Our main use case for Akamai Guardicore Segmentation is to implement micro-segmentation and Zero Trust security across hybrid environments, including both on-premises and cloud workloads. We primarily use it to gain visibility into east-west traffic to control the communication between application and servers, which helps in reducing the risk of lateral movement in case of security breach. Additionally, we use it for application dependency mapping to understand how workloads interact, creating granular segmentation policies based on application, environment, and role, improving compliance posture, especially for banking and financial customers. Overall, it helps us to move from traditional perimeter-based security to more workload-level security approach.
Akamai [Private Offer Only]
Carahsoft Technology Corp.External reviews
External reviews are not included in the AWS star rating for the product.
Zero-trust micro-segmentation has strengthened security and improves east-west traffic visibility
What is our primary use case?
How has it helped my organization?
Akamai Guardicore Segmentation has had a very significant positive impact on our organization, especially in terms of security posture, operational efficiency, and compliance. From a security perspective, it has helped us to greatly reduce lateral movement risk by enforcing strict micro-segmentation policies. Even if a system is compromised, the attack surface is limited, which strengthens our overall zero-trust approach.
In terms of efficiency, the visibility and visualization feature have reduced the time required for troubleshooting and policy validation. Our team can quickly identify communication issues and resolve them faster compared to traditional methods.
From a compliance standpoint, especially for banking customers, it has helped us to meet regulatory requirements more effectively by ensuring the proper segmentation between critical workloads and sensitive data environments. Overall, it has improved our control, visibility, and response time, making our security operations more proactive rather than reactive.
What is most valuable?
One of the best features of Akamai Guardicore Segmentation is its real-time visibility and visualization capabilities. It provides a detailed map of all east-west traffic, which is very helpful for both security and troubleshooting. Another key feature is application dependency mapping, which visually shows the communication flows between servers. This helps in understanding the complex environments and designing accurate segmentation policies.
The granular micro-segmentation capability is also very powerful. We can create a policy based on labels such as application, environment, or role, allowing only required communication and blocking everything else, which significantly reduces the lateral movement risk.
Additionally, the agent-based deployment is lightweight and works well across hybrid environments, including on-premises and cloud, making it flexible and easy to scale. Overall, the combination of visibility, visualization, and fine-grained control makes it a very effective micro-segmentation solution.
What needs improvement?
While Akamai Guardicore Segmentation is a very powerful solution, there are a few areas where it could be improved. One of the main challenges is the initial deployment and policy design complexity. In large environments, understanding all application dependencies and creating the right policies can take time and requires close coordination with application teams.
The user interface and policy management can also be improved. As the number of policies grows, managing and organizing them becomes slightly complex. A more simplified or intuitive policy structure would help operational teams.
Another area is integration with other security tools such as SIEM or SOAR platforms. While integration is possible, making it more seamless and easier to configure would add value. Additionally, the reporting and dashboard could be enhanced to provide more customizable and business-level insights, especially for management and reporting.
One small improvement I would suggest for Akamai Guardicore Segmentation is having more automation capabilities for policy creation and recommendation. For example, AI-driven suggestions based on observed traffic patterns would help reduce manual effort during the initial policy design. It would also help to have more predefined templates for common use cases, especially for industries such as banking, to speed up deployment. Another area is enhanced reporting customization where we can easily generate business-level dashboards for management and compliance teams without any additional effort.
For how long have I used the solution?
I have been working with Akamai Guardicore Segmentation for around one to two years as part of my role managing security.
How are customer service and support?
The customer service rating I would give is a four out of ten.
What other advice do I have?
In one of our banking customer environments, we used Akamai Guardicore Segmentation to segment the critical application tiers such as web, application, and database servers. Initially, we enabled visibility mode to understand the east-west traffic and identify all communication flows between workloads. During this phase, we discovered several unnecessary open communications, especially between application and database layers. Based on this, we created granular segmentation policies to allow only required ports and protocols and blocked all other unnecessary traffic. For example, only specific application servers were allowed to communicate with the database servers on required ports while all other lateral movement paths were restricted.
One additional point I would highlight is that with Akamai Guardicore Segmentation, we do not just use it for static segmentation, but also for continuous monitoring and policy optimization. Even after the initial deployment, we regularly review the traffic patterns and update the policies based on application changes. This is very important in dynamic environments such as banking, where new service integrations are frequently introduced. Another key aspect is that we use it as a part of a broader zero-trust strategy, integrating it with other security solutions such as WAF and secure web gateways to create a layered defense approach. Also, from an operational perspective, it has helped us to reduce the dependency on traditional network-based segmentation, making security more application-aware and flexible, especially in hybrid and cloud environments.
The visualization feature in Akamai Guardicore Segmentation has been extremely helpful for our daily operations, especially in troubleshooting and policy design. From a troubleshooting perspective, it gives us a clear, real-time view of communication flows between workloads. Instead of checking logs manually, we can quickly identify where traffic is being allowed or blocked. This significantly reduces the time required to identify issues. For policy design, the visualization helps us to understand the application dependencies before enforcing any rules. This ensures we do not accidentally block legitimate traffic, which is very critical in banking environments. It also helps in identifying unnecessary or suspicious communication paths, validating policies after implementation, and collaborating with application teams, since the visual maps are easy to understand even for non-security teams. Overall, it makes both troubleshooting faster and policy creation more accurate, reducing the operational effort and minimizing the business impact.
Based on our experience with Akamai Guardicore Segmentation, we have seen a noticeable improvement in both troubleshooting and policy validation timelines. Earlier, troubleshooting east-west communication issues used to take around two to four hours since we had to rely on manual log analysis and multiple tools. With Guardicore visualization, we can now identify the issue within twenty to thirty-five minutes, which is roughly around sixty-five percent to eighty-five percent reduction in troubleshooting time. For policy validation, it previously took several hours to a full day, especially when coordinating with application teams. Now with the clear dependency mapping and real-time visibility, we are able to validate policies within thirty-five to sixty-five minutes, improving efficiency by around fifty-five percent to seventy-five percent. Additionally, incident response time improved by fifty-five percent, policy deployment errors reduced significantly due to better visibility, and faster onboarding of newer applications since dependencies are clearly mapped. Overall, these improvements have helped our team become more efficient, proactive, and accurate in operations.
My main advice for anyone considering Akamai Guardicore Segmentation is to start with the visibility mode before enforcing any policies. Understanding application dependencies and traffic flow is very important to avoid unintended disruptions. Also, involve application and infrastructure teams early in the process since accurate segmentation depends on knowing how applications communicate. I recommend taking a phased approach by starting with monitoring and mapping, identifying the required versus unnecessary traffic, and gradually enforcing the policies. Additionally, keep policies simple and structured initially and refine them over time as you gain more visibility. Overall, if implemented properly, it is a very effective solution for achieving zero-trust and reducing lateral movement risks.
Akamai Guardicore Segmentation is a very effective solution for organizations looking to strengthen their zero-trust security model, especially in complex hybrid environments. What stands out the most is its ability to provide deep visibility and control over east-west traffic, which is something traditional security solutions often lack. While there are areas for improvement such as policy management simplicity and automation, the core capabilities are very strong and deliver real value in terms of security, operational efficiency, and compliance. From my experience, when implemented with the right approach, it can significantly enhance an organization’s overall security posture and reduce lateral movement risk. I would rate this product an eight out of ten.
Which deployment model are you using for this solution?
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Segmentation of legacy systems has protected outdated endpoints and reduces network risk
What is our primary use case?
My main use case for Akamai Guardicore Segmentation is segmenting legacy operating systems.
I use Akamai Guardicore Segmentation to segment legacy operating systems because they do not support our EDR tools due to their age, and I chose Akamai Guardicore because its agents support very old systems that need to be segmented from the rest of the network.
We are mainly using it for legacy systems.
What is most valuable?
The best features Akamai Guardicore Segmentation offers make it simple to see all of the connections that are being made to each of the endpoints, and they can be controlled by process and port.
The ability to control by process and port helps my team day-to-day because, since there are hundreds of thousands of connections to some of these endpoints, looking at the Reveal Map makes it simple to audit and create rules for what we want to allow.
Akamai Guardicore Segmentation has impacted my organization positively because we find it difficult to remove the legacy systems, so it was very important to segment them from the rest of the network to protect them and protect the rest of our network.
What needs improvement?
Akamai Guardicore Segmentation can be improved because keeping it up to date is difficult since it is SaaS-based and updates are not on a regular schedule; I have to reach out to my contact to ask them to update to a newer version, and it would be helpful if updates were on a regular cadence so that I would not have to remember to ask them.
I think it is really valuable to take a course on Akamai Guardicore Segmentation because many things are not obvious in terms of how to do them correctly.
For how long have I used the solution?
I have been using Akamai Guardicore Segmentation for one year.
What do I think about the stability of the solution?
Akamai Guardicore Segmentation is stable and very reliable.
What do I think about the scalability of the solution?
The scalability of Akamai Guardicore Segmentation is very good. It scales very well, and I can keep adding agents and scale as much as needed.
How are customer service and support?
I have not had to reach out to customer support for Akamai Guardicore Segmentation.
What was our ROI?
I have not seen a return on investment in terms of specific metrics like time saved or reduced risk, but I can say that reduced risk is significant.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing is that overall everything worked out really well. The pricing was flexible, and it has worked out well with our budget.
Which other solutions did I evaluate?
Before choosing Akamai Guardicore Segmentation, I evaluated other options, but I cannot recall them off the top of my head.
What other advice do I have?
Since I started using Akamai Guardicore Segmentation, we have not had any situations that demonstrate specific results or metrics such as fewer incidents or improved compliance.
My advice to others looking into using Akamai Guardicore Segmentation is to work with professional services during setup because it is not intuitive at the beginning and to take the administrator course to understand the Reveal Maps, as the Reveal Maps are the most useful way to control the segmentation.
I give this product a rating of 8.
A stable and scalable solution that can be used for micro segmentation
What is our primary use case?
We use the solution for micro segmentation.
What is most valuable?
The most valuable features of the solution are the maps and ring fencing that help monitor events.
What needs improvement?
It's not easy to learn to use this program. It would be very helpful for beginners if the solution had more windows to help with the terms inside instead of going to the documentation.
For how long have I used the solution?
I have been using Akamai Guardicore Segmentation for six months.
What do I think about the stability of the solution?
I rate Akamai Guardicore Segmentation a nine out of ten for stability.
What do I think about the scalability of the solution?
Around four people are working with the solution daily in our organization.
I rate Akamai Guardicore Segmentation a nine out of ten for scalability.
How was the initial setup?
The solution's initial setup is not hard. However, you have to learn it because it's not plug-and-play.
What about the implementation team?
I, an integrator, and the Akamai staff implemented the solution.
What other advice do I have?
Overall, I rate Akamai Guardicore Segmentation a nine out of ten.
The tool's most valuable feature is visibility but needs improvement in Kubernetes
What is our primary use case?
We use the product in the production environment of server infrastructure.
What is most valuable?
The tool's most valuable feature is its visibility.
What needs improvement?
Kubernetes is not installed in the way we need it.
For how long have I used the solution?
I have been using the product since October.
What do I think about the stability of the solution?
We faced some minor issues, but overall, the product is stable. I rate it an eight to nine out of ten.
What do I think about the scalability of the solution?
I rate the tool's scalability an eight out of ten. My company has four to six users.
How was the initial setup?
Akamai Guardicore Segmentation's deployment is smooth. The deployment team promised us that the implementation would be completed in three weeks, but the product was available within two weeks.
What's my experience with pricing, setup cost, and licensing?
Akamai Guardicore Segmentation is expensive.
What other advice do I have?
I rate Akamai Guardicore Segmentation an eight out of ten. Adopting the product often involves a greenfield approach, requiring adjustments and careful planning.
Offers micro segmentation capabilities and easy to setup
What is our primary use case?
It's micro-segmentation.
What is most valuable?
The label-based segmentation is the most valuable feature.
What needs improvement?
There are always areas for improvement. It doesn't support a PAAC solution (Platforma as a service) in the cloud. So that could be improved.
In future releases, I would like to see more integration with other products.
For how long have I used the solution?
I have been offering this solution for more than three years.
What do I think about the stability of the solution?
It's very stable.
What do I think about the scalability of the solution?
It's very scalable. It's primarily the larger customers with thousands of servers.
How are customer service and support?
The customer service and support are very good.
Which solution did I use previously and why did I switch?
Akamai is much better than other solutions, such as ColorTokens and Illumio. It is more user-friendly and has more features. In fact, Illumio is actually implementing a lot of the features that Guardicore has had for years.
How was the initial setup?
The initial setup is very easy. It's a safe solution, so you can actually install it in five minutes. So it's very easy to install.
What about the implementation team?
So installation is fast. But then you have to roll it out to all these servers that the customer has, and that would take a couple of days or a week or a month perhaps and require, let's say, four people to do it.
We don't maintain it because it's safe. So it's very easy.
What's my experience with pricing, setup cost, and licensing?
The price is the same as other products in the market. There's no price argument to choose one or the other product, it will cost the customer approximately the same.
You pay for a year, two years, or three years, how many years you want, but you don't actually buy the product; you lease it for a year. And then you can buy it for another year and so on.
The support is included in the license.
What other advice do I have?
I would say that you should use it for micro-segmentation instead of trying to use firewalls. Because some customers try to use other solutions like firewalls, and it's not the best solution.
Overall, I would rate the solution a nine out of ten. It is an amazing solution.