Check Point CloudGuard CNAPP vs Prisma Cloud by Palo Alto Networks comparison

Check Point Software Technologies and Palo Alto Networks are both solutions in the Cloud Security Posture Management (CSPM) category. Check Point Software Technologies is ranked #5 with an average rating of 8.6, while Palo Alto Networks is ranked #1 with an average rating of 8.4. Additionally, 94% of Check Point Software Technologies users are willing to recommend the solution, compared to 97% of Palo Alto Networks users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

Check Point CloudGuard CNAPP and Prisma Cloud by Palo Alto Networks both offer robust cloud security solutions. Prisma Cloud by Palo Alto Networks appears to have the upper hand due to its comprehensive features and overall value.

Features: Check Point CloudGuard CNAPP provides comprehensive threat prevention, automated security policies, and good pricing. Prisma Cloud by Palo Alto Networks offers multi-cloud support, deep visibility into cloud assets, and extensive integrations.

Room for Improvement: Check Point CloudGuard CNAPP could benefit from improved documentation, more intuitive configuration options, and faster support response times. Prisma Cloud by Palo Alto Networks needs better support for certain cloud environments, more frequent updates, and enhanced user training resources.

Ease of Deployment and Customer Service: Check Point CloudGuard CNAPP is commended for its straightforward deployment and responsive customer service. Prisma Cloud by Palo Alto Networks has a slightly more complex deployment but provides detailed guidance and support.

Pricing and ROI: Check Point CloudGuard CNAPP is valued for reasonable setup costs and good ROI. Prisma Cloud by Palo Alto Networks is pricier but recognized for delivering significant ROI due to its comprehensive features and reliability.

To learn more, read our detailed Check Point CloudGuard CNAPP vs. Prisma Cloud by Palo Alto Networks Report (Updated: September 2024).

Buyer's Guide

Check Point CloudGuard CNAPP vs. Prisma Cloud by Palo Alto Networks

September 2024

Download the complete report

Helped 805,335 peers since 2012

Categories and Ranking

SentinelOne Singularity Clo...

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Aug 29, 2024

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

reviewer1663263

Security Engineer at a tech company with 1,001-5,000 employees

Sep 1, 2021

Good reporting and alerts but needs more comprehensive investigations into security events

We primarily use this solution for: Posture management and compliance for the complete cloud environment (AWS). Centralized visibility of our cloud assets across multiple accounts in our cloud environment. Monitoring and alerting of cloud activity (API calls) happening across all the accounts…

Read full review

reviewer2268216

Senior Security Engineer at a computer software company with 1,001-5,000 employees

Sep 7, 2023

The dashboard is very user-friendly and can be used to generate custom RQL based on user requirements

We have a suggestions team, and we used to write our thoughts on the dashboard or website. The website is reviewed by users working with the product team. Recently, we discussed a new thought with the product team that the misconfiguration or the work done by the user should be at the user level. The dashboard can be created at the user level instead of the cloud account level, which will help save time. They can create a folder for their work, directly go to that folder, and work with it on day-to-day activities. It's a new idea we suggested to the product team. When 1,000 members are working on the product, the product team cannot implement all the 1,000 thoughts invented by everyone. We used to submit our thoughts on our product website bi-weekly or bi-monthly.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The visibility PingSafe provides into the Cloud environment is a valuable feature."

"As a frequently audited company, we value PingSafe's compliance monitoring features. They give us a report with a compliance score for how well we meet certain regulatory standards, like HIPAA. We can show our compliance as a percentage. It's also a way to show that we are serious about security."

"We noted immediate benefits from using the solution."

"We've seen a reduction in resources devoted to vulnerability monitoring. Before PingSafe we spent a lot of time monitoring and fixing these issues. PingSafe enabled us to divert more resources to the production environment."

"The real-time detection and response capabilities overall are great."

"The most valuable feature is the ability to gain deep visibility into the workloads inside containers."

"Cloud Native Security's best feature is its ability to identify hard-coded secrets during pull request reviews."

"Atlas security graph is pretty cool. It maps out relationships between components on AWS, like load balancers and servers. This helps visualize potential attack paths and even suggests attack paths a malicious actor might take."

More SentinelOne Singularity Cloud Security pros

"The feature that I find most valuable is the blocking feature."

"The most valuable features are the ability to create pipeline rules, the enhanced NetOps security, and the deep visibility across our entire infrastructure."

"The tool is also very intuitive; its dashboards are very complete and provide a lot of valuable information for decision-making to improve security."

"The most valuable feature is posture management, which gives you complete visibility of all your assets in the cloud and allows you to do governance and compliance."

"Auto remediation is a very effective feature that helps ensure less manual intervention."

"The most valuable feature is the single dashboard that enables us to manage the entire cloud environment from one place."

"The solution is scalable."

"Its monitoring and alerts are triggered by a failure or non-compliance with policies. It helps us to be able to act effectively and quickly."

More Check Point CloudGuard CNAPP pros

"It also provides us with a single tool to manage our entire cloud architecture. In fact, we are using a multi-account strategy with our AWS organization. We use Prisma as a single source of truth to identify high- or medium-severity threats inside our organization."

"The Twistlock vulnerability scanning tool is its most valuable feature. It provides us insight into security vulnerabilities, running inside both on-premise and public cloud-based container platforms. It is filling a gap that we have with traditional vulnerability scanning tools, where we don't have the ability to scan inside containers."

"Integrating with a CI/CD pipeline and incorporating a vulnerability assessment process are highly effective features, especially when combined with runtime protection."

"Prisma Cloud helped us with compliance. Most of my deployments have been greenfield, so I don't have a benchmark to compare how the security posture has improved. I've always used this from day zero of the configuration. However, I can say that the compliance checks for PCI, DSS, HIPAA, etc., made my life simpler. I don't need to look at each of these standards and compare the rules I have in place."

"Prisma Cloud's most important feature is its auto-remediation."

"I have not seen any limitations. Everything is customizable. You can do whatever you want, defining the reporting and custom use cases. They recently updated the UI, so it's much better than before."

"Integration is very easy. And because it supports security that spans multi- and hybrid-cloud environments, it's very easy to use."

"The solution gives us a lot of visibility across all of our cloud solutions."

More Prisma Cloud by Palo Alto Networks pros

Cons

"PingSafe is an excellent CSPM tool, but the CWPP features need to improve, and there is a scope for more application security posture management features. There aren't many ASPM solutions on the market, and existing ones are costly. I would like to see PingSafe develop into a single pane of glass for ASPM, CSPM, and CWPP. Another feature I'd like to see is runtime protection."

"The resolution suggestions could be better, and the compliance features could be more customizable for Indian regulations. Overall, the compliance aspects are good. It gives us a comprehensive list, and its feedback is enough to bring us into compliance with regulations, but it doesn't give us the specific objects."

"PingSafe's current documentation could be improved to better assist customers during the cluster onboarding process."

"I used to work on AWS. At times, I would generate a normal bug in my system, and then I would check PingSafe. The alert used to come after about three and a half hours. It used to take that long to generate the alert about the vulnerability in my system. If a hacker attacks a system and PingSafe takes three to four hours to generate an alert, it will not be beneficial for the company. It would be helpful if we get the alert in five to ten minutes."

"The main area for improvement I want to see is for the platform to become less resource-intensive. Right now, it can slow down processes on the machine, and it would be a massive improvement if it were more lightweight than it currently is."

"In addition to our telecom and Slack channels, it would be helpful to receive Cloud Native Security security notifications in Microsoft Teams."

"One of the issues with the product stems from the fact that it clubs different resources under one ticket."

"In terms of ease of use, initially, it is a bit confusing to navigate around, but once you get used to it, it becomes easier."

More SentinelOne Singularity Cloud Security cons

"We were demotivated by the lack of native automation modules for the Terraform and Ansible tools."

"I would like them to include support for their products in languages other than English."

"Almost all features are good, however, they still require improvements to the code security portion on which integration with the major source code repository is required."

"Currently, this solution is somewhat expensive."

"I am not a technical person, but generically, the user interface can be a little more intuitive. Our staff has trained network security and cloud security professionals, and they get it, but when you are trying to get to the customers to be able to pick it up and maintain it, it can be a bit difficult."

"I would like to see improvements in the vulnerability assessments in terms of how the solution discovers vulnerabilities or compromised workloads. Also, customizable reports would be nice."

"The security of Check Point CloudGuard Posture Management could improve. There are always new security issues coming out."

"In Dome9, there should be a policy validation option where we can validate the policy before we push it into production."

More Check Point CloudGuard CNAPP cons

"The deployment and onboarding are plug-and-play, but somewhat hard to handle in terms of integration with external operations tools. The product design isn't up to the current standard. I would recommend having higher standards in terms of integration with other tools, especially operationalized tools."

"Technical support could use some improvement."

"The UI is good, however, they could improve the experience."

"Prisma Cloud's enterprise reporting needs significant improvement."

"For some custom policies, we need more features."

"The Fargate security microservice that's running doesn't support blocking features, which would be helpful. Another issue is the lifecycle. It isn't easy to upgrade if we have a console in Fargate."

"When there are updates, whether daily, weekly, or monthly, it needs configuration or permission adjustments. There is no automation for that, which is too bad."

"One thing that is missing is Cloud Run runtime security—serverless. That would be great to have in the tool. It's not that easy to have Cloud Run in specific environments."

More Prisma Cloud by Palo Alto Networks cons

Pricing and Cost Advice

"It's a fair price for what you get. We are happy with the price as it stands."

"PingSafe is not very expensive compared to Prisma Cloud, but it's also not that cheap. However, because of its features, it makes sense to us as a company. It's fairly priced."

"PingSafe falls within the typical price range for cloud security platforms."

"For pricing, it currently seems to be in line with market rates."

"PingSafe is less expensive than other options."

"The price depends on the extension of the solution that you want to buy. If you want to buy just EDR, the price is less. XDR is a little bit more expensive. There are going to be different add-ons for Singularity."

"I am not involved in the pricing, but it is cost-effective."

"The tool is cost-effective."

More SentinelOne Singularity Cloud Security pricing and cost advice

"I suggest that you pay attention to the product pricing because while there are no tricks, and the licensing model is transparent, the final numbers may surprise you."

"The pricing is tremendous and super cheap. It is shockingly cheap for what you get out of it. I am happy with that. I hope that doesn't get reported back and they increase the prices. I love the pricing and the licensing makes sense. It is just assets: The more stuff that you have, the more you pay."

"They support either annual licensing or hourly. At the time of our last negotiation, it was either one or the other, you could not mix or match. I would have liked to mix/match. "

"I would advise taking into account the existing number of devices and add a forecast of the number of devices to be added in the coming year or two, to obtain better pricing."

"Its pricing is competitive."

"Everything in this field is very expensive."

"The tool's pricing is moderate. Its licensing costs are yearly."

"CloudGuard is fairly priced."

More Check Point CloudGuard CNAPP pricing and cost advice

"Although the cost can be high, the value is worth the price tag."

"You can expect a premium price because it is a premium quality product by a leading supplier."

"The cost depends on the pricing model. Compared to other solutions, the cost isn't that bad."

"Prisma Cloud is a value-back cloud-managed solution; cloud-native solutions are quite expensive."

"Prisma Cloud licensing works on credits."

"Prisma Cloud Enterprise is a costly solution. You need a license for all the components. At the same time, you have everything under one roof, so I think it's still justified."

"The pricing is competitive; for the most part, the security firms have similar prices."

"I wouldn't mind if it were cheaper. We are spending a fair amount of money on Prisma Cloud."

More Prisma Cloud by Palo Alto Networks pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.

See recommendations

805,335 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

19%

Financial Services Firm

16%

Manufacturing Company

10%

Insurance Company

Financial Services Firm

18%

Computer Software Company

14%

Manufacturing Company

Security Firm

Educational Organization

16%

Computer Software Company

13%

Financial Services Firm

13%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

I am personally not taking care of the pricing part, but when we moved from CrowdStrike to Singularity Cloud Native S...

See all answers

What needs improvement with PingSafe?

They can provide some kind of alert when a new type of risk is there. There can be a specific type of alert showing t...

See all answers

What do you like most about Check Point CloudGuard Posture Management?

The visibility in our cloud environment is the most valuable feature.

See all answers

What is your experience regarding pricing and costs for Check Point CloudGuard Posture Management?

The price is on the higher end.

See all answers

What needs improvement with Check Point CloudGuard Posture Management?

We have concerns regarding the pricing and would appreciate seeing some improvements.

See all answers

What is your primary use case for Prisma Cloud by Palo Alto Networks ?

Prisma Cloud helps support DevSecOps methodologies, making those responsibilities easier to manage.

See all answers

What Cloud-Native Application Protection Platform do you recommend?

We like Prisma Cloud by Palo Alto Networks, since it offers us incredible visibility into our entire cloud system. We...

See all answers

What do you think of Aqua Security vs Prisma Cloud?

Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valu...

See all answers

Comparisons

Wiz vs SentinelOne Singularity Cloud Security

Compared 32% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 8% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 7% of the time

Microsoft Defender for Cloud vs SentinelOne Singularity Cloud Security

Compared 4% of the time

Trend Vision One - Cloud Security vs SentinelOne Singularity Cloud Security

Compared 2% of the time

More SentinelOne Singularity Cloud Security Competitors

Wiz vs Check Point CloudGuard CNAPP

Compared 19% of the time

Microsoft Defender for Cloud vs Check Point CloudGuard CNAPP

Compared 11% of the time

AWS GuardDuty vs Check Point CloudGuard CNAPP

Compared 11% of the time

Orca Security vs Check Point CloudGuard CNAPP

Compared 4% of the time

AWS Security Hub vs Check Point CloudGuard CNAPP

Compared 3% of the time

More Check Point CloudGuard CNAPP Competitors

Wiz vs Prisma Cloud by Palo Alto Networks

Compared 20% of the time

Microsoft Defender for Cloud vs Prisma Cloud by Palo Alto Networks

Compared 13% of the time

Aqua Cloud Security Platform vs Prisma Cloud by Palo Alto Networks

Compared 6% of the time

CrowdStrike Falcon Cloud Security vs Prisma Cloud by Palo Alto Networks

Compared 5% of the time

Dynatrace vs Prisma Cloud by Palo Alto Networks

Compared 2% of the time

More Prisma Cloud by Palo Alto Networks Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

August 2024

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

Check Point CloudGuard CNAPP

September 2024

Download Check Point CloudGuard CNAPP product report

Buyer's Guide

Prisma Cloud by Palo Alto Networks

August 2024

Prisma Cloud by Palo Alto Networks report

Download Prisma Cloud by Palo Alto Networks product report

Also Known As

PingSafe

Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence

Palo Alto Networks Prisma Cloud, Prisma Public Cloud, RedLock Cloud 360, RedLock, Twistlock, Aporeto

Learn More

SentinelOne

Check Point Software Technologies

Palo Alto Networks

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

CloudGuard CNAPP provides prevention-first cloud security from code-to-cloud.

More Context Means Actionable Security, Smarter Prevention

CloudGuard CNAPP provides customers with more context to drive actionable security and smarter prevention, from code-to-cloud, across the application lifecycle.

Unified & Modular Platform
A single platform unifying SAST, CSPM, DSPM, CIEM, CWPP, WAF, and Cloud Detection and Response.
Continuous Cloud Security
Automatic enforcement of security requirements and internal policies from development to runtime.
Real-time Detection & Protection
Real-time incidents and vulnerability detection with a single-click or automated remediation.

What are the most important features?

Discovery: Identifies all assets in the cloud environment for better management.
IAM Role Control: Manages identities and access permissions securely.
Compliance Reporting: Provides automated compliance checks and detailed reports.
Centralized Dashboard: Offers a consolidated view of security posture.
Threat Intel Integration: Enhances threat detection with integrated intelligence.
Traffic Visibility: Monitors and analyzes cloud traffic in real-time.
Automated Remediation: Implements fixes automatically when issues are detected.
Asset Management: Manages cloud assets efficiently across environments.
Proactive Threat Detection: Identifies threats before they impact operations.
CloudBots for Auto-Remediation: Automates response to security incidents.

What benefits or ROI should users consider?

Enhanced Security Posture: Strong protection across multiple cloud platforms.
Real-Time Alerts: Immediate awareness and response to potential threats.
Automated Compliance: Reduces manual effort with automated checks and reporting.
Centralized Management: Streamlined management of cloud security and compliance.
Cost Efficiency: Saves time and resources via automation and integrated tools.

Prisma Cloud by Palo Alto Networks is a cloud security solution used for cloud security posture management, cloud workload protection, container security, and code security. It provides visibility, monitoring, and alerting for security issues in multi-cloud environments.

The solution is user-friendly, easy to set up, and integrates with SIEM for generating alerts and reports. Its most valuable features include security features, monitoring capabilities, reporting, compliance monitoring, vulnerability dashboard, data security features, and multi-cloud capabilities. Prisma Cloud has helped organizations by providing comprehensive protection, automating workflows, simplifying troubleshooting, and improving collaboration between SecOps and DevOps.

Prisma Cloud Features

Prisma Cloud offers comprehensive security coverage in all areas of the cloud development lifecycle:

Code security: Protect configurations, scan code before it enters production, and integrate with other tools.
Security posture management: Monitor posture, identify and remove threats, and provide compliance across public clouds.
Workload protection: Secure hosts and containers across the application lifecycle.
Network security: Gain network visibility and enforce micro segmentation.
Identity security: Enforce permissions and secure identities across clouds.

Benefits of Prisma Cloud

Unified management: All users use the same dashboards built via shared onboarding, allowing cloud security to be addressed from a single agent framework.
High-speed onboarding: Multiple cloud accounts and users are onboarded within seconds, rapidly activating integrated security capabilities.
Multiple integration options: Prisma Cloud can integrate with widely used IDE, SCM, and CI/CD workflows early in development, enabling users to identify and fix vulnerabilities and compliance issues before they enter production. Prisma Cloud supports all major workflows, automation frameworks, and third-party tools.

Reviews from Real Users

Prisma Cloud stands out among its competitors for a number of reasons. Two major ones are its integration capabilities, as well as its visibility, which makes it very easy for users to get a full picture of the cloud environment.

Alex J., an information security manager at Cobalt.io, writes, “Prisma Cloud has enabled us to take a very strong preventive approach to cloud security. One of the hardest things with cloud is getting visibility into workloads. With Prisma Cloud, you can go in and get that visibility, then set up policies to alert on risky behavior, e.g., if there are security groups or firewall ports open up. So, it is very helpful in preventing configuration errors in the cloud by having visibility. If there are issues, then you can find them and fix them.”

Luke L., a cloud security specialist for a financial services firm, writes, “You can also integrate with Amazon Managed Services. You can also get a snapshot in time, whether that's over a 24-hour period, seven days, or a month, to determine what the estate might look like at a certain point in time and generate reports from that for vulnerability management forums.”

Sample Customers

Information Not Available

Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners

Amgen, Genpact, Western Asset, Zipongo, Proofpoint, NerdWallet, Axfood, 21st Century Fox, Veeva Systems, Reinsurance Group of America

Buyer's Guide

Check Point CloudGuard CNAPP vs. Prisma Cloud by Palo Alto Networks

September 2024

Free Report: Check Point CloudGuard CNAPP vs. Prisma Cloud by Palo Alto Networks

Find out what your peers are saying about Check Point CloudGuard CNAPP vs. Prisma Cloud by Palo Alto Networks and other solutions. Updated: September 2024.

DOWNLOAD NOW

805,335 professionals have used our research since 2012.

See our Check Point CloudGuard CNAPP vs. Prisma Cloud by Palo Alto Networks report.

See our list of best Cloud Security Posture Management (CSPM) vendors, best Container Security vendors, and best Cloud Workload Protection Platforms (CWPP) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.