Check Point CloudGuard Code Security Reviews

Our primary use case involves protecting our internal services hosted within our data center's cloud environment, which includes virtual machines housing critical company resources. Additionally, we safeguard external services used by our customers with Check Point security measures.

The benefits derived from utilizing Check Point solutions for achieving our security objectives primarily lie in bolstering threat prevention and network security measures. This includes safeguarding against various threats, such as vulnerabilities and potential attacks.

It offers robust security capabilities spanning multiple cloud environments, which is highly beneficial. The platform is user-friendly, especially with its multi-domain solution.

We have a strong sense of security assurance when utilizing CloudGuard, as it consistently delivers outstanding protection capabilities.

The most critical features for me revolve around security, as I primarily focus on network engineering.

The enhancements are needed in the logging system and log management processes. Additionally, we encounter issues with geolocation functionality, which is crucial for enforcing access restrictions based on location. While we heavily rely on this feature, it occasionally fails to function correctly, posing challenges to our security measures.

I have been using it for two years.

It provides excellent stability capabilities.

In terms of scalability, our infrastructure comprises a private cloud with eight hundred servers and a public cloud serving our customers. Within this setup, we manage their database applications, application sites, disaster recovery mechanisms, and all security measures without encountering any issues.

The technical support is satisfactory; they respond promptly, and I am pleased with their service. I would rate it nine out of ten.

Positive

In my previous roles, I've gained experience working with FortiGate and Cisco firewalls, each offering its own set of advantages. FortiGate stands out for its user-friendly configuration interface, yet it faces stability issues in certain regions, particularly with routing tables. Cisco, on the other hand, provides a unified management platform for network configuration, which simplifies tasks for some networks. However, I've found Check Point to be my preferred choice over the past two years due to its exceptional stability. Unlike Cisco, which has been prone to crashes in my experience, Check Point has consistently delivered reliability. While FortiGate is known for its ease of use and Cisco for its complexity, Check Point falls somewhere in the middle in terms of usability. Compared to other vendors, Check Point excels in identifying threats effectively.

We selected CloudGuard due to its stability and because our team has extensive experience with it. We are highly satisfied with it.

Configuration is also simple and not overly complex.

For deployment, our integration with NSX is seamless, quick, and efficient.

We've experienced a positive return on investment with its usage, primarily through time savings attributed to its stability and user-friendly administration. Working with it is straightforward and not overly complicated, allowing us ample time for other tasks.

Renewing licenses is relatively simple, though there is room for further streamlining the process.

Overall, I would rate it eight out of ten.

Our idea is to support the creation of code solutions for our company's applications with all the parameters and security reviews to have zero vulnerable environments for modern threats, guaranteeing that when these developments go into production in our Microsoft Azure cloud, they are correctly built.    

The need to prevent vulnerabilities began by preventing source code leakage and code manipulation for events controlled by cyber attackers. Code Security complies with everything.

Thanks to Check Point Code Security, through a centralized environment with our other security solutions in Check Point Infinity Portal, our developments and codes are now more secure. The code review and the generated assessment are complete, generating all the necessary recommendations to protect the environment.

We also avoided the extraction of secrets and API keys for connectivity between applications, providing a great security complement since all our codes have APIs.

Check Point CloudGuard Code Security helps to improve the code security of our company, generating great rapid and complete assessments to be able to make decisions for improvements.

This tool is centralized in the Check Point CloudGuard environment, which is managed through the Check Point Infinity Portal. This is very good as, from this web portal, we can manage many of our security solutions.

Also, its dashboards are very intuitive. They help us to understand better and faster what happens in our code. It generates automation and improvements of it.

Code Security is not a native Check Point solution. It is a new integration and acquisition. It is generally difficult to find documentation about the product, and there is relatively little to find. It is a great, modern tool, yet it is not so easy to optimize.

It is an expensive tool. They could improve this detail a bit to be more competitive against the competition, even though this security tool is unique.

It is important that, for this type of solution, there is also a faster response from technical support. When it comes to cloud applications, issues are somewhat more difficult to solve.

This is a great tool acquired by Check Point which has been used to expand its portfolio of cloud security solutions. We have used it at least during this year to support code security issues for our developers.

The product stability is good.

It is a scalable solution since it is managed by Check Point.

A solution with Code Security's potential has not been found or used before.

Having a good provider or partner is important to help us with everything related to Check Point.

We always evaluate all possible solutions to take the best solution based on our needs.

The primary use case of this solution is to detect vulnerabilities, prevent breaches, accelerate development, and improve code quality.

It helped us to reduce vulnerabilities, improve code quality, enhance security posture, and offer us good cost savings.

The solution's most valuable aspects include its accurate vulnerability detection, deep code analysis, remediation guidance, false positive guidance and customizable rules.

The solution should improve vulnerability in-depth, false-positive reduction, integration with other tools, performance optimization, and the user interface.

I've used the solution for two years. 

The stability is good.

The scalability is good.

Technical support is good but can be improved.

Positive

No, I did not use another solution. 

The initial setup is straightforward.

We implemented the solution with an in-house team.

The ROI is nice.

Pricing and licensing modules need to be improved.

No, I did not evaluate other options. 

In our company, we deployed a firewall in the office. The office has around 200 to 300 people. We're using it to control the Internet access.

Its login facility is quite clear for us. Compared to what we used before, it's helping us to be more efficient in managing our traffic.

This product is an Internet firewall, so the most valuable aspect is the way we use it to control access to the Internet and for managing applications. Via the firewall, we can see the employee's use cases to access the Internet. We're using it to protect network access in our company.

The ease of use could be better. There is a bit of a learning curve. I'd rate the ease of use six out of ten. There is room to improve.

I've been using the solution for about one year.

The stability is pretty good. 

The solution is quite scalable. I can pick up different types of scales depending on my requirements. 

We don't use the support too often. We just check the features and ensure everything is meeting our requirements or check with the specifications. 

Positive

We used a Layer 7 solution previously. I had experience with Check Point before and decided to try it in our company.

I've also used FortiGate in the past. To some degree, they do similar things. It's just a personal preference.

I was not involved in the initial setup. 

A reseller handled the initial setup for us. 

I have seen an ROI. It's worthwhile investing in the product. We've seen a return in improving our efficiency with network management.

I don't really put a value on pricing. We wanted to go for Check Point, found a reseller, and got the solution. 

The solution helped free up staff to work on other projects. We've saved about 10% in overall time. 

I'd rate the solution an eight out of ten.

Currently, our company implements several sites and applications developed in Microsoft Azure. 

However, in the past, we had some vulnerabilities in identities that were used within the development, which allowed us to understand that we needed help to implement the best security practices for others to protect all the development against attackers that could harm us. The tool has helped us improve and implement improvements for our security.                                                                   

Check Point Spectral helps us daily with the development and helps to improve security best practices. It can protect the code and take care of the identities with permissions in the applications.

Additionally, being a cloud environment, they more easily take the attention of attackers and safeguard corporate information and intellectual property.

Its monitoring features, and its ability to improve the best practices of development already implemented or completed for company security, have helped us to be more secure.

This new special security tool for developers was acquired not long ago. However, I can comment that it has very good characteristics, such as:

1- The implementation of this tool for security management and control is very simple. It only requires installing a scanning agent which is responsible for reviewing the code, generating a security assessment, and indicating failures in a very good way.

2- It can validate and improve a large number of code languages, which makes it very interesting for developers in different fields.

3- Real-time data loss prevention is quite good for avoiding vulnerabilities and further damage executed by an attacker.

Being such a new tool in the Check Point security portfolio, it has become a challenge to obtain information on security implementation improvements, for which it would be very good to create more documentation for this tool.

It is difficult to solve problems via support. With very new tools, the service hours are sometimes different from our country, so finding sessions is sometimes hard.

The costs are not transparent. You need a provider so that they can give you more details.

It is a non-centralized environment in Infinity Portal.

In recent months we have tested this solution to protect our developments implemented in Microsoft Azure.

A tool that perfectly complies with security, good practices, and improvements to avoid vulnerabilities.

We have never had a tool for this type of security improvement.

It is vital to have the support of a specialized partner. It will help you to really deliver what you are looking for, help with costs, and, if necessary, offer technical support.

Thanks to our partner and the documentation on the benefits of this tool, we chose to implement it.

Developers definitely created this tool for developers. I would recommend it.