Check Point CloudGuard WAF Reviews

This security management system allows teams to evaluate the performance of applications and identify vulnerabilities that could affect performance. 

It has deployed reliable security measures that can easily detect any potential data leaks and cyber-attacks. Before we develop any application Check Point CloudGuard Application Security provides the best data protection tools that be configured easily with the new application. We have been able to scale down workflows and monitor appropriately the entire production ecosystem.

We have prevented many potential threats that could be a major setback to our set goals. 

After integrating AppSec with other applications, team members can easily work without fear of confidential information exposure. It has really empowered employees with modern online security measures that can affect business progress. 

Learning new security coding techniques has been a great opportunity for my team and the entire organization. We have quashed many authentication and code injection attempts by ransomware attacks to secure our networking infrastructure.

Sensitive data exposure models have helped in guarding the privacy of company and customer information from landing in unauthorized hands. 

Confidential details like bank statements and the financial status of employees is very sensitive and can easily be exposed to cyber-attacks. AppSec has created a secure environment that allows members to create and manage their personal email accounts and related personal data. 

Application security configuration gives the IT team and authorized personnel to have full access and control of workflows without fear.

The creation of security profiles for each application takes a lot of time. The new release can have a unified security control system that can access the security situation of all applications from one single source. 

The system blocks some authorized data entries that are not threats. AppSec could easily deploy a system with set commands that can be used to block unsafe operations and authorize areas of interest based on the user's needs. I have loved the way this software works, and I am impressed by the increased security across the applications.

I've used the solution for eight months.

It is stable throughout.

This software is good and the performance is excellent.

The customer support staff is dedicated to delivering the best services ever.

Positive

We decided to test the performance of this product for the first time, and it impressed the departments.

The setup process was straightforward, and the vendor guided us effectively.

Deployment took place through the vendor team.

ROI has increased from 40% to 65% in eight months.

The price is good for all businesses.

I did not consider other options.

We could not have prevented many external attacks without AppSec. I am happy due to its great performance.

We had the need to protect the computers in the cloud that we were migrating, giving them greater security and having control over the events and tasks that they execute. 

This need led us to have and search for a solution that would support us directly with containers and the security of our access APIs. 

Above all, we needed something that would give us added value when implementing, and that was where we came to use Check Point AppSec. 

Its main value and what we liked the most is its powerful AI.

With so many tasks that we have at the administration level, as administrators, we find this solution as one of the best recommendations due to its powerful AI. It supports us to be scalable and learn in management with the data it is learning. 

Zero-day management and preemptive stop management provide detection in hours, not weeks. These help us to be much more proactive and efficient in our security management and in much of what we have in the cloud and the infrastructure that we have been migrating to the various cloud.

Among its most outstanding features is the powerful AI in container security. Above all, it is one of the most powerful and easy-to-manage solutions. It manages to protect itself, and it manages to include its new rules based on what manages to learn. This helps us protect web applications and APIs by eliminating false positives and stops automated attacks against our organization. It eliminates the need to adjust rules manually and create exceptions each time an update is performed.

We would like to have a solution of this type for the administration of applications from mobile devices. It would help us to be more portable with management from tablets, iPads, or some cell phones, becoming easier to administer. 

We'd lie to see it take on the characteristics of quantum applications and have these solutions all in one, protecting us and giving us even more value than what it is giving us today. 

I've used the solution for one year.

We did not previously use a different solution.

We did not evaluate other options.

The solution's strongest point is that you can connect everything to it, giving you a full view of what's connected. If you configure it right, it works perfectly.

You need to know exactly the system. You cannot have someone running the system if they don't have the knowledge to do so.

I've been working with the solution for about a year.

The solution is stable. It doesn't matter which device is running Check Point. The solution works. It has never gone down. I rate the solution's stability a ten out of ten.

My clients are large, but they are not enterprise-sized or small.

I rate the initial setup a five out of ten because it is easy if you have the required knowledge and difficult if you are new to the system. The challenge isn't installing it: "Next, next, next, finish." Even a less knowledgeable person can do that. The challenge is configuring the system. There are a lot of blades in CloudGuard. You need to keep each type of security in your view, except for the Check Point view.

The initial setup is very fast, but you need to pray that the solution does all the work itself.

Other unified platforms like QRadar and Cisco are comparatively easier to use.

You need someone knowledgeable to run the system. Today, with all the technology and everything, the company just wants to buy control and be lazy. "Let Check Point do the work." But this does not happen with Check Point because you need professional eyes. Check Point's price is very low compared to those controlling the system. You have to learn to investigate the solution to work better with it. The knowledge costs more than the system. The solution has a hybrid deployment, and I don't know a company that only chooses one deployment or another.

There is no support available for Check Point. There are things you have to look for, and that's it.

Check Point is the world's first and probably best security company. They might change its face, give it new names, separate into new models, and so on, but in the end, they are the best security company in the world. I rate the solution a ten out of ten.

As one of the solutions that we need for protection at the API level, we have found the level of attack detection needed to comply with the internal regulations of the corporation.

It protects both financials and identity searches. It is a new generation of security that can help us seek, implement, and select different brands products for enhanced protection. This is important due to the acceleration and development of many applications. It helps us reduce the risk of vulnerability in productive applications. 

The use of CloudGuard Application Security protects the page and online web services against SQL injection attacks. This prevents attackers from accessing our databases and stealing financial information from customers. These services help identify and fix vulnerabilities in our application and allow us to identify when there is a vulnerability, such as a code injection, and click on the site to see recommendations in order to fix issues before attackers can exploit weaknesses.

The solution offers sophisticated security techniques with unique characteristics that can be particularly valuable for the financial sector, which is where we develop apps. It helps us to guarantee that financial applications are secure, protected, and resistant to attacks, which is essential to maintain trust and reputational power with any client that is subscribed to our services.

Deeper and more transparent integration between Cloud Application Security and analysis monitoring tools could be very valuable - although the solution currently offers integrations with third-party security tools. Still, a deeper integration could provide better visibility of all the threats. It would be ideal if they could be found in real-time, allowing our financial or security team to offer a more effective response to attacks. 

I've used the solution for two years.

We were looking for a solution that met the following criteria: 

• A web application security solution that uses real-time attack prevention techniques and vulnerability scanning to protect applications and data running in public or private cloud environments. 
• Monitoring and logging of application traffic to detect anomalies and suspicious attacks.
• Integration with automation and orchestration tools for cloud application security management and scalability. 
• Detection and prevention of SQL injection attacks, cross-site scripting (XSS), and other types of injection attacks. 

The product benefits my business by giving enhanced protection for useful cloud applications. 

Using enhanced visibility and analytics, the product provides visibility into security. By using a cloud application security solution, our company can save costs by reducing the need for additional security hardware and software and improving operational efficiency. 

With this product, we are achieving regulatory compliance. CloudGuard Application Security can help businesses meet security regulatory requirements, which makes for an outstanding organization. 

This cloud web application security solution can be quickly and easily deployed in public or private cloud environments, allowing a company to protect web applications and reduce downtime quickly. 

This solution provides us with enhanced visibility, giving us the ability to provide web application security analysis in the cloud.

A feature we'd like to see in the future is something that could protect against other attack vectors, with a focus on application protection. We need to protect against other attack vectors like network or device email attacks in order to provide the greatest protection possible. It is very understandable that there are many characteristics of an attack, including if it is from the inside or outside the organization. However, it would be important to validate threats and have all manner of solutions on hand to help protect the company.  

I've used the solution for one year.

This solution safeguards applications that are hosted in the organization's cloud servers. 

It monitors the performance of applications from the deployment stage to the implementation of assigned tasks. 

Check Point CloudGuard Application Security blocks any cyber attacks channeled to destroy confidential data. 

Configuration of this platform with other tools took place efficiently without any challenge. The set security features alert the IT team when there are external threats that can affect workflows. the organization's networking infrastructure is ever secure since we deployed this product.

The solution has comprehensive security cover for the cloud applications, which has been a great achievement in the organization since we deployed this platform. 

It provides advanced analytics that gives each team time to prepare for any threat that might occur in the future. 

Enhanced data intelligence helps us to plan and turn provides analytics into actionable insights. 

Safeguarding applications has enabled members to focus on more productive activities without fear of being attacked. The set of security tools enables each app to perform its role without external interference.

Sensitive data exposure has enabled us to plan and make reliable decisions based on the work environment. 

The product has confirmed to each department that the injection of new data into the systems is highly secured to enhance transparency. 

Security misconfigurations enable the IT team to rearrange application codes and take full control. 

Insecure deserialization provides a comprehensive report of applications that enables the IT team to identify malicious coding and execute it in advance before it affects workflows.

The coding configurations can be simplified to save time for IT teams and developers. 

Insufficient logging among applications breaches security, and this may lead to undetected malware attacks contributing to data compromise. 

The set security tools target known vulnerabilities, and when there is an outbreak of new viruses, it may not be noticed, easily exposing data to cyber attackers. 

Broken access control enables members to gain unauthorized access to saved files allowing them to edit accounts to enable other users to gain access. The software has great capability of preventing data with the set organization policies.

I've used the solution for nine months.

This platform is stable, and the performance is excellent.

I am impressed by the scalability.

There is great support and cooperation from the customer service team.

Positive

I have not worked with a similar solution.

The initial setup was straightforward.

The vendor team was responsible for the full deployment.

There is increased ROI from improved application security.

The cost and setup are good, depending on the company size.

I have no experience with other security products on the market.

This platform is good for safeguarding cloud applications.

We require the use of a solid security tool for our websites provisioned in Microsoft Azure App Service, which is used for internal use by the company and for external use by the client.

The key requirements that we needed to solve were to have automated protection, to have little administration in addition to providing few false positives, all this was successfully solved or provided through CloudGuard Application Security, in addition to the fact that we were able to centralize everything in the whole family. 

Thanks to the centralized use of Check Point CloudGuard App Security we managed to have protection for our Windows and Linux sites, in addition to having little interaction with exceptions due to having this tool in prevention mode.

This tool does not require a lot of learning time, it is incredible. With other tools, adaptation time is required, which with Check Point is not necessary.

We have also been able to find a sensible implementation of the application, providing confidence and business peace of mind.

Check Point CloudGuard Application Security offers us many virtues, the ones we liked the most were:

• Easy and simple implementation from the Check Point Infinity portal

• Very few false positives, which generates a lot of confidence in the product

• The portal is quite intuitive

• The solution does not require much time to adapt to the sites and applications it protects.

In itself, the application really meets our expectations. At the management level, the solution is what was needed to protect this area of the company's infrastructure.

This Check Point solution is an extremely complete security solution, it is really amazing. However, there are always improvements that can be made to all of the tools.

We would like the solution to be more economical since it is not accessible to all clients or is a point of consideration.

Regarding the documentation, starting implementation was not so clear. We had to validate several guides until we could do it correctly.

Finally, we would like the Infinity portal perform better.

During this last year we have been adding the use of CloudGuard checkpoint for the protection of our infrastructure in Microsoft Azure.

It is a cloud solution, managed by Check Point. So far we have not had performance problems.

We previously tested Microsoft Azure Application Gateway with the WAF feature. However, two points led us to switch to Check Point:

1- We wanted a centralized security environment. We already have Check Point solutions based on the infinity checkpoint portal.

2- The WAF solution required more time in detection mode.

Costs are an important issue to discuss with the partner. Validate the documentation and its scope to validate if they meet corporate requirements.

We always evaluate the solutions in the market to make the best decision.

With CloudGuard WAF, I can deploy a cloud-based network protection solution that secures my applications, endpoints, and data.

The features I have found most valuable are the comprehensive threat prevention capabilities, automated policy management, and seamless integration with cloud environments.

For the next release, I would suggest considering features like enhanced threat intelligence integration.

I have been using Check Point CloudGuard WAF for about two years.

The stability of the product has been good so far.

Check Point's technical support is helpful and knowledgeable overall, but there can be delays in response, especially regarding licensing issues.

The main reasons I chose this vendor for web application security were their ability to consolidate management facilities, their comprehensive features, and their flexibility in addressing different security needs.

We have seen ROI from using CloudGuard WAF.

I believe that the pricing or licensing of CloudGuard WAF could be more competitive.

Implementing CloudGuard WAF allowed me to address the challenges of securing my applications and data in a rapidly evolving cloud environment.

Using CloudGuard WAF has brought significant benefits, including improved threat protection, streamlined policy management, and enhanced usability. I noticed these advantages shortly after the first deployment.

It is extremely important to me that CloudGuard optimizes security to protect my applications without solely relying on signatures.

To access the false positive rate, I typically review assessment reports available on platforms like AWS or Azure. By evaluating how effectively the solution preemptively blocks zero-day attacks and minimizes false positives, I can reduce the total cost of ownership for my web application security.

The solution's privacy features, user-friendly web console, virtual deployment options, and physical appliance capabilities have all contributed to reducing my total cost of ownership.

Overall, I would rate CloudGuard WAF as an eight out of ten.