We have some servers providing services for public users and other servers for internal users. Our internet users count around 1000 users. That's why it's important to protect our servers and our users from malicious software or hacking attempts from the internet. It's also important to have visibility for what happens in the network. Having a next-gen firewall is a must. We should also manage the log data from the firewall, to see it as information that could help the administrator to improve network security.
Transparent and offers real-time analysis but needs more documentation
What is our primary use case?
How has it helped my organization?
The solution provides us with transparency to give us information about what happens in the network. With this information, the administrator can see a lot of things. They can see hacking attempts from the internet that target our servers, and, with that information, they can check the security settings in the server to see if it is strong enough or not, and make sure the servers is safe. They also can see attacks directed to the endpoint. We know which endpoint got infected so we can take action to clean it. The software also has good reporting capabilities. We can create custom reports according to our needs.
What is most valuable?
The capability of real-time analysis of security events is useful. With this, we can detect and respond to threats quicker, to see if either it's an attack on the server or an attack on the endpoint, and prevent it from causing bigger damage to the company.
Another helpful feature is the ability to give us in-depth reporting. Users can generate custom and detailed reports that are easy to understand and use them according to their needs, for example, to help in the audit process or to comply with certain standards.
What needs improvement?
They should provide easy to access guides or manuals, maybe videos, about how to manage or use the software effectively and efficiently, to maximize its features. This content should show best practices on using it, shortening the learning time for new users. Its already has a intuitive user interface, but more advanced usage needs more time to learn and optimize
The cost is too high; if Check Point could provide a cheaper license cost that will be great. Maybe providing bundling packages with firewall subscriptions would be useful.
For how long have I used the solution?
I've used the solution for one year.
Which solution did I use previously and why did I switch?
This is our first solution for security event management. Previously we didn't use one.
What's my experience with pricing, setup cost, and licensing?
The product has annual licensing; make sure you really use it well to help you secure the network so you don't waste the license cost.
Which other solutions did I evaluate?
We chose this solution because we use the firewall appliance from Check Point, so we didn't evaluate other options
Which deployment model are you using for this solution?
On-premises
