← CASB / Cloud App SecurityLookout CASB (Fortra)

AdequateAdequateAdequateAdequate

4.3

Vendors › CASB / Cloud App Security › Lookout CASB (Fortra)

Lookout CASB (Fortra)

Name: Lookout CASB (Fortra)
Rating: 4.3 (130 reviews)
Author: Fortra

Fortra

Founded 2007·US·Private

4.3

Combined score

4.250

Gartner

4.480

⚠

Security incident on record — Fortra parent suffered GoAnywhere MFT zero-day (CVE-2023-0669, Feb 2023) — separate product line

▪ Editorial verdict

Lookout CASB carries the CipherCloud heritage of cloud data encryption and tokenisation, which provides data sovereignty capabilities that most CASB vendors cannot match: sensitive data can be encrypted or tokenised before it reaches the SaaS application, ensuring the cloud vendor never has access to plaintext. For organisations in highly regulated industries with strict data sovereignty requirements, this capability is meaningful.

Fortra parent company context is relevant: the GoAnywhere MFT zero-day in 2023 affected a separate Fortra product line, but raises questions about the parent company's security development practices that buyers should investigate.

The verdict: Lookout CASB is right for highly regulated enterprises needing cloud data encryption and tokenisation for sovereignty compliance. Organisations without specific encryption requirements should evaluate Netskope, Microsoft Defender for Cloud Apps, or Zscaler.

Last reviewed: May 2026

4.250 reviews

Gartner

4.480 reviews

Gartner MQ: Niche Player (SSE MQ)

CASB / Cloud App Security assessment

PROTECTIONAdequate

Shadow IT visibility

3 / 5

Data protection

3 / 5

OPERATIONSAdequate

API & app coverage

3 / 5

Policy enforcement

3 / 5

ANALYTICSAdequate

Cloud analytics

3 / 5

TRUST & ECOSYSTEMAdequate

Compliance reporting

3 / 5

Strongest: Shadow IT visibility

Watch out for: Compliance reporting

Strengths & limitations

Strengths

●Strong mobile endpoint security integrated with CASB — unique for BYOD

●CipherCloud heritage provides deep encryption and tokenisation capabilities

●Good compliance reporting for regulated industries

Watch out for

●Fortra GoAnywhere breach (2023) in separate product raises parent company risk awareness

●Less market presence than top-tier CASB vendors

●Product roadmap uncertainty post-acquisition

Best for

Enterprises needing mobile-integrated CASB with strong BYOD and data encryption controls.

Not suitable for: New deployments — evaluate Netskope or Zscaler unless mobile-CASB integration is a specific requirement.

Compliance coverage

●SOC 2

●HIPAA

●NIST CSF

●PCI-DSS

●GDPR

●ISO 27001

○Essential Eight

○AU Privacy Act

○CMMC

○NIS2

○DORA

○CIS Benchmarks

Switching intelligence

Switching from

Common migration paths based on review data

CipherCloud (legacy)
Point mobile security + CASB

Also considering

Vendors typically shortlisted alongside

← Back to CASB / Cloud App Security Compare with other CASB / Cloud App Security vendors →

Quick facts

Pricing modelper user/year subscription

Pricing rangeEnterprise custom — contact for quote

Free trialNo

Min seats500

Deployment time2-4 weeks

Complexity3 / 5

Pricing transparency2 / 5

AU presenceNo

IRAP assessedNo

Open sourceProprietary

Deployment

ModelsSaaS

OS supportWindows, macOS, iOS, Android

CloudAWS, Azure

SupportPhone, Email, Dedicated CSM

Data residencyUS, EU

Company

Fortra

Founded 2007 · 500-800 (Fortra) employees · Private

HQ: US

Part of Fortra revenue

Certifications

SOC 2 Type II, ISO 27001, FedRAMP

Integrations

Microsoft 365Google WorkspaceSalesforceBoxServiceNowSplunk