What is our primary use case?
Currently, I'm working as a Lead Security Architect in the healthcare industry. We have two data centers, multiple branch offices, multiple cloud subscriptions, and over 200 employees. Our operation is mission-critical and requires it to be up and running 24/7. We need to protect multiple applications that are developed in-house, sensitive data including PHI, Financial, intellectual property, et cetera.
Check Point NGFW and its security modules have been our security solution for the past six years to protect all of our assets, including our cloud subscriptions.
How has it helped my organization?
Check Point Next Generation Firewalls are key components in protecting our assets and information. Their security modules are very easy to use and understand. Also, it's one of the most user-friendly interfaces I’ve had the opportunity to use and I’ve had the chance to work with more than four firewall solutions.
Their reporting and logs modules are amazing. It provides a level of detail and visibility that we haven't had before. It’s useful to understand what is happening on our network and has been very successful in blocking attacks and providing options for executive summaries.
Being able to manage all the security gateways for our multiple sites in a single management console and share policies has been very beneficial.
What is most valuable?
The Remote Access VPN has been crucial to us, especially during this pandemic. We had to be on lockdown for a couple of months and being able to deploy a remote workforce with Check Point VPN was a crucial part of our business continuity strategy.
The logs and reporting are very easy to use and manage. Also, the IPS and IDS are critical components to keeping our network secure. They are very easy to configure and there are multiple templates that can be used out of the box that provides maximum protection to our network.
The support offers the best services I have experienced. It's better than any other IT vendor.
What needs improvement?
Check Point Firewalls haven't failed me during the past six years that I have been using them.
If I had to mention anything that I would like to see some improvement on, it’s on the internet load balancing options. Internet load balancing provides either active/passive or active/active load balancing, however, I would like to see more options that provide SD-WAN capabilities while also allowing for more than two links. I know this can be performed with other network devices, however, adding the option as part of the NGFW would be awesome.
For how long have I used the solution?
I have been using Check Point for 6 years now.
What do I think about the stability of the solution?
I've never had a single issue on any of my security gateways.
What do I think about the scalability of the solution?
I haven't had the opportunity to scale, however, I have seen many demos of maestro architecture, and it looks awesome.
How are customer service and technical support?
As I mentioned before, Check Point support is one of the best services from any IT vendor I have experienced. They answer very quickly and also provide solutions most of the time within the first call.
Which solution did I use previously and why did I switch?
I have used multiple solutions in the past. We migrated from Cisco ASA to Check Point six years ago and have never looked back. Our old ASA required additional hardware components for additional security services.
How was the initial setup?
The product is very easy to set up.
What about the implementation team?
The implementation was performed by a vendor team in combination with our in-house security team.
What was our ROI?
My peace of mind is the ROI.
What's my experience with pricing, setup cost, and licensing?
Check Point is not the cheapest firewall solution, but you get what you pay for. It's super reliable and their service is great.
Which other solutions did I evaluate?
I had the opportunity to review Palo Alto and Fortinet.
What other advice do I have?
I'd advise other users to give it a try.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: My company does not have a business relationship with this vendor other than being a customer.