Check Point CloudGuard CNAPP vs SUSE NeuVector comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Jul 2, 2023
 

Categories and Ranking

SentinelOne Singularity Clo...
Sponsored
Ranking in Cloud Workload Protection Platforms (CWPP)
6th
Average Rating
8.6
Number of Reviews
83
Ranking in other categories
Vulnerability Management (5th), Cloud and Data Center Security (7th), Container Security (6th), Cloud Security Posture Management (CSPM) (5th), Cloud-Native Application Protection Platforms (CNAPP) (5th), Compliance Management (4th)
Check Point CloudGuard CNAPP
Ranking in Cloud Workload Protection Platforms (CWPP)
5th
Average Rating
8.6
Number of Reviews
65
Ranking in other categories
Vulnerability Management (6th), Cloud and Data Center Security (8th), Container Management (6th), Cloud Security Posture Management (CSPM) (4th), Cloud-Native Application Protection Platforms (CNAPP) (4th), Data Security Posture Management (DSPM) (4th), Compliance Management (3rd)
SUSE NeuVector
Ranking in Cloud Workload Protection Platforms (CWPP)
15th
Average Rating
7.8
Number of Reviews
7
Ranking in other categories
Container Security (20th)
 

Mindshare comparison

As of June 2024, in the Container Security category, the mindshare of SentinelOne Singularity Cloud Security is 2.7%, up from 1.7% compared to the previous year. The mindshare of Check Point CloudGuard CNAPP is 2.9%, down from 2.9% compared to the previous year. The mindshare of SUSE NeuVector is 3.7%, down from 5.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Container Security
Unique Categories:
Vulnerability Management
1.6%
Cloud and Data Center Security
0.2%
Cloud Workload Protection Platforms (CWPP)
1.7%
 

Featured Reviews

Nilesh Jadhav - PeerSpot reviewer
May 6, 2024
Improves security posture, reduces false positives, and speeds up remediation time
Our infrastructure is on AWS and we integrate PingSafe with our enterprise accounts to identify misconfiguration on the Cloud The offensive security engine helps us visualize any potential attacks. PingSafe helps us maintain and improve our security posture. It has helped reduce the number of…
EH
Apr 15, 2024
The benefits were immediate, effectively providing compliance rule sets and security best practices
We haven't had any cloud security incidents since implementing CloudGuard CNAPP in 2017. It's been a critical tool as we've grown our cloud usage, transitioning applications from data centers to the cloud. CloudGuard's scalability has kept pace with our growth. As the third-largest enterprise user of Azure, our cloud footprint is significant. The benefits of CloudGuard CNAPP were immediately apparent upon deployment. Back in 2017, we found ourselves needing to catch up on securing our existing AWS assets. We required a solution that offered quick implementation and usability. CloudGuard was the first platform we considered, and we've continued to expand its use alongside Check Point's ongoing development of new capabilities. We create custom rules to address our organization's unique security policies, in addition to leveraging the built-in rules within CloudGuard CNAPP's CSPM module. This flexibility is crucial for us. While CloudGuard CNAPP's CSPM capabilities effectively provide compliance rule sets and security best practices, it's important to understand that this is just one aspect of achieving full alignment with security frameworks. To be fully compliant, additional measures outside of CloudGuard need to be addressed and implemented. However, CloudGuard CNAPP remains a valuable piece of the puzzle. CSPM helps us identify the most critical business risks. It's a time-saver that translates into cost savings. CSPM provides insights from multiple perspectives. We can analyze what a breach would mean for the business, including brand reputation and the significant cost and time required for recovery. Even in terms of day-to-day operations, CSPM saves us employee hours by streamlining security tasks. The security provided by the CWP for containers is good. We are extremely satisfied. Our CI/CD environment utilizes some scanning capabilities offered by workload protection, but it's not fully integrated. This creates limitations in proactively identifying issues before deployment. When we do use the workload protection capabilities they are critical for us.
WL
Aug 11, 2023
A Cloud-based Solution for the network inspection, visualization, and security needed for dynamic container environments
I used it to monitor the long-time events The solution enhances the organization as it safeguards against various types of malware through anti-malware, which we use once a few days. The features of image scanning and anti-malware are really valuable.      The image-scanning features need…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"PingSafe offers an intuitive user interface that lets us navigate quickly and easily."
"The most valuable features of PingSafe are the asset inventory and issue indexing."
"SentinelOne stands out with its responsiveness to feature requests for Singularity Cloud Security."
"Cloud Native Security offers a valuable tool called an offensive search engine."
"It used to guide me about an alert. There is something called an alert guide. I used to click on the alert guide, and I could read everything. I could read about the alert and how to resolve it. I used to love that feature."
"As a frequently audited company, we value PingSafe's compliance monitoring features. They give us a report with a compliance score for how well we meet certain regulatory standards, like HIPAA. We can show our compliance as a percentage. It's also a way to show that we are serious about security."
"PingSafe offers security solutions for both Kubernetes and CI/CD pipelines."
"The agentless vulnerability scanning is great."
"The most valuable feature is the CloudBots for auto-remediation of security findings."
"It has great scalability."
"The reporting is quite good. It is the most powerful aspect of this solution."
"It presents a real-time database that is always updated."
"It offers advanced detection of threats that can harm data from the cloud database."
"Helps identify and correct misconfigurations in cloud environments, ensuring that infrastructure and applications are secure and optimized."
"It saves time because I can look across the organization. Instead of checking 50 different accounts atomically and spending 15 minutes investigating each, I can spend 15 minutes exploring all 50 accounts. It allows me to quickly look across the org for similar problems when one comes up. That's a huge time saver."
"I love the work involved in maintaining and scaling security services and configurations across multiple public clouds using this solution, versus using native native cloud security controls. It is so much better. The different cloud platforms all have their own way that they handle a lot of the stuff that Dome9 handles. Even within their platform, they are in a lot of disparate places, e.g., in AWS, there are five different tools. You have to jump between them to get the same information that you can just pull in automatically on Dome9, which is just one platform. We are using multiple platforms, so that makes it even more complicated and time consuming if you had to just rely on them to get all of your information. Whereas, it's all just summarized and put together on the Dome9 end."
"The most valuable feature of SUSE NeuVector is its run-time security."
"The features of image scanning and anti-malware are really valuable."
"The tool's deployment is simple. Also, I am impressed with its risk capabilities."
"The UI has a lot of features."
"The initial setup is quite good, it's straightforward."
"When it comes to the price, we got a really good deal from the vendor instantly."
"The most valuable feature of SUSE NeuVector is the performance, deployment, and cost."
 

Cons

"PingSafe's current documentation could be improved to better assist customers during the cluster onboarding process."
"A few YouTube videos could be helpful. There isn't a lot of information out there to look at."
"The integration with Oracle has room for improvement."
"Bugs need to be disclosed quickly."
"The Kubernetes scanning on the Oracle Cloud needs to be improved. It's on the roadmap. AWS has this capability, but it's unavailable for Oracle Cloud."
"We'd like to have better notifications. We'd like them to happen faster."
"They can work on policies based on different compliance standards."
"There's an array of upcoming versions with numerous features to be incorporated into the roadmap. Customers particularly appreciate the service's emphasis on intensive security, especially the secret scanning aspect. During the proof of concept (POC) phase, the system is required to gather logs from the customer's environment. This process entails obtaining specific permissions, especially in terms of gateway access. While most permissions for POC are manageable, the need for various permissions may need improvement, especially in the context of security."
"Automation and advanced threat prevention have room for improvement."
"Timely updates and upgrades to meet modern technological changes could help improve performance and limit the chances of downtime."
"It does not support on-premise deployments such as VMware Tanzu, and this has been a major drawback when it comes to integrations with some applications."
"The product must provide different features like antivirus."
"Reporting should have more options."
"I would like an interface more adapted to cell phones or tablets."
"The technical support could be better, but I do not know of any other needed improvements."
"The security of Check Point CloudGuard Posture Management could improve. There are always new security issues coming out."
"SUSE NeuVector should provide more security protection rules and better container image scanning."
"The image-scanning features need improvement."
"We are also working with IaaS VMS, but NeuVector doesn't support virtual machines."
"The documentation needs to improve a bit."
"The tool should offer seamless integration of other security tools while in a hybrid environment."
"I would say that this solution should improve monitoring and reporting. I would also like to see more integrations so that we could essentially make it a part of a developing pipeline."
"SUSE NeuVector could improve by increasing its visibility into other elements of the DevSecOps pipeline. Additionally, scanning around infrastructure would be helpful."
 

Pricing and Cost Advice

"Their pricing appears to be based simply on the number of accounts we have, which is common for cloud-based products."
"I am not involved in the pricing, but it is cost-effective."
"It is not that expensive. There are some tools that are double the cost of PingSafe. It is good on the pricing side."
"Pricing is based on modules, which was ideal for us."
"Its pricing was a little less than other providers."
"PingSafe is affordable."
"The tool is cost-effective."
"I wasn't sure what to expect from the pricing, but I was pleasantly surprised to find that it was a little less than I thought."
"The pricing is extremely competitive."
"The price is on the higher end."
"Right now, we have licenses on 500 machines, and they are not cheap."
"Its price is very fair."
"The pricing of Check Point is very reasonable. Cisco is a very big brand, so the pricing is quite high. We want a solution that fits into our pocket and has all the features. They can improve the licensing model for small and mid-sized organizations. It suits large companies but not small and mid-sized organizations."
"It is a very straightforward licensing model that is based on the number of assets you are discovering and managing with the solution."
"I would advise taking into account the existing number of devices and add a forecast of the number of devices to be added in the coming year or two, to obtain better pricing."
"From a pricing perspective, they are pretty expensive."
"The price of SUSE NeuVector is low. There is an additional cost for support."
"SUSE NeuVector is an open-source solution."
"The solution's pricing could be better. The cost of a subscription is calculated on the basis of work."
"Licensing fees are paid yearly."
report
Use our free recommendation engine to learn which Container Security solutions are best for your needs.
789,442 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
21%
Financial Services Firm
15%
Manufacturing Company
10%
Insurance Company
5%
Financial Services Firm
17%
Computer Software Company
15%
Security Firm
8%
Manufacturing Company
8%
Computer Software Company
17%
Financial Services Firm
13%
Manufacturing Company
9%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about PingSafe?
The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...
What needs improvement with PingSafe?
When I joined my organization, I saw that PingSafe was already implemented. I started to use the tool's alerting feat...
What do you like most about NeuVector?
The most valuable feature of SUSE NeuVector is its run-time security.
What is your experience regarding pricing and costs for NeuVector?
SUSE NeuVector is an open-source solution. You have to pay for the support.
What needs improvement with NeuVector?
SUSE NeuVector should provide more security protection rules and better container image scanning.
 

Also Known As

PingSafe
Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence
NeuVector
 

Overview

 

Sample Customers

Information Not Available
Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners
Figo, Clear Review, Arvato Bertelsmann, Experian, Chime
Find out what your peers are saying about Check Point CloudGuard CNAPP vs. SUSE NeuVector and other solutions. Updated: May 2024.
789,442 professionals have used our research since 2012.