No more typing reviews! Try our Samantha, our new voice AI agent.

Check Point Cloud Firewall (formerly CloudGuard Network Security) vs Cisco Secure Workload comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 15, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Check Point Cloud Firewall ...
Ranking in Cloud and Data Center Security
5th
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
166
Ranking in other categories
Firewalls (8th), Managed Security Services Providers (MSSP) (1st), Software Defined WAN (SD-WAN) Solutions (3rd), WAN Edge (3rd), Unified Threat Management (UTM) (4th)
Cisco Secure Workload
Ranking in Cloud and Data Center Security
7th
Average Rating
8.6
Reviews Sentiment
7.7
Number of Reviews
15
Ranking in other categories
Cloud Workload Protection Platforms (CWPP) (18th), Microsegmentation Software (4th), Cisco Security Portfolio (7th)
 

Mindshare comparison

As of July 2026, in the Cloud and Data Center Security category, the mindshare of Check Point Cloud Firewall (formerly CloudGuard Network Security) is 4.4%, up from 1.3% compared to the previous year. The mindshare of Cisco Secure Workload is 8.8%, down from 13.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud and Data Center Security Mindshare Distribution
ProductMindshare (%)
Check Point Cloud Firewall (formerly CloudGuard Network Security)4.4%
Cisco Secure Workload8.8%
Other86.8%
Cloud and Data Center Security
 

Featured Reviews

Viral Shaa - PeerSpot reviewer
IT Security Analyst at Eos Energy Enterprises, Inc.
Cloud security has unified hybrid policies and now protects critical energy workloads continuously
I would say Check Point Cloud Firewall (formerly CloudGuard Network Security) is valuable due to its hybrid cloud security features. It offers granular policy management across the on-premises and cloud environments, giving administrators consistent control for configuration drift. We need to change the policy and the inbound and outbound traffic settings, indicating what traffic must be blocked or allowed, and this capability with Check Point provides significant input into our security strategy. Check Point Cloud Firewall (formerly CloudGuard Network Security) provides unified security management across both hybrid clouds and on-premises environments. Unified security management affects my security operations positively, as we maintain critical systems on the cloud that require strong security and air gap networks. This cloud-native routing and policy installation helps close gaps in protecting critical applications and environments from exposure to the public cloud. From an administrator's perspective, Check Point Cloud Firewall (formerly CloudGuard Network Security) enhances our organization with clearer and more intuitive logging, making decisions easier to understand without deep investigation. In the CloudGuard UI, I can see which threats have triggered alerts, and this information is available on the unified dashboard that provides details of the threat analysis upon alert. As a small team, we log into the console to check specific alerts for high or low network usage or machine shutdowns. If needed, I tune the configuration policy, and the visualizing tools with reporting functionality simplify tracking changes made on the firewall, including the relevant source IP or device names. We ingest logs into our SIEM for detailed oversight, which allows us to monitor any administrative changes. Check Point Cloud Firewall (formerly CloudGuard Network Security) has significantly reduced our organizational risk. We clearly understand our threat landscape and the associated risks. Onboarding the CloudGuard solution directly into our cloud environment has significantly lowered the risks throughout the network and it is easy to launch. When we assess our security posture with third-party assessments, we gain granular visibility into our network pre- and post-CloudGuard installation, showing how we have addressed significant risks and secured vulnerabilities.
Raj Metkar - PeerSpot reviewer
Director, Head of Networks at MUFG, EMEA
Discover internal application dependencies and create a dependency map
We actively seek improvements in integrating the Infoblox DDI platform with Cisco Secure Workload. This integration allows Cisco Secure Workload to learn about our networks and network tags, providing valuable insights into vulnerabilities related to the operating system and various applications installed on our servers. Recently, Cisco announced a new product called HyperShield, an AI-based autonomous micro-segmentation solution. While Cisco has not stated that HyperShield will replace Cisco Secure Workload, it represents a natural evolution for the company. HyperShield features dynamic policy discovery and enforcement; however, once policies are enforced, they do not change until a discovery occurs, requiring a re-enforcement process. This new platform operates autonomously, minimizing the need for user or security engineer intervention. I would have expected Cisco to incorporate more automatic discovery and enforcement features within the existing Cisco Secure Workload product. Instead of enhancing the current product, they have introduced a new solution. Cisco plans to honor existing Tetration licenses, allowing users to transition to HyperShield without additional costs, reflecting the investment enterprises have already made. From Cisco’s perspective, this represents a natural progression in their product line. While the product name changes, it seems more of a rebranding effort. The enhancements are greater autonomy, improved discovery, and automatic enforcement, which are now being introduced in HyperShield. Cisco Secure Workload offers automatic policy enforcement but cannot adjust policies dynamically as the application needs to change. Having used the platform for the past five years, the recent announcement has been reassuring. Cisco has confirmed that our investment in the platform will not go to waste. They will honor our existing licenses, providing a natural migration path to the new solution without any disruption

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Check Point is one of the best in the market."
"Implementing CloudGuard has resulted in an excellent return on investment over one hundred percent ROI."
"I like the firewall and the virtual machine. I also like that it's compatible with Amazon Web Services and Azure."
"Check Point is one of the few solutions that pay attention to cloud security. Many others mostly focus on providing on-premises solutions."
"We have found the overall functionality of the product to be exactly similar to the physical product. The one good advantage is that it is cloud-based and can be deployed either as a part of a scale set or one can shut down the virtual machine and adjust the physical parameters of the virtual machine easily and bring it right back up."
"It makes securing our cloud workload super easy, and we are able to push any sort of policy changes we need pretty quickly"
"We have unified management. It is one of the advantages of this product."
"The most valuable Check Point CloudGuard feature is the firewall; I also value the user authentication, IPS, and application control features."
"The scalability of Cisco Tetration is very good."
"This product does everything that you need it to do and more and does a lot to provide visibility in a network environment, save time and money, and make the organization IT operate in a much more streamlined fashion."
"The product provides multiple-device integration."
"A complete and powerful micro-segmentation solution."
"The most valuable feature is micro-segmentation, which is the most important with respect to visibility."
"The solution is very user-friendly, which clients appreciate."
"The product offers great visibility into the network so we can enforce security measures."
"The most valuable feature right now is to do with having visibility on the network — especially on our servers — and to be able to enforce some type of security measures."
 

Cons

"The cost is relatively high compared to the cost of other products in the market."
"The main issue that I have noticed is that for deployment, it still requires a dedicated management server, and the gateway is completely different. That sometimes can cause issues."
"There is room for improvement in how it handles deployment itself, but I am not sure. It could be due to Azure's limitations, not Check Point's. Deploying a new firewall is quite bulky and not straightforward, especially in managing the resource group and networks. These issues seem to come more from the Azure part."
"If you compare the GUI with the Palo Alto and Cisco, they're very easy. Check Point, due to its design, is a little bit complex."
"Check Point CloudGuard is not a feature-centric product because Check Point concentrates on security."
"The UI is very slow, and getting the graph details on the security performance metrics is lagging."
"A threat categorization system can be added to give users the authority to define vulnerable attacks and classify areas that can threaten the workflow system."
"The core security features of Check Point CloudGuard Network Security work really well, but a few usability areas hold it back: the policy propagation speed and parts of the interface."
"The interface is really helpful for technical people, but it is not user-friendly."
"It is not so easy to use and configure. It needs a bunch of further resources to work, which is mainly the biggest downside of it. The deployment is huge."
"There is some overlap between Cisco Tetration and AppDynamics and there are few DC tools, it would be great to have a single pane of glass, rather than have to jump between different tools."
"There's room for improvement when it comes to Cisco Secure Workload. A couple of internal areas could be refined a little bit. They are trying to solve it, depending on where you suppose the agent is. Suppose you have the agent on both the server and the client, which could be the front-end server or web server connecting to the. In that case, if those two are communicating on RPC, the server can look into its configuration. It could go down and find the configuration file on the FTP server and then set the policies to it. But there are a lot of different FTP servers out there. It's also a complex case for the tool to support all FTP servers."
"The problem is that we can only deploy the particular solution where we have the hardware with Cisco."
"A feature that I was looking for was emailed alerts and notifications so we'd get them right away."
"The scalability of this solution needs to be improved."
"They should scale down the hardware a bit. The initial hardware investment is two million dollars so it's a price point problem. The issue with the price comes from the fact that you have to have it with enormous storage and enormous computes."
 

Pricing and Cost Advice

"You get charged only for what resources you choose and how much traffic actually passes through the firewall, which in turn saves a lot of money."
"The product's licensing costs are yearly."
"It is expensive."
"We got discounts on pricing."
"I do not have too much to compare to, but if I compare it with Azure Firewall, Scale Set is quite good. It has quite a good price."
"The pricing is highly competitive and advantageous, offering great value."
"The tool's pricing is not cheap."
"It is the most expensive part of the product. There is a lot of room for improvement. Security comes with a price, but it is still a big chunk just for the service."
"It is not cheap and pricing may limit scalability."
"The price is outrageous. If you have money to throw at the product, then do it."
"Pricing depends on the scope of the application and the features. Larger installations save more."
"Regarding price, Cisco Secure Workload can be expensive if you don't have a budget. If you're not doing micro-segmentation, every extra security measure or enforcement you're putting on top of your existing environment will be an extra cost. It's not a cheap solution at all. But from my point of view, if you need to do micro-segmentation, this is one of the best tools I've seen for it. I can't compare that to Microsoft's solution because I haven't looked into it. I've looked into VMware and Cisco. Those are the only two that I know of. I didn't know that Microsoft could do micro-segmentation at all. Maybe they can, but I haven't heard anything about it."
"The cost for the hardware is around 300k."
"The price is based on how many computers you're going to install it on."
"The pricing is a bit higher than we anticipated."
report
Use our free recommendation engine to learn which Cloud and Data Center Security solutions are best for your needs.
904,680 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
16%
Outsourcing Company
10%
Financial Services Firm
10%
Manufacturing Company
7%
Manufacturing Company
13%
Financial Services Firm
10%
Government
9%
Computer Software Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business72
Midsize Enterprise39
Large Enterprise80
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise3
Large Enterprise8
 

Questions from the Community

What is your experience regarding pricing and costs for Check Point CloudGuard Network Security?
Check Point Cloud Firewall (formerly CloudGuard Network Security) is comparatively conservative in terms of pricing; it is not a very expensive product. If you are a Check Point shop with multiple ...
What needs improvement with Check Point CloudGuard Network Security?
Check Point Cloud Firewall (formerly CloudGuard Network Security) is definitely lagging behind its peers. I am not sure what the reason is. Compared to Palo Alto, they are not there in terms of cap...
What is your primary use case for Check Point CloudGuard Network Security?
Check Point Cloud Firewall (formerly CloudGuard Network Security) is a cloud-native application protection platform and a suite of multiple products. We primarily use it for our hybrid multi-cloud ...
What is your experience regarding pricing and costs for Cisco Secure Workload?
CloudStrike offers antivirus capabilities and firewall features for servers and VDI but lacks automatic policy discovery. This raises questions about the resources required to discover and write po...
What needs improvement with Cisco Secure Workload?
We actively seek improvements in integrating the Infoblox DDI platform with Cisco Secure Workload. This integration allows Cisco Secure Workload to learn about our networks and network tags, provid...
What is your primary use case for Cisco Secure Workload?
When we onboarded Cisco Secure Workload, the usual use case was to discover internal application dependencies and create a dependency map for Cisco ACI. As the network team, we chose to implement A...
 

Also Known As

CloudGuard IaaS, Check Point vSEC, CloudGuard IaaS, Check Point Virtual Systems, Check Point CloudGuard Network Security
Cisco Tetration
 

Overview

 

Sample Customers

Physicians Choice Laboratory Services, Helvetica Insurance
ADP, University of North Carolina Charlotte (UNCC)
Find out what your peers are saying about Check Point Cloud Firewall (formerly CloudGuard Network Security) vs. Cisco Secure Workload and other solutions. Updated: June 2026.
904,680 professionals have used our research since 2012.