Check Point CloudGuard WAF Reviews

The importance and use of this product were required to improve new application deployments made in the Microsoft Azure cloud. They were not one hundred percent secure, however with this CloudGuard application security from Check Point has managed to improve all these requirements to obtain greater security.

The applications are generally internal to the company, however, they are secure thanks to Check Point CloudGuard.                                   

Check Point CloudGuard Application Security is a cloud-based security solution designed to protect web applications and APIs from various types of cyber threats.

This tool has managed to improve security considerably in our apps and the APIs created for the company. We have not presented problems, threats, or leaks even when some are exposed to the Internet and are more susceptible to attacks. The company is now more secure, thanks to Check Point.                                             

The solution is created one hundred percent on the cloud; the portal is easy to manage.

The solution offers continuous security monitoring and alerting, which can help organizations detect and respond to security incidents in real time.

CloudGuard Application Security provides comprehensive visibility into web applications and API traffic

The solution offers support for compliance regulations such as PCI-DSS, HIPAA, and GDPR, helping organizations to meet their regulatory obligations.

One of the big problems we found in Check Point, in general, is the support. It is always attended very late or they take a long time to answer.

The cost of this tool is extremely high, which is why it must be analyzed before implementing it.

The support language is only English. This causes some problems in Spanish-speaking countries. They could expand the languages offered to help the client.

This excellent security tool, Check Point CloudGuard, has multi-cloud security and is also perfect for secure developments. It's been used in recent years by the company.

Previously we did not use a technology like this.

We always carry out tests and validations before acquiring a solution.

We have had the need to ensure the development of each of our applications based on the fact that the applications must be safe, fast, and efficient. We want to prevent an injection of a vulnerability attack by broken authentication, exposure of confidential data, or external entities that can inject us with xml services via broken access control. All these characteristics cause insecurity. We have looked for solutions that can guide us and establish a safe and concise baseline.

It has given us greater security at an organizational level. It has allowed us to use components with known vulnerabilities, which have been prevented based on their multiple databases that have correlated incidents, helping the development of applications to be fast, efficient, and safe, which is what we were looking for. Thus giving us the possibility to register, monitor, and identify technological insufficiencies or absent capacities in the development of the application.

Its most outstanding feature is the registry and the possibility of monitoring everything. When it comes to simplifying or establishing an error, an infraction, or a detection due to a breach of unauthorized access, it gives us an overview of each one of the capabilities and a segmented control over the development. It offers good functionality of the application that is currently running. It's giving us the ability to test based on vulnerable interfaces, and anomalous requests and responses. All these types of characteristics give us a reference point as to whether they are secure or insecure. We get logging monitoring and general visibility of the application.

The application allows us to have control over its activities, the management, and the interconnection of monitoring which takes advantage of computing power, is exceptional. That said, I would like to be able to integrate the theme of Artificial Intelligence to help review issues and to monitor and view the security issue while also suggesting and interpreting and additionally configuring solutions - basically, acting as an interpreter.

We've used the solution for about six or seven months. That was when established applications at the cloud level.

Public Cloud

Other

I use the solution for securing web applications. 

The tool's most valuable feature is AI, which makes operations easier. Moreover, it is easy to deploy. 

Securing web applications with Check Point CloudGuard Application Security is easy. The setup and configuration are easy compared to alternatives. It stands out for its simplicity. It does not rely on signatures, one of its unique features. 

The solution helps to reduce TCO. It minimizes the pressure. 

I have encountered issues with Check Point CloudGuard Application Security's technical support. It also has missing configuration features. 

Check Point CloudGuard Application Security's deployment is easy. 

Check Point CloudGuard Application Security's pricing is comparable to other products in the market. 

The tool protects newer applications. It isn't very good when dealing with both applications. However, it is expected. I rate the overall product a seven out of ten.

On-premises

We mainly use Azure DevOps for CI/CD pipelines for our applications, as well as project management and tracking bugs.

It has definitely streamlined our development cycle. The integration with other Microsoft products, especially Visual Studio, is seamless. The automation capabilities have saved us a lot of time and reduced manual errors. We are also using the Boards feature to manage sprints and track progress, which has improved team collaboration significantly.

The pricing can be a bit complex to understand initially. It can be challenging to estimate costs, especially when scaling our usage. Also, while the documentation is comprehensive, it can be difficult to navigate at times.

The pricing can be a bit complex to understand initially. It can be challenging to estimate costs, especially when scaling our usage.

Azure DevOps is a comprehensive platform that streamlines our development workflow and enhances team collaboration, though the pricing structure could be simplified.

Public Cloud

Other

I am a systems administrator currently using Check Point CloudGuard WAF.

Check Point CloudGuard WAF offers comprehensive monitoring and alerting for my entire VMware virtual environment. It allows me to get a clear picture of resource utilization, performance bottlenecks, and potential issues before they impact my business. The predictive analytics are excellent, providing a way to anticipate hardware needs, optimize resource allocation, and prevent downtime. Its automation capabilities are strong, enabling task automation such as workload balancing and resource allocation, saving me valuable time and resources.

Check Point CloudGuard WAF could benefit from an enhanced user interface as it can be a bit complex and overwhelming for new users. Its integration with non-VMware products could be improved to offer a more holistic view of my IT infrastructure. Lastly, the pricing could be made more competitive.

I have been using Check Point CloudGuard WAF for seven to eight years.

Before choosing Check Point CloudGuard WAF, I considered several other products, including Microsoft System Center Operations Manager, SolarWinds Server & Application Monitor, and Dynatrace. Ultimately, I chose Check Point CloudGuard WAF due to its strong integration with my VMware virtual environment.

I would advise someone considering Check Point CloudGuard WAF to invest in proper training. The platform's advanced features can be challenging to grasp initially. So, take the time to learn how to use the product effectively. It is well worth the investment.

We have over ten root domains that we need to protect through the firewall. All our hosts are in EC2 instances, and it is challenging to protect them by using any AWS load balancer or shields. Therefore, we have implemented Check Point CloudGuard WAF as a solution to protect all these domains from the open internet. It supports all environments, including on-premises, Azure, AWS, and we have also implemented it for CDN URLs as well.

It has improved the overall security posture of our organization. Earlier, our security score was around eight to nine, which increased after implementing Check Point CloudGuard WAF. We have achieved NIST compliance, and now ninety-five percent of the environment compliance level is equal to ninety-five percent.

The support of the root domain is one of the best features, as is the support for the CDN and advanced load balancer. These are key features that differentiate Check Point CloudGuard WAF from other vendors. Additionally, rate limiting is another significant feature of the WAF.

The UI interface needs improvement because there are a number of bugs. Integration with the SIEM platform is currently one of the key challenges that need to be addressed.

We have been using Check Point CloudGuard WAF for the last six months.

I think Check Point CloudGuard WAF is stable.

It is a SaaS-based model, and we have not encountered any scalability issues. They have sufficient resources, and there are no challenges from a scalability perspective.

The customer support is good. They have skilled personnel to provide support.

Positive

We did not use a different solution prior to this.

The return on investment is reflected in the improvement of the overall security posture. While it does not have a direct monetary impact, it enhances security with an improved NIST compliance score and better overall security scores for our organization.

Pricing and setup costs are fine. It is less costly than Cloudflare, Fortinet, and other vendors. Additionally, it is less costly than the OEM.

We evaluated Cloudflare and Fortinet.

I would advise others to use and implement Check Point CloudGuard WAF as a solution in the firewall segment. Check Point has been in this segment for two decades and is more stable than other firewall vendors. I recommend using it and implementing all the features it offers. Overall, it's a good solution, and it fulfills all our core purposes, providing complete visibility and security. That's why I rate it ten out of ten.

Public Cloud

Other