External reviews
External reviews are not included in the AWS star rating for the product.
CHECK POINT CLOUDGUARD POSTURE MANAGEMENT
2) Helped in enhancing's Security for Cloud environment by providing reports both in terms of Security and Compliance.
3) Provides complete visibility of traffic flowing from/towards the Cloud platform.
4) Provides best practice policy which helps to strengthen the security of Workload.
5) Assets Inventory and API call's happening from Cloud
6) Provide control in terms of accessing cloud workload. As Policy has been created which will block direct access to cloud environment in case the same is not define or approved in Dome9
7) Its always ON and even available on a mobile device using App.
8) Task delegation as a particular incident can be assigned to a particular individual and the same can be done manually or automated.
9) Customize queries for detecting any incident.
2) Auto remediation required read/write access. As providing read/write access to 3rd party applications can add risk. It should have some option of triggering API calls to Cloud platform which in turn name make required changes
3) Number of Security rules need to be added in order to identify more issue
4) Reporting should have more options
5) Should support all Container platform for visibility of complete Infra single console such as PCF
- Leave a Comment |
- Mark review as helpful
Check Point CloudGuard Connect
And until this day I have not found a program that is so effective and easy to use than CloudGuard Dome9
The public cloud shares the authorities between the cloud service and its customers, it is necessary to do our part and hire a service that can provide us with the security we need
Cloud compliance in your fingertips !
Dome9 For Compliance
Better overview of your security
Dome9 allows us to better visualize what are the secure parts of our network vs the ones we must monitor / enhance security on.
Some of my favorite features include:
- Dynamic Access: you can request an access by SSH or other ports for a specific duration, securing even better servers by blocking those access most of the time and validating who access the servers / when
- Clarity: gives a great overview of the network infrastructure as well as connections in / out for monitoring
- Compliance: some audits can be ran through the account to see what can be done to improve security (just wish to have some more available in the future as HIPAA / PCI are not available through marketplace for now)
- Network security: easily see what is secure and some alerts with possible remediation
- Alerts: see changes of configuration raised directly into the alerts dashboard
Some features are actually already existing within AWS, but Dome9 present them in a way that makes it much easier to manage security and bring additional tools to easily secure even better our infrastructure.
Convenience and Security?
Great time saver when you want and need the extra layer of security on top of cumbersome IAM policies. The ability to schedule open ports on a time expiration schedule along with restricting that access to specific external addresses and protocols fits my needs.
My last star is reserved for when they add the ability to power up and down instances on schedule.
Only Authorized Users Sign In
Dome9 is a great product/service.
You can set up various security groups and integrates well with AWS. You can configure ports to be open/closed based on various options. On top of that you can set up multi-factor authentication for your Dome9 Login to help secure your account.
You can configure Dome9 to only accept SSH connections from Trusted IP's or have Time based leases. Great application and very user friendly.