Check Point Infinity Reviews

My main use case for Check Point Infinity involves using the Check Point 18000, which is a Quantum Spark, as a firewall to block unauthorized access to my organization's network. I use this as a firewall which I can credit for blocking unauthorized access from coming inside. Check Point is very useful to me for blocking each and every device with unauthorized access coming to the inside network. The best thing about Check Point is its feasibility to show what kinds of devices have been connected, whether it is a mobile phone, laptop, desktop, or smartwatch. Each category shows in one dashboard, displaying the number of connected devices, making it easy for me to block unauthorized mobile phones or smartwatches while allowing only official use for laptops and desktops.

I am performing these tasks on a day-to-day basis, and I even refer this solution to everyone as well.

These features of Check Point Infinity help me stop real security issues effectively. It has stopped a lot of potential threats for me because, with my previous firewall, which I don't want to disclose, I didn't have the same feasibility to see each device categorized easily. Whenever a device gets infected, Check Point Infinity immediately alerts me with a pop-up simply showing the IP address. From there, I can quickly identify whether the device is a mobile, computer, laptop, or smartwatch to block it efficiently, thus keeping my internal network safe and secure.

The best features that Check Point Infinity offers are its ease of configuration and smooth user experience. I find it very useful because I completed the configuration within two days, despite thinking it would be complicated compared to my previous firewall. I considered restoring my previous firewall backup, but since it was a different brand, I decided to start from scratch. I thought configuring each user's laptop and applying patches would be difficult, but Check Point Infinity made it simple, allowing me to quickly set up local and remote VPNs. Identifying glitches and options is easy, unlike other firewalls, making Check Point Infinity very user-friendly.

There is a reporting alert feature that I find useful in Check Point Infinity. Whenever there are any glitches, such as DOS or DNS activities from internal sources, Check Point Infinity easily identifies those issues and quickly alerts me as the admin through pop-ups, email, and text messages. I can log into Check Point Infinity and block the device immediately when alerted.

Check Point Infinity has positively impacted my organization by significantly reducing incidents. It has defended us against numerous threats and malware, providing immediate alerts when a device is infected. Whenever a threat is identified, I receive a pop-up notification stating that specific devices are infected, and affected IPs automatically get thrown onto the block list for easy identification and actionable responses.

I estimate that since starting with Check Point Infinity, I have received over a hundred alerts for threat protections and malware incidents. Whenever these alerts come through, I block the particular IP, ensuring my internet and network stay safe and secure.

I have seen a return on investment with Check Point Infinity as it prevents costly incidents effectively. The device identifies any impending threat and alerts me immediately, allowing me to log in to the GUI and take necessary actions quickly. This process saves a lot of time and reduces the number of incidents we experience, proving to be invaluable for a system admin.

Within my organization, I primarily use Check Point Infinity for bandwidth utilization, load balancing, and we analyze all the spams, filters, and blocks.

Another feature of Check Point Infinity that I utilize is blocking all unwanted traffic, restricting around the web, and alerting me about bad actors anytime they attack.

The Threat Prevention technology in Check Point Infinity has enhanced my security posture; that's very great, excellent, and helpful.

Check Point Infinity provides financial benefits and cost savings. Without this, our business would not continue at all, as our business depends on this. If we cannot keep our data secret, all our customers will be lost.

We have been deploying Check Point Infinity as a new technology for security purposes with our biggest customer in Ethiopia. It serves to secure endpoints and protect from intrusion and various threats. The product is deployed as a SaaS solution, and we use it to protect mobile users and other aspects of the organization.

Check Point Infinity offers a multi-layered security approach that enhances our IT security environment. It provides tracking protection, intrusion prevention, and supports mobile users efficiently. 

The AI integration helps in guiding configurations and installations, making the process smoother. 

Additionally, Check Point is a supportive vendor, offering notable assistance and knowledge sharing during installations and configurations.

We leveraged Check Point Infinity primarily for gateway security, cloud security, endpoint security, and infrastructure as a service.

Architecturally, Check Point functions as a unified security system. Only one policy management section enables administrators to manage all policies from one console. The platform offers intelligent threat prevention capabilities, flagging suspicious activities and preventing potential threats before they impact your network, cloud, or mobile environments.

In my job, I design and propose different solutions from Check Point Infinity for some final customers in final champ profiles. With Check Point Infinity solutions, I can integrate different tools of Check Point like security appliances such as Quantum or Quantum Smart or the orchestrator under Smart Events like different tools of Harmony, Harmony Mail, Harmony Point, and Harmony Browse. I use the Infinity Portal to take control of the administration of these tools and orchestrate and integrate all the information to bring the logs to the final customer to deploy new strategies for cybersecurity or change or update the architecture of security policies.

One of the valuable aspects of Check Point Infinity is that I can use one unified portal for the administration of all these tools. I can integrate other tools from other brands too, to consolidate and unify cybersecurity strategies. Check Point uses robust AI software to detect and recognize all cyber-attacks, giving me the ability to prevent these attacks.

The use case involves managing various aspects, including endpoint security, SaaS interface, and firewall management within the Check Point Infinity architecture. The Infinity portal serves as a centralized hub for overseeing all components of the Check Point security suite. The architecture incorporates XDR and MDR, enabling automatic correlation of information. In scenarios where a security issue arises, the system can automatically analyze data from diverse platforms, such as endpoints, firewalls, and Office 365. T

It offers significant benefits as a cybersecurity leader, known for pioneering the logical firewall and excelling with its Infinity suite. The expertise of Check Point professionals ensures efficient handling of challenges.

We required a first line of defense to protect, monitor, and ensure that no confidential information leaves the internal network. We also required a device that can segment our network so that different subnets like the DMZ, Production network, and testing environments. Threat prevention that required AI and ML capabilities was another reason to acquire the Check Point Quantum Spark NGFW. Finally, it offers an all-in-one solution that was a necessity where the same instance could manage and monitor VPNs, application control, web filtering, intrusion detection, and email security.

With Check Point Quantum Spark, we have a first line of defense in our environment, seated just after the router that connects to the ISP's endpoint, all traffic entering and leaving the network is monitored, and filtered depending on the different rules created. 

The functionality of AI helps further in the threat detection field. This NGFW is able to support a large number of VPN connections and at the same time monitor these connections for any anomaly. 

Finally, for any flagged threats, a sandbox functionality is also provided making it even more robust in detecting zero-day attacks.

We have main offices in Brazil and branch offices in each of our state capitals. So, we have 26 branch offices in total. Each branch office used to have a small Check Point appliance. We're moving away from that model; they won't access the internet directly anymore. Instead, they'll pass through a central kind of star network.

We use two levels of firewalls: an external firewall and an internal firewall. We have a DMZ between these two firewall clusters with high availability. Each firewall has IPS, web content filtering, bot protection, and antivirus enabled. We'll contract some of those features as part of an MSSP service. We don't buy products or appliances directly.

Our procurement requirements allow other manufacturers to participate. The decision isn't ours or the integrator's – it's how we buy in Brazil. The vendor offering the lowest price for a product that meets the requirements wins. We cannot choose a specific brand or product name.

Before contracting the MSSP, we had an IPS (I don't remember if it was Check Point). However, we only detected signatures; we weren't confident enough to block them due to false positives. For the past 10 years, we have had a procedure where we get new signatures weekly, test for false positives, and set exclusions. Most relevant signatures are now in use, so the IPS is an important layer of protection for us. So, Check Point Infinity's threat prevention capabilities benefitted our organization.

We haven't had any problems with integration, but we don't need many integrations. The main one is with SIEM. The bigger issue is that we use ArcSight as our SIEM. It's very difficult to migrate from one SIEM solution to another.

We are on the journey of moving to the cloud right now. We had on-premises services, but we are going to move to a cloud environment where we have Azure and AWS Cloud. Because of this, the new solution will have virtual firewalls at the edge of each cloud.