The time taken to deploy the product is something which depends on the solution or the setup. Mostly, the solution can be deployed within three days, after which some finetuning is required to meet the requirements of our company's customers.

Speaking about how the tool improves data security and compliance posture, I would say that there are multiple products, one of which is a DLP tool, required from a complaint point of view when it comes to data security.

The product's most valuable features for protecting sensitive data revolve around areas like data discovery, data classification, and data leakage. Forcepoint also provides pre-defined templates for data classification covering components like PII, PHI, and PCI.

Forcepoint DLP is a leading tool in the market.

The policy management and the incident reporting system are very easy since, in our company, we just need to integrate it with our user group and users, based on which we configure the policy and apply it within a fraction of a second. The aforementioned details explain why Forcepoint is leading in the market with respect to DLP products.

The data fingerprinting part is a major reason why my company chose Forcepoint Data Loss Prevention. In our company, we need to use areas like PII, PHI, and PCI, so that, though we can share data via emails or any other channels, we get to block specific areas with the fingerprinting feature of Forcepoint Data Loss Prevention .

From a DLP perspective, Forcepoint Data Loss Prevention is the best. There are no other competitors who can compete with Forcepoint in the area of DLP.

In Forcepoint Data Loss Prevention, the user risk scoring impacts security operations and incident response since it is very easy to deploy from our company's customers' perspective, and it makes their day-to-day operations very easy with respect to incident response.

The main benefits of the use of the solution stem from the fact that it ensures that there are no chances of data leakage of any confidential data from inside to outside of the organization.

I rate the tool an eight out of ten.

We use it for monitoring and blocking sensitive data in emails, following our new governance policy.

We like the ability to customize our requirements and rules, as well as its ease of use and management. It also has a cloud feature and proxy functionality.

The product is good, but the biggest issue is needing direct support from Forcepoint.

In future releases, it would be helpful if the OCR feature supported more standard formats, as currently, Forcepoint cannot block some standard data formats.

I have been using it for three years. 

I would rate the stability a seven out of ten. We occasionally experience some downtime and glitches, mainly on the cloud side.

It is very scalable and we have not encountered any issues.  There are around 11,000 end users using this solution.

I would rate the scalability an eight out of ten.  

It can be hard to contact customer service and support, and their response times and solutions can be slow and sometimes irrelevant.

A lot of time their feedback is not helpful. 

Neutral

Forcepoint offers a more cost-effective solution because everything, including OCR, is included in one package, unlike Symantec, where it is an add-on with an additional cost. We also considered McAfee before choosing Forcepoint.

So, the main reason we chose Forcepoint is the cost because it's a single package.

The initial setup is simple. It's now easier than Microsoft, for example.

We currently use a hybrid model with on-premises deployment for the top and cloud access for laptops.

There are five people in our technical team handling deployment and maintenance of this solution. 

I would rate the pricing a six out of ten, where one is high price, and ten is low price. It can be a low price. 

Overall, I would rate the solution a seven out of ten. There is some room for improvement.