Check Point CloudGuard CNAPP vs SentinelOne Singularity Cloud Security comparison

Check Point CloudGuard CNAPP vs. SentinelOne Singularity Cloud Security

Download the complete report

Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Zafran Security

Featured Reviews

Reviewer6233

Works at a healthcare company with 10,001+ employees

Has become an indispensable tool in our cybersecurity arsenal

While Zafran Security is already a powerful tool, there are areas where it could be further improved to provide even greater value. One key area for enhancement is the searching capabilities within its vulnerabilities module. By incorporating the ability to create Boolean searches, users would gain the ability to apply more complex filters and customize their search criteria. This would greatly enhance the precision and efficiency with which security teams can identify and prioritize vulnerabilities. Having such tailored search capabilities would save time and resources by narrowing down vast lists of vulnerabilities to those that meet specific parameters relevant to our unique risk environment. Additionally, integrating more robust reporting and visualization tools would be advantageous. Enhanced dashboards that offer customizable visual representations of risk configurations and threat landscapes would facilitate better communication with stakeholders, making it easier to explain vulnerabilities and the rationale behind certain security measures. This would also aid in demonstrating the improvements and value derived from existing security investments to leadership and non-technical team members.

Read full review

reviewer2751468

Assistant Manager at a computer software company with 201-500 employees

Boosts security and compliance in multi-cloud environments while real-time threat detection enhances risk management

Check Point CloudGuard CNAPP flagged a misconfiguration in our AWS S3 bucket that had overly permissive access settings. That configuration could have exposed our sensitive data to the public internet. The platform not only identified the issue but also provided remediation that our team was able to apply immediately. This prevented a potential data exposure. Check Point CloudGuard CNAPP offers a unified, modular platform that combines CSPM, CWPP, CIEM, code security, and cloud detection and response. The agentless workload posture, real-time threat detection and response, multi-cloud coverage and visibility, compliance automation, and one-click remediations stand out as its best features. I find myself relying on the risk management engine and prioritization the most day-to-day. In any cloud environment, you are flooded with findings, misconfigurations, vulnerabilities, and compliance gaps. Without prioritization, it is overwhelming for our team to take care of the posture. CloudGuard's risk scoring helps us cut through incidents. This makes remediation faster and focused instead of wasting time checking every alert. We get to fix the issues that pose real business risks. Check Point CloudGuard CNAPP has positively impacted our organization at a significant level. We get greater visibility and control across all our cloud environments. Some biggest benefits we have seen are faster detection and remediation of misconfigurations, improved compliance posture, reduced risk exposure, operational efficiency, and cost savings. Overall, it has made our cloud environment more secure, compliant, and easier to manage while freeing up our teams to focus on projects instead of chasing alerts.

Read full review

Satyavijay Chavan

Information Security Engineer at DataVigilant Infotech

Enables us to prioritize and effectively address critical security issues

Evidence-based reporting helps us to prioritize and solve critical security issues. The new visualization feature demonstrates how an attacker can enter the system, highlighting the potential path that can be exploited and outlining all the steps the attacker could take. With that visibility, we can ensure the perimeter is strong and attackers cannot enter, thus reducing the risk. It has helped us prioritize issues. The visibility into how an attack could happen is valuable. For example, it highlights the system vulnerability and outlines where an attack could propagate. The visualization helps me to prioritize remediation, and if I don't know where to start, I can check to see the score that enables me to prioritize issues. I am using infrastructure-as-code scanning, and it's one of the useful features. In pre-production, it identifies embedded secrets and misconfigurations, including issues with Kubernetes or some privileged containers. This feature allows us to pass the audit and secure IaC code so that it isn't easily exploitable by attackers. We can more proactively work to identify and resolve vulnerabilities by using the dashboard and the alerting system that SentinelOne provides. It helps us with audits and compliance. We can show the compliance in percentage. We can confidently say that our company or infrastructure is very secure. It has improved our security posture by 30% to 35%. It has reduced our false positives by 30%. It has helped teams collaborate better. The security team manages SentinelOne Singularity Cloud Security, and when it flags vulnerabilities, they are forwarded to DevOps for remediation. Previously, we needed to identify and report the issues, but there would be lapses in communication. Now, there is a centralized dashboard that anyone can look at and see the open issues and work on them.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"With Zafran Security, it integrates with your security controls, allowing you to take that risk score and reduce it based on the controls in place or increase the risk based on different factors, such as if the issue is internet reachable or if there's an exploit in the wild."

"We saw benefits from Zafran Security almost immediately after deploying it."

"Zafran has become an indispensable tool in our cybersecurity arsenal."

"We are able to see the real risk of a vulnerability on our environment with our security tools."

"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."

"Zafran is an excellent tool."

"It offers advanced detection of threats that can harm data from the cloud database."

"This solution has saved the company from unnecessary data loss that occurs due to cyber attacks."

"The two most valuable features for us are the central firewall administrator and the real-time cloud compliance monitoring."

"Check Point CloudGuard CNAPP's initial configuration is very easy. It is plug-and-play. It also gives regular updates."

"It provides complete visibility of workload hosted on different cloud platforms including AWS and Azure, along with multiple tenants."

"The various CNAPP modules have granted more visibility of our cloud applications to our system engineers and developers."

"Alerts of cloud activity happening across all accounts is helpful."

"The most valuable feature is the separate environment."

More Check Point CloudGuard CNAPP pros

"My favorite feature is Storyline."

"SentinelOne Singularity Cloud Security offers an intuitive user interface that lets us navigate quickly and easily."

"Cloud Native Security offers attack path analysis."

"The ease of use of the platform is very nice."

"The agentless vulnerability scanning is great."

"With SentinelOne Singularity Cloud Security, I appreciate the monitoring features and the report with the compliance score."

"SentinelOne Singularity Cloud Security offers security solutions for both Kubernetes and CI/CD pipelines."

"The most valuable aspect of Singularity Cloud Security is its unified dashboard."

More SentinelOne Singularity Cloud Security pros

Cons

"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."

"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."

"For businesses with varied IT ecosystems, increasing the integration capabilities with additional third-party products and services would increase flexibility and user-friendliness."

"I would like an interface more adapted to cell phones or tablets."

"It should capture more information in metadata including communication detail. Also, Internal IP addresses should not be tracked as this might be having some compliance issues."

"I’d like to see more integration with third-party tools. For example, it would be helpful to have an integration between Dome9 and ServiceNow to manage security incidents and security changes."

"One feature of the product that I would like to enhance is the possibility to connect to vulnerability management platforms so that the issues that emerge from the scans can then be ingested directly into the vulnerability management process."

"The reporting has a lot of opportunities to continuously improve so that we can continue to show value."

"The software configurations theory is complicated, and without proper planning and a well-skilled technical team, it cannot perform its tasks properly."

"The platform would be significantly enhanced by incorporating data security management capabilities."

More Check Point CloudGuard CNAPP cons

"I would like to see the map feature improve. It's good, but it isn't fully developed. It lets us use custom resources and policies but does not allow us to perform some actions. I would also like more custom integration and runtime security for Kubernetes."

"Scanning capabilities should be added for the dark web."

"The alerting system of the product is an area that I look at and sometimes get confused about. I feel the alerting feature needs improvement."

"There's room for improvement in the graphic explorer."

"The recommended actions aren't always specific, so it might suggest recommendations that don't apply to the particular infrastructure code I'm reviewing."

"SentinelOne Singularity Cloud Security filtering has some areas that cause problems, and to achieve single sign-on functionality, a break-glass feature, which is currently unavailable, is necessary."

"There is no break-glass account feature. They should implement this as soon as possible because we can't implement SSO without a break-glass feature."

"One of our use cases was setting up a firewall for our endpoints, specifically for our remote users... We were hoping to utilize SentinelOne's firewall capabilities, but there were limitations on how many URLs we could implement. Because of those limitations on the number of URLs, we weren't able to utilize that feature in the way we had hoped to."

More SentinelOne Singularity Cloud Security cons

Pricing and Cost Advice

Information not available

"I would advise taking into account the existing number of devices and add a forecast of the number of devices to be added in the coming year or two, to obtain better pricing."

"CloudGuard is fairly priced."

"Check Point CloudGuard Posture Management is always known as a good solution but an expensive one. When you're using Cisco, Check Point, or Palo Alto, you know that you will pay more, but you know that it will work."

"It is difficult to contextualize the pricing because we are used to Indian pricing and licensing."

"The licensing and costs are straightforward, as they have a baseline of 100 workloads (number of instances) within one license with no additional nor hidden charges. If you want to have 200 workloads under Dome9, then you need to take out two licenses for that. Also, it does not have any impact on cloud billing, as data is shared using the API call. This is well within the limit of free API calls provided by the cloud provider."

"Check Point CloudGuard Posture Management is expensive."

"From a pricing perspective, they are pretty expensive."

"They support either annual licensing or hourly. At the time of our last negotiation, it was either one or the other, you could not mix or match. I would have liked to mix/match. "

More Check Point CloudGuard CNAPP pricing and cost advice

"I wasn't sure what to expect from the pricing, but I was pleasantly surprised to find that it was a little less than I thought."

"SentinelOne Singularity Cloud Security is on the costlier side."

"As a partner, we receive a discount on the licenses."

"The cost for PingSafe is average when compared to other CSPM tools."

"SentinelOne Singularity Cloud Security is costly."

"SentinelOne provided competitive pricing compared to other vendors, and we are satisfied with the deal."

"The tool is cost-effective."

"PingSafe is fairly priced."

More SentinelOne Singularity Cloud Security pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud-Native Application Protection Platforms (CNAPP) solutions are best for your needs.

See recommendations

881,082 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

11%

Manufacturing Company

Computer Software Company

Outsourcing Company

Financial Services Firm

11%

Manufacturing Company

10%

Computer Software Company

Outsourcing Company

Financial Services Firm

14%

Computer Software Company

12%

Manufacturing Company

10%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

By reviewers
Company Size	Count
Small Business	55
Midsize Enterprise	17
Large Enterprise	57

By reviewers
Company Size	Count
Small Business	48
Midsize Enterprise	20
Large Enterprise	54

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?

Since we stood Zafran Security up in our private cloud, we handle the maintenance on our side. As we opted not to use...

What needs improvement with Zafran Security?

In terms of areas for improvement, Zafran Security is doing a really great job as a new and emerging company. Oftenti...

What is your primary use case for Zafran Security?

My use cases for Zafran Security revolve around two primary areas. One is around vulnerability management and priorit...

What is your experience regarding pricing and costs for CloudGuard Workload Protection?

My experience with pricing, setup cost, and licensing has been reasonable for the value it delivers. The initial setu...

What do you like most about CloudGuard for Cloud Intelligence?

The new scanning function is a valuable feature that wasn't available until recently.

What needs improvement with CloudGuard for Cloud Intelligence?

One area that Check Point CloudGuard CNAPP could use improvement is the navigation when switching between modules. A ...

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

What is your experience regarding pricing and costs for PingSafe?

I think the pricing of SentinelOne Singularity Cloud Security is a bit high.

What needs improvement with PingSafe?

We did not try to use the threat investigations feature from SentinelOne Singularity Cloud Security.Drift detection w...

Wiz Code vs Zafran Security

Comparisons

Compared 24% of the time

Vulcan Cyber vs Zafran Security

Compared 10% of the time

Tenable Vulnerability Management vs Zafran Security

Compared 10% of the time

Nucleus vs Zafran Security

Compared 8% of the time

Qualys VMDR vs Zafran Security

Compared 6% of the time

More Zafran Security Competitors

Prisma Cloud by Palo Alto Networks vs Check Point CloudGuard CNAPP

Compared 24% of the time

Wiz vs Check Point CloudGuard CNAPP

Compared 7% of the time

Cloudflare vs Check Point CloudGuard CNAPP

Compared 5% of the time

AWS Security Hub vs Check Point CloudGuard CNAPP

Compared 4% of the time

Orca Security vs Check Point CloudGuard CNAPP

Compared 3% of the time

More Check Point CloudGuard CNAPP Competitors

Wiz vs SentinelOne Singularity Cloud Security

Compared 10% of the time

Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 10% of the time

Microsoft Defender for Cloud vs SentinelOne Singularity Cloud Security

Compared 6% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 6% of the time

AWS Security Hub vs SentinelOne Singularity Cloud Security

Compared 2% of the time

More SentinelOne Singularity Cloud Security Competitors

Product Reports

Zafran Security

Download Zafran Security product report

Check Point CloudGuard CNAPP

Download Check Point CloudGuard CNAPP product report

SentinelOne Singularity Cloud Security

Download SentinelOne Singularity Cloud Security product report

SentinelOne Singularity Cloud Security report

Also Known As

No data available

Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence

PingSafe

Overview

Zafran Security integrates with existing security tools to identify and mitigate vulnerabilities effectively, proving that most critical vulnerabilities are not exploitable, optimizing threat management.

Zafran Security introduces an innovative operating model for managing security threats and vulnerabilities. By leveraging the threat exposure management platform, it pinpoints and prioritizes exploitable vulnerabilities, reducing risk through immediate remediation. This platform enhances your hybrid cloud security by normalizing vulnerability signals and integrating specific IT context data, such as CVE runtime presence and internet asset reachability, into its analysis. No longer reliant on patch windows, Zafran Security allows you to manage risks actively.

What are the key features of Zafran Security?

Threat Exposure Management: Utilizes existing tools to prioritize vulnerabilities and manage threats.
Integrative Analysis: Combines security data with IT context for precise vulnerability management.
Real-time Risk Reduction: Enables immediate risk management without waiting for patches.
Hybrid Cloud Compatibility: Functions across diverse cloud environments for comprehensive security.

What benefits can users expect from Zafran Security?

Improved Security: Enhances protection by efficiently identifying and mitigating risks.
Cost Efficiency: Reduces unnecessary patching expenses by confirming non-exploitable vulnerabilities.
Time Savings: Frees developers to focus on root causes by handling immediate threats.
Comprehensive Insight: Offers a holistic view of security threats and vulnerabilities.

In industries where security is paramount, such as finance and healthcare, Zafran Security provides invaluable protection by ensuring that only exploitable vulnerabilities are addressed. It allows entities to maintain robust security measures while allocating resources efficiently, fitting seamlessly into existing security strategies.

Zafran Security

Check Point CloudGuard CNAPP offers comprehensive cloud security with features like dynamic access control, asset protection, and compliance checks, tailored for organizations seeking enhanced governance across AWS, Azure, and GCP platforms.

Check Point CloudGuard CNAPP provides robust capabilities, including centralized firewall management, IAM scanning, and real-time visibility. Its strengths lie in predictive visualization, threat intelligence, and auto-remediation, making it a valuable tool for risk mitigation and compliance management. The platform's integration and responsiveness enhance cloud security, ensuring alignment with industry standards and effective threat protection.

What are the key features of Check Point CloudGuard CNAPP?

Dynamic Access Control: Enables granular security permissions for cloud resources.
Asset Protection: Safeguards cloud assets from unauthorized access and threats.
Compliance Checks: Ensures alignment with industry regulations like PCI DSS and SOC 2.
Centralized Firewall Management: Simplifies firewall rule configuration across cloud environments.
IAM Scanning: Audits and secures identity and access management configurations.
Real-Time Visibility: Provides insights into cloud environments for proactive threat detection.

What benefits and ROI should you expect from Check Point CloudGuard CNAPP?

Threat Intelligence: Identifies and mitigates potential risks before exploitation.
Auto-Remediation: Automates responses to security incidents, reducing manual intervention.
Intuitive Interface: Simplifies management and enhances operational efficiency.
Posture Management: Maintains strong security posture through continuous assessment.

Organizations in finance, healthcare, and retail frequently implement Check Point CloudGuard CNAPP for compliance and security across cloud environments. It assists with workload protection, threat detection, and regulatory obligation fulfillment, proving effective for securing applications and monitoring API interactions.

Check Point Software Technologies

SentinelOne Singularity Cloud Security offers a streamlined approach to cloud security with intuitive operation and strong integration capabilities for heightened threat detection and remediation efficiency.

Singularity Cloud Security stands out for its real-time detection and response, effectively minimizing detection and remediation timelines. Its automated remediation integrates smoothly with third-party tools enhancing operational efficiency. The comprehensive console ensures visibility and support for forensic investigations. Seamless platform integration and robust support for innovation are notable advantages. Areas for development include improved search functionality, affordability, better firewall capabilities for remote users, stable agents, comprehensive reporting, and efficient third-party integrations. Clarity in the interface, responsive support, and real-time alerting need enhancement, with a call for more automation and customization. Better scalability and cost-effective integration without compromising capabilities are desired.

What are SentinelOne Singularity Cloud Security's standout features?

Ease of Use: Intuitive operation simplifies navigation across platforms.
Real-Time Detection: Quick identification and response to threats.
Automated Remediation: Streamlines recovery processes with integration capabilities.
Forensic Visibility: Aids in thorough threat analysis and prevention strategies.
Comprehensive Console: Offers full visibility and historical data tracking.
Platform Integration: Supports seamless operation across cloud and hybrid environments.

What benefits should users expect from SentinelOne Singularity Cloud Security?

Enhanced Efficiency: Automation and third-party integration improve threat response.
Improved Detection: Reduces mean time to detect and respond to threats.
Operational Support: Comprehensive visibility and forensic tools aid operational decisions.
Cost Efficiency: Affordable integration with scaling capabilities without high overhead.

SentinelOne Singularity Cloud Security is deployed in industries needing robust cloud security posture management, endpoint protection, and threat hunting. Utilized frequently across AWS and Azure, it assists in monitoring, threat detection, and maintaining compliance in diverse environments while providing real-time alerts and recommendations for proactive threat management.

SentinelOne

Sample Customers

Information Not Available

Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners

Information Not Available

Check Point CloudGuard CNAPP vs. SentinelOne Singularity Cloud Security