Check Point CloudGuard CNAPP vs Red Hat OpenShift Container Platform comparison

The compared Check Point Software Technologies and Red Hat solutions aren't in the same category. Check Point Software Technologies is ranked #9 in VM , with an average rating of 8.6, and holds a 1.6% mindshare in the category. Red Hat is ranked #1 in CM , with an average rating of 8.2, and holds a 20.8% mindshare. Additionally, 94% of Check Point Software Technologies users are willing to recommend the solution, compared to 96% of Red Hat users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 13, 2024

Check Point CloudGuard CNAPP and Red Hat OpenShift Container Platform compete in the cloud security and management space. CloudGuard focuses on security intelligence, while OpenShift offers stronger Kubernetes management. OpenShift is preferred for its comprehensive Kubernetes capabilities.

Features: Check Point CloudGuard CNAPP highlights security intelligence, threat prevention, and IAM role control, aiding organizations in cloud governance and security visualization. Red Hat OpenShift Container Platform stands out with comprehensive Kubernetes management, scalability, and developer-friendly tools, including automated deployment pipelines and integrated dev environments, making it ideal for enterprise applications.

Room for Improvement: Check Point CloudGuard CNAPP should improve integration with third-party tools, reporting granularity, and on-premises support. Enhanced automation and integration capabilities are desired. Red Hat OpenShift Container Platform could streamline its setup process and improve both documentation and cluster management complexity. Better integration and cost efficiencies could make it more accessible for smaller businesses.

Ease of Deployment and Customer Service: Check Point CloudGuard CNAPP is easy to integrate with public clouds, with generally responsive customer service, though technical support knowledge could be improved. Red Hat OpenShift's comprehensive infrastructure makes deployment complex, but it offers flexible options like on-premises and hybrid cloud. Professional technical support is provided but can be challenging due to setup and resource demands, though its enterprise presence ensures robust support.

Pricing and ROI: Check Point CloudGuard CNAPP provides a flexible asset-based licensing model, seen as cost-effective for large cloud uses but pricey for smaller enterprises, with ROI linked to security enhancements. Red Hat OpenShift Container Platform is priced at an enterprise level for its advanced capabilities, better suited for large organizations, with costs based on resource consumption, potentially limiting for smaller setups. Both platforms demonstrate ROI through efficiency gains, with CloudGuard emphasizing risk reduction and OpenShift focusing on development improvements.

To learn more, read our detailed Check Point CloudGuard CNAPP vs. Red Hat OpenShift Container Platform Report (Updated: October 2024).

Buyer's Guide

Check Point CloudGuard CNAPP vs. Red Hat OpenShift Container Platform

October 2024

Download the complete report

Helped 861,481 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Zafran Security

Mindshare comparison

Vulnerability Management

Container Management

Featured Reviews

Israel Cavazos Landini

Associate Director IT Security Operations at a pharma/biotech company with 10,001+ employees

Weekly insights and risk analysis facilitate informed security decisions

I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.

Read full review

Bart Coddens

Cloud Engineer at Cloudar

Evolved cloud security with active monitoring but needs interface consistency

The user interface needs work. Sometimes, it is a transition from the old tool to the new CNAPP Two that I currently have, and remnants of the old environment can still be detected. I require consistency in the user interface to ensure everything is streamlined into the same look and feel. More work is needed in fine-tuning the threat data towards your CSPM and activity logs, aligning them with business intelligence, which requires a cohesive console interface. My assessment of CloudGuard CDRs in intrusion detection and threat hunting capabilities is that it still needs some work. All the threat data that comes in, you need to fine tune it a bit.

Read full review

Prasad Gupta

Software Engineer at IBM Software Labs

Efficient deployment with resource optimization and multi-region stability

There are several areas where OpenShift could improve. The interface has numerous UI bugs that need addressing. Furthermore, the latest version has deprecated the deployment config, which has its own advantages compared to the deployment container. Lastly, there is no built-in auto-scaling plugin at the OpenShift level; this needs to be addressed as it's available at the cloud provider level, like IBM Cloud.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."

"We are able to see the real risk of a vulnerability on our environment with our security tools."

"We saw benefits from Zafran Security almost immediately after deploying it."

"Zafran is an excellent tool."

"Zafran has become an indispensable tool in our cybersecurity arsenal."

"The most valuable feature is the CloudBots for auto-remediation of security findings."

"It is able to bring visibility into that cloudy space where the security departments do not really see what is happening on the DevOps side. It brings visibility, security control, and standardization."

"The new scanning function is a valuable feature that wasn't available until recently."

"Assets Management as it provide complete visibility of our workload inkling EC2 instance or Serverless"

"Its monitoring and alerts are triggered by a failure or non-compliance with policies. It helps us to be able to act effectively and quickly."

"I can take proactive actions based on an alert without having to interact with the platform directly."

"It learns from behavior, attacks, management, detections, captures packets, real-time analysis, et cetera. It's generating knowledge from a variety of sources for an excellent analysis."

"The most valuable feature is the separate environment."

More Check Point CloudGuard CNAPP pros

"I like the Flexibility of the solution."

"I find the security features and use of operators in OpenShift Container Platform highly valuable."

"Centralized control of container resources is most valuable."

"The product is stable, reliable, and easy to use, from a well-known company, has a large volume handling capacity, and more and more organizations are moving to OpenShift."

"For us, the fully automated upgrades are valuable. We have to maintain the clusters in production. For us, it is very important that it does not take too much time to manage all the clusters and do life cycle management and upgrades."

"The operating system has a live update and is more secure than any other. It's made for Atomic OS, a lightweight OS new to the market. I also like the source-to-image capabilities. The customer can directly deploy their applications from the repository. It's a highly flexible and easy way to deploy into production."

"I definitely recommend Red Hat OpenShift Container Platform to other organizations due to its high availability, security, ease of use, and all the built-in features it offers."

"The stack in the software supply chain is one of the main reasons that we use OpenShift. When I came to this company, we bought hardware from IBM named Bluemix, and they used ICP, which stands for IBM Cloud Private."

More Red Hat OpenShift Container Platform pros

Cons

"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."

"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."

"Automatic remediation requires read/write access. When providing read/write access to third-party applications, this can add risk. It should have some options of triggering API calls to the cloud platform, which in turn, can make the required changes."

"CloudGuard could be more customizable. It has built-in standards for things like GDPR compliance. But depending on your business lane, you might want to build your own controls based on your own standards."

"The false positives can be annoying at times."

"Down the road, we would like to see automation. That is probably a feature that most people want. If they can automate patching a vulnerability, it will be much easier."

"The accuracy of its remediation is a 7.5 out of 10. Before, I would have given it a ten but now, to handle remediation for fully qualified domain names, it's not working as it did in the past. We're finding some difficulties there."

"I don't have any notes for improvements."

"The security of Check Point CloudGuard Posture Management could improve. There are always new security issues coming out."

"It feels somewhat fractured to me. I haven't grasped all the parts yet, and better integration would make CNAPP most valuable."

More Check Point CloudGuard CNAPP cons

"In my experience, the issues are not always simply technical. They do stem from technical challenges, but they struggle with the topic of adoption. When you encounter all of the customer pull, there are normally several tiers of your client pop that can adopt either the fundamental features or a little more advanced ones. The majority of the time, the challenge is determining how to drive adoption, how to sell the product to the customer, and how much time they can spend to really utilize those advanced features. If we get into much more detail, but this is from my perspective as the platform engineer and not the end customer, the ability of the end user to be able to debug potential issues with their application That is arguably the most important, let's say, work throughput in my area."

"I believe OpenShift Container Platform can improve in networking, architecture, and cloud areas by reducing deployment time, lowering costs, and streamlining engineer resources"

"The solution does not work on a route-wise NFS."

"Quality of support may be improved."

"I want to see more incorporation of native automation features; then, we could write a code, deploy it directly to OpenShift, and allow it to take care of the automated process. Using this method, we could write one application and have elements copy/pasted to other applications in the development process."

"OpenShift Container Platform could improve by having better integration."

"Setting up OpenShift isn't easy. I rate it three out of ten for ease of setup. We're deploying it in three phases. They're in the second phase now. The total deployment time will be five months. We expect to complete the deployment this March. There are 13 people on three teams working on this deployment."

"We are not big customers of Red Hat, but sometimes, we have severe bugs. We are very innovative, and sometimes, we have to wait for a long time to get proper attention. Red Hat should improve on that."

More Red Hat OpenShift Container Platform cons

Pricing and Cost Advice

Information not available

"The pricing is extremely competitive."

"The price is on the higher end."

"We have the enterprise-level license and we renew it annually because it is worth the cost."

"They support either annual licensing or hourly. At the time of our last negotiation, it was either one or the other, you could not mix or match. I would have liked to mix/match. "

"Check Point CloudGuard Posture Management is always known as a good solution but an expensive one. When you're using Cisco, Check Point, or Palo Alto, you know that you will pay more, but you know that it will work."

"The license for CloudGuard Posture Management is about $80 a year, and it's based on your cloud footprint, not the number of users. So you could have a million users, and it doesn't matter."

"Its price is very fair."

"From a pricing perspective, they are pretty expensive."

More Check Point CloudGuard CNAPP pricing and cost advice

"The pricing is a bit more expensive than expected."

"The product pricing is competitive and structured around vCPU subscriptions, aligning with our application requirements."

"Its licensing is completely incomprehensible. We have special people within our company. They discuss with Red Hat subscription managers. It is too complex, and I do not understand it. We are from the government, and we are trying to be as cheap as possible. Sometimes, I am just amazed at the amount of money that we have to pay. It is crazy."

"We paid for Cloud Pak for integration. It all depends on how many VMs or how many CPUs you are using. They do the licensing based on that."

"If you buy the product for a year or three, you get a lot of discounts...I feel that the product is worth its cost, especially since setting it up can be done with just a few clicks."

"OpenShift Container Platform is highly-priced."

"It depends on who you're talking to. For a large corporation, it is acceptable, other than the significant infrastructure requirements. For a small organization, it is in no way suitable, and we'd go for Amazon's container solution."

"I'm not familiar with pricing or financial aspects. In terms of effort versus benefit, it's worth it."

More Red Hat OpenShift Container Platform pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

861,481 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

11%

Financial Services Firm

11%

Manufacturing Company

Healthcare Company

Financial Services Firm

13%

Computer Software Company

13%

Manufacturing Company

Educational Organization

Financial Services Firm

22%

Computer Software Company

11%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?

The current pricing of Zafran Security is fair overall. They were good to work with to accommodate our organization w...

See all answers

What needs improvement with Zafran Security?

The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvement...

See all answers

What is your primary use case for Zafran Security?

Zafran Security is helping reduce the amount of critical vulnerabilities in our environments that require prompt reme...

See all answers

What do you like most about Check Point CloudGuard Posture Management?

The visibility in our cloud environment is the most valuable feature.

See all answers

What is your experience regarding pricing and costs for Check Point CloudGuard Posture Management?

The price is on the higher end.

See all answers

What needs improvement with Check Point CloudGuard Posture Management?

We have concerns regarding the pricing and would appreciate seeing some improvements.

See all answers

Which is better - OpenShift Container Platform or VMware Tanzu Mission Control?

Red Hat Openshift is ideal for organizations using microservices and cloud environments. I like that the platform is ...

See all answers

What do you like most about OpenShift Container Platform?

The tool's most valuable features include high availability, scalability, and security. Other features like advanced ...

See all answers

What is your experience regarding pricing and costs for OpenShift Container Platform?

The current licensing cost for this solution is around $23,000 per year, per month. Regarding the current licensing c...

See all answers

Comparisons

Wiz Code vs Zafran Security

Compared 42% of the time

Vulcan Cyber vs Zafran Security

Compared 17% of the time

ServiceNow Security Operations vs Zafran Security

Compared 9% of the time

Tenable Vulnerability Management vs Zafran Security

Compared 9% of the time

Nucleus vs Zafran Security

Compared 7% of the time

More Zafran Security Competitors

Wiz vs Check Point CloudGuard CNAPP

Compared 17% of the time

Prisma Cloud by Palo Alto Networks vs Check Point CloudGuard CNAPP

Compared 17% of the time

AWS GuardDuty vs Check Point CloudGuard CNAPP

Compared 7% of the time

SentinelOne Singularity Cloud Security vs Check Point CloudGuard CNAPP

Compared 6% of the time

Microsoft Defender for Cloud vs Check Point CloudGuard CNAPP

Compared 6% of the time

More Check Point CloudGuard CNAPP Competitors

Amazon EKS vs Red Hat OpenShift Container Platform

Compared 44% of the time

Nutanix Kubernetes Engine NKE vs Red Hat OpenShift Container Platform

Compared 15% of the time

Nutanix Kubernetes Platform (NKP) vs Red Hat OpenShift Container Platform

Compared 8% of the time

VMware Tanzu Platform vs Red Hat OpenShift Container Platform

Compared 6% of the time

HashiCorp Nomad vs Red Hat OpenShift Container Platform

Compared 6% of the time

More Red Hat OpenShift Container Platform Competitors

Product Reports

Buyer's Guide

Continuous Threat Exposure Management (CTEM)

July 2025

Download Zafran Security product report

Buyer's Guide

Check Point CloudGuard CNAPP

July 2025

Download Check Point CloudGuard CNAPP product report

Buyer's Guide

Red Hat OpenShift Container Platform

June 2025

Red Hat OpenShift Container Platform report

Download Red Hat OpenShift Container Platform product report

Also Known As

No data available

Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence

No data available

Overview

Zafran Security integrates with existing security tools to identify and mitigate vulnerabilities effectively, proving that most critical vulnerabilities are not exploitable, optimizing threat management.

Zafran Security introduces an innovative operating model for managing security threats and vulnerabilities. By leveraging the threat exposure management platform, it pinpoints and prioritizes exploitable vulnerabilities, reducing risk through immediate remediation. This platform enhances your hybrid cloud security by normalizing vulnerability signals and integrating specific IT context data, such as CVE runtime presence and internet asset reachability, into its analysis. No longer reliant on patch windows, Zafran Security allows you to manage risks actively.

What are the key features of Zafran Security?

Threat Exposure Management: Utilizes existing tools to prioritize vulnerabilities and manage threats.
Integrative Analysis: Combines security data with IT context for precise vulnerability management.
Real-time Risk Reduction: Enables immediate risk management without waiting for patches.
Hybrid Cloud Compatibility: Functions across diverse cloud environments for comprehensive security.

What benefits can users expect from Zafran Security?

Improved Security: Enhances protection by efficiently identifying and mitigating risks.
Cost Efficiency: Reduces unnecessary patching expenses by confirming non-exploitable vulnerabilities.
Time Savings: Frees developers to focus on root causes by handling immediate threats.
Comprehensive Insight: Offers a holistic view of security threats and vulnerabilities.

In industries where security is paramount, such as finance and healthcare, Zafran Security provides invaluable protection by ensuring that only exploitable vulnerabilities are addressed. It allows entities to maintain robust security measures while allocating resources efficiently, fitting seamlessly into existing security strategies.

Zafran Security

Check Point CloudGuard CNAPP is a cloud-native application protection platform designed to secure your cloud environments and applications. By combining CSPM, CWPP, CSNS, and WAF capabilities, it provides a comprehensive solution to protect your cloud environment from a wide range of threats.

CloudGuard CNAPP delivers end-to-end cloud security, including workload protection, vulnerability management, and identity management, all while maintaining continuous compliance. It uses advanced AI to detect and prevent threats, offering protection for containers, serverless applications, and APIs. CloudGuard CNAPP also emphasizes simplifying security management, integrating directly with cloud platforms like AWS, Azure, and GCP.

CloudGuard CNAPP provides customers with more context to drive actionable security and smarter prevention, from code-to-cloud, across the application lifecycle. More Context Means Actionable Security, Smarter Prevention. The primary components are:

Unified & Modular Platform - A single platform unifying SAST, CSPM, DSPM, CIEM, CWPP, WAF, and Cloud Detection and Response.
Continuous Cloud Security - Automatic enforcement of security requirements and internal policies from development to runtime.
Real-time Detection & Protection - Real-time incidents and vulnerability detection with a single-click or automated remediation.

What are the key features of CloudGuard CNAPP?

Workload Protection: Secures cloud-based workloads, including VMs, containers, and serverless functions, from vulnerabilities and attacks.
Posture Management: Continuously monitors cloud configurations and assets to ensure compliance with security standards and policies.
Threat Prevention: Uses AI-driven threat detection to block malware, ransomware, and zero-day exploits in real-time.
Compliance Automation: Automates compliance checks and ensures adherence to industry regulations, such as GDPR, HIPAA, and PCI-DSS.
Identity and Access Management (IAM) Protection: Secures identities by managing access policies and detecting misconfigurations in permissions.

What are the key benefits to consider?

Improved Cloud Visibility: Provides clear insights into cloud environments, assets, and workloads, helping teams detect misconfigurations and vulnerabilities early.
Risk Reduction: Threat prevention features help reduce the risk of breaches by identifying and blocking potential attacks before they can exploit system weaknesses.
Operational Efficiency: Automated compliance and posture management reduce the manual work needed to maintain security standards.
Multi-cloud Support: CloudGuard CNAPP integrates across AWS, Azure, and Google Cloud, streamlining security operations for hybrid and multi-cloud deployments.

Check Point CloudGuard CNAPP simplifies cloud security management with integrated protection and automation.

Check Point Software Technologies

Red Hat® OpenShift® offers a consistent hybrid cloud foundation for building and scaling containerized applications. Benefit from streamlined platform installation and upgrades from one of the enterprise Kubernetes leaders.

Red Hat

Sample Customers

Information Not Available

Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners

Edenor, BMW, Ford, Argentine Ministry of Health

Buyer's Guide

Check Point CloudGuard CNAPP vs. Red Hat OpenShift Container Platform

October 2024

Free Report: Check Point CloudGuard CNAPP vs. Red Hat OpenShift Container Platform

Find out what your peers are saying about Check Point CloudGuard CNAPP vs. Red Hat OpenShift Container Platform and other solutions. Updated: October 2024.

DOWNLOAD NOW

861,481 professionals have used our research since 2012.

See our Check Point CloudGuard CNAPP vs. Red Hat OpenShift Container Platform report.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.