No more typing reviews! Try our Samantha, our new voice AI agent.

Check Point CloudGuard CNAPP vs Tanium comparison

Check Point Software Technologies and Tanium are both solutions in the Vulnerability Management category. Check Point Software Technologies is ranked #13 with an average rating of 8.5, while Tanium is ranked #23 with an average rating of 8.5. Check Point Software Technologies holds a 1.2% mindshare in VM, compared to Tanium’s 1.8% mindshare. Additionally, 95% of Check Point Software Technologies users are willing to recommend the solution, compared to 80% of Tanium users who would recommend it.
Check Point CloudGuard CNAPP
Read 72 Check Point CloudGuard CNAPP reviews
  • 8,128 Views
  • 2,601 Comparison Views
95% willing to recommend
Tanium
Read 22 Tanium reviews
  • 11,420 Views
  • 2,855 Comparison Views
80% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jan 18, 2026

Check Point CloudGuard CNAPP and Tanium compete in the cybersecurity and compliance management space, focusing on providing robust solutions for cloud and endpoint security. CloudGuard CNAPP seems to hold an advantage due to its superior integration capabilities for cloud-specific security requirements.

Features: Check Point CloudGuard CNAPP offers robust compliance and security management with visibility, threat detection, and automated remediation features. It provides a unified security approach across public clouds, centralizing policy management. Tanium excels in patch management, real-time data queries, and endpoint visibility, which aids in effective risk identification and remediation.

Room for Improvement: CloudGuard CNAPP users suggest enhancements in third-party tool integration, reporting options, and reducing false positives. There is also a need for better automation and DevOps tool integration. Tanium users desire improved scalability, a better interface, and a reduction of false positives.

Ease of Deployment and Customer Service: CloudGuard CNAPP is known for its flexible deployment across public and hybrid clouds, while Tanium primarily caters to on-premises and hybrid cloud setups. Check Point’s customer service is supportive but may have delays, whereas Tanium’s technical support is consistently praised for its reliability and helpfulness.

Pricing and ROI: CloudGuard CNAPP's pricing varies with cloud infrastructure size, offering flexibility but is at times perceived as expensive despite notable ROI in improved security posture and reduced manual checks. Tanium is also considered pricey but provides a good investment due to its excellent patch management and endpoint visibility. Both solutions offer significant ROI through operational efficiencies, though pricing remains a critical factor for buyers.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Check Point CloudGuard CNAPP vs. Tanium Report (Updated: March 2026).
Buyer's Guide
Check Point CloudGuard CNAPP vs. Tanium
March 2026
Download the complete report
Helped 885,311 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Check Point CloudGuard CNAPP
Ranking in Vulnerability Management
13th
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
72
Ranking in other categories
Cloud and Data Center Security (9th), Container Security (11th), Cloud Workload Protection Platforms (CWPP) (6th), Cloud Security Posture Management (CSPM) (6th), Cloud-Native Application Protection Platforms (CNAPP) (6th), Data Security Posture Management (DSPM) (7th), Compliance Management (6th)
Tanium
Ranking in Vulnerability Management
23rd
Average Rating
7.8
Reviews Sentiment
6.2
Number of Reviews
22
Ranking in other categories
Server Monitoring (3rd), Endpoint Protection Platform (EPP) (19th), Endpoint Detection and Response (EDR) (21st), Unified Endpoint Management (UEM) (6th)
 

Mindshare comparison

As of March 2026, in the Vulnerability Management category, the mindshare of Check Point CloudGuard CNAPP is 1.2%, down from 1.3% compared to the previous year. The mindshare of Tanium is 1.8%, down from 2.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management Mindshare Distribution
ProductMindshare (%)
Check Point CloudGuard CNAPP1.2%
Tanium1.8%
Other97.0%
Vulnerability Management
 

Featured Reviews

reviewer2751468 - PeerSpot reviewer
reviewer2751468
Assistant Manager at a computer software company with 201-500 employees
Boosts security and compliance in multi-cloud environments while real-time threat detection enhances risk management
Check Point CloudGuard CNAPP flagged a misconfiguration in our AWS S3 bucket that had overly permissive access settings. That configuration could have exposed our sensitive data to the public internet. The platform not only identified the issue but also provided remediation that our team was able to apply immediately. This prevented a potential data exposure. Check Point CloudGuard CNAPP offers a unified, modular platform that combines CSPM, CWPP, CIEM, code security, and cloud detection and response. The agentless workload posture, real-time threat detection and response, multi-cloud coverage and visibility, compliance automation, and one-click remediations stand out as its best features. I find myself relying on the risk management engine and prioritization the most day-to-day. In any cloud environment, you are flooded with findings, misconfigurations, vulnerabilities, and compliance gaps. Without prioritization, it is overwhelming for our team to take care of the posture. CloudGuard's risk scoring helps us cut through incidents. This makes remediation faster and focused instead of wasting time checking every alert. We get to fix the issues that pose real business risks. Check Point CloudGuard CNAPP has positively impacted our organization at a significant level. We get greater visibility and control across all our cloud environments. Some biggest benefits we have seen are faster detection and remediation of misconfigurations, improved compliance posture, reduced risk exposure, operational efficiency, and cost savings. Overall, it has made our cloud environment more secure, compliant, and easier to manage while freeing up our teams to focus on projects instead of chasing alerts.
Read full review
MA
Mairajuddin Ahmed
Division Manager, Information Technology at a legal firm with 51-200 employees
Centralized policies have improved remote endpoint control and have simplified data visibility
The integration is not simple and easy. It requires experienced users or people who have done the implementation. When certain policies are applied, they do not immediately push the policies. For example, we manage endpoint device USB access. We set a policy to block it, but it does not come into effect immediately. Sometimes it takes three or four days for it to reflect. That is a pain point. I have raised this issue with support as well, but they said that I need to limit the number of devices in the policy. In terms of application deployment, for us, it was seamless.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The system has deployed security tools to enhance effective investigations in the entire company networking system."
"We like the ability to investigate, analyze, and generate reports."
"It has an analytics service that does research for us."
"It offers a range of features tailored to address the unique security challenges."
"All of the features are very useful in today's market."
"This solution has saved the company from unnecessary data loss that occurs due to cyber attacks."
"The identification of misconfigurations, maintenance of compliance in a centralized way, and visibility across all the multi-cloud tenants are the key functionalities."
"I love the work involved in maintaining and scaling security services and configurations across multiple public clouds using this solution, versus using native native cloud security controls. It is so much better. The different cloud platforms all have their own way that they handle a lot of the stuff that Dome9 handles. Even within their platform, they are in a lot of disparate places, e.g., in AWS, there are five different tools. You have to jump between them to get the same information that you can just pull in automatically on Dome9, which is just one platform. We are using multiple platforms, so that makes it even more complicated and time consuming if you had to just rely on them to get all of your information. Whereas, it's all just summarized and put together on the Dome9 end."
More Check Point CloudGuard CNAPP pros
"For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user."
"The most valuable features of this solution are the consolidation of all historical data on device endpoints, security drivers, firmware, and Software version gaps."
"Threat hunting is a very good feature on Tanium. We have just started using it and have not used it extensively."
"I like the fact that you can create patching campaigns depending on the area of your network that you want to address first."
"Tanium is a very good product and I would rate it eight or nine out of ten."
"It's definitely not complex, it is pretty user-friendly and it's a solid tool enterprise to use."
"The insights we gain from our endpoints and the management capabilities that Tanium provides have been a boon to our operations and security."
"I like the tool's incident response and security patching."
More Tanium pros
 

Cons

"The platform would be significantly enhanced by incorporating data security management capabilities."
"CloudGuard CNAPP could be enhanced by increasing the number of components that run natively on Azure."
"It does not support on-premise deployments such as VMware Tanzu, and this has been a major drawback when it comes to integrations with some applications."
"The biggest thing is the documentation aspect of Dome9 is a little lacking. They were purchased by Check Point about a year and a half to two years ago. When they integrated into Check Point's support system, a lot of the documentation that they had previously got mangled in the transition, e.g., linking to stuff on the Dome9 website that no longer exists. There are still a lot of spaces with incomplete links and stuff that is not as fully explained as it could be."
"I would like to see tighter integration with other compliance tools, like Chef Compliance, in addition to Inspector."
"CloudGuard's reporting could be better. It's good now, but there is room for improvement. If you're looking for a centralized platform, there are a lot of features that can be appreciated. However, you want complete security integration with SaaS, DAST, secret scanning, etc., and a single platform for all these features."
"I would like CloudGuard's pricing to be cheaper, but I think that's impossible. The pricing is the only thing I think they can improve."
"It should have some options to activate API calls to the platform in the cloud, another improvement would be that when the rules are colonized and they want to be published."
More Check Point CloudGuard CNAPP cons
"The solution needs to improve the reporting and tracking capabilities."
"Most of the time, agent-relative issues have to be more equipped with self-healing features."
"The solution lacks mobility."
"The performance could improve in future releases. We have had performance issues in specialized web environments, but overall I think the problems are less than 2% of the computer systems being used."
"I would like to have more integrations and custom plugins to input."
"The problem or challenge is a pre-sales and go-to strategy for the SMB market delivered through a channel or model. It's very convoluted and vague, which leads to some confusion about the various types of modules, and the device-to-seat cost is extremely difficult to calculate."
"We had some issues with the solution's OS upgrade."
"The solution can give a lot of false positives."
More Tanium cons
 

Pricing and Cost Advice

"Right now, we have licenses on 500 machines, and they are not cheap."
"I would advise taking into account the existing number of devices and add a forecast of the number of devices to be added in the coming year or two, to obtain better pricing."
"The price is on the higher end."
"The licensing and costs are straightforward, as they have a baseline of 100 workloads (number of instances) within one license with no additional nor hidden charges. If you want to have 200 workloads under Dome9, then you need to take out two licenses for that. Also, it does not have any impact on cloud billing, as data is shared using the API call. This is well within the limit of free API calls provided by the cloud provider."
"The license for CloudGuard Posture Management is about $80 a year, and it's based on your cloud footprint, not the number of users. So you could have a million users, and it doesn't matter."
"We have the enterprise-level license and we renew it annually because it is worth the cost."
"The tool's pricing is moderate. Its licensing costs are yearly."
"Check Point CloudGuard Posture Management is expensive."
More Check Point CloudGuard CNAPP pricing and cost advice
"It is higher than some competitors in the market."
"The solution is expensive but it's a good investment."
"It's an expensive solution. It would be nice if the cost were lower."
"The product's pricing differs from region to region depending on negotiations and the number of endpoints."
"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."
"There is an annual license required to use this solution."
"The solution offers value for money."
report
See which vendors are best for you
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
See recommendations
885,311 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
10%
Manufacturing Company
8%
Construction Company
8%
Computer Software Company
7%
Financial Services Firm
15%
Government
11%
Manufacturing Company
9%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business55
Midsize Enterprise18
Large Enterprise56
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise3
Large Enterprise12
 

Questions from the Community

What is your experience regarding pricing and costs for CloudGuard Workload Protection?
My experience with pricing, setup cost, and licensing has been reasonable for the value it delivers. The initial setup cost was fair. Understanding the right modules and tiers took a bit of plannin...
See all answers
What do you like most about CloudGuard for Cloud Intelligence?
The new scanning function is a valuable feature that wasn't available until recently.
See all answers
What needs improvement with CloudGuard for Cloud Intelligence?
One area that Check Point CloudGuard CNAPP could use improvement is the navigation when switching between modules. A more streamlined interface and a quicker drill-down into findings would make the...
See all answers
What needs improvement with Tanium?
While there is always room for improvement, I am pleased with Tanium.
See all answers
What is your primary use case for Tanium?
The primary use case for Tanium ( /products/tanium-reviews ) is compliance, patching, and inventory as part of the core functions.
See all answers
What advice do you have for others considering Tanium?
For smaller companies, Tanium is quite a big investment, and one needs to have a considerable setup to make it economically viable. I would recommend it to others with a similar use case. The solut...
See all answers
 

Comparisons

Prisma Cloud by Palo Alto Networks vs Check Point CloudGuard CNAPP Logo
Prisma Cloud by Palo Alto Networks vs Check Point CloudGuard CNAPP
Compared 19% of the time
Cloudflare vs Check Point CloudGuard CNAPP Logo
Cloudflare vs Check Point CloudGuard CNAPP
Compared 5% of the time
Microsoft Defender for Cloud vs Check Point CloudGuard CNAPP Logo
Microsoft Defender for Cloud vs Check Point CloudGuard CNAPP
Compared 4% of the time
AWS Security Hub vs Check Point CloudGuard CNAPP Logo
AWS Security Hub vs Check Point CloudGuard CNAPP
Compared 4% of the time
Wiz vs Check Point CloudGuard CNAPP Logo
Wiz vs Check Point CloudGuard CNAPP
Compared 3% of the time
More Check Point CloudGuard CNAPP Competitors
CrowdStrike Falcon vs Tanium Logo
CrowdStrike Falcon vs Tanium
Compared 7% of the time
Microsoft Defender for Endpoint vs Tanium Logo
Microsoft Defender for Endpoint vs Tanium
Compared 5% of the time
BigFix vs Tanium Logo
BigFix vs Tanium
Compared 4% of the time
NinjaOne vs Tanium Logo
NinjaOne vs Tanium
Compared 4% of the time
Microsoft Configuration Manager vs Tanium Logo
Microsoft Configuration Manager vs Tanium
Compared 3% of the time
More Tanium Competitors
 

Product Reports

Buyer's Guide
Check Point CloudGuard CNAPP
March 2026
Check Point CloudGuard CNAPP reportDownload Check Point CloudGuard CNAPP product report
Buyer's Guide
Tanium
March 2026
Tanium reportDownload Tanium product report
 

Also Known As

Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence
Tanium Inc Cloud, Tanium XEM
 

Overview

Check Point CloudGuard CNAPP offers comprehensive cloud security with features like dynamic access control, asset protection, and compliance checks, tailored for organizations seeking enhanced governance across AWS, Azure, and GCP platforms.

Check Point CloudGuard CNAPP provides robust capabilities, including centralized firewall management, IAM scanning, and real-time visibility. Its strengths lie in predictive visualization, threat intelligence, and auto-remediation, making it a valuable tool for risk mitigation and compliance management. The platform's integration and responsiveness enhance cloud security, ensuring alignment with industry standards and effective threat protection.

What are the key features of Check Point CloudGuard CNAPP?
  • Dynamic Access Control: Enables granular security permissions for cloud resources.
  • Asset Protection: Safeguards cloud assets from unauthorized access and threats.
  • Compliance Checks: Ensures alignment with industry regulations like PCI DSS and SOC 2.
  • Centralized Firewall Management: Simplifies firewall rule configuration across cloud environments.
  • IAM Scanning: Audits and secures identity and access management configurations.
  • Real-Time Visibility: Provides insights into cloud environments for proactive threat detection.
What benefits and ROI should you expect from Check Point CloudGuard CNAPP?
  • Threat Intelligence: Identifies and mitigates potential risks before exploitation.
  • Auto-Remediation: Automates responses to security incidents, reducing manual intervention.
  • Intuitive Interface: Simplifies management and enhances operational efficiency.
  • Posture Management: Maintains strong security posture through continuous assessment.

Organizations in finance, healthcare, and retail frequently implement Check Point CloudGuard CNAPP for compliance and security across cloud environments. It assists with workload protection, threat detection, and regulatory obligation fulfillment, proving effective for securing applications and monitoring API interactions.

Check Point Software Technologies

Tanium offers robust endpoint protection, patching, and inventory management, consolidating the functions of tools like BigFix with capabilities in incident response, network security, and cloud or on-premise deployments.

Known for real-time capabilities, Tanium provides detailed analytics, security features, and device management. Users benefit from quick implementation, real-time updates, and patching campaigns. Despite its strengths, integration and custom plugin expansion remain areas to improve, along with data visualization and network optimization. Reporting enhancements and user training could advance its usability, and some UI elements may require updates for clarity and security.

What are the essential features of Tanium?
  • Detailed Analytics: Provides actionable insights for better decision-making.
  • Security Capabilities: Offers strong defense measures against threats.
  • Real-Time Queries: Facilitates immediate information access.
  • Patch Management: Streamlines software updates across devices.
  • Device Management: Efficiently handles comprehensive inventory and monitoring tasks.
What benefits should users expect?
  • Ease of Use: Simplifies complex IT tasks.
  • Scalability: Adapts to growing IT infrastructure needs.
  • Integration Flexibility: Merges with existing systems effortlessly.
  • Real-Time Updates: Ensures current data availability for informed actions.

Tanium's deployment spans industries focusing on endpoint protection and compliance, ensuring reliable device and server management in settings where safety and quick adaptation are critical. Organizations use it for application deployment, compliance checks, and integrating it as an EDR solution, enhancing overall security and operational efficiencies.

Tanium
 

Sample Customers

Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners
JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life
Buyer's Guide
Check Point CloudGuard CNAPP vs. Tanium
March 2026
Free Report: Check Point CloudGuard CNAPP vs. Tanium
Find out what your peers are saying about Check Point CloudGuard CNAPP vs. Tanium and other solutions. Updated: March 2026.
DOWNLOAD NOW
885,311 professionals have used our research since 2012.
See our Check Point CloudGuard CNAPP vs. Tanium report.
See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.