Check Point CloudGuard WAF Reviews

The importance and use of this product were required to improve new application deployments made in the Microsoft Azure cloud. They were not one hundred percent secure, however with this CloudGuard application security from Check Point has managed to improve all these requirements to obtain greater security.

The applications are generally internal to the company, however, they are secure thanks to Check Point CloudGuard.                                   

Check Point CloudGuard Application Security is a cloud-based security solution designed to protect web applications and APIs from various types of cyber threats.

This tool has managed to improve security considerably in our apps and the APIs created for the company. We have not presented problems, threats, or leaks even when some are exposed to the Internet and are more susceptible to attacks. The company is now more secure, thanks to Check Point.                                             

The solution is created one hundred percent on the cloud; the portal is easy to manage.

The solution offers continuous security monitoring and alerting, which can help organizations detect and respond to security incidents in real time.

CloudGuard Application Security provides comprehensive visibility into web applications and API traffic

The solution offers support for compliance regulations such as PCI-DSS, HIPAA, and GDPR, helping organizations to meet their regulatory obligations.

One of the big problems we found in Check Point, in general, is the support. It is always attended very late or they take a long time to answer.

The cost of this tool is extremely high, which is why it must be analyzed before implementing it.

The support language is only English. This causes some problems in Spanish-speaking countries. They could expand the languages offered to help the client.

This excellent security tool, Check Point CloudGuard, has multi-cloud security and is also perfect for secure developments. It's been used in recent years by the company.

Previously we did not use a technology like this.

We always carry out tests and validations before acquiring a solution.

CloudGuard for Application Security came to provide a layer and organization of security to our company. The management of the devices became easier and faster to manage. In addition, the tool had very good reviews since it is the one in the market with the best detection rate of threats.

The solution is scalable, reliable, and does not present many false positives. 

In addition, CloudGuard for Application Security helped us with its AI. With the ability to assess vulnerabilities, it helps us with the best practices to implement in the company.

CloudGuard for Application Security one of its most valuable features is that it can be integrated into an API more easily and effortlessly. 

It is also a very scalable and stable solution. That is one of the points that a company looks for when implementing something like this in an organization. 

With this tool, we have been able to release the overload that was being caused in the IT department and be able to focus on other security functions and thus be able to apply all good practices and be able to manage security 100% of the time. 

CloudGuard for Application Security, like the other Check Point applications, has been presenting major latency problems when entering their administrative portal. That should be one of the priorities to take into account. 

They must also improve the support provided to the client and improve the documentation library. 

The tool fulfills the functionality very well. Hopefully, the next improvements will surprise us with something new since at present it fulfills the security expectations very well.

it was implemented approximately one year ago.

The stability it presents is excellent. It goes up to 100%.

The scalability that it presents is very good.

The support must be improved. It presents a lot of deficiency.

Positive

No previous solution was implemented.

The configuration is very simple and the product is easy to implement.

We had an engineer that helped us with the implementation. Overall, it was fast and good.

The investment that is made is an investment that will be reflected in the security. It's worth it. 

The cost is competitive in the market.

We wanted to continue with the same horizon as we have several Check Point solutions in our environment.

The solution works very well. They just need to improve the support and documentation.

Check Point CloudGuard Application Security helps us ensure the security of contact devices and meet audit requirements for compliance. 

The tool performs device health checkups and updates us. It helps us to be compliant with regulatory policies. 

Check Point CloudGuard Application Security needs to improve updates on integrations. It also needs to incorporate real-time monitoring features. 

I have been using the product for two years. 

We encountered stability issues during the configuration. The tool's stability is good. 

Check Point CloudGuard Application Security is scalable. My company has 1000 users for it. 

The tool's support is good. 

Positive

Check Point CloudGuard Application Security's deployment is easy and completed in six hours. You need two to three resources to handle the deployment. You need proper training to do it. 

The tool's licensing costs are yearly and competitive. 

I rate Check Point CloudGuard Application Security an eight out of ten. 

This security management system allows teams to evaluate the performance of applications and identify vulnerabilities that could affect performance. 

It has deployed reliable security measures that can easily detect any potential data leaks and cyber-attacks. Before we develop any application Check Point CloudGuard Application Security provides the best data protection tools that be configured easily with the new application. We have been able to scale down workflows and monitor appropriately the entire production ecosystem.

We have prevented many potential threats that could be a major setback to our set goals. 

After integrating AppSec with other applications, team members can easily work without fear of confidential information exposure. It has really empowered employees with modern online security measures that can affect business progress. 

Learning new security coding techniques has been a great opportunity for my team and the entire organization. We have quashed many authentication and code injection attempts by ransomware attacks to secure our networking infrastructure.

Sensitive data exposure models have helped in guarding the privacy of company and customer information from landing in unauthorized hands. 

Confidential details like bank statements and the financial status of employees is very sensitive and can easily be exposed to cyber-attacks. AppSec has created a secure environment that allows members to create and manage their personal email accounts and related personal data. 

Application security configuration gives the IT team and authorized personnel to have full access and control of workflows without fear.

The creation of security profiles for each application takes a lot of time. The new release can have a unified security control system that can access the security situation of all applications from one single source. 

The system blocks some authorized data entries that are not threats. AppSec could easily deploy a system with set commands that can be used to block unsafe operations and authorize areas of interest based on the user's needs. I have loved the way this software works, and I am impressed by the increased security across the applications.

I've used the solution for eight months.

It is stable throughout.

This software is good and the performance is excellent.

The customer support staff is dedicated to delivering the best services ever.

Positive

We decided to test the performance of this product for the first time, and it impressed the departments.

The setup process was straightforward, and the vendor guided us effectively.

Deployment took place through the vendor team.

ROI has increased from 40% to 65% in eight months.

The price is good for all businesses.

I did not consider other options.

We could not have prevented many external attacks without AppSec. I am happy due to its great performance.

We use AppSec. The primary use case was for our client's app. We did a successful project with the biggest university in Mexico. It was a big survey for all the former students. There were thousands of them, and it needed to be completed based on some specifications from the security team.

The service was available for the client on time. They had a go-to-market or a due date to start sending the app to various students to apply. We were there 24/7 hoping and waiting for everything to be fine, and it worked perfectly and smoothly.

The client was very happy with the performance of Check Point on this project. When comparing it with Imperva, we strongly feel that the formula that Check Point delivers on WAF was what the client needed.

Check Point CloudGuard works perfectly for preemptively blocking Zero Day attacks and detecting hidden anomalies. Check Point is all about prevention. We strongly believe that if you want to prevent threats, Check Point is the one. There is no one else.

There are two main features. The first valuable feature is that it is not a complex process to get it up and running. It was not complex at all. We were in a close relationship with the team that developed the app, and it worked in a few hours.

The second valuable feature is the information that comes out of it. With the dashboard or the information that came from it, we made some executive reports for the client. They were very happy with it.

I do not know if it is already there, but I would like to have complete visibility between the posture management and firewall as a service. I would like the complete visibility of every product for the client to see in an executive way. I do not want it in a very complex way with so many warnings and threats. They should focus on the main things in all the products. I would like to see that.

We started using it six months ago.

Its stability is perfect. We have had no issues.

It is made for scalability. We have no issues on the matter. 

Check Point helped us a lot with the project. We interacted with Check Point engineers. They knew it was our first project, and we came across as one strong team in front of the client. I would rate their customer service and support a ten out of ten.

Positive

The client had Imperva, but for this project, they used Check Point. They have some current contracts and some expiration dates. We are hoping to have more deals with them.

They went for this solution for multiple reasons. The first reason was our service as a partner. The client needed somebody to handle the solution. They are not specialists in handling WAF or security. The second reason was that Check Point has authority over security. We were not delivering a solution that was new in the market. We were not an underdog. The third reason was that when we did the workshop, not a POV, the client saw that the solution was intuitive. The dashboards were executive. They liked it a lot. It provided visibility to focus on the efforts. It gave a list of all the threats. It was focused on the main ideas and threats.

Check Point CloudGuard WAF can reduce the total cost of ownership for your web application firewall, but in this case, it was not a big deal. 

Our client could see that they can have a great solution that does not cost much more than Imperva.

It is not cheap, but it is worth it. For this project, our channel manager and our territory manager helped us a lot. We got a lot of flexibility on the license. I do not know how much discount there was, but it was big enough to win the opportunity.

For those evaluating WAF solutions, there are so many options, but I would recommend relying on a company like Check Point that has a great ecosystem. Their solutions are not only made for the cloud. They also have specialization in all types of security. With their AI and ThreatCloud, you have information about what is happening in the security world. The information that they provide is very useful, so rely on a company that is big enough to provide the security that you deserve.

In this project, there were a lot of technical issues that we had to manage through our engineers. It was our first project and the interaction with the development teams was important. It was very important to get the due dates and stay on track. For a successful project, you need to have a close interaction with the client, especially if the client is not a specialist in security. Check Point also helped us a lot with this project.

Overall, I would rate Check Point CloudGuard WAF a ten out of ten.

We require the use of a solid security tool for our websites provisioned in Microsoft Azure App Service, which is used for internal use by the company and for external use by the client.

The key requirements that we needed to solve were to have automated protection, to have little administration in addition to providing few false positives, all this was successfully solved or provided through CloudGuard Application Security, in addition to the fact that we were able to centralize everything in the whole family. 

Thanks to the centralized use of Check Point CloudGuard App Security we managed to have protection for our Windows and Linux sites, in addition to having little interaction with exceptions due to having this tool in prevention mode.

This tool does not require a lot of learning time, it is incredible. With other tools, adaptation time is required, which with Check Point is not necessary.

We have also been able to find a sensible implementation of the application, providing confidence and business peace of mind.

Check Point CloudGuard Application Security offers us many virtues, the ones we liked the most were:

• Easy and simple implementation from the Check Point Infinity portal

• Very few false positives, which generates a lot of confidence in the product

• The portal is quite intuitive

• The solution does not require much time to adapt to the sites and applications it protects.

In itself, the application really meets our expectations. At the management level, the solution is what was needed to protect this area of the company's infrastructure.

This Check Point solution is an extremely complete security solution, it is really amazing. However, there are always improvements that can be made to all of the tools.

We would like the solution to be more economical since it is not accessible to all clients or is a point of consideration.

Regarding the documentation, starting implementation was not so clear. We had to validate several guides until we could do it correctly.

Finally, we would like the Infinity portal perform better.

During this last year we have been adding the use of CloudGuard checkpoint for the protection of our infrastructure in Microsoft Azure.

It is a cloud solution, managed by Check Point. So far we have not had performance problems.

We previously tested Microsoft Azure Application Gateway with the WAF feature. However, two points led us to switch to Check Point:

1- We wanted a centralized security environment. We already have Check Point solutions based on the infinity checkpoint portal.

2- The WAF solution required more time in detection mode.

Costs are an important issue to discuss with the partner. Validate the documentation and its scope to validate if they meet corporate requirements.

We always evaluate the solutions in the market to make the best decision.

With CloudGuard WAF, I can deploy a cloud-based network protection solution that secures my applications, endpoints, and data.

The features I have found most valuable are the comprehensive threat prevention capabilities, automated policy management, and seamless integration with cloud environments.

For the next release, I would suggest considering features like enhanced threat intelligence integration.

I have been using Check Point CloudGuard WAF for about two years.

The stability of the product has been good so far.

Check Point's technical support is helpful and knowledgeable overall, but there can be delays in response, especially regarding licensing issues.

The main reasons I chose this vendor for web application security were their ability to consolidate management facilities, their comprehensive features, and their flexibility in addressing different security needs.

We have seen ROI from using CloudGuard WAF.

I believe that the pricing or licensing of CloudGuard WAF could be more competitive.

Implementing CloudGuard WAF allowed me to address the challenges of securing my applications and data in a rapidly evolving cloud environment.

Using CloudGuard WAF has brought significant benefits, including improved threat protection, streamlined policy management, and enhanced usability. I noticed these advantages shortly after the first deployment.

It is extremely important to me that CloudGuard optimizes security to protect my applications without solely relying on signatures.

To access the false positive rate, I typically review assessment reports available on platforms like AWS or Azure. By evaluating how effectively the solution preemptively blocks zero-day attacks and minimizes false positives, I can reduce the total cost of ownership for my web application security.

The solution's privacy features, user-friendly web console, virtual deployment options, and physical appliance capabilities have all contributed to reducing my total cost of ownership.

Overall, I would rate CloudGuard WAF as an eight out of ten.

We have had the need to ensure the development of each of our applications based on the fact that the applications must be safe, fast, and efficient. We want to prevent an injection of a vulnerability attack by broken authentication, exposure of confidential data, or external entities that can inject us with xml services via broken access control. All these characteristics cause insecurity. We have looked for solutions that can guide us and establish a safe and concise baseline.

It has given us greater security at an organizational level. It has allowed us to use components with known vulnerabilities, which have been prevented based on their multiple databases that have correlated incidents, helping the development of applications to be fast, efficient, and safe, which is what we were looking for. Thus giving us the possibility to register, monitor, and identify technological insufficiencies or absent capacities in the development of the application.

Its most outstanding feature is the registry and the possibility of monitoring everything. When it comes to simplifying or establishing an error, an infraction, or a detection due to a breach of unauthorized access, it gives us an overview of each one of the capabilities and a segmented control over the development. It offers good functionality of the application that is currently running. It's giving us the ability to test based on vulnerable interfaces, and anomalous requests and responses. All these types of characteristics give us a reference point as to whether they are secure or insecure. We get logging monitoring and general visibility of the application.

The application allows us to have control over its activities, the management, and the interconnection of monitoring which takes advantage of computing power, is exceptional. That said, I would like to be able to integrate the theme of Artificial Intelligence to help review issues and to monitor and view the security issue while also suggesting and interpreting and additionally configuring solutions - basically, acting as an interpreter.

We've used the solution for about six or seven months. That was when established applications at the cloud level.