Checkmarx One and Prisma Cloud by Palo Alto Networks compete in the application and cloud security category. Checkmarx One appears well-suited for static application code analysis, particularly where in-depth language support is crucial. In contrast, Prisma Cloud leads in providing security solutions spanning multiple cloud platforms.
Features: Checkmarx One is recognized for its robust capabilities in static application security testing, including support for various programming languages and SAST scanning. Prisma Cloud stands out with its cloud security posture management, cloud workload protection, and incorporation with native cloud services, allowing streamlined protection across diverse cloud environments.
Room for Improvement: Checkmarx One could benefit from reducing false positives and expanding its language and framework support. Potential enhancements include refining licensing flexibility and customizing dashboard features. Prisma Cloud may improve its agent automation and refine role management, along with boosting integration and API security.
Ease of Deployment and Customer Service: Checkmarx One is appreciated for its versatile deployment options across on-premises and various cloud setups, with generally positive customer support. Prisma Cloud also supports a variety of cloud environments, though it occasionally presents onboarding challenges. Both solutions are praised for their customer support yet could improve centralized management for diverse deployments.
Pricing and ROI: Checkmarx One is often perceived as expensive due to its complex pricing model, though it offers substantial ROI in secure development. Prisma Cloud is also considered costly but offers financial efficiency through its scalable and unified platform for comprehensive cloud security.
It eliminates the need for additional hardware, making it a financially and technically sound investment.
Reputation and data security are the two most important things to a financial institution.
We may have prevented a security breach with remediation of the findings.
Whenever I have issues with the solution, I will get an immediate response from the product team and they will try to close the issue as soon as possible.
When you send them a message, you get a response in a minute or two.
They can respond with technical documentation or pass on the case to the next level because it requires the development of a new feature or changing a feature due to a bug.
It's very scalable and very easy to use.
I am highly impressed with the product's scalability.
It's scalable.
I would rate the stability of this solution a nine on a scale of 1 to 10 where one is low stability and 10 is high.
I cannot recall any downtime with the solution.
I would rate it a ten out of ten for stability.
Prisma Cloud is stable.
It could suggest how the code base is written and automatically populate the source code with three different solution options to choose from.
It is a SaaS solution, but some of my clients have a local regulatory requirement, and they want to install it locally on their premises.
From a developer's perspective, especially for organizations like banks developing their applications, ensuring API security before deploying them to the cloud is crucial.
Prisma Cloud is an excellent tool.
The cost was not on the higher side.
That's why a lot of our clients are shifting from cloud-native to Prisma Cloud: because of its effectiveness and because it is budget-friendly as well.
The solution is very expensive.
My experience with the initial setup of Checkmarx One is straightforward; it is not complex compared to other tools that I have tried.
Identifying misconfigurations and vulnerabilities at the first stage itself will help the organization save time and money - which is highly appreciated.
I have one example of a threat that Prisma proactively prevented. In 2021, Prisma discovered and resolved a Log4J vulnerability shortly after it was introduced.
CSPM can audit the current cloud configuration, identify misconfigurations, and assess risk.
Checkmarx One is an enterprise cloud-native application security platform focused on providing cross-tool, correlated results to help AppSec and developer teams prioritize where to focus time and resources.
Checkmarx One offers comprehensive application scanning across the SDLC:
Checkmarx One provides everything you need to secure application development from the first line of code through deployment and runtime in the cloud. With an ever-evolving set of AppSec engines, correlation and prioritization features, and AI capabilities, Checkmarx One helps consolidate expanding lists of AppSec tools and make better sense of results. Its capabilities are designed to provide an improved developer experience to build trust with development teams and ensure the success of your AppSec program investment.
Prisma Cloud by Palo Alto Networks provides comprehensive cloud-native security solutions. It covers dynamic workload identity, automated forensics, and multi-cloud protection, ensuring robust security across diverse cloud platforms.
Prisma Cloud delivers advanced capabilities for managing cloud security across AWS, Azure, and GCP platforms. It offers dynamic workload identity creation, real-time monitoring, and seamless integration into CI/CD pipelines. With automation, centralized dashboards, and enhanced visibility, users effectively manage security misconfigurations and vulnerabilities. While optimizing cloud environments through runtime protection and compliance, Prisma Cloud faces challenges with its navigation, pricing, and limited automation capabilities. Users seek improvements in API security, role-based access controls, and documentation quality, emphasizing the need for enhanced customization and reporting features.
What are the important features of Prisma Cloud?
What benefits or ROI should users consider in reviews?
Industries like finance and telecom rely on Prisma Cloud for managing cloud security posture and container security. Teams utilize its capabilities across hybrid and multi-cloud settings to ensure compliance and robust threat protection. Features like misconfiguration detection and runtime monitoring are critical in promoting security objectives in these sectors.
We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
