Check Point Security Management and ThreatLocker are two security management solutions competing in the cybersecurity software category. Check Point appears to have an edge due to its extensive feature set, which includes centralized management capabilities covering multiple security dimensions.
Features: Check Point Security Management includes centralized SmartConsole management, comprehensive firewall policies, detailed logging abilities, and management of various gateways from a single platform. It also offers IDS/IPS functionalities and URL filtering. ThreatLocker focuses on application control and zero-trust strategies with ring-fencing for applications. It offers proactive blocking of unauthorized applications and has comprehensive logging capabilities alongside ease of policy adjustments.
Room for Improvement: Check Point users suggest GUI design enhancements, better platform integration, and improved support along with smoother updates and management tools. ThreatLocker users desire improved training resources, better handling of multi-machine policy updates, and refinements to user interface design as well as enhanced built-in security threat recognition and feature control tools.
Ease of Deployment and Customer Service: Check Point offers on-premises, hybrid, and cloud deployments, with varying experiences regarding the GUI usability and regional support quality. Its support is well-rated when effective. ThreatLocker also provides versatile deployment options but requires improvements in support services and system integration, as users request more in-depth training.
Pricing and ROI: Check Point is considered expensive but is often justified by its robust feature set, with flexible pricing based on selected features and offering high potential ROI in security. ThreatLocker is viewed as good value for money with its zero-trust features, comprehensive protections, and scalable pricing that supports organizational growth.
I have seen a return on investment with Check Point Security Management, as my security concerns regarding data production have been greatly diminished, and my time is also saved.
If something were to happen without ThreatLocker, the cost would be huge, and thus, having it is definitely worth it.
The main return on investment is peace of mind, knowing that with ThreatLocker on any endpoint, it will almost always block all malicious code or exploits, even zero-day exploits.
It keeps malware, Trojans, and ransomware at bay.
We have partner support that helps us mitigate vulnerabilities reported by our infrastructure team.
The challenge was with drivers due to the size, and we had not provisioned the partition to the right size.
They have been very responsive, helpful, and knowledgeable.
I would rate their customer support a ten out of ten.
Their support is world-class.
So far, it has been functioning smoothly without any issues in the past 1.5 years.
I started off with just the servers, and within a month and a half, I set up the entire company with ThreatLocker.
It seems to primarily operate on the endpoints rather than at a central location pushing out policies.
I would rate it a ten out of ten for scalability.
In my environment, Check Point Security Management is stable, as I do not see any downtime.
For five years, we have not had a problem.
Once deployed, it downloads the policies locally, so even if the computer doesn't have internet, it doesn't matter.
It has been very stable, reliable, and accessible.
As an IT person, I occasionally need to check how much internet bandwidth has been used in the internal network over the past month, day, or week.
We had to provision the virtual machine twice.
Controlling the cloud environment, not just endpoints, is crucial.
This is problematic when immediate attention is needed.
Comprehensive 24-hour log monitoring is a valuable enhancement for both business and enterprise-level users.
Since we are using it extensively, we get significant discounts during procurement.
My experience with pricing, setup costs, and licensing for Check Point Security Management involves a bit of a challenge in pricing, as it is somewhat costlier than previous devices.
After conversations with other partners, it became clear we underpriced it initially, which caused most of our issues.
We are moving towards the Unified solution, where they basically bundle everything together, providing us better stability with the ability to bring in new product offerings without having to go back to the customer and say, 'This is going to cost you.'
I had a really good deal at the time, and it continues to be cost-effective.
Check Point Security Management does not operate like that; it shows the mobile device, tablet, smartphone, laptop, and desktop separately so that I can easily find out how many desktops are connected, how many mobile devices are connected, and I can easily block mobile devices and free up the IPs.
We can't work without Check Point because it provides the real visibility needed to manage the environment.
It's already helped secure our organization effectively.
ThreatLocker Zero Trust Endpoint Protection Platform's ability to block access to unauthorized applications has been excellent.
It protects our customers.
The major benefit is fewer breaches overall, as nothing can be run without prior approval. This helps my company protect its data and secure itself effectively.
Check Point Security Management is an advanced security management platform for enterprises. The platform integrates all aspects of security. A single platform manages the entire infrastructure, from data centers to private/public cloud deployments.
Check Point Security Management is a reliable and easy-to-use security platform. It integrates all aspects of your security environment to strengthen the security posture without impairing productivity. The system has a layered policy model. This means the security policy can be separated into layers for network segmentation. Different administrators can manage different policies. The policy layer automates the tasks.
The platform is extensible, scalable, and integrates easily with orchestration systems and change management.
Basic Components of the Infrastructure
The smart console offers several advantages. Changes in security policies and logs can be done with a click. You can navigate from an item within a log to the policy. There are also built-in multi-language support and accessibility features.
1. Security Management Server: The server manages security gateways with set security policies and monitors security events on the network.
The automation server is an integrated part of the management server. The API server is active by default on servers with 4 GB of RAM or more and on standalone servers with 8 or more GB of RAM.
The automation server communicates with the management server the same way as the Smart Console. This architecture allows the same validation errors and warnings to be presented when using an automation session.
The same audit logs generated using the Smart Console are also generated using an automation session. If you have a multi-domain environment, there is only one automation server that monitors all the IP addresses of the multi-domain management server.
2. Security Gateway is placed at the edge of the network. It monitors and filters traffic and enforces security policies.
Logging, Event management, and Monitoring
With Check Point Security Management, logging, reporting, event management, and monitoring are integrated. The platform features widgets and chart templates that optimize visibility. One of the best features is the one-click exploration. This simplifies going from a general overview to specific event details.
Benefits of Check Point Security Management
The unified console also means a single policy for users, data, applications, and networks. The granularity control helps accelerate administration processes. This feature, together with automation, is key to achieving reduced operational overhead. Security teams can automate tasks and even create self-service security web portals with the Check Point Security Management platform.
Threat management is fully integrated, with reporting, logging, and monitoring all in one dashboard. This provides full visibility into the security of the network.
Security Management Suite
The Security Management Suite consists of the following modules:
Reviews from Real Users
A Network Security Engineer/Architect at a tech services company says, "The features we like and find the most valuable are the ways we can manage the policy, create objects, and drag and drop objects in our daily operation. It makes our daily operation on the firewall management much easier than going, for example, to one firewall, then going to the other."
"The management API is the best new feature for me. It allows us to further automate our customers' automated server ordering," says a System Engineer Network & Security at OTTO GmbH & Co KG.
A Senior Infrastructure Services Specialist at St.George Bank Limited adds that "The solution is ideal for use and deployment in a large infrastructure environment."
ThreatLocker Zero Trust Endpoint Protection Platform offers robust endpoint security through application control and allowlisting, safeguarding servers and workstations from unauthorized software execution.
ThreatLocker Zero Trust Endpoint Protection Platform provides extensive application control with features like ring-fencing and selective elevation, ensuring meticulous execution management. Offering learning mode and extensive support, it integrates threat detection and activity monitoring to enhance compliance, reduce costs, and bolster cybersecurity through alerts and approvals. Despite its strengths, there are areas for improvement in training flexibility, policy updates, and interface enhancements, along with challenges in handling non-digitally signed software. Deployed across environments, it works well with existing cybersecurity instruments for real-time threat prevention.
What are the top features of ThreatLocker?ThreatLocker Zero Trust Endpoint Protection Platform is widely implemented to safeguard IT infrastructures against unauthorized access and application use. In sectors where data security is paramount, this platform enables users to prevent unauthorized software installations and control device applications, ensuring real-time threat prevention and compliance with industry regulations.
We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.