Check Point CloudGuard Code Security Reviews

In recent years, in search of a new strategy, we have tried to strengthen our security and infrastructure posture. It's one of the fundamental pillars of a large organization.

As a result of this situation, we have begun to adapt by using solutions that support us on cloud and on-premise. We have found the solution offers a healthy, strong infrastructure and, above all, is aligned with the legal and regulatory frameworks at an international level.

It's very integrated for emerging infrastructures such as the cloud, and supports us via a new legal framework. It protects us from new methods of attacks. Without this legal framework, in which Check Point supports us, it would become more difficult to protect ourselves, as many organizations are new to the use of the cloud. This solution gives us support from the experts who have been first in this model of infrastructure and services. We can ensure that by following and adapting our needs based on these guidelines we will be a great organization with a strong vision and a great security framework established to protect us.

Among its features, I like the ability to investigate, analyze and generate reports.

Its most notable feature is its capability to extend those analytics to teams in any available cloud. You can maintain a legal framework structure at all times.

The value in the analytics is that this data can guide us towards institutional security. We can support each other to be better and more efficient daily.

I would like this solution to be extended to cellular devices or tablets. In a way, this will be able to support ourselves in order to be more efficient.

I've used the solution for one year.

Currently, our company implements several sites and applications developed in Microsoft Azure. 

However, in the past, we had some vulnerabilities in identities that were used within the development, which allowed us to understand that we needed help to implement the best security practices for others to protect all the development against attackers that could harm us. The tool has helped us improve and implement improvements for our security.                                                                   

Check Point Spectral helps us daily with the development and helps to improve security best practices. It can protect the code and take care of the identities with permissions in the applications.

Additionally, being a cloud environment, they more easily take the attention of attackers and safeguard corporate information and intellectual property.

Its monitoring features, and its ability to improve the best practices of development already implemented or completed for company security, have helped us to be more secure.

This new special security tool for developers was acquired not long ago. However, I can comment that it has very good characteristics, such as:

1- The implementation of this tool for security management and control is very simple. It only requires installing a scanning agent which is responsible for reviewing the code, generating a security assessment, and indicating failures in a very good way.

2- It can validate and improve a large number of code languages, which makes it very interesting for developers in different fields.

3- Real-time data loss prevention is quite good for avoiding vulnerabilities and further damage executed by an attacker.

Being such a new tool in the Check Point security portfolio, it has become a challenge to obtain information on security implementation improvements, for which it would be very good to create more documentation for this tool.

It is difficult to solve problems via support. With very new tools, the service hours are sometimes different from our country, so finding sessions is sometimes hard.

The costs are not transparent. You need a provider so that they can give you more details.

It is a non-centralized environment in Infinity Portal.

In recent months we have tested this solution to protect our developments implemented in Microsoft Azure.

A tool that perfectly complies with security, good practices, and improvements to avoid vulnerabilities.

We have never had a tool for this type of security improvement.

It is vital to have the support of a specialized partner. It will help you to really deliver what you are looking for, help with costs, and, if necessary, offer technical support.

Thanks to our partner and the documentation on the benefits of this tool, we chose to implement it.

Developers definitely created this tool for developers. I would recommend it.

Our idea is to support the creation of code solutions for our company's applications with all the parameters and security reviews to have zero vulnerable environments for modern threats, guaranteeing that when these developments go into production in our Microsoft Azure cloud, they are correctly built.    

The need to prevent vulnerabilities began by preventing source code leakage and code manipulation for events controlled by cyber attackers. Code Security complies with everything.

Thanks to Check Point Code Security, through a centralized environment with our other security solutions in Check Point Infinity Portal, our developments and codes are now more secure. The code review and the generated assessment are complete, generating all the necessary recommendations to protect the environment.

We also avoided the extraction of secrets and API keys for connectivity between applications, providing a great security complement since all our codes have APIs.

Check Point CloudGuard Code Security helps to improve the code security of our company, generating great rapid and complete assessments to be able to make decisions for improvements.

This tool is centralized in the Check Point CloudGuard environment, which is managed through the Check Point Infinity Portal. This is very good as, from this web portal, we can manage many of our security solutions.

Also, its dashboards are very intuitive. They help us to understand better and faster what happens in our code. It generates automation and improvements of it.

Code Security is not a native Check Point solution. It is a new integration and acquisition. It is generally difficult to find documentation about the product, and there is relatively little to find. It is a great, modern tool, yet it is not so easy to optimize.

It is an expensive tool. They could improve this detail a bit to be more competitive against the competition, even though this security tool is unique.

It is important that, for this type of solution, there is also a faster response from technical support. When it comes to cloud applications, issues are somewhat more difficult to solve.

This is a great tool acquired by Check Point which has been used to expand its portfolio of cloud security solutions. We have used it at least during this year to support code security issues for our developers.

The product stability is good.

It is a scalable solution since it is managed by Check Point.

A solution with Code Security's potential has not been found or used before.

Having a good provider or partner is important to help us with everything related to Check Point.

We always evaluate all possible solutions to take the best solution based on our needs.

In our company, we deployed a firewall in the office. The office has around 200 to 300 people. We're using it to control the Internet access.

Its login facility is quite clear for us. Compared to what we used before, it's helping us to be more efficient in managing our traffic.

This product is an Internet firewall, so the most valuable aspect is the way we use it to control access to the Internet and for managing applications. Via the firewall, we can see the employee's use cases to access the Internet. We're using it to protect network access in our company.

The ease of use could be better. There is a bit of a learning curve. I'd rate the ease of use six out of ten. There is room to improve.

I've been using the solution for about one year.

The stability is pretty good. 

The solution is quite scalable. I can pick up different types of scales depending on my requirements. 

We don't use the support too often. We just check the features and ensure everything is meeting our requirements or check with the specifications. 

Positive

We used a Layer 7 solution previously. I had experience with Check Point before and decided to try it in our company.

I've also used FortiGate in the past. To some degree, they do similar things. It's just a personal preference.

I was not involved in the initial setup. 

A reseller handled the initial setup for us. 

I have seen an ROI. It's worthwhile investing in the product. We've seen a return in improving our efficiency with network management.

I don't really put a value on pricing. We wanted to go for Check Point, found a reseller, and got the solution. 

The solution helped free up staff to work on other projects. We've saved about 10% in overall time. 

I'd rate the solution an eight out of ten.