Check Point CloudGuard Network Security Reviews

I need to protect cloud security for my company or customers. I protect their cloud infrastructure and any applications they have on the cloud. This is the main concept of cloud networking, where we use Check Point Firewalls in the cloud.

It makes my life easier. I have on-prem and cloud firewalls. I can use the same policies in both places. 

It is a full-featured firewall on the cloud. The best feature is that it is the same software used on-premises. It's like having a full-blown firewall in CloudGuard. 

It is the same policy used on-premises, seamlessly pushed to the cloud. I have the same principles in the cloud. Security features allow control in areas usually not available, filling the gap with firewalls to secure operations. Overall, it greatly improves posture and internal operations.

Network Security provides us with unified security management across hybrid and cloud as well as on-prem. Once again, this is about having the same policies. It's seamless. There are the same configurations, the same principles, et cetera. 

It's helped us reduce organizational risk and improve security posture. We have robust security on the cloud to secure everything. It helps improve posture and internal operations.

I would focus on the implementation in the cloud, as it relies on third-party vendors like Azure and AWS. It's not seamless; the solution should be more straightforward for complicated environments.

I have been using it for the last two to three years actively. 

It is stable. I did not experience any downtime, and I hope I won't have any.

Regarding scalability, I set up a firewall in the cloud and left it operating. Nothing happens to it without intervention. We perform minor and major upgrades, and it works seamlessly. It is very good.

I have a very good relationship with customer support. They are like my best friends - especially those on level three and four. How would I would rate them a solid eight out of ten.

I did not use a different solution previously. We chose this over options offered by our cloud vendors since the policy management is strong. I don't have to redo everything from scratch. Also, since I have been using Check Point for many years, it was very easy for me to use the same product that I use on-prem in the cloud.

The licensing is bit pricey. Check Point is expensive, however, with the features and capabilities, I can justify the cost.

I'm an end-user, partner, and reseller of CloudGuard.

The same features used on premises apply to the cloud. It makes my life easier with consistent policies and configurations. It's a fair option. 

Overall, I would give the product an eight out of ten.

I am quite satisfied with it, as it secures our virtual environment in both CloudGuard and on-premises. The business case was that we have several customers transitioning from on-premises to cloud solutions, and we wanted to have the same visibility and security in CloudGuard as we had on-premises.

We wouldn't have the same visibility or granularity if we didn't have Check Point. 

We have very good visibility or granularity regarding security. 

Since we are using the same management both on-premises and in the cloud, we did not need to create other security measures or learn new technology. This allows me to achieve the same results with our existing resources.

It's quite interesting to see all the new features being added to the solution. I plan to do more integration with the CloudGuard-specific elements within the new policy framework. Although I do not remember the specific name, there is a feature that involves a revision of the policies. That will be our next addition.

We have visibility both on the cloud and on-prem, and we are very satisfied with that. 

It's helped us with our security posture. We have the visibility. We have the possibility to deploy new stuff. We also used the data center dynamic objects. So when we tag solutions, they get the policies they should have from the setup.

It's easy to use and deploy. 

I'm quite satisfied with the solution. I don't have any notes for improvements. 

I have used the solution for five or six years, maybe.

I haven't had any issues regarding our cloud environment. It is completely stable with no downtime. 

It's not a scale set. It's a single node. We'd need to look at the scale set to see if there was a way to get better performance. 

I have been a Check Point customer for quite some time. We do not use other solutions. 

The initial setup did not take too long. I am unsure of the exact duration, however, I was up and running in about an hour. It was very straightforward and almost plug-and-play.

Everything could be cheaper, of course. 

There are cloud-native options. During setup, we had quite a few people telling us we should just use cloud-native solutions. However, we wanted the same security measures on-cloud and on-prem. It would have been cheaper to stay with cloud-native; however, to have visibility in the same place is important. 

People might just use a cloud-native solution since they are already there and cost less. However, my priority was to maintain visibility and consistent security measures in the cloud as on-premises rather than focusing on cost. The unified management from one platform and centralized visibility are invaluable to me.

I am quite satisfied with the solution, and I do not have significant suggestions for its improvement at this point. The product team appreciates feedback, and fortunately, I have comprehensive playbooks for deploying new solutions. The process is straightforward, especially with the dynamic data center objects. When solutions are tagged, they automatically receive the appropriate policies. 

Overall, it is an excellent solution, and I would rate it a ten out of ten.

Our primary use case for CloudGuard Network Security is to secure the cloud environment where we host our backend systems. The platform helps to guard the network security of our infrastructure by securing the traffic and preventing cyber threats. 

It also ensures compliance with industry regulations. Moreover, it integrates easily with AWS and Google Cloud, allowing us to apply a unified security policy throughout our cloud infrastructure.

Check Point CloudGuard has been very helpful in maintaining a high level of security across our cloud environments as our apps integrate with multiple cloud services. 

It ensures secure communication between services and user devices, protecting sensitive data like user information and financial transactions. This has resulted in increased client satisfaction and retention, particularly in sectors requiring stringent data protection like finance and healthcare.

One of the most valuable features is the automated threat prevention, which helps us detect and block potential cyberattacks in real-time, minimizing data breaches. 

The ability to integrate with multiple cloud platforms provides a centralized view of our applications, enhancing security management. The solution also offers real-time visibility and protection against network threats.

The user interface could be more intuitive, and the initial setup and configuration can be complex, requiring a technical team. 

Additional improved documentation and support would make it easier for beginners and small-scale startups. Furthermore, the pricing model is quite expensive, which could be a barrier for smaller companies.

I have been using the solution for approximately one year.

The platform is quite stable. We have not faced any difficulties with its stability.

The solution is very scalable. I would rate its scalability as nine out of ten.

My experience with customer support has been positive. They are responsive and knowledgeable, available twenty-four by seven. However, they could improve by providing documentation for offline issues to better assist users who may not reach out to them directly.

Neutral

Before using Check Point CloudGuard, we managed security through a team of experts. Due to budget cuts during a recession, we switched to using this solution to maintain our security standards.

The initial setup was quite complex, requiring a technical team to understand the processes and implement the solution. More intuitive configuration tools and better documentation would be helpful.

We deployed the solution with a team of fifty-seven people, including cybersecurity engineers and cloud experts, along with support from customer service.

Implementing CloudGuard has resulted in an excellent return on investment over one hundred percent ROI. It has saved costs in our security team, saved potential security breach costs, and enhanced client satisfaction.

The pricing and licensing are expensive, costing between seven thousand to eight thousand dollars. While it offers good features like threat prediction management, reducing the cost will make it more accessible to a broader audience.

We have not used other network security solutions before Check Point CloudGuard.

It is important to prioritize security if managing data in multi-cloud environments. Having a technical team familiar with cloud security is recommended. Working closely with Check Point's support team can help in navigating complex terminologies and enhancing security across cloud platforms.

I'd rate the solution eight out of ten.

Many traditional on-premise customers transitioning to the cloud often prioritize solutions like CloudGuard, especially when dealing with scale sets and clusters. These customers are accustomed to constructing their own network infrastructure and are drawn to CloudGuard for its compatibility with these setups. This primary use case highlights the appeal of CloudGuard for organizations seeking to maintain control over their network security while migrating to cloud environments.

The unified security management significantly impacts security operations and management positively. It's undeniably beneficial, offering streamlined processes and enhanced control. With the rise of infrastructure as code and tools like Terraform, there's a shift towards a separate manager pushing policies to gateways, which can introduce complexity. However, advancements like dynamic resets, enabled directly on the gateway without manager intervention, represent a significant leap forward, simplifying operations and propelling the company towards more efficient security management.

The most significant benefit for our customers lies in the familiarity and comfort of transitioning from on-premise Check Point solutions to CloudGuard's unified management system. This seamless continuity offers reassurance and confidence in navigating the cloud security landscape, making the transition smoother and more intuitive for them.

When compared to other migration solutions in terms of identity-centric security threats, Check Point stands out for its efficacy rates, particularly evident in its threat cloud and AI capabilities. The integration of various security features, along with the collaborative aspect where information from all Check Point Gateways feeds into a collective pool, underscores the robust security aspect of the platform. This is where Check Point consistently sets itself apart in the security landscape.

We maintain a high level of confidence in our security posture, provided everything is configured correctly. Check Point offers additional solutions to address gaps beyond the firewall's capabilities, especially in scenarios where threats may circumvent it or exploit other entry points. Network security alone may not suffice, but Check Point's supplementary solutions, such as Network Calabrio, complement our defenses effectively, serving as a solid foundation for our overall security strategy.

Our clients appreciate the familiar look and feel of Check Point's interface, which maintains the security standards they've come to trust. While there are numerous reports comparing efficacy rates of cloud-native solutions, they often fall short in comparison to third-party vendors like Check Point.

The auto-scaling feature is undoubtedly one of the most valuable aspects of having Check Point security in the cloud. It provides excellent protection by dynamically adjusting resources based on demand. Additionally, the centralized reporting and management, accessible through a single pane of glass, offer consistency and efficiency across multi-cloud environments. This unified approach ensures seamless security management regardless of the cloud platform, making it a highly advantageous feature of Check Point's cloud security solutions.

Check Point's primary competitor, Palo Alto Networks, offers a SaaS firewall solution that can be deployed in both traditional virtual networks (VNETs) and virtual wide area networks (VWANs). This firewall solution features auto-scaling and consumption-based pricing, allowing users to scale according to their needs seamlessly. While Check Point does offer some VWAN offerings, they appear to be more static and less tailored to cloud-native environments compared to Palo Alto's dynamic and flexible approach.

I have been working with it for approximately five years.

In terms of stability, I've never encountered any issues where a gateway went down or experienced faults. My experience across various environments has been consistently positive, without any instances of gateway crashes or failures for any specific reasons.

The scalability aspect functions seamlessly, although there's a significant process involved, particularly with the CME and management components recognizing new gateways and pushing necessary files. Despite the complexity, the CME serves as an effective tool for deploying scripts and managing tasks. However, the requirement for management to push configurations to the firewall adds an additional layer of intricacy beyond simply pushing to the gateway.

The technical support provided by Check Point is commendable. Once a case reaches the right hands, resolutions are often swift. However, there can be challenges in initially getting the case directed to the appropriate personnel, which is not uncommon for organizations of our size. I would rate it seven out of ten.

Neutral

I've implemented various deployments, with one of the most extensive being a multi-tier architecture utilizing different scale sets for handling ingress, egress, and east-west traffic internally. This particular deployment spanned across two regions, with a total of twelve instances distributed among the scale sets, each serving a distinct function. Essentially, it aimed to replicate a traditional data center environment in the cloud, catering to the specific needs of the organization.

Lately, I've been engaged in numerous discussions surrounding cloud-native firewall solutions like AWS Firewall or Azure Firewall, as well as offerings such as Palo Alto's SaaS firewall and CloudGuard NGFW.

CloudGuard compares favorably, offering a familiar and user-friendly experience akin to Check Point's traditional products. The trend towards cloud-native solutions is evident, particularly among non-security-focused individuals. The flexibility to assist in migrating customers who are embracing cloud-native approaches, integrating seamlessly with platforms like Azure WolfStack and AWS real stack, is a significant advantage. This ease of migration is a notable strength of competitors like Palo Alto.

It functions well, especially the auto-scaling feature, despite the complexity involved, particularly with integrating Azure load balancers. Consolidating these components would be beneficial, but without a SaaS offering, reliance on Azure's resources or cloud-native resources remains a factor. Overall, I would rate it eight out of ten.

We are using it for in and out of our cloud from on-premises. Security from our SD-WAN and express route connectivity is our main use case.

We also have vendor integrations. SAP RISE was the big one that we recently had where we were using dedicated CloudGuard network gateways for straight vendor implementations.

The ease of deployment has been a benefit. Having Check Point on-premises definitely helped with moving to the cloud. It feels very similar after you migrate. It was not as cumbersome as on-premises, and it was a little less scary for others. It enabled others within our company to adopt.

We have unified security management across hybrid clouds as well as on-prem. We are using just gateways to the cloud, and we have the same management server and the same console as on-prem gateways. It definitely allows you to have unified policies across the board. This seamless integration is a huge plus. Smart-1 Cloud is the next portion to go up to, so we can remove the complexity of management, such as login and whatnot, from our responsibilities.

By using CloudGuard Network Security, we have a good foundation. The history of Check Point has a reliability that I trust. Most of the improvements we do are more internal. There are actions that we, as customers, need to do. It helps to have vendors like Check Point who will go out of their way to help you make their product seamless. It is only as good as how you use it. That has been a big positive, and we have had a good accounts team that has been able to bring proper resources to us, and we encourage those additional resources they provide to us to help us be successful.

For identifying security threats, our company uses a portfolio of different kinds of vector spots and inspection spots. Some of that is handled by another team, and I do not have direct insight into that. However, it has definitely added some automatic reaction with our on-premise setup, which has helped us integrate cross-platform. That portion has been great because no one wants to be too vendor-dependent. You want to be vendor-agnostic. The fact that we can utilize it across multiple vendors has been a positive for us.

We are using gateways, and I appreciate the high-availability gateways they have. They stand out more than the competitors. 

The Check Point architecture team adapting fluently to the architecture that each cloud has is valuable. They are adaptive to customer solutions, which is a big advantage.

Some more built-in marketplace templates would be nice. It would be nice to see more vendor assistance in deployments and backup of recoveries versus having customers rely upon that themselves. That would make it a lot more seamless and aligned with the standard on-premise model that is there. Check Point can extend the same posture that they have to CloudGuard and make that transition very seamless.

Check Point does not have as big a footprint in engineering teams as Cisco or Palo Alto has, especially in the US market. Therefore, finding someone who understands Check Point is a lot harder. If Check Point can make it easier for seamless transitions, it will build the confidence of engineers and help with the adoption of a new vendor for those engineers. Anything they can do to help with that is a competitive advantage, and it works for any company looking into it.

I have been using CloudGuard Network Security for about three years.

It is very stable, but in any virtualized environment, you are still dependent on your cloud provider. If Amazon, Microsoft, Google, or any other cloud provider reboots the gateway because they are doing some maintenance and did not tell you about it, it is not Check Point's fault. It is something where you have to correlate whether you had an outage or lost a node. You still have to report that. It still looks like that your Check Point firewall went down, so guilty until proven innocent type of deal comes into play. That has been a little bit more challenging than when it is your hardware on-premises. Outside of a power issue or an upstream switch, if something goes wrong in the box, it is not on Check Point. At that point, you can hammer down to the cloud. Having shared resources makes it a little bit difficult to delineate. You have to go case by case.

I have not directly experienced the need for scaling, particularly horizontally. Based on studies, presentations, documentation, and architecture, scalability is definitely there, so I have confidence that if my business needs to shift to high throughput and high sessions, Check Point will have a solution for me to do that seamlessly.

I have always had challenges with TAC. There still seems to be a difference in the type or level of tech support you get based on the region you call into. That has been a little bit more challenging. We have had issues with getting the same candid answers where they were regurgitating without looking through. At the support level, we have had some challenges back and forth, but when we talk to our account team or our sales engineer and say that we have a problem, their reaction is very quick. Their escalation internals take care of that. They get us the right people.

For additional deployments from the cloud perspective, we have always had great contacts to get to. I have been very happy with the level of support Check Point has given us for new deployments' design ideas and problems. The feature roadmap they chose has been excellent.

Overall, I would rate their customer service and support an eight out of ten. I am dropping points because of the TAC issues that I have had.

We do use another vendor that does a similar function. The vendor is Fortinet. Both vendors have their own pros and cons. The big difference between the two from a cloud network security perspective is that the high availability model that Check Point has is not what the competitor has. So, you are still relying upon load balancers, and you are still relying upon cloud failover, which adds a little bit of complexity. This high availability has been a huge plus. We have not seen our current vendors or other vendors be able to do so. 

We, as such, have not switched. We have a different vendor we use, and we have not made the decision to switch. We are still at that deciding factor because we are seeing where things fit with both platforms. From an ROI perspective, switching would not be advantageous to us at this point based on what we are getting, but it is definitely something that is looked upon as we look at life cycles. We can then make a decision one way or the other to meet our business needs. 

The decision to go for CloudGuard instead of our cloud vendor's cloud firewall was predated. There were some implementations that were already there. We have made additional investments where we did go between vendor A and vendor B and made a decision. I made the decision and chose Check Point, not just for the single pane of glass and ease of management but also for the high availability. For the high availability that we were deploying, there was no other solution that could give us the seamlessness we were looking for. We could not get that from other vendors, so it became evident that going for Check Point was the right decision to make.

We are a Microsoft Azure Shop, and the deployment model would be high-availability gateways. We are not using gateway low balancers. We are just using the high-availability deployments.

In terms of ease of deployment, I cannot speak for the earlier years, but I did hear that there were some pain points. That was more of a combination of cloud maturity in Microsoft and Check Point integrations. There were other challenges related to intermixing and the knowledge base. This was when Check Point was new to our company, and we probably did not have the right MSP support. A lot of those gaps and failures were due to the support and not having that strong knowledge base and operating support afterward. Recent deployments, from 2020 to 2024, are different. There is a night and day kind of difference. We had instant Check Point support. They walked us through and sat on the call while we deployed in real-time with our CloudOps teams. It was seamless. We ran into a gap, and we were easily able to fix it right then and there. They were very collaborative. It has just been a night-and-day type of scenario.

For the first implementation, we used an MSP consultant in collaboration with Check Point. We did the recent deployment in-house directly with Check Point.

We are yet to figure that part out. There is a lot of tuning on our side, and we have definitely seen its remediation and prevention capabilities help us in very critical situations. Knowing that we could be proactive instead of constantly being reactive has definitely put me at much more ease at night. There are some improvements to that. 

Investment-wise, this is where you look at the consolidation and realize that you might have different vendor technologies that might be doing the same thing. This is something we will have to look at. It is not necessarily a Check Point problem. It is something that we, as an enterprise, have to look into.

My experience has been extremely positive. It was not a concern because I had an account team that fought for pricing for our company. They were not pushing me to professional services for certain help. I was instantly getting a CloudGuard architect to help us out. They understood our environment and bridged the gap where we needed that help with our public cloud provider and with Check Point, in this case. That is what made the experience. They allowed us to scale it well, and that is where Check Point has done very well. 

They realize that customers need to be adaptive in their cloud deployments, and they are much quicker than on-prem. They know that in the end, their product speaks for itself, so pricing has always been very competitive compared to other vendors. I have always had account teams no matter what company I have worked for, and they have always done a good job of meeting that gap. So, its pricing was not the reason we made the decision.

I would rate CloudGuard Network Security a nine out of ten. The ease of template deployment would have been nice. There was also a little bit of weirdness with the licensing models for our on-premise management. That is pretty much it. Otherwise, I am extremely happy with it. They are not negatives. It is still great.

I use Check Point CloudGuard Network Security to ensure we have the same management system for managing firewall policies both on-premises and in the cloud.

Check Point CloudGuard Network Security enabled us to move to cloud workloads safely while having the same level of security as we have on-prem. 

The unified management, unified log management, and unified policies are all invaluable. We like that everything is unified. 

CloudGuard Network Security provides us with unified security management across hybrid clouds as well as on-premise. Security operations are simplified by unified management, easing troubleshooting, and maintenance. Using the same objects in both the on-prem and cloud policies reduces the need to switch between different interfaces and log stores, enhancing our security operations significantly.

It's helped us reduce organizational risk. I cannot say by how much. Just having the same policies everywhere without having to move around different management interfaces and log stores just helps with security operations. We can see everything in one pane of glass. 

We have confidence in our secure deployments and migrations. In fact, it has enabled us to move to the cloud securely. The confidence is there based on our confidence in Check Point products on-prem. 

Improvement is needed in the deployment models. Currently, I have deployed VMs and installed CloudGuard as if they were gateways. Having some as-a-service models would be great. 

Scalability could be improved as well; needing to purchase a new license each time I want to add a new interface is not ideal.

I have used the solution for three years now.

The solution works adequately, meeting my expectations for a firewall.

Scalability could be improved. When we need to buy a new license, to add a new interface is not ideal.

Support is okay. Sometimes, it is necessary to reiterate the importance of a case; however, generally, the cases are handled to our satisfaction.

Positive

We did not use a different solution previously. 

We have an on-prem and cloud environment. The setup was relatively easy, even the first time. I just select it from the marketplace, and it appears. After that, it's the same as installing on-premise gateways, including a first-time installation wizard.

I received assistance from an external third-party company. The experience was great and has continued to be good over the seven years I've employed them.

The cost is adequate. I am not responsible for pricing and licensing aspects, I would say pricing is adequate. It is not cheap, however, I am not seeking cheap solutions; I want the best solutions.

We have not evaluated other solutions. 

I would give it a solid eight out of ten. I am not yet fully utilizing all its functionalities and I cannot assess all features. There is always room for improvement. 

We use it to secure our network. We use it to manage our firewalls and some of the other services that we have with them.

By implementing CloudGuard Network Security, we mainly wanted visibility.

CloudGuard Network Security saves time from having to go to multiple places to look for different things. It gives us the ability to see it all in one place. We could realize its benefits in less than 90 days.

CloudGuard Network Security provides unified security management across hybrid-clouds as well as on-prem. We are able to combine different aspects into one place.

I am confident in our cloud network security. Check Point is a great company. They stay up to date on everything that is happening, and they keep us informed about anything that needs to be done to maintain that security posture.

The visibility is most valuable. It allows us to see all of our devices from one place, and it gives us the ability to manage push updates and things like that from one place.

Its price is fair, but it can be more favorable.

We have been using CloudGuard Network Security for about two years.

It feels very stable to me.

Its scalability is good. It is being used across multiple departments. There are 300 users and a lot of endpoints.

We do not have any plans to increase its usage this year. We might do that in 2025.

Their support is great. I would rate them a nine out of ten.

Positive

We did not use any similar solution previously.

I was not too much involved in its deployment. My role is not as technical as it used to be.

We worked with partners to help us with the deployment who had expertise in this, so it was pretty straightforward. Our implementation strategy was to work with a partner.

We had a Check Point partner for implementation. Our experience with them was good. 

We have seen an ROI in terms of time and labor costs. People do not have to spend as much time on different things. They have one interface to manage different things.

It is fairly priced, but it can be a little expensive from time to time. 

I am not aware of any solutions that we have evaluated. Check Point is our firewall vendor, so we went with them. We were able to have just one partner and one point of contact for any issues. Having a bunch of different products creates problems of its own. You do not know whom to call and whom not to call for an issue. Having one single contact to oversee all that is beneficial to us.

I would advise taking your time. Be patient, and you will see results. It does not take much time, but some people want to see a return right away. It took us about 90 days to see the return. It is more based on you getting in it and doing things with it, but be patient.

I would rate CloudGuard Network Security a nine out of ten.

CloudGuard is protecting my cloud workloads. The secure communication between my on-premises network and the cloud network is the main use case. I am establishing one continuous rule set across all of my infrastructure and then maintaining all the guards and measures throughout my infrastructure.

We managed to reduce the effort and workload as well as the attack surface across our infrastructure. We now have a more continuous policy. 

The centralized management is one of the key use cases. 

I managed to reduce the effort, workload, and attack surface across my overall financial infrastructure. These are the main things. Centralized management is the feature I like best, resulting in reduced workload and more continuous policy.

We have unified security management across hybrid environments. 

It's good for identifying security threats. We compare it to what cloud solutions providers offer. We look more into the actual traffic and the enforcement of the policy. What Check Point provides goes beyond and is not comparable to what is offered by the native network solutions. 

We have confidence in secure cloud migrations. It's imperative to use a solution like this. We wouldn't want to run our cloud without this level of security and protection.

Today, we are trying to look more into encrypted traffic. API security is one of the most highlighted aspects we are currently evaluating. Network Detection Response (NDR) and AI protection are the main areas I am focusing on now. In addition, I am looking into Secure Access Service Edge (SASE) solutions in general.

I have been using a Check Point solution for three and a half years now. I have used network security for a much longer period before that. 

The stability is very good. I am very happy with stability.

CloudGuard scalability is what it is. It integrates perfectly into the cloud world, which is what I expect. With the centralized management in place, scalability is perfect. I can deploy it everywhere I need it. Scalability is one of the key factors for selecting this solution.

Check Point support is similar to other support on the market.

Neutral

I have looked at Cisco and Palo Alto. I evaluated these solutions and then came to terms with Check Point. We like that it integrates with other security solutions from Check Point we're running.

We have looked at competitive vendors a lot and we decided to go with Check Point. We've looked at Cisco and Palo Alto, however, we preferred Check Point's centralized management. 

Overall, I would rate the product eight out of ten.