Check Point Cloud Firewall (formerly CloudGuard Network Security)
Check Point Software TechnologiesExternal reviews
355 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Very efficient tool in cloud environment.
What do you like best about the product?
CloudGuard shares comprehensive cloud security solution to help secure enterprise data in cloud environment.
What do you dislike about the product?
So far all good. Great product for Cloud environment.
What problems is the product solving and how is that benefiting you?
Increased saclability
One of the best Iaas Firewalls out there
What do you like best about the product?
It provides the same security modules in cloud as it does on premises
What do you dislike about the product?
Nothing so far. Everything has been great
What problems is the product solving and how is that benefiting you?
Securing the assets in Public Cloud
Recommendations to others considering the product:
It the best Iaas Security product out there
Good
What do you like best about the product?
Its help to protect public cloud workloads against different threats including viruses too
What do you dislike about the product?
Cloud connection lost for both cluster members
What problems is the product solving and how is that benefiting you?
Security
Recommendations to others considering the product:
None
adaptive security in cloud environment with unified management
What do you like best about the product?
CloudGuard’s integration with ESXi, NSX, AWS, and Microsoft Azure
What do you dislike about the product?
Nothing as of now, the product seems to fine for the requirement
What problems is the product solving and how is that benefiting you?
solution for visibility and cloud workload security across multi-cloud landscape as well as on-premises virtualized infrastructure
Complete IaaS Cloud Environment Monitoring for Compliance
What do you like best about the product?
If your organization leverage compliance frameworks than this cloud monitoring tool is one the best tools out there right now. The compliance rulesets are extensive for AWS. Azure and GCP are covered too by NIST, PCI, GDPR, etc. It recently introduced Kubernetes monitoring as well but needs more ruleset additions. The tool continuously monitors cloud accounts every hour. Out of the box, it has a nice UI illustrating your trust boundaries as it analyzes your network security groups. Additional paid features include ingesting traffic flows for analysis and near real-time detection/alerts.
My company performed POC with other leading cloud monitoring vendors and Dome9 stood out to be the fastest in ingesting cloud environment changes. The SaaS tool also included many out of box features we needed across the enterprise. The pricing and yearly subscription model was also more reasonable based on the protected assets like VMs, RDS, etc.
My company performed POC with other leading cloud monitoring vendors and Dome9 stood out to be the fastest in ingesting cloud environment changes. The SaaS tool also included many out of box features we needed across the enterprise. The pricing and yearly subscription model was also more reasonable based on the protected assets like VMs, RDS, etc.
What do you dislike about the product?
-When vendor managed rulesets are updated, your custom exclusions rules are invalidated. You must go back in to reapply your exclusion rules.
-Minimum support on bots. Auto-remediation bots have not been updated for more than 2 years.
-No access to remediation logs from dashboard to detect failed remedations.
-No merging of custom rulesets back to baseline template
-No individual cloud account billing/reporting in Enterprise plan (for chargeback internally)
-There is no mechanism to change the continuous monitoring to a longer duration or to turn it off for a specific cloud account.
-Serverless scanning (Lambda/Functions) requires additional "agents" installed on your Cloud IaaS, versus using API to scan.
-Minimum support on bots. Auto-remediation bots have not been updated for more than 2 years.
-No access to remediation logs from dashboard to detect failed remedations.
-No merging of custom rulesets back to baseline template
-No individual cloud account billing/reporting in Enterprise plan (for chargeback internally)
-There is no mechanism to change the continuous monitoring to a longer duration or to turn it off for a specific cloud account.
-Serverless scanning (Lambda/Functions) requires additional "agents" installed on your Cloud IaaS, versus using API to scan.
What problems is the product solving and how is that benefiting you?
- increase security posture for enterprise cloud computing
- visibility to shadow IT
- able to offer GRC (i.e. compliance standards) to cloud hosting across the enterprise
- visibility to shadow IT
- able to offer GRC (i.e. compliance standards) to cloud hosting across the enterprise
Recommendations to others considering the product:
For the most part CloudGuard CSPM (Dome9) still functions as it was originally designed but many flaws (see below). Its rule engine needs a revamp since it is limited to many of the features available today in CSPM 2.0. I would look elsewhere if you need full compliance ruleset management and auto-remediation. There are many other CSPMs available now that cost less with the similar or moe features.
Cloud security solutions must be marked for planning RFP's
What do you like best about the product?
Single point/Central management best feature.
What do you dislike about the product?
Dome9 doesn't support on-premises and in a hybrid cloud
What problems is the product solving and how is that benefiting you?
I can have a centralized asset management for inventories. Centralized management feature enables to manage all the components console in single place for easy administration reduces few mins/hours of daily routines.
Recommendations to others considering the product:
If the objective is security then go for IT
Its Awasome
What do you like best about the product?
Autoprovisoning and autoscaling is very good
What do you dislike about the product?
Smart console connectivity should be better
What problems is the product solving and how is that benefiting you?
Secure the whole cloud infra from gen-V attack,
Checkpoint CloudGuard
What do you like best about the product?
It provides a very easy environment to evaluate the product. one can easily visualize and assess the security. The best part is it is very useful to detect misconfigurations and also the technology is very awesome that can suggest as per the security best practice.
What do you dislike about the product?
As still evaluating the solutions, not found any bugs or negative points to dislike it.
What problems is the product solving and how is that benefiting you?
As still evaluating the solutions, hence not implemented at any customer base.
CP_IAAS
What do you like best about the product?
The it helps protect data and asset protect while being in line with all the compliances.
What do you dislike about the product?
It needs to be more agile and easy to use.
What problems is the product solving and how is that benefiting you?
Managebility
CloudGuard
What do you like best about the product?
interoperability with different cloud providers
What do you dislike about the product?
limited monitoring compatibility with third party
What problems is the product solving and how is that benefiting you?
securing cloud infrastructure
showing 351 - 360