

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
This is a time-saving measure because we don't need to deploy a cluster or a firewall each time; we just create a virtual system on the management server using the same appliance.
Not having major security incidents has been far less expensive than dealing with data that could cost us hundreds of thousands or even millions in recovery and downtime.
Incident response time has reduced significantly, and downtime due to network issues has been minimized, leading to an improved return on investment.
At Amazon, we knew exactly how much it would cost if a fulfillment center was down for an hour.
The AI features further contribute by expediting threat detection and incident response, ensuring tangible returns through operational savings.
It is one of those tools that needs to work right out of the box, and thankfully, it does; it is reliable, and the setup time was quick and straightforward.
If we have an urgent security problem, it would be nice to get a faster response.
The support team we engaged was knowledgeable and well-versed with the application.
We have escalated issues to Check Point technical support multiple times and have received timely and very good responses.
Cisco TAC is very competent.
With our established point of contact within Cisco, our experience has greatly improved; we no longer log all issues through technical cases, as we can go directly to our account managers or customer service team, which expedites resolution.
I would rate the technical support ten out of ten. Hands down.
If specified correctly, even the smaller boxes offer high session and bandwidth rates, making the solution highly scalable, even up to telco-level requirements.
It is easy to scale up by adding capacity through clustering or upgrading the license, and it effectively handles spikes in remote user connections or increased east-west traffic without noticeable bottlenecks.
While the performance itself scales well technically, you need to be prepared for the financial side of the growth.
We turn the traffic to the Cisco Secure Access cloud, and we can manage and apply the policies that are necessary, making it very easy to scale the solution.
Cisco has a great benefit in that you can integrate with other solutions in an easy way because it has a lot of protocols to integrate with others and sophisticated steps that we can apply for integration.
I would rate scalability at eight to nine out of ten.
We have not experienced major crashes or unexpected downtime that affected our network security.
While the solution is generally stable, there are complications, such as requiring SmartConsole for deployment and upgrades, which can be time-consuming.
I have worked with Check Point products for 15 years and haven't found any stability or performance issues.
Cisco is renowned for their reliability, and their products perform well under high data usage.
I rate the stability of Cisco Secure Access as ten out of ten.
The solution is stable enough, and I did not experience any latency or performance issues.
AI-driven features would be highly valuable—particularly those that enable bulk operations and efficient handling of large numbers of objects or object groups.
One thing that would help in improving Check Point Quantum Force (NGFW) is having more flexible dashboards that I can tailor without relying on templates.
Other products, like FortiGate, are perceived as more intuitive because they are easier to configure from the start.
Modernization is needed, specifically in the enhancement of security features and functionality.
It was challenging to learn because it has a significant learning curve and requires considerable training to become proficient.
The granular access issue is coming from the product limitation at the moment, as it does not offer us the option to tell it that a particular role can only manage websites, allowed sites, and blocked sites.
In comparison to Fortinet and other products, the pricing may be considered high.
licensing is very pricey
Compared to other solutions, the pricing of Check Point NGFW is high.
The solution is cheaper than premium options such as Palo Alto, existing Cisco licenses facilitate replacing previous solutions with Cisco Secure Access smoothly and affordably.
It is good because you want to push Cisco Secure Access, and regarding the price, it is very much below other products.
Improvement on the pricing will help in expanding the market for Cisco Secure Access and then it can be affordable to much more number of companies than what it is right now.
The firewall's default behavior of blocking all traffic, including a cleanup rule that blocks everything from external to internal sources, is highly valuable for protecting our network.
The most valuable features in my experience include perimeter firewalling, cloud and mobile security, application control, URL filtering, DLP, threat prevention, intrusion protection, and safeguarding against malware, botnets, and zero-day attacks.
Since implementing it, we have noticed a lot less getting through that maybe other antivirus within firewalls had failed to catch.
It eliminates the hassle of switching on VPNs and provides a direct connection to resources via Cisco Secure Access.
They are sending the traffic encrypted and categorizing the traffic based on the type, whether web traffic or internet traffic, and doing the security mechanism that is needed for the traffic type.
Using ZTNA in Cisco Secure Access has positively affected my transition and my clients' transition to Zero Trust and least privilege principles, reinforcing the security posture.
| Product | Mindshare (%) |
|---|---|
| Check Point Quantum Force (NGFW) | 3.0% |
| Cisco Secure Access | 0.4% |
| Other | 96.6% |
| Company Size | Count |
|---|---|
| Small Business | 162 |
| Midsize Enterprise | 95 |
| Large Enterprise | 199 |
| Company Size | Count |
|---|---|
| Small Business | 28 |
| Midsize Enterprise | 11 |
| Large Enterprise | 34 |
Check Point Quantum Force NGFW provides centralized management with scalable security for network perimeters. As a reliable firewall, it ensures advanced threat prevention and offers seamless integration, making it suitable for various network environments.
Offering comprehensive security, Check Point Quantum Force NGFW helps control ingress and egress traffic, secures data center firewalls, and integrates seamlessly with cloud and on-premises setups. Users appreciate its application control, deep packet inspection, and identity awareness features for enhanced protection against cyber threats. Despite pricing issues and interface complexity, its IPsec VPN and robust logging provide valuable insights into network activities.
What are the key features of Check Point Quantum Force NGFW?Check Point Quantum Force NGFW is deployed across industries for securing network boundaries, supporting critical data center operations, and enabling secure VPN connections. In finance, it helps meet stringent compliance standards, while in healthcare, it's crucial for protecting sensitive patient data through robust security protocols.
Cisco Secure Access is a comprehensive Security Service Edge (SSE) solution (a key component of a SASE solution) that addresses the complexities of securing a hybrid enterprise. Cloud-delivered and grounded in zero trust, it delivers a unique blend of user simplicity and IT efficiency for frictionless, secure access to all applications—SaaS (with gen AI), private apps, and the internet—regardless of user location or device. Secure Access protects users, data, and devices against relentless, sophisticated, and constantly evolving threats including AI-driven attacks and identity breaches.
Provides all core SSE components (ZTNA, SWG, CASB, and FWaaS) plus extended capabilities.
Includes VPN-as-a-Service (VPNaaS), data loss prevention (DLP), AI Assistant, visibility/control/guardrails for generative AI use, digital experience monitoring (DEM), reserved IP, remote browser isolation (RBI), DNS-layer security, flexible security enforcement (in cloud or on-premises), policy verification, and more.
Protects users as they seamlessly access resources and apps with no extra steps needed, regardless of protocol, port, or level of customization
Simplifies IT operations through a single client, single dashboard, single license, and unified policies.
Lowers risk with least privilege, granular controls backed with unmatched threat intelligence of Cisco Talos.
Eases interoperability with other products from Cisco and third-party vendors with common administrative controls, data structures, and policy management.
Robust integrations
Integrates with Cisco Identity Intelligence to protect against the startling increase in identity-based attacks.
Integrates with many SAML Identity Providers (IDPs) such as AD, Azure AD, Okta, Ping, etc.
Integrates with Cisco offerings including SD-WAN, Splunk, XDR, Thousand Eyes, third party technologies such as Menlo RBI, Chrome Enterprise Browser, and AppOmni for SSPM.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.