Checkmarx One and Check Point CloudGuard Code Security are both competitive security tools catered towards enhancing software security. While Check Point CloudGuard is preferred for its expansive coverage and integration features, Checkmarx One stands out with superior code vulnerability scanning.
Features: Checkmarx One specializes in scanning uncompiled code and offers features like vulnerability flow tracking and custom code check rules, supporting multiple programming languages. Check Point CloudGuard provides automation, rapid risk identification, and scalability within its ecosystem, along with centralized compliance and security management through intuitive dashboards.
Room for Improvement: Checkmarx One is critiqued for high false positive rates and a complex licensing model, with limited dynamic testing capabilities. Check Point CloudGuard's issues include scarce documentation and a non-transparent pricing structure, alongside concerns about support responsiveness.
Ease of Deployment and Customer Service: Checkmarx One offers flexible deployment across Private, Hybrid, and Public Clouds, gaining praise for its knowledgeable support team. Check Point CloudGuard provides straightforward integration in Public and Hybrid Cloud scenarios, though its support services have room for refinement.
Pricing and ROI: Checkmarx One, though high-cost, is valued for its comprehensive security features, with some criticism on its rigid licensing. Check Point CloudGuard is appreciated for affordability and a simpler renewal process, yet could improve in pricing transparency. Both deliver solid ROI with Checkmarx emphasizing security practices and Check Point CloudGuard leveraging cloud efficiencies.
Overall, between the fast scanning, automation, automatic reporting, and easy detection, it has reduced manual effort enough that we did not need an extra reviewer, even as our codebase or team size grew.
Based on my interactions with the clients, I can tell that there is a return on investment because if something is not profitable and it's not helping to save costs or vulnerabilities, clients wouldn't come back to renew their license year after year.
I would rate the support for Check Point CloudGuard Code Security as good because we can quickly email support about any problems we encounter, and they reply instantly to provide help.
If you raise a support case with Checkmarx, it is handled smoothly.
The customer support team is amazing and they provide on-phone call, email support, and on-website support.
I have relied on Checkmarx One customer support hundreds of times for several things, and Checkmarx One support is very proactive and very responsive.
Approximately four billion lines of code are being scanned monthly.
Since it is cloud-based, the infrastructure and PaaS, IaaS, and SaaS are taken care of by the cloud marketplace.
Checkmarx One's scalability has changed my organization because the strong collaboration between the development and security team helps us to do things much faster.
I would rate the stability of this solution a nine on a scale of 1 to 10 where one is low stability and 10 is high.
Checkmarx One is often down when the cloud provider experiences issues.
All the features we have on the firewall on the on-premises side, we also have under CloudGuard such as IPS, Anti-Bot, and all these blades are set up in our CloudGuard.
Integration into the IDE being used would be beneficial so that code does not need to be uploaded to the website and an IDE-friendly report could be generated.
It could suggest how the code base is written and automatically populate the source code with three different solution options to choose from.
If you can improve the speed optimization, it takes around 30 to 40 minutes for checking a build. If you can make it within five minutes or 10 minutes, that would be great.
For a small team under 50 developers, normal expenses come under 30 to 60K.
Due to the number of years I've implemented Checkmarx One, there are rebates and discounts from the OEM which makes it a lot more profitable.
The pricing should be reasonable, matching what we are paying for.
The most valuable features of Check Point CloudGuard Code Security include our approach to manage it via the management we have on-premises, and we also deploy the same extension management of CloudGuard to manage all the virtual systems on Azure.
Since replacing the previous tool, SAST and SCA scans are conducted in a couple of minutes instead of hours or days.
The best features Checkmarx One offers, over the past years, include broad language and technical support that Checkmarx provides, covering most languages.
Checkmarx One has positively impacted our organization as we tend to find vulnerabilities very early in the development cycle.
| Product | Mindshare (%) |
|---|---|
| Checkmarx One | 11.5% |
| Check Point CloudGuard Code Security | 3.0% |
| Other | 85.5% |
| Company Size | Count |
|---|---|
| Small Business | 12 |
| Midsize Enterprise | 4 |
| Large Enterprise | 6 |
| Company Size | Count |
|---|---|
| Small Business | 32 |
| Midsize Enterprise | 9 |
| Large Enterprise | 46 |
Check Point CloudGuard Code Security provides real-time protection and compliance enhancement across diverse infrastructures, streamlining security management with automated processes and accurate threat detection.
Designed to support multiple code languages and cloud environments, Check Point CloudGuard Code Security offers seamless integration with existing workflows. By implementing intuitive dashboards and role-based access control, it enhances operational efficiency while minimizing human error. The system secures identities, API keys, and configurations, aligning with legal frameworks to strengthen infrastructures against modern threats. However, improvements are needed in documentation, multilingual support, and easier integration with SIEM. Attention to geolocation, logging, and learning curves also requires enhancement.
What are the key features of Check Point CloudGuard Code Security?Across the tech industry, Check Point CloudGuard Code Security is applied to enhance cloud and application security, providing thorough protection against vulnerabilities and breaches. By integrating security across cloud environments and data centers, organizations achieve improved practices and adherence to compliance standards.
Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.
Checkmarx One offers comprehensive application scanning across the SDLC:
Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.
We monitor all DevSecOps reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
