Check Point Infinity Reviews

We use Check Point Infinity to protect our organization against the latest generation cyber-attacks, characterized by large-scale spread and fast movement across multiple attack vectors.

These sophisticated attacks are on mobile devices, endpoints, cloud, and various enterprise networks. They easily bypass the conventional, static detection-based systems used by organizations today.

The legacy perimeter-focused security approaches have become ineffective. The outdated assumption that everything inside the security perimeter can be trusted leaves organizations exposed for vulnerability and attack.

To protect the organization, we need to move up to the latest generation of cybersecurity tools. These combine real-time threat prevention, shared intelligence, and the most advanced zero-trust security across network, cloud, endpoint, and mobile devices.

Rebuilding security infrastructure around the Zero Trust approach, using disparate technologies might lead to complexities and inherent security gaps. To avoid errors and provide robust security, Check Point offers more practical and holistic approaches to implement Zero Trust. It is based on a single consolidated cybersecurity architecture, Check Point Infinity.

Check Point provides different solutions to protect organizations at each level. They have products that can work in a silo or can be integrated with other security solutions to enhance security by mitigating risk and providing a dashboard for monitoring.  

Generated logs can be sent to a SIEM solution, where a use case or action can be defined against raised alerts. Automated policies/processes can be created accordingly.

For example, if we need to block communication from a suspicious IP for which an alert has been raised, and send it to ServiceNow. We can create a playbook on the ServiceNow platform for raisings an alert, which will instruct the NGFW firewall to block the connection.

The Check Point Infinity security architecture enables organizations to fully implement all of the Zero Trust Principles.

Zero Trust Security, Check Point Infinity is an architecture provided by Check Point that includes a solution for protecting organizations at different levels. 

Zero Trust Networks: The Check Point Security Gateway enables micro-segmentation across the organization's network. Integration with Identity awareness and Application Control enables policy enforcement at a granular level.

Zero Trust Workloads: Protect workloads hosted in private and public clouds, enforce compliance, detect and remediate misconfiguration.

Zero Trust People: Identity awareness enables granting access to data for authorized users with SSO and MFA.

Zero Trust Devices: Sandblast Agent Endpoint and Check Point Sandblast Mobile protect employees' mobile devices and workstations from advanced attacks, Zero-day malware, malicious app installation, and more. Network-based threat prevention protects devices from threats that are coming from the network and vice versa.

Zero Trust Data: Protect data by performing full hard disk encryption on endpoint and external media encryption on all removable storage media. Data shared to external partners over the Internet is encrypted by site-to-site VPN and client-to-site VPN.

Visibility and Analytics: The Check Point attack dashboard allows for immediate response to security incidents and provides real-time forensics for investigating events.

Automation and Orchestration: Security architecture integration with organization border IT environment enhances speed and agility, incident response, policy accuracy, and task delegation.

The licensing model for Check Point Infinity is not clear. As infinity licenses are based on the number of users, it confuses larger organizations, where not every user needs every service. 

For example:

For an organization size of more than 100,000 users, where only a few users need to have access to SandBlast Mobile for protecting their BYOD devices against threats, and there are a few users that need Capsule to access corporate data, and in addition, if the organization needs to protect all of the user's email accounts using Check Point Email Security, then it creates issues in terms of the license count. It is confusing when it comes to figuring out how to fulfill the requirements.

Check Point solutions are stable.

It's a framework, so it is scalable.

The technical support is excellent.

We are using this solution to provide having security at each level of the environment.

Different solutions or products from Check Point are involved for creating complete this security framework.

We deployed with an in-house team with OEM support.

Check Point should provide an enterprise-wide license where the organization should be provided free hand of using any license or services for an agreed period of time (EULA).

We have worked with different products from Check Point and other security solutions.

This is a security architecture. Organizations can use different Check Point solutions for protecting different environments, such as the network, email, endpoints, and more.

We use the solution for testing and conducting. For instance, we test this product using open-source samples containing different ransomware tools and another element.

The detection rate is good. It also has personal management that provides all the details on one dashboard. Depending upon the requirements, you can customize the dashboard. The visibility part is also very good. It can customised. The reaction rate is good.

There is an issue with high agent size, which impacts performance. The EDR part should provide more features.

I have been using Check Point Infinity for 6 months.

The solution’s scalability is good but complex to maintain. They need to provide technical training to the partners. Expanding the team to get expertise and hands-on solutions will be easy.

Support is not that much good. Response time is very high. Some issues take a few days to resolve.

The initial setup is neither easy nor complex. Any technical user can quickly deploy it. You need two to three resources to monitor and support the solution for a thousand assets. We use email deployment and data deployment. You don't use manual deployment. It is challenging for multiple users.

Check Point is a universal solution with multiple features that customers expect in one product to meet all the requirements.

The product has moderate pricing depending on the devices. The OEM's services are quite high.

We are a cybersecurity company providing solutions for our customers. We tested the Check Point solution, not just as a solution provider but also to assess cybersecurity for Check Point. We tested various products and have found that the Check Point endpoint protection offers multiple capabilities. It covers postal management, DDR capabilities, and many other features, such as cloud assessment and sandboxing in the cloud.

They should have a dedicated team or take services from third-party sources to maintain the solution. They can have this solution for endpoint protection and mobile protection.

We can customize the dashboard to meet our needs. We can tailor the dashboard to display the information we need depending on our requirements.

Overall, I rate the solution a seven out of ten.

Our company works in the area of developing and delivering online gambling platforms. The Check Point Next-Generation Firewalls are the core security solution we use for the protection of our datacenter environment located in Asia (Taiwan).

The environment has about 50 physical servers as virtualization hosts, and we have two HA Clusters that consist of 2x5400 hardware appliances, managed by an OpenServer Security Management Server on a Virtual Machine (KVM), all running on R80.10 with the latest JumboHotfix.

The "Infinity" is not some standalone security solution, but the way you plan and implement the whole security infrastructure of your company. It contains all the modern components from Check Point. 

In our company, we use the hardware appliances, Next-Generation Firewalls, with a bunch of blades activated (DLP, IPS, VPN, etc.) to protect the data centers. Our data centers are controlled by the Check Point Security management, with the current version being R80.10. These are the basic building blocks of Check Point Infinity, and they work just great together. They also allow for the future extension and we are thinking about adding the Anti-DDOS protection on the edge of our environments. 

We are fully satisfied with the abilities it provides and the general approach of the Check Point solutions.

The Check Point Infinity architecture is the unified approach for building the unified security infrastructure of our company. I like that it covers all the pieces of the modern enterprise organization security needs including offices and data centers, public cloud environments, and the interconnects between them. It also protects end-user devices such as laptops, smartphones, and tablets.

We have full control over what our employees can do with the devices we provide them, to provide a secure and reliable network infrastructure. I also like that all of the components are tightly integrated and there is a single endpoint to control all the elements. This is called the Smart Console.

Even though we have had several support cases opened for the components of the Check Point Infinity architecture, as an administrator, I'm satisfied with the solution and the abilities it provides. I can't describe any disadvantages at the moment, except for the overall price of purchasing and maintaining the entire set of components.

I think that the pricing for the Check Point products should be reconsidered, as we found it to be quite expensive to purchase and to maintain. Maintenance requires that the licenses and the support services be prolonged regularly.

Alternatively, they should create some additional bundles of the software blades with significant discounts in addition to the current Next Generation Threat Prevention & SandBlast (NGTX) and Next Generation Threat Prevention (NGTP) offers.

We have been using the Check Point Infinity for about three years, starting in late 2017.

All of the components in Check Point Infinity are mature and stable and we have not encountered any issue with that.

The solution scales well with the hardware we have, and we see that scalability, the Active-Active HA mode, doesn't affect the overall performance much after activation.

We have had several support cases opened, but none of them were connected with the Check Point Mobile Access Software Blade. Some of the issues were resolved by installing the latest recommended JumoHotfix, whereas some required additional configuration at the OS kernel level.

The longest issue took about one month to be resolved, which we consider too long.

We have not used any solution of this kind before.

The setup was straightforward. The configuration was easy and understandable, and we relied heavily on built-in objects and groups.

Our deployment was completed by our in-house team. We have a Check Point Certified engineer working in the engineering team.

Choosing the correct set of licenses is essential because, without the additional software blade licenses, the Check Point gateways are just a stateful firewall.

We decided to stick to the Check Point Infinity after the demo with the vendor.

The Check Point Infinity security architecture is a robust and modern security solution for organizations of any size, but make sure that you have a dedicated budget to maintain it. It is really not cheap.

Also, it is better to have a dedicated and certified Check Point specialist in your engineering team, since the solution is complex.

The tool's most valuable feature for threat prevention is the encryption alarm. 
I find the centralized management console, including the log analyzer and reports in Check Point Infinity, extremely beneficial for enhancing security and operations efficiency in our enterprise. I would rate it a perfect ten out of ten, as it effectively helps us analyze logs,  and detect potential attacks. 

The tool's technical support lags. 

I have been using the product for six to seven months. 

I rate the solution's stability a nine out of ten. 

I rate the tool's scalability an eight point five out of ten. 

We used Trend Mico before Check Point Infinity.We currently have approximately 500 endpoints deployed. So far, the system is working seamlessly, and we haven't encountered any security issues. I'm confident in the product's security features. We are currently the documentation, and the support portal has been reliable, providing us with ample resources to troubleshoot any issues.

When it comes to price, the paramount consideration is the strength of the security. If the security measures provided by the product, such as Check Point Infinity, are robust and meet our requirements, price becomes a secondary concern.

For those considering Check Point Infinity, my advice is to gain hands-on experience and acquire a foundational understanding of the product before diving into the implementation process. I rate it a nine out of ten. 

This is a full architecture suite that provides robust protection against cyber attacks. 

It resolves growing complex connectivity challenges and networking issues that affect performance. 

Check Point Infinity ascertains the security situation across the company infrastructure to design the best solution for evading ransomware attacks. It monitors the performance of cloud-hosted containers that carry sensitive information. 

Integration with mobile applications and desktop tools took place without any downtime indicators.

This product has centralized all the network security operations, giving the IT department less time to monitor data workflows. 

It provides security solutions to both cloud and on-premises with less cost as compared to other applications. 

Browsing across the internet sites has been secure with Infinity. 

It detects any threats across the company application systems that could bring harm and destroy useful data. 

It ensures that all the cloud-hosted applications comply with security policies to enhance the secure collaboration among apps.

The security services that are provided in the organization have given departments an opportunity to focus more on productive business activities. 

The complete security set of tools enables each sector to focus on threats that are directly proportional to engaged programs. 

Powerful cyber security functionalities track workflows to block all threats that may arise and affect the workflow chain. 

It has integrated all the components in the organization with the central control system that provides comprehensive reports on work processes.

There are a few cases that arise from the customer support staff regarding the setup and operations. 

The cost of maintaining and purchasing the security components is high. 

Familiarization with the security features and operations took time, however, we are now set to enjoy all the benefits. 

So far, we are satisfied with most functionalities. We have achieved the set goals and updated our systems to comply with international security policies. It has integrated effectively with modern tools across the organization.

I have been using Infinity for seven months. 

The reliable security architecture has boosted performance.

I like the general performance and productivity.

The team cooperates fully when contacted in order to offer any assistance. I appreciate their patience and support.

Positive

This is the only solution that I have used in this category.

The setup was slightly complex - especially in terms of integrations with applications.

The implementation process was handled in-house.

Increased security infrastructure has resulted in increased ROI.

The cost is relatively high.

We are evaluating other options. That said, we have not discovered a more powerful solution yet.

I totally recommend this solution to other enterprises.

Our company used Check Point Infinity to connect various locations worldwide through VPN, specifically using IPsec, rather than for cybersecurity. We implemented it in on-premises networks to collect data in data centers from different locations.

The solution is expensive.

The tool is 100 percent stable. 

Check Point Infinity is scalable. 

The initial deployment took about a month, subsequent deployments were much faster, typically taking only a few days.

The solution's  price is quite high, and the licensing model requires extra licenses for various features like SD-WAN.

The tool is one of the most secure and stable products, with clear administration. I rate the overall product an eight out of ten. 

I recommend Check Point Infinity to others, especially if they aren't planning to use Fortinet or Palo Alto. All three solutions—Check Point Infinity, Fortinet, and Palo Alto—offer similar levels of security. However, one thing to consider is that the tool's licensing can be expensive and complex. 

When validating the centralized environment, we began to use other tools of the Check Point family that are available through the portal.

Some licenses already bring what is required to be able to manage.

The tool complies with the mobility issue since it can be used from anywhere.

The initial implementation was accomplished easily and without deployment problems.

Its quite intuitive dashboard helped us a lot with the administration.

At the company level, we managed not to have to depend on a server that was implemented together with the company's infrastructure. Still, really it is only necessary to join the portal.

The license was included for its use.

By also providing a fairly intuitive portal, it allows security administrator users to carry out their tasks in a simple way. For example, it is only necessary to switch to the Harmony Blade to be able to manage policies and controls over them.

The monitoring theme is quite efficient.

Check Point Infinity Portal achieved many of the company's requirements, including:

1- An easy and fast implementation of the portal.

2- Licensing is already included in some Check Point tools, such as the Check Point gateways.

3- Accessibility from anywhere.

4- Use of MFA to ensure the identity of the user.

5- An automated, modern, and simple portal for security administrators.

This is a very good management tool, which saves logs depending on the policy implemented from the beginning to have portal information that can be used later.

Some points of improvement of the centralized management tool may be the latency that is rarely provided when managing, for example, the smart cloud of Check Point for gateways.

The console at the beginning also has the section on where to save the logs, however, if by mistake we choose a very remote area, this detail cannot be corrected unless the change of data center where the logs are housed, which is requested through support, which can become a management difficulty.

As for support for modern and cloud-based tools, they are somewhat more difficult to solve quickly.

This is an excellent centralizing tool. We started using it to manage our Check Point gateways.

This is a quite stable solution and does not require maintenance by the client.

It has some performance problems, however, they are few. In itself the tool is quite interesting and powerful.

We have not used a cloud management tool before. Some are similar yet do not meet what Check Point can offer.

The issue of licensing is not required since some solutions already include management with this portal. Similarly, it is essential to register with a partner who can delve into the manufacturer's options for the client's benefit.

Of course, validation of the available documentation of the tools is always carried out, however, Check Point was adjusted to what is required by the company.

I recommend the use of this administration portal.

Our vendor told us about the solution. It was not required to use a management server since this portal provided the same service of free or licensed with the same logic already obtained from our GWs.             

Check Point Infinity Portal has given us an excellent complete solution where we can use many security plugins integrated into a single console and is providing that centralized security environment that all companies look for, including logs, monitoring, and security from the same part.

This portal is extremely intuitive as well as versatile and accessible from anywhere, providing all this control and business security in an easy way.

New Check Point technologies can be found via this portal.

Check Point Infinity is a great tool.

One of the most important features is the simple access. It's easy from anywhere, it's safe, and you can even use MFA to have a security layer for administrator users.

It is a centralized portal that provides all the features required for cloud environments, to manage our gateways developed in Microsoft Azure.

This portal also has an incredible availability since I've been using it I haven't had log in problems or service outages, quite useful to integrate all the new products.

Its costs are quite accessible.

In general, Check Point can improve its documentation. Sometimes they are very old. They could include more examples to guide customers in their implementations.

I have noticed that new technologies are more difficult to find guides. Without them, the objective to implement them correctly is not always achieved.

On the other hand, I think it is good to improve the support service since it is somewhat slow for cloud issues, they are resolved, but after several weeks, I think the solution SLA should be improved.

The portal is provisioned in AWS. They should improve the cloud to make it faster.

Check Point Infinity is a completely innovative security solution that we have used for the administrative use of both Check Point Harmony and Check Point SmartCloud to manage our gateways. It is a solution that does not use a server provisioned by the client. It is located in a web portal in which you can incorporate many of these features like the ones we currently use. We have been using it for more than two years.

We did not previously use a solution as complete as Check Point Infinity Portal.

It is important to have access to licensing consultations with a direct Check Point vendor to determine needs. In addition, the costs are not always public, which is why it is very helpful to have someone to assist.

We have previously evaluated other technologies and manufacturers. However, the most complete is Check Point.

I recommend this security tool. However, it is important to validate with your Check Point partner if it fits your business needs.