Check Point CloudGuard CNAPP vs SentinelOne Singularity Cloud Security comparison

Check Point CloudGuard CNAPP vs. SentinelOne Singularity Cloud Security

Download the complete report

Helped 881,114 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Zafran Security

Featured Reviews

Reviewer6233

Works at a healthcare company with 10,001+ employees

Has become an indispensable tool in our cybersecurity arsenal

While Zafran Security is already a powerful tool, there are areas where it could be further improved to provide even greater value. One key area for enhancement is the searching capabilities within its vulnerabilities module. By incorporating the ability to create Boolean searches, users would gain the ability to apply more complex filters and customize their search criteria. This would greatly enhance the precision and efficiency with which security teams can identify and prioritize vulnerabilities. Having such tailored search capabilities would save time and resources by narrowing down vast lists of vulnerabilities to those that meet specific parameters relevant to our unique risk environment. Additionally, integrating more robust reporting and visualization tools would be advantageous. Enhanced dashboards that offer customizable visual representations of risk configurations and threat landscapes would facilitate better communication with stakeholders, making it easier to explain vulnerabilities and the rationale behind certain security measures. This would also aid in demonstrating the improvements and value derived from existing security investments to leadership and non-technical team members.

Read full review

reviewer2751468

Assistant Manager at a computer software company with 201-500 employees

Boosts security and compliance in multi-cloud environments while real-time threat detection enhances risk management

Check Point CloudGuard CNAPP flagged a misconfiguration in our AWS S3 bucket that had overly permissive access settings. That configuration could have exposed our sensitive data to the public internet. The platform not only identified the issue but also provided remediation that our team was able to apply immediately. This prevented a potential data exposure. Check Point CloudGuard CNAPP offers a unified, modular platform that combines CSPM, CWPP, CIEM, code security, and cloud detection and response. The agentless workload posture, real-time threat detection and response, multi-cloud coverage and visibility, compliance automation, and one-click remediations stand out as its best features. I find myself relying on the risk management engine and prioritization the most day-to-day. In any cloud environment, you are flooded with findings, misconfigurations, vulnerabilities, and compliance gaps. Without prioritization, it is overwhelming for our team to take care of the posture. CloudGuard's risk scoring helps us cut through incidents. This makes remediation faster and focused instead of wasting time checking every alert. We get to fix the issues that pose real business risks. Check Point CloudGuard CNAPP has positively impacted our organization at a significant level. We get greater visibility and control across all our cloud environments. Some biggest benefits we have seen are faster detection and remediation of misconfigurations, improved compliance posture, reduced risk exposure, operational efficiency, and cost savings. Overall, it has made our cloud environment more secure, compliant, and easier to manage while freeing up our teams to focus on projects instead of chasing alerts.

Read full review

Satyavijay Chavan

Information Security Engineer at DataVigilant Infotech

Enables us to prioritize and effectively address critical security issues

Evidence-based reporting helps us to prioritize and solve critical security issues. The new visualization feature demonstrates how an attacker can enter the system, highlighting the potential path that can be exploited and outlining all the steps the attacker could take. With that visibility, we can ensure the perimeter is strong and attackers cannot enter, thus reducing the risk. It has helped us prioritize issues. The visibility into how an attack could happen is valuable. For example, it highlights the system vulnerability and outlines where an attack could propagate. The visualization helps me to prioritize remediation, and if I don't know where to start, I can check to see the score that enables me to prioritize issues. I am using infrastructure-as-code scanning, and it's one of the useful features. In pre-production, it identifies embedded secrets and misconfigurations, including issues with Kubernetes or some privileged containers. This feature allows us to pass the audit and secure IaC code so that it isn't easily exploitable by attackers. We can more proactively work to identify and resolve vulnerabilities by using the dashboard and the alerting system that SentinelOne provides. It helps us with audits and compliance. We can show the compliance in percentage. We can confidently say that our company or infrastructure is very secure. It has improved our security posture by 30% to 35%. It has reduced our false positives by 30%. It has helped teams collaborate better. The security team manages SentinelOne Singularity Cloud Security, and when it flags vulnerabilities, they are forwarded to DevOps for remediation. Previously, we needed to identify and report the issues, but there would be lapses in communication. Now, there is a centralized dashboard that anyone can look at and see the open issues and work on them.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"We are able to see the real risk of a vulnerability on our environment with our security tools."

"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."

"With Zafran Security, it integrates with your security controls, allowing you to take that risk score and reduce it based on the controls in place or increase the risk based on different factors, such as if the issue is internet reachable or if there's an exploit in the wild."

"Zafran has become an indispensable tool in our cybersecurity arsenal."

"We saw benefits from Zafran Security almost immediately after deploying it."

"Zafran is an excellent tool."

"We like the GSL Builder feature. When you're running a security operations center, you spend a lot of time monitoring endpoint activity to ensure there is no malicious traffic or anonymous access in the environment. The GSL Builder is helpful for deep investigations of a particular reason for an incident. You can use it to get more information."

"The most valuable feature is the separate environment."

"The most valuable feature of Check Point CloudGuard Posture Management is the training."

"It learns from behavior, attacks, management, detections, captures packets, real-time analysis, et cetera. It's generating knowledge from a variety of sources for an excellent analysis."

"The most valuable features of CloudGuard CNAPP are its reporting capabilities for aggregating vulnerability information and scoring."

"The most valuable feature is the CloudBots for auto-remediation of security findings."

"Cloud security posture management is the feature we've been using the longest."

"The solution is scalable."

More Check Point CloudGuard CNAPP pros

"The management console is highly intuitive to comprehend and operate."

"The most valuable features are automated threat response, AI detection, and static and dynamic detection."

"Its performance impact on the systems is low, which means there is a minimal impact on system performance compared to traditional antivirus solutions."

"We use the infrastructure as code scanning, which is good."

"The most valuable aspects of SentinelOne Singularity Cloud Security are its alerting system and the remediation guidance it provides."

"Cloud Native Security's best feature is its ability to identify hard-coded secrets during pull request reviews."

"Singularity Cloud Workload Security provides us with better security detection and more visibility. It is another resource that we can use to detect vulnerabilities in our company's systems. For example, it can help us detect new file processes that we are not familiar with, which could be used by attackers to exploit our systems. Singularity Cloud Workload Security can also help us diagnose and analyze data to determine whether it is malicious or not. Singularity Cloud Workload Security is like another pair of eyes that can help us protect our systems from cyberattacks."

"The biggest benefit of SentinelOne Singularity Cloud Security is that it has a good AI-based analytics engine that helps with the detection part by providing full visibility."

More SentinelOne Singularity Cloud Security pros

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."

"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."

"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."

"CloudGuard could be more customizable. It has built-in standards for things like GDPR compliance. But depending on your business lane, you might want to build your own controls based on your own standards."

"CloudGuard could be improved by including integration with vendors other than AWS, especially Azure, especially in permissions."

"The main issue that we found with Dome9 is that we have a default rule set with better recommendations that we want to use. So, you do a clone of that rule set, then you do some tweaks and customizations, but there is a problem. When they activate the default rule set with the recommendations and new security measures, it doesn't apply the new security measures to your clones profile. Therefore, you need to clone the profile again. We are already writing a report to Check Point."

"Sometimes, the solution provides us with false alerts of vulnerabilities that are not present in our cloud environment."

"When rules change, it messes up the remediation. They haven't found a fix for that yet. The remediation rule goes into limbo. It's an architectural design flaw within their end compliance engine—a serious bug."

"In Dome9, there should be a policy validation option where we can validate the policy before we push it into production."

"I am not a technical person, but generically, the user interface can be a little more intuitive. Our staff has trained network security and cloud security professionals, and they get it, but when you are trying to get to the customers to be able to pick it up and maintain it, it can be a bit difficult."

"Scalability, particularly in workload protection, is an area that needs improvement."

More Check Point CloudGuard CNAPP cons

"The cloud-based operations might pose challenges in areas with limited or unavailable internet connectivity. Desktop features might be useful for smaller organizations with less complex security needs."

"A vulnerability alert would appear, and we'd fix it, but then the same alert would return the next day."

"Implementing single sign-on requires a pre-class account feature, which is currently not available."

"In addition to the console alerts, I would like SentinelOne Singularity Cloud Security to also send email notifications."

"The first downside of SentinelOne Singularity Cloud Security was the onboarding process, which was very challenging and took a lot of time."

"We repeatedly get alerts on the tool dashboard that we've already solved on our end, but they still appear. That is somewhat irritating."

"They need more experienced support personnel."

"After closing an alert in Cloud Native Security, it still shows as unresolved."

More SentinelOne Singularity Cloud Security cons

Pricing and Cost Advice

Information not available

"The solution’s pricing is a little bit high."

"Check Point CloudGuard Posture Management is expensive."

"I would advise taking into account the existing number of devices and add a forecast of the number of devices to be added in the coming year or two, to obtain better pricing."

"The license for CloudGuard Posture Management is about $80 a year, and it's based on your cloud footprint, not the number of users. So you could have a million users, and it doesn't matter."

"Its price is very fair."

"I suggest that you pay attention to the product pricing because while there are no tricks, and the licensing model is transparent, the final numbers may surprise you."

"From a pricing perspective, they are pretty expensive."

"Licensing and costs are straightforward, as they have a baseline of 100 workloads within one license and no additional charges."

More Check Point CloudGuard CNAPP pricing and cost advice

"PingSafe is priced reasonably for our workload."

"As a partner, we receive a discount on the licenses."

"The pricing is somewhat high compared to other market tools."

"It was reasonable pricing for me."

"It is a little expensive. I would rate it a four out of ten for pricing."

"SentinelOne Singularity Cloud Security is on the costlier side."

"PingSafe is less expensive than other options."

"Its pricing is constant. It has been constant over the previous year, so I am happy with it. However, price distribution can be better explained. That is the only area I am worried about. Otherwise, the pricing is very reasonable."

More SentinelOne Singularity Cloud Security pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud-Native Application Protection Platforms (CNAPP) solutions are best for your needs.

See recommendations

881,114 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

11%

Manufacturing Company

Computer Software Company

Outsourcing Company

Financial Services Firm

11%

Manufacturing Company

10%

Computer Software Company

Outsourcing Company

Financial Services Firm

14%

Computer Software Company

12%

Manufacturing Company

10%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

By reviewers
Company Size	Count
Small Business	55
Midsize Enterprise	17
Large Enterprise	57

By reviewers
Company Size	Count
Small Business	48
Midsize Enterprise	21
Large Enterprise	54

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?

Since we stood Zafran Security up in our private cloud, we handle the maintenance on our side. As we opted not to use...

What needs improvement with Zafran Security?

In terms of areas for improvement, Zafran Security is doing a really great job as a new and emerging company. Oftenti...

What is your primary use case for Zafran Security?

My use cases for Zafran Security revolve around two primary areas. One is around vulnerability management and priorit...

What is your experience regarding pricing and costs for CloudGuard Workload Protection?

My experience with pricing, setup cost, and licensing has been reasonable for the value it delivers. The initial setu...

What do you like most about CloudGuard for Cloud Intelligence?

The new scanning function is a valuable feature that wasn't available until recently.

What needs improvement with CloudGuard for Cloud Intelligence?

One area that Check Point CloudGuard CNAPP could use improvement is the navigation when switching between modules. A ...

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

What is your experience regarding pricing and costs for PingSafe?

I think the pricing of SentinelOne Singularity Cloud Security is a bit high.

What needs improvement with PingSafe?

We did not try to use the threat investigations feature from SentinelOne Singularity Cloud Security.Drift detection w...

Wiz Code vs Zafran Security

Comparisons

Compared 24% of the time

Vulcan Cyber vs Zafran Security

Compared 11% of the time

Tenable Vulnerability Management vs Zafran Security

Compared 10% of the time

Nucleus vs Zafran Security

Compared 8% of the time

Qualys VMDR vs Zafran Security

Compared 6% of the time

More Zafran Security Competitors

Prisma Cloud by Palo Alto Networks vs Check Point CloudGuard CNAPP

Compared 25% of the time

Wiz vs Check Point CloudGuard CNAPP

Compared 7% of the time

Cloudflare vs Check Point CloudGuard CNAPP

Compared 5% of the time

AWS Security Hub vs Check Point CloudGuard CNAPP

Compared 4% of the time

Orca Security vs Check Point CloudGuard CNAPP

Compared 3% of the time

More Check Point CloudGuard CNAPP Competitors

Wiz vs SentinelOne Singularity Cloud Security

Compared 10% of the time

Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 10% of the time

Microsoft Defender for Cloud vs SentinelOne Singularity Cloud Security

Compared 6% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 5% of the time

More SentinelOne Singularity Cloud Security Competitors

Product Reports

Zafran Security

Download Zafran Security product report

Check Point CloudGuard CNAPP

Download Check Point CloudGuard CNAPP product report

SentinelOne Singularity Cloud Security

Download SentinelOne Singularity Cloud Security product report

SentinelOne Singularity Cloud Security report

Also Known As

No data available

Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence

PingSafe

Overview

Zafran Security integrates with existing security tools to identify and mitigate vulnerabilities effectively, proving that most critical vulnerabilities are not exploitable, optimizing threat management.

Zafran Security introduces an innovative operating model for managing security threats and vulnerabilities. By leveraging the threat exposure management platform, it pinpoints and prioritizes exploitable vulnerabilities, reducing risk through immediate remediation. This platform enhances your hybrid cloud security by normalizing vulnerability signals and integrating specific IT context data, such as CVE runtime presence and internet asset reachability, into its analysis. No longer reliant on patch windows, Zafran Security allows you to manage risks actively.

What are the key features of Zafran Security?

Threat Exposure Management: Utilizes existing tools to prioritize vulnerabilities and manage threats.
Integrative Analysis: Combines security data with IT context for precise vulnerability management.
Real-time Risk Reduction: Enables immediate risk management without waiting for patches.
Hybrid Cloud Compatibility: Functions across diverse cloud environments for comprehensive security.

What benefits can users expect from Zafran Security?

Improved Security: Enhances protection by efficiently identifying and mitigating risks.
Cost Efficiency: Reduces unnecessary patching expenses by confirming non-exploitable vulnerabilities.
Time Savings: Frees developers to focus on root causes by handling immediate threats.
Comprehensive Insight: Offers a holistic view of security threats and vulnerabilities.

In industries where security is paramount, such as finance and healthcare, Zafran Security provides invaluable protection by ensuring that only exploitable vulnerabilities are addressed. It allows entities to maintain robust security measures while allocating resources efficiently, fitting seamlessly into existing security strategies.

Zafran Security

Check Point CloudGuard CNAPP offers comprehensive cloud security with features like dynamic access control, asset protection, and compliance checks, tailored for organizations seeking enhanced governance across AWS, Azure, and GCP platforms.

Check Point CloudGuard CNAPP provides robust capabilities, including centralized firewall management, IAM scanning, and real-time visibility. Its strengths lie in predictive visualization, threat intelligence, and auto-remediation, making it a valuable tool for risk mitigation and compliance management. The platform's integration and responsiveness enhance cloud security, ensuring alignment with industry standards and effective threat protection.

What are the key features of Check Point CloudGuard CNAPP?

Dynamic Access Control: Enables granular security permissions for cloud resources.
Asset Protection: Safeguards cloud assets from unauthorized access and threats.
Compliance Checks: Ensures alignment with industry regulations like PCI DSS and SOC 2.
Centralized Firewall Management: Simplifies firewall rule configuration across cloud environments.
IAM Scanning: Audits and secures identity and access management configurations.
Real-Time Visibility: Provides insights into cloud environments for proactive threat detection.

What benefits and ROI should you expect from Check Point CloudGuard CNAPP?

Threat Intelligence: Identifies and mitigates potential risks before exploitation.
Auto-Remediation: Automates responses to security incidents, reducing manual intervention.
Intuitive Interface: Simplifies management and enhances operational efficiency.
Posture Management: Maintains strong security posture through continuous assessment.

Organizations in finance, healthcare, and retail frequently implement Check Point CloudGuard CNAPP for compliance and security across cloud environments. It assists with workload protection, threat detection, and regulatory obligation fulfillment, proving effective for securing applications and monitoring API interactions.

Check Point Software Technologies

SentinelOne Singularity Cloud Security offers a streamlined approach to cloud security with intuitive operation and strong integration capabilities for heightened threat detection and remediation efficiency.

Singularity Cloud Security stands out for its real-time detection and response, effectively minimizing detection and remediation timelines. Its automated remediation integrates smoothly with third-party tools enhancing operational efficiency. The comprehensive console ensures visibility and support for forensic investigations. Seamless platform integration and robust support for innovation are notable advantages. Areas for development include improved search functionality, affordability, better firewall capabilities for remote users, stable agents, comprehensive reporting, and efficient third-party integrations. Clarity in the interface, responsive support, and real-time alerting need enhancement, with a call for more automation and customization. Better scalability and cost-effective integration without compromising capabilities are desired.

What are SentinelOne Singularity Cloud Security's standout features?

Ease of Use: Intuitive operation simplifies navigation across platforms.
Real-Time Detection: Quick identification and response to threats.
Automated Remediation: Streamlines recovery processes with integration capabilities.
Forensic Visibility: Aids in thorough threat analysis and prevention strategies.
Comprehensive Console: Offers full visibility and historical data tracking.
Platform Integration: Supports seamless operation across cloud and hybrid environments.

What benefits should users expect from SentinelOne Singularity Cloud Security?

Enhanced Efficiency: Automation and third-party integration improve threat response.
Improved Detection: Reduces mean time to detect and respond to threats.
Operational Support: Comprehensive visibility and forensic tools aid operational decisions.
Cost Efficiency: Affordable integration with scaling capabilities without high overhead.

SentinelOne Singularity Cloud Security is deployed in industries needing robust cloud security posture management, endpoint protection, and threat hunting. Utilized frequently across AWS and Azure, it assists in monitoring, threat detection, and maintaining compliance in diverse environments while providing real-time alerts and recommendations for proactive threat management.

SentinelOne

Sample Customers

Information Not Available

Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners

Information Not Available

Check Point CloudGuard CNAPP vs. SentinelOne Singularity Cloud Security