Cloud Solutions

Umbrella and Cloudlock

Cisco Umbrella is a cloud-native secure internet gateway (SIG) that provides DNS-layer security, secure web gateways, and cloud-delivered firewalls to block external threats.

Cisco Cloudlock is a cloud access security broker (CASB) that uses APIs to monitor and secure user data, identities, and applications within sanctioned SaaS apps (e.g., Office 365, Google Workspace).

Key Differences at a Glance

	Cisco Umbrella	Cisco Cloudlock
Primary Function	Secure Internet Gateway (SIG)	Cloud Access Security Broker (CASB)
Enforcement Point	DNS-layer, Web Proxy, and Firewall	API-level integrations with SaaS apps
Main Use Case	Blocking malicious domains and malware	Data Loss Prevention (DLP) and user behavior
Visibility	Internet-wide traffic (on/off network)	Activity within sanctioned cloud apps

When to Use Which:

Use Cisco Umbrella: To protect against phishing, malware, and command-and-control callbacks for all users, regardless of location.
Use Cisco Cloudlock: To enforce compliance, detect data breaches within SaaS apps, and control third-party OAuth app permissions.

Cloud Solutions

Umbrella and Cloudlock

Key Differences at a Glance

When to Use Which:

AppD, CWOM and Secure Workload

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!