Check Point CloudGuard CNAPP vs Red Hat Advanced Cluster Security for Kubernetes comparison

Check Point Software Technologies and Red Hat are both solutions in the Container Security category. Check Point Software Technologies is ranked #10 with an average rating of 8.5, while Red Hat is ranked #16 with an average rating of 8.0. Check Point Software Technologies holds a 1.9% mindshare in Container Security, compared to Red Hat’s 2.1% mindshare. Additionally, 94% of Check Point Software Technologies users are willing to recommend the solution, compared to 100% of Red Hat users who would recommend it.

Check Point CloudGuard CNAPP

Read 72 Check Point CloudGuard CNAPP reviews

6,148 Views
3,627 Comparison Views

94% willing to recommend

Red Hat Advanced Cluster Se...

Read 12 Red Hat Advanced Cluster Security for Kubernetes reviews

2,546 Views
2,419 Comparison Views

100% willing to recommend

Check Point CloudGuard CNAPP

Red Hat Advanced Cluster Se...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

Check Point CloudGuard CNAPP and Red Hat Advanced Cluster Security for Kubernetes are key players in the cloud security landscape. Check Point CloudGuard CNAPP has the upper hand in pricing and support, whereas Red Hat Advanced Cluster Security for Kubernetes is preferred for its robust features and functionality.

Features:Check Point CloudGuard CNAPP offers security automation, visibility, and compliance tools. Red Hat Advanced Cluster Security for Kubernetes provides comprehensive Kubernetes-native security controls, integrations, and policy management. Red Hat's richer feature set makes it the preferred choice.

Room for Improvement: Users suggest Check Point CloudGuard CNAPP could increase its threat intelligence, integration capabilities, and user interface. Users recommend better configuration, smoother updates, and enhanced documentation for Red Hat Advanced Cluster Security for Kubernetes. Despite these areas for improvement, both products remain competitive.

Ease of Deployment and Customer Service: Check Point CloudGuard CNAPP users report straightforward deployment but occasional support delays. Red Hat Advanced Cluster Security for Kubernetes is noted for its complex setup but responsive support. Check Point offers an easier deployment process, while Red Hat's superior customer service offsets its complexities.

Pricing and ROI: Check Point CloudGuard CNAPP is praised for its cost-effectiveness and good ROI. Red Hat Advanced Cluster Security for Kubernetes is considered expensive but justified by its features and performance. Check Point is more budget-friendly, with Red Hat recognized as a valuable long-term investment.

To learn more, read our detailed Check Point CloudGuard CNAPP vs. Red Hat Advanced Cluster Security for Kubernetes Report (Updated: July 2025).

Buyer's Guide

Check Point CloudGuard CNAPP vs. Red Hat Advanced Cluster Security for Kubernetes

July 2025

Download the complete report

Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Check Point CloudGuard CNAPP

Ranking in Container Security

10th

Average Rating

8.6

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

Vulnerability Management (9th), Cloud and Data Center Security (9th), Cloud Workload Protection Platforms (CWPP) (5th), Cloud Security Posture Management (CSPM) (5th), Cloud-Native Application Protection Platforms (CNAPP) (5th), Data Security Posture Management (DSPM) (6th), Compliance Management (6th)

Red Hat Advanced Cluster Se...

Ranking in Container Security

16th

Average Rating

8.2

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of August 2025, in the Container Security category, the mindshare of Check Point CloudGuard CNAPP is 1.9%, down from 2.0% compared to the previous year. The mindshare of Red Hat Advanced Cluster Security for Kubernetes is 2.1%, down from 2.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Container Security

Featured Reviews

Bart Coddens

Cloud Engineer at Cloudar

Evolved cloud security with active monitoring but needs interface consistency

The user interface needs work. Sometimes, it is a transition from the old tool to the new CNAPP Two that I currently have, and remnants of the old environment can still be detected. I require consistency in the user interface to ensure everything is streamlined into the same look and feel. More work is needed in fine-tuning the threat data towards your CSPM and activity logs, aligning them with business intelligence, which requires a cohesive console interface. My assessment of CloudGuard CDRs in intrusion detection and threat hunting capabilities is that it still needs some work. All the threat data that comes in, you need to fine tune it a bit.

Read full review

Daniel Stevens

Software Engineer at Galley

Offers easy management and container connection with HTTPS, but the support needs to improve

I have experience with the solution's setup in Rio de Janeiro, Brazil and our company has assisted in the development of a cluster in a research department, but we didn't start from scratch because we have IT professionals who have installed Kubernetes across 12 nodes of a cluster and a new environment can be created for a new platform. I also had another setup experience of Red Hat Advanced Cluster Security for Kubernetes in Portugal where I had to implement the solution in a cluster of 22 computer servers, which was completed with assistance from the IT department of the company. The initial setup process of the solution can be considered as difficult. The setup process involves using the permissions, subnets and range of IPs, which makes it complex. Deploying Red Hat Advanced Cluster Security for Kubernetes takes around eight to ten hours for new clusters. The solution's deployment can be divided into three parts. The first part involves OpenStack, where the cluster's resources need to be identified. The second part involves virtualizing assets and identifying other physical assets, for which OpenStack, Kubernetes, or OpenShift are used. The third part of the deployment involves dividing the networks into subnetworks and implementing automation to deploy the microservices using Helm. The number of professionals required for the solution's deployment depends upon the presence of automated scripts. Ideally, two or three professionals are required to set up Red Hat Advanced Cluster Security for Kubernetes.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"This product provides a really nice visualization of the infrastructure, including network topology, firewalls, etc."

"The various CNAPP modules have granted more visibility of our cloud applications to our system engineers and developers."

"Most of the features are pretty valuable, whether that's a description of the attacks or the attack graph showing the vulnerabilities. If a single tool does all this work, the value is centralizing all these functions on a single tool. These are the cloud-native applications we talk about — containers, Kubernetes, and cloud infrastructure — and all those things are the primary focus of the CNAPP solution."

"The platform's full visibility and control across many cloud environments allows us to effectively monitor the security posture, uncover vulnerabilities, and consistently enforce security standards."

"It presents a real-time database that is always updated."

"The most valuable feature is the CloudBots for auto-remediation of security findings."

"Alerts of cloud activity happening across all accounts is helpful."

"Dome9 wraps our FTP infrastructure with its network security configurations, and this also gives us the ability to monitor FTP activity."

More Check Point CloudGuard CNAPP pros

"The most beneficial security feature of the product revolves around the areas of vulnerability and configuration."

"I am impressed with the tool's visibility."

"The technical support is good."

"The most valuable feature is the ability to share resources."

"I like virtualization and all those tools that come with OpenShift. I also like Advanced Cluster Management and the built-in security."

"Offers easy management with authentication and authorization features"

"It is easy to install and manage."

"Scalability-wise, I rate the solution a nine out of ten."

More Red Hat Advanced Cluster Security for Kubernetes pros

Cons

"Compliance checks on cloud resources against various industry standards and compliance framework templates need to be improved."

"The user interface could be improved. Sometimes, the visibility is not immediately available for the environment. We have the native servers that come with the solutions, but we cannot see them in the Check Point log. Another issue is with the integrated file monitoring. It would make sense to have stuff like file integrity monitoring and malware scanning available within this module because we don't want to integrate another product."

"The shift left part is not yet at a maturity level I desire. I need more integration from the code-to-cloud principle."

"Almost all features are good, however, they still require improvements to the code security portion on which integration with the major source code repository is required."

"I would like them to include support for their products in languages other than English."

"The reporting has a lot of opportunities to continuously improve so that we can continue to show value."

"Scalability, particularly in workload protection, is an area that needs improvement."

"I strongly advise that the multi-layered security system of Check Point often undergoes updates and new versions keep coming."

More Check Point CloudGuard CNAPP cons

"The documentation about Red Hat Advanced Cluster Security available online is very limited... So it's very limited to the documentation."

"I do see that some features associated with the IAST part are not included in the tool, making it an area where improvements are required."

"Red Hat is somewhat expensive."

"The solution's visibility and vulnerability prevention should be improved."

"The solution's price could be better."

"The support and specifications need to be up to date for the cluster technologies"

"The tool's command line and configuration are hard for us to understand and make deployment complex. It should also include zero trust, access control features and database connectivity."

"The solution lacks features when compared to some of the competitors such as Prisma Cloud by Palo Alto Networks and has room for improvement."

More Red Hat Advanced Cluster Security for Kubernetes cons

Pricing and Cost Advice

"Licensing and costs are straightforward, as they have a baseline of 100 workloads within one license and no additional charges."

"Check Point CloudGuard Posture Management is always known as a good solution but an expensive one. When you're using Cisco, Check Point, or Palo Alto, you know that you will pay more, but you know that it will work."

"The licensing and costs are straightforward, as they have a baseline of 100 workloads (number of instances) within one license with no additional nor hidden charges. If you want to have 200 workloads under Dome9, then you need to take out two licenses for that. Also, it does not have any impact on cloud billing, as data is shared using the API call. This is well within the limit of free API calls provided by the cloud provider."

"In the beginning, the price of Dome9 was cheap, whereas now it is not."

"The pricing is tremendous and super cheap. It is shockingly cheap for what you get out of it. I am happy with that. I hope that doesn't get reported back and they increase the prices. I love the pricing and the licensing makes sense. It is just assets: The more stuff that you have, the more you pay."

"I would advise taking into account the existing number of devices and add a forecast of the number of devices to be added in the coming year or two, to obtain better pricing."

"The license for CloudGuard Posture Management is about $80 a year, and it's based on your cloud footprint, not the number of users. So you could have a million users, and it doesn't matter."

"Check Point CloudGuard Posture Management is expensive."

More Check Point CloudGuard CNAPP pricing and cost advice

"We purchase a yearly basis license for the solution."

"The pricing model is moderate, meaning it is not very expensive."

"The price of Red Hat Advanced Cluster Security for Kubernetes is better than Palo Alto Prisma."

"It's a costly solution"

"Red Hat offers two pricing options for their solution: a separate price, and a bundled price under the OpenShift Platform Plus."

See which vendors are best for you

Use our free recommendation engine to learn which Container Security solutions are best for your needs.

See recommendations

865,384 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

12%

Financial Services Firm

11%

Manufacturing Company

Educational Organization

Financial Services Firm

25%

Computer Software Company

12%

Government

10%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Check Point CloudGuard Posture Management?

The visibility in our cloud environment is the most valuable feature.

See all answers

What is your experience regarding pricing and costs for Check Point CloudGuard Posture Management?

The price is on the higher end.

See all answers

What needs improvement with Check Point CloudGuard Posture Management?

We have concerns regarding the pricing and would appreciate seeing some improvements.

See all answers

What do you like most about Red Hat Advanced Cluster Security for Kubernetes?

I like virtualization and all those tools that come with OpenShift. I also like Advanced Cluster Management and the built-in security.

See all answers

What needs improvement with Red Hat Advanced Cluster Security for Kubernetes?

From an improvement perspective, I would like to create new policies in the tool, especially if it is deployed for the prevention part, but currently, we need to do it manually. I hear that Palo Al...

See all answers

What is your primary use case for Red Hat Advanced Cluster Security for Kubernetes?

I use the solution in my company for vulnerability management, configuration management, compliance, safety handling, and everything else.

See all answers

Comparisons

Prisma Cloud by Palo Alto Networks vs Check Point CloudGuard CNAPP

Compared 15% of the time

Wiz vs Check Point CloudGuard CNAPP

Compared 14% of the time

SentinelOne Singularity Cloud Security vs Check Point CloudGuard CNAPP

Compared 6% of the time

AWS GuardDuty vs Check Point CloudGuard CNAPP

Compared 6% of the time

Cloudflare vs Check Point CloudGuard CNAPP

Compared 5% of the time

More Check Point CloudGuard CNAPP Competitors

Prisma Cloud by Palo Alto Networks vs Red Hat Advanced Cluster Security for Kubernetes

Compared 20% of the time

SUSE NeuVector vs Red Hat Advanced Cluster Security for Kubernetes

Compared 11% of the time

CrowdStrike Falcon Cloud Security vs Red Hat Advanced Cluster Security for Kubernetes

Compared 7% of the time

Aqua Cloud Security Platform vs Red Hat Advanced Cluster Security for Kubernetes

Compared 7% of the time

Chainguard Containers vs Red Hat Advanced Cluster Security for Kubernetes

Compared 6% of the time

More Red Hat Advanced Cluster Security for Kubernetes Competitors

Product Reports

Buyer's Guide

Check Point CloudGuard CNAPP

August 2025

Download Check Point CloudGuard CNAPP product report

Buyer's Guide

Red Hat Advanced Cluster Security for Kubernetes

August 2025

Red Hat Advanced Cluster Security for Kubernetes report

Download Red Hat Advanced Cluster Security for Kubernetes product report

Also Known As

Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence

StackRox

Overview

Check Point CloudGuard CNAPP offers comprehensive cloud security with features like dynamic access control, asset protection, and compliance checks, tailored for organizations seeking enhanced governance across AWS, Azure, and GCP platforms.

Check Point CloudGuard CNAPP provides robust capabilities, including centralized firewall management, IAM scanning, and real-time visibility. Its strengths lie in predictive visualization, threat intelligence, and auto-remediation, making it a valuable tool for risk mitigation and compliance management. The platform's integration and responsiveness enhance cloud security, ensuring alignment with industry standards and effective threat protection.

What are the key features of Check Point CloudGuard CNAPP?

Dynamic Access Control: Enables granular security permissions for cloud resources.
Asset Protection: Safeguards cloud assets from unauthorized access and threats.
Compliance Checks: Ensures alignment with industry regulations like PCI DSS and SOC 2.
Centralized Firewall Management: Simplifies firewall rule configuration across cloud environments.
IAM Scanning: Audits and secures identity and access management configurations.
Real-Time Visibility: Provides insights into cloud environments for proactive threat detection.

What benefits and ROI should you expect from Check Point CloudGuard CNAPP?

Threat Intelligence: Identifies and mitigates potential risks before exploitation.
Auto-Remediation: Automates responses to security incidents, reducing manual intervention.
Intuitive Interface: Simplifies management and enhances operational efficiency.
Posture Management: Maintains strong security posture through continuous assessment.

Organizations in finance, healthcare, and retail frequently implement Check Point CloudGuard CNAPP for compliance and security across cloud environments. It assists with workload protection, threat detection, and regulatory obligation fulfillment, proving effective for securing applications and monitoring API interactions.

Check Point Software Technologies

Red Hat Advanced Cluster Security for Kubernetes is a Kubernetes-native container security solution that enables your organization to more securely build, deploy, and run cloud-native applications from anywhere. With its built-in security across the entire software development life cycle, you can lower your operational costs, reduce operational risk, and increase developer productivity while improving your security posture immediately. In addition, Red Hat Advanced Cluster Security integrates with security tools and DevOps in an effort to help you mitigate threats and enforce security policies that minimize operational risk to your applications. It also enables you to provide developers with actionable, context-rich guidelines integrated into existing workflows, along with tooling to support developer productivity. The solution is suitable for small, medium, and large-sized companies.

Red Hat Advanced Cluster Security for Kubernetes Features

Red Hat Advanced Cluster Security for Kubernetes has many valuable key features. Some of the most useful ones include:

Vulnerability management: With the Red Hat Advanced Cluster Security for Kubernetes solution, you gain full visibility into your entire cloud-native landscape. The solution makes it possible for your organization to identify and remediate vulnerabilities in Kubernetes configurations and container images, as well as running applications. It also enables you to provide developers with clear and prioritized guidance on fixable vulnerabilities.

Configuration management: The solution makes configuration management easy. To identify missed best practices, you can understand how images, containers, and deployments are configured prior to running. It also allows you to leverage Kubernetes-native capabilities - like admission controllers - to prevent misconfigured workloads from deploying or running.

Compliance: Using Red Hat Advanced Cluster Security for Kubernetes helps you manage compliance with standard-specific checks across CIS Benchmarks, NIST, PCI, and HIPAA, with more than 300 controls and continuous compliance assessments and one-click audit reporting.

Network segmentation: The solution enables you to enforce network policies by using the native capabilities in Kubernetes. You can simulate new policies, visualize existing ones, generate updated YAML files, and apply them directly to Kubernetes.

Multifactor risk profiling: With Red Hat Advanced Cluster Security for Kubernetes, you can use risk rankings by combining vulnerability (CVE) details with rich Kubernetes context and artifact data. This allows you to assess and prioritize risk across your entire environment. In turn, you can accelerate remediation times and productivity.

Threat detection and incident response: By combining custom policies, process allow lists, application and network baselines, and behavioral modeling to identify anomalous behavior, the solution enables you to protect your applications at runtime. You can then leverage Kubernetes-native enforcement capabilities to respond.

Red Hat Advanced Cluster Security for Kubernetes Benefits

There are many benefits to implementing Red Hat Advanced Cluster Security for Kubernetes. Some of the biggest advantages the solution offers include:

Increases protection, scalability, and portability.
Eliminates blind spots.
Reduces time and costs.
Reduces the effort needed to implement security.
Streamlines security analysis, investigation, and remediation by using the rich context Kubernetes provides.
Provides scalability and resiliency native to Kubernetes

Reviews from Real Users

PeerSpot user Igor K., Owner/Full Stack Software Engineer at Maraphonic, Inc., says, “The solution allows teams to create their own virtual spaces and share resources. The most valuable feature is the ability to share resources.”

Red Hat

Sample Customers

Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners

City National Bank, U.S. Department of Homeland Security

Buyer's Guide

Check Point CloudGuard CNAPP vs. Red Hat Advanced Cluster Security for Kubernetes

July 2025

Free Report: Check Point CloudGuard CNAPP vs. Red Hat Advanced Cluster Security for Kubernetes

Find out what your peers are saying about Check Point CloudGuard CNAPP vs. Red Hat Advanced Cluster Security for Kubernetes and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,384 professionals have used our research since 2012.

See our Check Point CloudGuard CNAPP vs. Red Hat Advanced Cluster Security for Kubernetes report.

See our list of best Container Security vendors.

We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.