Check Point SandBlast Network is trusted for advanced threat prevention, employing real-time threat detection and AI-powered analysis to secure corporate environments from zero-day attacks and file-based exploits.
| Product | Mindshare (%) |
|---|---|
| Check Point SandBlast Network | 3.4% |
| Palo Alto Networks WildFire | 7.3% |
| Microsoft Defender for Office 365 | 6.5% |
| Other | 82.8% |
| Type | Title | Date | |
|---|---|---|---|
| Category | Advanced Threat Protection (ATP) | Jun 23, 2026 | Download |
| Product | Reviews, tips, and advice from real users | Jun 23, 2026 | Download |
| Comparison | Check Point SandBlast Network vs Palo Alto Networks WildFire | Jun 23, 2026 | Download |
| Comparison | Check Point SandBlast Network vs Microsoft Defender for Office 365 | Jun 23, 2026 | Download |
| Comparison | Check Point SandBlast Network vs Proofpoint Email Protection | Jun 23, 2026 | Download |
| Title | Rating | Mindshare | Recommending | |
|---|---|---|---|---|
| Microsoft Defender for Endpoint | 4.1 | 5.8% | 95% | 212 interviewsAdd to research |
| Microsoft Defender for Office 365 | 4.2 | 6.5% | 96% | 61 interviewsAdd to research |
| Company Size | Count |
|---|---|
| Small Business | 22 |
| Midsize Enterprise | 7 |
| Large Enterprise | 11 |
| Company Size | Count |
|---|---|
| Small Business | 86 |
| Midsize Enterprise | 52 |
| Large Enterprise | 67 |
Focused on comprehensive security, SandBlast Network integrates seamlessly with smart security tools to deliver proactive threat prevention. The network leverages sandboxing for zero-day threats, sanitizes email attachments, and frequently updates threat signatures. Threat Emulation and Extraction are key, preventing malicious file downloads and minimizing disruptions while retaining originals for in-depth analysis. Effective at securing emails and web downloads, it offers robust protection against phishing and ransomware.
What are Check Point SandBlast Network's standout features?Check Point SandBlast Network is widely implemented in industries needing advanced threat prevention, such as financial, healthcare, and governmental sectors. These industries utilize its robust features to safeguard sensitive data, protect against sophisticated cyber threats, and ensure a secure digital environment for their operations.
Edenred, State Transport Leasing Company (STLC), Edel AG, Laurenty, Conseil Départemental du Val de Marne, Koch Media
| Author info | Rating | Review Summary |
|---|---|---|
| Assistant General Manager at Sunteck Realty Pvt Ltd | 4.0 | I've used Check Point SandBlast Network mainly for email and file threat protection; it's effective, reducing malware by around 20%, though it could improve delivery speed and usability. Overall, it's stable, scalable, and delivers a solid ROI. |
| Cybersecurity Engineer at a tech services company with 11-50 employees | 4.5 | I use Check Point SandBlast Network to stop zero-day threats through sandboxing and file sanitization; it's reliable with wide protocol coverage, though performance overhead exists. Stability is good, but evasive malware detection could be improved. |
| Team Lead – Cyber Security at Digitaltrack | 4.5 | I've found Check Point SandBlast Network highly effective for detecting and blocking malicious files before they reach user devices, with strong real-time protection and stability, though file inspection slows down with files over 15 GB. |
| Business Development Manager at Digitaltrack | 4.5 | I've used Check Point SandBlast Network for over four years to enhance threat detection through powerful sandboxing, improving our security and workflow, though the knowledge base could be clearer for configuration. |
| Network Security Engineer at Digitaltrack | 4.0 | I've used Check Point SandBlast Network for over three years to enhance security through real-time threat extraction and sandboxing, though high CPU usage occurs; it's stable, scalable, and has effectively blocked malicious files in our Azure cloud setup. |
| Technical Specialist at Softcell Technologies Limited | 4.5 | I use Check Point SandBlast Network for sandboxing to detect zero-day attacks. Its integration enhances security, offering real-time protection and faster response. Improvement areas include dashboard usability and file scanning speed. It outperforms Fortinet in threat detection. |
| Security Engineer at a tech vendor with 51-200 employees | 4.0 | I've used Check Point SandBlast Network for a year mainly for threat prevention, and it's been effective with minimal false positives, though support response and cost could improve; overall, it's boosted our security and fits our zero trust model. |
| Network security architect at ATOS | 4.5 | I reviewed Check Point SandBlast Network, which enhances security through advanced threat prevention using geographic-based policies to address vulnerabilities like XSS and SQL injection. While highly secure, support response times can be inconsistent. Competitors like Fortinet and Cisco offer alternatives. |
| Cloud computing at ITQS | 4.0 | We implemented Check Point SandBlast Network to enhance our security posture and improve network monitoring, benefiting from features like sandbox analysis and SSL inspection. However, configuration and usability could be improved, and AI and ML integration would be beneficial. |
| Senior Technical Consultant- Cyber Security at Ivalue Infosolution | 4.5 | I use Check Point SandBlast Network for external threat protection over email and web security. It's a stable, scalable, and effectively priced solution with an easy setup. I rate it nine out of ten and recommend it for comprehensive anti-threat protection. |
My main use case for Check Point SandBlast Network is advanced threat protection, especially for scanning emails, attachments, web downloads, and incoming files through a sandbox environment.
A quick example of how I use it for scanning emails or attachments in my daily work is when I once received a PDF invoice that looked completely legitimate; Check Point SandBlast Network found hidden ransomware behind it and blocked it before it got into my environment.
The best features that Check Point SandBlast Network offers include threat emulation for zero-day attacks, which I truly appreciate, and deep file analysis across multiple OS environments.
The deep file analysis from Check Point SandBlast Network makes my daily workflow much easier, as I am able to analyze everything in terms of a report about my network.
Check Point SandBlast Network has positively impacted my organization, as I have seen huge changes with a notable drop in malware incidents, especially with suspicious attachments; it gives the security team confidence that known or zero-day files are checked automatically. Regarding the huge drop in malware incidents, I estimate that it may be around 20%.
I feel that Check Point SandBlast Network could be improved with slight delays in cleaning the file delivery.
Additionally, I think it requires proper tuning to avoid unnecessary notifications.
I have been using Check Point SandBlast Network for almost a year.
In my experience, Check Point SandBlast Network is stable and I have not encountered any downtime or reliability issues.
I feel the scalability of Check Point SandBlast Network is very good, as we added more users without any performance issues.
Customer support for Check Point SandBlast Network is good; I have not interacted with their support team very much, but the customer support on chat is pretty much available and relevant to solve the problems.
Positive
I did not previously use a different solution before Check Point SandBlast Network.
The setup process for Check Point SandBlast Network was straightforward.
We have seen a good return on investment since implementing Check Point SandBlast Network, as we are spending less time on forensics and it is also preventing us from potential breaches, which itself justifies the cost.
My experience with pricing and setup cost is that pricing was a bit high, but the setup cost was initially justified.
I did not evaluate other options before choosing Check Point SandBlast Network.
On a scale of one to ten, I would rate Check Point SandBlast Network an eight.
I chose eight out of ten because I feel it is a good application; however, it is not a ten due to cons such as being not ideal for small IT firms with very small budgets, and it needs to be more transparent and user-friendly when getting into and using it.
My advice to others looking into using Check Point SandBlast Network is to do a proper comparison of the pricing in terms of other competitors and to make your IT team connect with the developers so that you can utilize all the advanced features of the tool. My overall rating for this product is eight out of ten.
Check Point SandBlast Network stops unknown malware and zero-day attacks, and we rely on it to prevent zero-day threats before they enter our enterprise network to protect our productivity, so it has to sanitize files that are delivered immediately to our users in our organization.
When suspicious files are executed in our network, Check Point SandBlast Network helps us sanitize or execute these suspicious files in a virtual sandbox environment. It detects zero-day exploits and evasive malware from that virtual sandbox, and it will extract or disarm that content before they are delivered to the user.
Check Point SandBlast Network offers wide protocol coverage. It inspects emails through SMTP, POP3, and IMAP, web downloads through HTTP and HTTPS, and file transfers. Original files are analyzed in the sandbox while users get clean copies instantly to their inbox. It detects zero-day exploits in suspicious and normal files, and includes forensic and reporting features that provide detailed incident analysis, malware behavior reports, and indicators of compromise.
The wide protocol coverage is particularly valuable because suspicious activities happen across different protocols. With Check Point SandBlast Network supporting multiple protocols, there is strong protection for our networks.
Since implementing Check Point SandBlast Network, we have gained enhancement in our email and web security. It protects our files, complies with different standards, and reduces lateral movement in our networks.
It has some performance overhead, as sandboxing takes time and real-time delivery depends on threat extraction, requiring high performance. This represents a limitation. Additionally, some sophisticated malware may attempt to detect sandboxing. While Check Point uses multiple techniques to minimize this, there are still some limitations. Users need proper training before using this solution.
I rated it 9 out of 10 because of the performance overhead and because evasive techniques can detect whether sandboxing is deployed in our organization. Check Point needs to minimize this detection possibility to zero.
We had not used any SandBlast feature before.
Check Point SandBlast Network is stable in my experience, but because of some performance issues, it experienced flapping. When configured correctly with adequate resources, it functions properly.
It is scalable but requires growing the box itself because it is a resource-intensive solution.
It has improved significantly. I had difficulties before, but now the service is very good.
Positive
We evaluated other options such as Palo Alto WildFire.
It was good, there were no major issues.
For file handling, Check Point SandBlast Network can send suspicious files to sandboxes and deliver sanitized soft copies of files instantly. In contrast, Palo Alto WildFire delays delivery until sandbox verdict or delivers later quarantine depending on the policy.
Check Point SandBlast Network has forensic reporting and compliance features that provide detailed reporting capabilities, which helps track organizational improvements.
The sandboxing feature detects suspicious files executed in our network. By detecting, blocking, and extracting exploitable files, it reduces attack risk and increases security posture.
We use Check Point SandBlast Network on-premises, which is included in our firewall. Due to performance overhead, we moved threat extraction and threat emulation to Check Point cloud.
We are resellers and partners of Check Point products in our country, purchasing directly through Check Point.
If you want a solution that enables you to stop unknown malware, enhance email and web activity, and reduce lateral movement in your network, you should use Check Point SandBlast Network.
This solution receives a rating of 9 out of 10.
My main use case for Check Point SandBlast Network is to emulate or create any threat that comes to our network while downloading any EXE file, PNG file, or any kind of file that users are trying to download or upload; it checks and simulates the files before they reach the end user's network device, blocking any files with malicious signatures or threats found by SandBlast.
A specific example of how Check Point SandBlast Network helped catch or block a threat in my environment is that before a downloaded file reaches the user PC that could harm the entire PC, it is simulated and detected for known malicious signatures; once it is checked and found to have no suspicious content, it becomes accessible to the users.
Regarding the firewall, I have nothing else to add about how we use Check Point SandBlast Network.
In my experience, the best feature Check Point SandBlast Network offers is providing security uptime at an SLA type of 99.9%.
The specific security feature that stands out to me in Check Point SandBlast Network is its real-time protection, which extracts, emulates, and blocks traffic if any malicious signatures are present.
I have noticed multiple outcomes since using Check Point SandBlast Network; it is very simple to find malicious files.
The specific improvements I've seen since using Check Point SandBlast Network show that SandBlast can detect malicious files.
If any file is more than 15 GB, the inspection takes some time, so that can be reduced to make real-time protection much faster.
I have been working in my current field for more than three years.
Check Point SandBlast Network is stable in my experience, providing proper security to our organization.
Check Point SandBlast Network is currently meeting our organization's growth needs.
The customer support for Check Point SandBlast Network is great, as the security team has extensive knowledge and provides proper solutions.
I rate the customer support eight out of ten.
Positive
We have been using Check Point SandBlast Network from the start; we do not use any different solution.
I have seen a return on investment with Check Point SandBlast Network in terms of money and time saved.
We had evaluated FortiGate as other options.
Anyone looking into using Check Point SandBlast Network for sandboxing should consider it as one of the best solutions available for security.
I advise anyone looking into sandboxing to consider Check Point SandBlast Network as one of the best solutions currently available in the cybersecurity market.
Based on my experience, I rate Check Point SandBlast Network nine out of ten.
We are using Check Point SandBlast Network mainly for sandboxing to prevent threats. We utilize it for sandboxing any file that is getting downloaded in our network with access, so before reaching that particular file, such as an exe file or any type of file, it gets simulated in a separate environment for checking for threats present in this file.
The main best feature of Check Point SandBlast Network is its simulation and threat prevention capabilities.
Securing the environment through the sandboxing feature of Check Point SandBlast Network helps my team catch threats before they reach users, and it gives us more confidence in opening files from outside sources, improving our daily workflow.
The sandboxing method of Check Point SandBlast Network is more powerful than other options because it doesn't present a signature database, so it's not totally relying on the signature but also checks for real-time zero-day attacks and signatures.
The KB knowledge of Check Point SandBlast Network can be updated, and there are some feature configurations in the knowledge base that can be improved.
The knowledge base of Check Point SandBlast Network contains some confusing context, which might be confusing while configuring and designing.
I'm using Check Point SandBlast Network for more than four years.
Check Point SandBlast Network is pretty stable, and it does work.
Check Point SandBlast Network is easily upgradable, and its scalability is constant.
I did get the best from Check Point SandBlast Network's support team; they were very helpful while troubleshooting any kind of issues we faced.
Positive
We are using Check Point SandBlast Network from the start.
I have seen a return on investment since using Check Point SandBlast Network, as it has improved the efficiency of incident handling and saved costs.
Before choosing Check Point SandBlast Network, we evaluated other options, including automated sandboxing.
There is an improvement in our security with Check Point SandBlast Network, and we are getting a session link.
Our security process has been improved with Check Point SandBlast Network, making it easier to monitor and track because of the session links.
It has improved our security and reduced the risk for our team with the use of Check Point SandBlast Network.
It has made us more able to easily capture threats in real time since we started using Check Point SandBlast Network.
If anyone is looking for sandboxing solutions, Check Point SandBlast Network has great flexibility, whether on-premises or on-cloud, as it can be deployed in private cloud, public cloud, or on-premises.
I rate Check Point SandBlast Network a nine out of ten.
We are using Check Point SandBlast Network for more than three years.
Basically, we are using Check Point SandBlast Network for detecting and mitigating cyber threats which include zero-day attacks and advanced sandboxing.
In my network, there is a DMZ zone where all my servers are present, so whenever any user uploads any document in the server, that document is thoroughly checked via sandbox before it will be uploaded to servers. In some scenarios, there was a malicious signature detected, so that was blocked and it was secured by sandboxing.
We are also using Check Point SandBlast Network for reporting purposes, so we are providing monthly reports to our management.
The best feature Check Point SandBlast Network offers is real-time threat extraction capabilities, which sanitizes the files, mails, and other content before reaching the end-users.
With Check Point SandBlast Network, our users are very secure, making this solution very effective.
After deploying Check Point SandBlast Network, our resources such as servers are very secure, and for users, anything they download or upload goes through the sandboxing, ensuring enhanced security.
Securing the network in an effective way is helping with Check Point SandBlast Network, providing significant time savings through the sandbox.
When we enable sandboxing for all users, the CPU utilization of the firewall increases significantly, which could be improved.
I have been working in my current field for more than two years.
Check Point SandBlast Network is stable.
The scalability of Check Point SandBlast Network is good.
The customer support for Check Point SandBlast Network is good.
Neutral
We have been using Check Point SandBlast Network from the beginning, so I did not previously use a different solution.
I was not involved in setup cost and licensing, but I was involved in implementation, and the setup is very easy. I cannot comment on the costing points.
We are a partner with Check Point.
We evaluated Fortinet before choosing Check Point SandBlast Network.
I advise that anyone who wants a sandboxing feature in their environment should consider Check Point SandBlast Network, as it provides a more secure environment in their network.
There was one incident where a user was downloading a document over the internet, and the sandbox detected and successfully blocked it because the document was malicious.
On a scale of one to ten, I rate Check Point SandBlast Network an eight out of ten.
The main use case for Check Point SandBlast Network is for sandboxing purposes, which means analyzing and detecting zero-day attacks for advanced threat prevention, especially targeting zero-day attacks, ransomware, unknown malware, and file-based exploits. It is a core component of Check Point SandBlast Network solutions that we have used.
A specific example of when Check Point SandBlast Network helped my organization catch and prevent zero-day attacks or unknown malware occurred when we observed files being downloaded from the internet and emails. The sandbox can be integrated with emails, making it possible to analyze them as well.
This use case helps the organization stop questionable files by delivering a clean copy to the user and keeping the original file for further analysis in a virtual environment. By analyzing the file's behavior, we can determine whether it is malicious or clean traffic.
Accordingly, SandBlast takes action on those files and keeps our client environment safe from zero-day attacks. Most often, we see in the logs the presence of phishing mails containing attachments, which behave abnormally and try to execute unauthorized commands. Such malicious activities are observed in the sandbox, effectively preventing cyber threats and keeping us safe from zero-day attacks and unwanted malware.
Check Point SandBlast Network has positively impacted our organization by reducing incidents, improving user confidence, and saving time since implementing it. With around 2,000 users in our organization, after deploying threat emulation for network security, we haven't seen any incidents, including zero-day or ransomware attacks.
Check Point effectively captures advanced threats, leading to no business disruptions and allowing users to focus on their tasks without interruptions, helping the organization grow economically. While I cannot directly state specific metrics or numbers, it is evident that Check Point SandBlast Network is saving us time, as staying protected from attacks minimizes the need to address issues related to incidents. Since no attacks have happened, there is no business impact, which ultimately allows us to function without disruption.
From user feedback, it is evident that after deploying Check Point SandBlast Network, no attacks have happened, resulting in no business disruptions. Even the potential 1 or 2 hours of downtime could account for billions of dollars, so the organization's ability to go without experiencing cyber attacks is a significant value saved. Users are reassured, knowing that Check Point SandBlast Network handles potential threats, allowing them to work freely on the internet without concerns about file downloads. This builds confidence among users.
The best features that Check Point SandBlast Network offers include detecting zero-day attacks, which is most useful for maintaining safety. The Check Point sandbox provides comprehensive security by offering sandboxing capabilities, running files and traffic in a virtual and isolated environment, ensuring minimal disruption. Files being downloaded are delivered as clean copies to users, while the original files are kept for analysis.
Additionally, the solution integrates with other Check Point technologies such as SmartEvent, threat cloud, and Harmony Email and Office, providing real-time protection with threat extraction that delivers sanitized files instantly. Another feature is the deep level inspection using CPU-level emulation, going beyond traditional sandboxing by analyzing how malware interacts with systems at the hardware level.
The real-time protection and threat extraction features have helped my team by allowing us to find and detect zero-day attacks through isolated environment scans. Threat extraction is particularly beneficial because if a file is sent for a scan, it typically takes time to provide a verdict.
Check Point SandBlast Network cleans the file and removes any embedded macros in attachments, sending a clean file to the user. This reduces disruption in file delivery, and the time delay is minimal. The main focus also lies in scanning files for malicious behavior and zero-day or ransomware attacks. This helps the organization receive files promptly, minimizing potential security risks while ensuring timely access to information. Additionally, the real-time threat intelligence that Check Point connects to the threat cloud for global threat data updates helps us stay ahead of attacks.
Improvements for Check Point SandBlast Network can be seen in dashboard usability; the threat emulation logs and analysis reports could be made more intuitive and visually appealing. Enhancing the system for granular tuning to reduce false positives and allowing benign files to bypass checks more simply for non-expert users would be beneficial. Additionally, faster emulation times could be achieved by increasing file scanning speed through hardware productivity enhancements. A specific instance where file scanning speed posed an issue was when the time taken depended on the file size. Scanning can take less than a minute or up to 2 minutes for larger files. Enhancing the file scanning time would be a significant improvement to the system.
I have been using Check Point SandBlast solutions for the last 2 years in one of my roles.
Check Point SandBlast Network is stable, as I have not encountered any crashes or downtime.
Check Point SandBlast Network meets our organization's needs as we grow with good scalability. Feedback suggests that clients, such as mid-sized organizations, with a hardware threat emulation box for the network experience good load balancing and redundancy.
Customer support for Check Point SandBlast Network is very good, and I have had positive experiences when needing assistance. I would rate customer support a 9 out of 10.
I have not used any different solution before Check Point SandBlast Network.
The initial setup of Check Point SandBlast Network is straightforward for engineers with good hands-on experience, but it can be complex for beginners or those new to the system.
The setup is straightforward for engineers with good hands-on experience.
The return on investment is apparent as our organization consists of around 2,000 users who are protected from attacks or ransomware. This significantly impacts our operations positively, allowing users to work safely and focus on their tasks, contributing to economic growth.
We evaluated several options before choosing Check Point SandBlast Network, as multiple solutions are available in the market. The other solutions considered included Fortinet, which offers FortiSandbox. Ultimately, I chose Check Point SandBlast Network due to its speed and higher rate of threat detection compared to FortiSandbox.
For scanning the files, the volume generally depends on how many users are carrying out file downloads. It can be more than 200 to 400 files scanned daily. The pricing is a bit costly, but for what Check Point SandBlast Network offers in terms of setup features and security, it is acceptable. The initial setup is straightforward for engineers with good hands-on experience, but it can be complex for beginners or those new to the system.
For anyone considering Check Point SandBlast Network, I strongly recommend moving forward with the solution. It is reliable and offers excellent protection from cyber attacks, with a high rate of threat detection that helps stay ahead of potential breaches. I rate it a 9 out of 10 because I believe there are areas for improvement, such as adding AI-driven features in future releases to enhance profile fine-tuning and reduce overhead, along with improving user-friendliness.
My main use case for Check Point SandBlast Network is threat prevention and sandboxing feature for anti-bot, antivirus, which I implement in my day-to-day work.
My main use case fits into my zero trust approach as the threat extraction works very effectively with emails and downloaded files from web browsers, and they can avoid phishing emails, which is very beneficial.
Check Point SandBlast Network offers the best features in threat detection and security protection, which I value highly.
Check Point SandBlast Network has positively impacted my organization as it's very accurate and gives almost no false positives, providing excellent threat prevention and protecting against server zero-day attacks.
Since implementing Check Point SandBlast Network, 90% of threats don't come near our users anymore, which is a noticeable change, although I don't have a specific statistic.
Check Point SandBlast Network could be improved as sometimes the cost can be limiting even if the feature is very nice, and the UI can be optimized.
The customer support for Check Point SandBlast Network could be improved as they are sometimes late with their responses.
I have been using Check Point SandBlast Network for one year.
Check Point SandBlast Network is stable.
The scalability of Check Point SandBlast Network is very nice.
The customer support for Check Point SandBlast Network could be improved as they are sometimes late with their responses.
I would rate the customer support of Check Point SandBlast Network an eight out of ten.
Positive
I did not previously use a different solution before using Check Point SandBlast Network.
My company has a business relationship with Check Point SandBlast Network as we are a partner.
My general impression is that I've seen a return on investment with less time dedicated to detecting threats since using Check Point SandBlast Network.
I'm not in charge of costing regarding Check Point SandBlast Network, so I cannot comment on the pricing, setup cost, and licensing.
Before choosing Check Point SandBlast Network, I did not evaluate other options.
It can be intimidating the first time you use Check Point SandBlast Network, but you will learn. I rate this solution 8 out of 10.
SandBlast Network enhances security by providing advanced threat prevention. It utilizes geographic-based policies to mitigate attacks. For example, it addresses the OWASP Top Ten security risks, which include common vulnerabilities such as XSS and SQL injection. These algorithms are designed to protect against the most prevalent and dangerous attacks in the world, making them an excellent solution for comprehensive security.
Check Point offers three types of support: Gold, Platinum, and Diamond. The level of support you receive should be based on the criticality of the issue, not solely on your client's support tier. While there are established support levels, I have experienced instances where the support provided was not categorized as Gold, Platinum, or Diamond but rather a standard support level. In such cases, the response times were slower, and getting support personnel on the call was more difficult.
It integrate well into the environment. You can easily configure and trust all their devices.
I rate the solution's stability a nine out of ten.
There are 35000 US and 24000 UK users working on this solution.
I rate the solution's scalability a nine out of ten.
Check Point is a leading provider of network security solutions. Several vendors, such as Fortinet and Cisco, offer network security products, but Check Point stands out for its advanced features. Cisco is often preferred for routing devices and firewalls.
The initial setup is neither very simple nor overly critical because it utilizes a three-tier architecture. This architecture has three tiers: the firewall, the central management system, and the security gateways, all of which must be interconnected. Generally, firewalls work based on this concept, using a three-tier architecture or similar solutions. If your device fails, you can restore your configuration from the centralized system or a local backup.
Check Point SandBlast Network products provide enhanced security. With geographic policies, you can easily block various types of traffic, including content-based filtering. This ensures that your network is highly secure within your environment.
Overall, I rate the solution a nine out of teb=n.
Check Point SandBlast Network was acquired when the company needed to improve its security posture in different characteristics. The company had a deficiency in monitoring the corporate network. This tool analyzes the traffic network in a way that is really efficient, and of course, the best thing is that it identifies suspicious patterns and behaviors. With this solution, we managed to improve the entire comprehensive posture of the critical assets of the organization's network.
Within the first six months of implementing Check Point SandBlast Network, we have managed to improve the security posture little by little. We have managed to reduce some threats, and with this, we have managed to locate where to improve the defense against malware, exploits, and zero-day attacks.
One of the features that has helped us a lot is the capacity for sandboxing analysis and deep inspection of SSL/TLS traffic, which has enabled us to neutralize malware that the other technologies we have were not able to identify.
SandBlast Network has five very notable features, including a sandbox analysis. It allows you to execute files in a controlled environment to identify malicious behavior without having to affect the productive side. It has SSL traffic inspection.
The solution can detect and prevent attacks that may be encrypted.
Integration with third-party tools has been of great help, the visibility it gives over the entire network.
The reports are helpful.
The configuration could be optimized. The usability could improve. They need to make the guides more specific with images, as it is very complicated to guess where each option is located.
The management of alerts could improve them a bit - especially in event management.
In terms of performance, at some point, I have come to feel that it drops during certain hours.
Some additional features that can be added may be the use of Artificial Intelligence (AI) and Machine Learning (ML).
I've used Check Point SandBlast Network for approximately three years.
It is a reliable and stable solution that resists large workloads.
It has great scalability with third-party tools and has shown a remarkable ability to adapt.
We have only used support once. For the moment, the response to incidents has been good. They should improve the guides since they are somewhat complicated to understand.
Positive
Before SandBlast Network, we used a combination of solutions and some of the same Check Point products that we had several years ago. We saw the need to opt for this and leave others out.
There is a certain degree of complexity in the setup process, and the guides are not very clear.
The implementation was generated with the vendor. Its configuration with the other tools is a little different and complex. However, the overall experience was very good.
The ROI can vary since. You can cover future expenses with security tools that help achieve a reduction of incidents, improved regulatory compliance for fewer fines, and business continuity.
The cost and licensing will always be expensive. That said, we opted for this tool and removed two others, so we felt we achieved a good amount of savings.
This brand has always been evaluated since we already have some Check Point tools.
Always evaluate the technologies that have been implemented. Check in with the new ones that are on the market. That can help you save money.
We are using it on top of email security and web security.
The main feature of the solution is that it protects against malicious threats from the outside. We utilize SandBlast solution to mitigate threats from outside to inside. As an ATP, the solution's role is to defend against threats and provide protection to the customer using the SandBlast as an ATP solution.
There should be some improvement in the solution's stability and scalability.
Since the stability of the tool is good, I rate it nine out of ten.
We have more than 50 customers, including IT heads, CTOs, and all are working on the solution.
I rate the solution's scalability a nine out of ten.
The initial setup is straightforward, and it's a cloud-based solution.
The deployment is very easy. So, the deployment team is deploying this solution to the customer environment.
For deployment, I do not have any idea since I do the PoC part. It depends on the customer environment, the customer's use cases, and the design of the solution. We provide the solution based on the deployment. So it's not complex. It is very easy.
We have certified engineers in-house who are responsible for deploying and implementing the solution. We have expert engineers specialized in Check Point.
The pricing is quite effective, not excessively high. On a scale of one to ten, where ten is the highest price, I rate the pricing a nine.
We are pitching the customer the benefits of the cloud. However, I don't have detailed knowledge about Check Point. So, to be honest, I lack deep visibility or specific information regarding the need for a Check Point experience.
I would tell those individuals seeking anti-threat protection on top of web security and email security to consider SandBlast. By using SandBlast, we can effectively manage everything.
The solution is a single premium package suitable for heavy usage.
Overall, I rate the solution a nine out of ten.
