Check Point CloudGuard Network Security Reviews

We use CloudGuard Network Security to protect our customer's Azure environments. 

The tool's deployment is rapid. Its dashboard is also useful. It's easy to deploy both on-premises and in Azure. In an office with VMware running, deployment is a simple process. Similarly, in Azure, deployment is easy and scalable. Adding more CPUs is a straightforward task – just shut it down, modify the security, and restart. This ease of use translates into cost and resource savings, and faster deployment times.

Clustering in Azure is a bit different, not using the Check Point cluster but relying on load balancing. It's not as instant as I'm used to; in Azure, it might take around half a minute to a minute, and during this time, services could be down. The delay is attributed to Azure using its load balancing mechanisms instead of the Check Point cluster.

I have been using the product for three to four years. 

The tool's technical support is generally good. While there might be occasional delays, they usually manage to resolve issues. 

Neutral

In Azure, when we refer to "size," it could be in terms of factors like the number of instances, bandwidth, or users. We use cloud-native platforms but prefer Check Point solutions. It is easier to manage since we know Check Point is on-prem. I have a high level of confidence in CloudGuard Network Security. I am familiar with Check Point and Azure. I rate the overall product a nine out of ten. 

My clients were different small businesses, and they were migrating to the cloud. We've been using it as a general cloud security tool. 

The interface in terms of being able to have access for myself and the client so that we can easily observe and watch what is going on, has really improved the organization. 

We have seen time to value with this solution. We will continue to use more Check Point solutions in the future.

The versatility is the solution's most valuable feature. 

There are some usability issues we'd like to see improved. 

We're going to be switching to XDR and would like integration with XDR. 

I've used the solution for only about a year. 

The solution is good. I'd rate the stability a nine out of ten. 

I'd rate the scalability a nine out of ten. 

The support is good. 

Positive

We did not previously use a different solution. 

I'm involved with the integration and was involved in the setup of specific areas.

The initial setup was alright. I wasn't the architect of the whole thing. In my area, the implementation seemed to be pretty straightforward.

We did not use an integrator, reseller, or consultant for the deployment. 

We do not yet have enough of a baseline to calculate ROI. 

The pricing is fair. It's the client who is paying for it, not me directly. However, they seem satisfied. 

We previously evaluated a few other options. 

The usability is moderate. 

The product has helped us free up some time. It's a complicated situation, however. 

I'd rate the solution an eight out of ten. 

We use the solution for safeguarding the network security infrastructure. This has been one of the greatest achievements since we come across CloudGuard Network Security. 

It has launched effective security measures that can monitor security and provide feedback. 

Workflows across the company ecosystem have can flow smoothly without experiencing any challenges. 

The multi-channel security system monitors our cloud and hybrid servers. Transfer of files from the company database to the cloud servers goes through secure channels mapped by this platform.

A well-established encryption system now secures communication and workflow management systems. Data compromisation situations reported before have been fully eliminated since we deployed this software. There is increased production with secure workflow channels. The IT team can access and control the network security of interlinked company applications. We have developed a modern digital infrastructure that can access and give reliable reports based on real-time results. We no longer experience continuous system failures with automated performance monitoring tools.

Network security threat tools can launch and give advanced reports to the IT team on the future performance of various systems. 

The data analysis dashboards provide comprehensive reports and graphic representations of network security. 

We have secured our digital systems with high-grade security tools that cannot be bypassed by ransomware attacks. The customer service technical team provided virtual training to our team and provided the best article guidelines. 

The automatic features seal all loopholes that could be exploited by cybercriminals.

The operations require skilled manpower with extended experience of working with networking systems for better results. 

The cost depends on company size, and licensing terms are not favorable to small-scale businesses. 

The good sides are many from my experience, and I could recommend it to any growing company that requires the best-performing network security. From the first deployment, we have experienced improved and secure network infrastructure. We have been working closely with the customer service team, and there is no situation that has led to negative objections. 

A combination of on-premises and cloud computing services under one interface could enhance simple and comprehensive monitoring. 

They can integrate tools with policy recommendations and notification alerts on when to remove specific objects of the user's choice.

I've used the solution for one to two years.

The product's stable performance has stimulated business growth.

The set network security planning has been achieved, and we are happy with it.

The customer support team never disappoints.

Positive

We started with this tool and have no intentions of leaving it soon.

The setup was complicated since we had to get proper guidelines from the customer support team.

We deployed through a vendor team, and their level of expertise is high.

The ROI has grown positively since we deployed it.

Companies can try it for themselves and explore its great benefits.

We landed straight to CloudGuard Network Security due to the positive comments made by our partners.

I am satisfied with the current performance.

Our primary use case for this solution is for basic cloud network security, posture management and threat hunting. The solution is deployed on cloud.

The solution assures protection on cloud and ensures the workload is protected in the same manner when deployed on-premises.

The threat prevention capabilities are very valuable.

The product's support team, the UI, and the user interface can be improved.

We have been using this solution for four years.

The solution is stable.

The solution is scalable. However, we have not needed to scale yet.

Our experience with technical support can be improved in terms of response time.

The initial setup was straightforward. Some processes were easy click-through processes which needed some configurations and technical expertise to set up. Hence, some technical expertise is required.

The solution is reasonably priced in comparison with other products.

I rate the solution seven out of ten. The solution is reliable and would fulfil what it is marketed to achieve. It provides very good security protection, but the customer support response times could be improved.

We use Check Point CloudGuard Network Security for internal and external traffic filtering.

The most valuable feature of Check Point CloudGuard Network Security is the ease of use. It was not difficult to learn. 

Check Point CloudGuard Network Security could improve by making it easier to configure.

In a feature release, the application should be more drag and drop. If I could search it and drag and drop it to the specific rule it would be helpful.

I have been using Check Point CloudGuard Network Security for approximately 10 years.

The stability of Check Point CloudGuard Network Security is very good.

Check Point CloudGuard Network Security is scalable, it is good for enterprises. The scaling is simple to do.

We have over 500 people in my company using this solution.

I have interacted with the support from Check Point CloudGuard Network Security and they were very good but could improve their response time.

I rate the support from Check Point CloudGuard Network Security a nine out of ten.

Positive

The vendor did the implementation and the maintenance of Check Point CloudGuard Network Security.

My advice to others is the solution is very stable, and reliable, and they should ensure that they invest in Check Point.

I rate Check Point CloudGuard Network Security a nine out of ten.

We are integrators and implemented this product for a customer to monitor traffic and secure a network on cloud. This is a threat prevention solution and I'm the enterprise security lead. Our company is based in the Philippines and we are customers of Check Point. 

Deploying this solution has made it easier for our security analysts to monitor the network on cloud. Based on compliance, we can easily give evidence to different auditors or regulators on how to protect our cloud infrastructure. 

Advanced check prevention is a great feature that provides threat intelligence at speed. We can easily identify malicious activity and check for any vulnerabilities. The solution has great functionality and we can see the movement of data. If there's any malicious activity, we can easily stitch or make a story out of that data. I think when it comes to functionality, it's a good monitoring tool. 

The cost is a little high, it doesn't suit every budget. I'd like to see the ability to integrate with other security solutions which is not currently possible. If you need to integrate, you have to buy a Check Point product as well so you're paying for features. 

The solution is stable. 

The solution is scalable and I think they might increase their scope on different virtual, private clouds or private subnets. Monitoring involves anywhere from three to five people. 

When it comes to Check Point support, we just file a ticket on the portal. They respond based on the severity of the problem. They've been very responsive on inquiries and issues that we encountered although we haven't had any major issues.

The initial setup was pretty straightforward. It's like running our VM on cloud, just speeding it up. When it comes to implementation strategy, we need to list all the assets or the traffic VLANs or network segmentation we want to monitor. From there, we assess how many nodes CloudGuard Network Security needs to monitor all those VLANs. It then takes two to three weeks to implement, given the likelihood of some challenges along the way. Deployment is carried out using a mix of Check Point engineers and in-house IT people. 

In terms of security solutions and return on investment, it's really about the total assets you're protecting.

If you're managing a large cloud infrastructure this is an expensive solution. Check Point has different bundles when it comes to CloudGuard and it's a modular system.

Before purchasing it's important to assess the size of your cloud infrastructure. You need to have a concrete plan for which virtual or private network or clouds you have to scope and to do that before deciding which solution you want and what functionality you need. 

I rate this solution eight out of 10 since there has been some improvement with regard to integrations.

Currently, we were counting on a hybrid cloud and we needed to integrate the latest generation of security. We came to lean towards one of the security leaders in the market. These powerful capabilities position it and allow us to increase cloud security elastically while keeping up with the dynamic requirements of our business. 

We use the cloud to integrate it into our hybrid cloud. It dynamically provides us with advanced security and consistent policy enforcement that automatically grows and scales with our cloud environment. With CloudGuard IaaS, we can easily protect workloads and applications.

Being able to move computing resources and data to public clouds means that security responsibilities are now shared between us and our cloud provider. While the cloud provider provides infrastructure protection, we as customers want to be able to control our own data and protect cloud assets while complying with internal regulations. On the other hand, we required complete traffic visibility and reporting, as well as proactive protection from even the most advanced threats within virtual network environments. CHKP offered us advanced threat protection to prevent the lateral spread of threats within defined data centers.

There are many important characteristics that for me are the best of the solution and come to support an emerging market:

• It improves the productivity of the company.
• It performs very complex or high value manual operations intellectual in a controlled and neglected way.
• There's a simplicity when performing tasks.
• It improves the availability of engineers to carry out projects.
• To all this we can add the ability to connect via API, and integrate solutions from developers trained for management from any location.

The solution from my experience is very good. What I would like for future updates would be faster updates to apply, and perhaps a greater presence in the local language for the regions of Latin America. These are markets that have been growing, however, the teams need a lot of time and training and in that period a specialized technician in the local language is required to support the constant requests. After that, I accept that Check Point surprises me as it has always done with its excellent work in innovation.

I've used the solution for around two years.

We had a big problem with how to protect our host services, which are directly accessed via the cloud. We wanted to protect our organization tenant and workload from any next-generation attack. For this protection, we implemented the Check Point solution named CloudGuard Network.

This NGFW is provided by Check Point and has all of the capabilities that are required to protect against next-generation attacks at the perimeter level.

The modules or security features that we use are provided as part of the base license. These include VPN, IPS, Application Control, and Content Awareness. Together, these are strong and help to protect the organization.

This solution effectively protects us against any next-generation attack.

The most valuable feature is the centralized dashboard, which is used for managing all of the Check Point Security Gateways.

Whether it is hosted on-premises or on the cloud with the NGTX license, it provides additional security capabilities such as SandBlast, which is able to extract and emulate file execution in a virtual sandbox. It will identify activity and actions, and the system can be configured accordingly.

It provides hyperscaling capabilities for both on-premises and cloud-based security gateways. An on-premises security gateway can be configured for hyperscaling using the Maestro 140 or Maestro 170. In the cloud, on AWS it can be hyper-scaled using the AWS gateway load balancer.

It's able to protect against advanced threats and prevent zero-day attacks using both SandBlast and IPS signatures.

Throughput is impacted drastically once the security modules are enabled on the firewall.

As it is a software-based firewall, there is no dedicated throughput available for each module.

In case the device is inaccessible due to some issue such as CPU or memory, there is no separate port or hardware partition provided for troubleshooting purposes.

Throughput on the virtual firewall is an issue in case the organization wants to migrate a workload to the cloud, and it becomes a bottleneck.

We have been using the Check Point CloudGuard Network for between two and five years.

The combination of NGFW + URL Filtering + Antivirus + Anti Bot, with 8 vCore D4 v2, is able to provide a throughput of 4Gbps.

On Azure, the combination of NGFW + URL Filtering + Anit Virus + Anit Bot, with 8vCore c5n 2xlarge, is able to provide a throughput of 4.7Gbps. It is similar to AWS.