Try our new research platform with insights from 80,000+ expert users

Check Point CloudGuard CNAPP vs Drata comparison

Check Point Software Technologies and Drata are both solutions in the Compliance Management category. Check Point Software Technologies is ranked #6 with an average rating of 8.5, while Drata is ranked #5 with an average rating of 8.5. Check Point Software Technologies holds a 6.1% mindshare in CM, compared to Drata’s 7.6% mindshare. Additionally, 94% of Check Point Software Technologies users are willing to recommend the solution, compared to 100% of Drata users who would recommend it.
Check Point CloudGuard CNAPP
Read 71 Check Point CloudGuard CNAPP reviews
  • 1,671 Views
  • 773 Comparison Views
94% willing to recommend
Drata
Read 8 Drata reviews
  • 2,372 Views
  • 2,065 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jan 2, 2025

Check Point CloudGuard CNAPP and Drata are cloud security and compliance management solutions. Data indicates Drata excels in comprehensive security features, while Check Point integrates security in existing cloud setups effectively.

Features: Check Point CloudGuard CNAPP provides advanced threat prevention, cloud network security, and automated compliance checks. Drata features continuous compliance monitoring and customizable security frameworks, emphasizing automated compliance over Check Point’s threat prevention focus.

Room for Improvement: Check Point can improve user interface intuitiveness, streamline policy customization, and enhance real-time threat alerts. Drata could benefit from expanding integration capabilities, offering more detailed compliance reports, and reducing the complexity for non-technical users.

Ease of Deployment and Customer Service: Check Point CloudGuard CNAPP integrates seamlessly with leading cloud platforms and has responsive support. Drata provides an efficient deployment process with a user-friendly dashboard and commendable support, ensuring smooth onboarding and quick feature use.

Pricing and ROI: Check Point CloudGuard CNAPP may have higher initial costs but offers significant ROI with its security infrastructure. Drata’s competitive pricing and compliance management features offer compelling ROI by reducing audit preparation time, ensuring cost-effectiveness through automated compliance focus.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Check Point CloudGuard CNAPP vs. Drata Report (Updated: March 2025).
Buyer's Guide
Check Point CloudGuard CNAPP vs. Drata
March 2025
Download the complete report
Helped 845,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Check Point CloudGuard CNAPP
Ranking in Compliance Management
6th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
71
Ranking in other categories
Vulnerability Management (9th), Cloud and Data Center Security (9th), Container Security (7th), Cloud Workload Protection Platforms (CWPP) (6th), Cloud Security Posture Management (CSPM) (5th), Cloud-Native Application Protection Platforms (CNAPP) (5th), Data Security Posture Management (DSPM) (4th)
Drata
Ranking in Compliance Management
5th
Average Rating
8.6
Reviews Sentiment
7.6
Number of Reviews
8
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Compliance Management category, the mindshare of Check Point CloudGuard CNAPP is 6.1%, up from 4.6% compared to the previous year. The mindshare of Drata is 7.6%, down from 18.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Compliance Management
 

Featured Reviews

Bart Coddens - PeerSpot reviewer
Evolved cloud security with active monitoring but needs interface consistency
The user interface needs work. Sometimes, it is a transition from the old tool to the new CNAPP Two that I currently have, and remnants of the old environment can still be detected. I require consistency in the user interface to ensure everything is streamlined into the same look and feel. More work is needed in fine-tuning the threat data towards your CSPM and activity logs, aligning them with business intelligence, which requires a cohesive console interface. My assessment of CloudGuard CDRs in intrusion detection and threat hunting capabilities is that it still needs some work. All the threat data that comes in, you need to fine tune it a bit.
Read full review
Johnny Chen - PeerSpot reviewer
Collects and stores compliance evidence and documentation for you using native integrations with your tech stack.
There is room for improvement in Drata. The core features are solid, but some new features are in a very MVP (Minimum Viable Product) stage. They work, but the user experience isn't always smooth. While the core features are well-developed compared to the market, the new features need more polish. They could benefit from more user feedback and iterations to make them more useful. Some of these new features look promising buthave flaws, so we can’t fully adopt them or justify paying extra for them now. The user interface is clean and intuitive. However, you'll need some specific knowledge if you're a security policy manager or need to set updifferent integrations.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The reporting is quite good. It is the most powerful aspect of this solution."
"The way they offer container security is a big highlight that I have noticed. The solution is also agentless, so the scanning, runtime, really everything is offered directly by CloudGuard."
"The rulesets and the findings are valuable. The actual core functionality of it and the efficacy of events are great."
"Dome9 has improved our organization; we have a centralized view of all of our assets, our visible assets our ECs, our inventories. And then all the policies are centralized, and it is easier to manage because everything is one component console."
"It saves time because I can look across the organization. Instead of checking 50 different accounts atomically and spending 15 minutes investigating each, I can spend 15 minutes exploring all 50 accounts. It allows me to quickly look across the org for similar problems when one comes up. That's a huge time saver."
"We like the GSL Builder feature. When you're running a security operations center, you spend a lot of time monitoring endpoint activity to ensure there is no malicious traffic or anonymous access in the environment. The GSL Builder is helpful for deep investigations of a particular reason for an incident. You can use it to get more information."
"It provides complete visibility of workload hosted on different cloud platforms including AWS and Azure, along with multiple tenants."
"It provides the most useful tools for protecting our financial account records from hackers."
More Check Point CloudGuard CNAPP pros
"Drata helps eliminate evidence gathering and makes assigning different activities to different team members easier, simplifying compliance and audit processes. In Pennsylvania, we're putting in thousands of hours. Drata improves our security posture by reducing extra work, allowing us to focus on other security directives. I like the control editing and task management features the most. It's easy to use, but it's also easy for people to think they don't need security experts if they have it."
"The way the tool's controls are linked to the framework, specifically with SAST and HIPAA frameworks or any other frameworks, is really good."
"The product is 100 percent friendly to use."
"Drata helped us publish our ISO and SOC reports, which was essential for the acquisition. The challenge now is whether Drata can scale up to meet the needs of a larger company, which already has tools like Intune to enforce laptop encryption. Drata is excellent for startups and small—to medium-sized companies but may face challenges in larger organizations with multiple environments."
"Drata offers APIs for every clause so that it can integrate into various platforms."
"Drata keeps adding new features, allowing us to build our entire InfoSec program within it. Adding new components and evidence for different audits is easy. Drata also integrates with various software, like ticketing systems, source code control, and cloud platforms, continuously pulling evidence from these integrations. Without a GRC tool with these integrations, we used to gather evidence from different software during audits manually. Drata has a significant impact on our security posture management. Previously, Drata had features for security posture management, primarily through integration with AWS. For example, it would scan AWS for specific security requirements, like ensuring all S3 buckets are private. It will be reported on the Drata platform if it finds a public bucket. Recently, Drata introduced a new feature that uses an infrastructure-as-code approach. This feature detects issues and provides AI-generated suggestions for fixing them. If an organization uses infrastructure-as-code solutions like Terraform, Drata will suggest changes to the Terraform code to address the issues. You can then review and apply these changes to fix the problems. This is particularly useful when dealing with many topics, as it helps automate and speed up the process of implementing fixes. However, this AI-generated code feature is part of Drata’s upsell options. The basic version of Drata offers limited capabilities compared to the advanced features available with a paid upgrade. Even without this new feature, Drata's security posture management is valuable, as it scans cloud environments for deviations from defined security baselines. Many tools offer similar capabilities, but Drata’s new feature that translates issues into actionable fixes is a notable advancement. This benefits teams with the capability and resources to use this tool effectively."
 

Cons

"It does not support on-premise deployments such as VMware Tanzu, and this has been a major drawback when it comes to integrations with some applications."
"CloudGuard could be improved by including integration with vendors other than AWS, especially Azure, especially in permissions."
"Reporting should have more options."
"Check Point must provide a multi-cloud facility where AWS, Azure, and GCP can seamlessly work together and display posture in an integrated manner."
"It should capture more information in metadata including communication detail. Also, Internal IP addresses should not be tracked as this might be having some compliance issues."
"The solution could be improved with a greater analysis of its Microsoft Security score."
"I strongly advise that the multi-layered security system of Check Point often undergoes updates and new versions keep coming."
"Their service needs improvement."
More Check Point CloudGuard CNAPP cons
"The product can improve in its API documentation area."
"The existing features of Drata are already extensive and costly to integrate."
"There is room for improvement in Drata. The core features are solid, but some new features are in a very MVP (Minimum Viable Product) stage. They work, but the user experience isn't always smooth. While the core features are well-developed compared to the market, the new features need more polish. They could benefit from more user feedback and iterations to make them more useful. Some of these new features look promising buthave flaws, so we can’t fully adopt them or justify paying extra for them now. The user interface is clean and intuitive. However, you'll need some specific knowledge if you're a security policy manager or need to set updifferent integrations."
"In terms of improvements, I'd suggest better marketing since the industry tends to market these tools as security experts, which isn't true."
"The solution is quite costly."
"One of the challenges with Drata is that if you're paying for a subscription to ISO 27001, you must undergo a risk assessment. You should have access to all necessary modules on the platform to achieve your compliance posture and certification."
"The thing with Drata is you cannot open multiple tabs on the same interface or the same desktop,"
 

Pricing and Cost Advice

"In the beginning, the price of Dome9 was cheap, whereas now it is not."
"The tool's pricing is moderate. Its licensing costs are yearly."
"The pricing is tremendous and super cheap. It is shockingly cheap for what you get out of it. I am happy with that. I hope that doesn't get reported back and they increase the prices. I love the pricing and the licensing makes sense. It is just assets: The more stuff that you have, the more you pay."
"Licensing and costs are straightforward, as they have a baseline of 100 workloads within one license and no additional charges."
"The pricing is extremely competitive."
"The licensing and costs are straightforward, as they have a baseline of 100 workloads (number of instances) within one license with no additional nor hidden charges. If you want to have 200 workloads under Dome9, then you need to take out two licenses for that. Also, it does not have any impact on cloud billing, as data is shared using the API call. This is well within the limit of free API calls provided by the cloud provider."
"The price is on the higher end."
"Right now, we have licenses on 500 machines, and they are not cheap."
More Check Point CloudGuard CNAPP pricing and cost advice
"It's one of the more expensive options, but I think it's worth the money if you can afford it."
"Drata's pricing is quite reasonable. Compared to other tools in the market, including its biggest competitor, Vanta, Drata is much cheaper. Even compared to other tools like AuditBoard, which aren’t as good, Drata’s price remains competitive."
"I remember that my company used to pay 25,000 USD to use the product...The product's cost is really high, but it is a powerful tool."
report
See which vendors are best for you
Use our free recommendation engine to learn which Compliance Management solutions are best for your needs.
See recommendations
845,406 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
14%
Manufacturing Company
9%
University
6%
Computer Software Company
23%
Financial Services Firm
8%
University
7%
Manufacturing Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Check Point CloudGuard Posture Management?
The visibility in our cloud environment is the most valuable feature.
See all answers
What is your experience regarding pricing and costs for Check Point CloudGuard Posture Management?
The price is on the higher end.
See all answers
What needs improvement with Check Point CloudGuard Posture Management?
We have concerns regarding the pricing and would appreciate seeing some improvements.
See all answers
What needs improvement with Drata?
The existing features of Drata are already extensive and costly to integrate. It requires a certain level of development understanding from companies. Improvements could be in the area of reducing ...
See all answers
What is your primary use case for Drata?
I have been deploying all the services to Australia and USA. These are for customer compliance on HIPAA, ISO 27001, SOC 2, and similar standards.
See all answers
What advice do you have for others considering Drata?
I'd rate the solution eight out of ten.
See all answers
 

Comparisons

Wiz vs Check Point CloudGuard CNAPP Logo
Wiz vs Check Point CloudGuard CNAPP
Compared 22% of the time
Prisma Cloud by Palo Alto Networks vs Check Point CloudGuard CNAPP Logo
Prisma Cloud by Palo Alto Networks vs Check Point CloudGuard CNAPP
Compared 19% of the time
AWS GuardDuty vs Check Point CloudGuard CNAPP Logo
AWS GuardDuty vs Check Point CloudGuard CNAPP
Compared 9% of the time
Microsoft Defender for Cloud vs Check Point CloudGuard CNAPP Logo
Microsoft Defender for Cloud vs Check Point CloudGuard CNAPP
Compared 8% of the time
Cloudflare vs Check Point CloudGuard CNAPP Logo
Cloudflare vs Check Point CloudGuard CNAPP
Compared 5% of the time
More Check Point CloudGuard CNAPP Competitors
Vanta vs Drata Logo
Vanta vs Drata
Compared 61% of the time
Sprinto vs Drata Logo
Sprinto vs Drata
Compared 13% of the time
Thoropass vs Drata Logo
Thoropass vs Drata
Compared 7% of the time
Secureframe Comply vs Drata Logo
Secureframe Comply vs Drata
Compared 5% of the time
Wiz vs Drata Logo
Wiz vs Drata
Compared 4% of the time
More Drata Competitors
 

Product Reports

Buyer's Guide
Check Point CloudGuard CNAPP
March 2025
Check Point CloudGuard CNAPP reportDownload Check Point CloudGuard CNAPP product report
Buyer's Guide
Drata
March 2025
Drata reportDownload Drata product report
 

Also Known As

Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence
No data available
 

Overview

Check Point CloudGuard CNAPP is a cloud-native application protection platform designed to secure your cloud environments and applications. By combining CSPM, CWPP, CSNS, and WAF capabilities, it provides a comprehensive solution to protect your cloud environment from a wide range of threats.



CloudGuard CNAPP delivers end-to-end cloud security, including workload protection, vulnerability management, and identity management, all while maintaining continuous compliance. It uses advanced AI to detect and prevent threats, offering protection for containers, serverless applications, and APIs. CloudGuard CNAPP also emphasizes simplifying security management, integrating directly with cloud platforms like AWS, Azure, and GCP.

CloudGuard CNAPP provides customers with more context to drive actionable security and smarter prevention, from code-to-cloud, across the application lifecycle. More Context Means Actionable Security, Smarter Prevention. The primary components are:

  • Unified & Modular Platform - A single platform unifying SAST, CSPM, DSPM, CIEM, CWPP, WAF, and Cloud Detection and Response.
  • Continuous Cloud Security - Automatic enforcement of security requirements and internal policies from development to runtime.
  • Real-time Detection & Protection - Real-time incidents and vulnerability detection with a single-click or automated remediation.

    What are the key features of CloudGuard CNAPP?

    • Workload Protection: Secures cloud-based workloads, including VMs, containers, and serverless functions, from vulnerabilities and attacks.
    • Posture Management: Continuously monitors cloud configurations and assets to ensure compliance with security standards and policies.
    • Threat Prevention: Uses AI-driven threat detection to block malware, ransomware, and zero-day exploits in real-time.
    • Compliance Automation: Automates compliance checks and ensures adherence to industry regulations, such as GDPR, HIPAA, and PCI-DSS.
    • Identity and Access Management (IAM) Protection: Secures identities by managing access policies and detecting misconfigurations in permissions.

    What are the key benefits to consider?

    • Improved Cloud Visibility: Provides clear insights into cloud environments, assets, and workloads, helping teams detect misconfigurations and vulnerabilities early.
    • Risk Reduction: Threat prevention features help reduce the risk of breaches by identifying and blocking potential attacks before they can exploit system weaknesses.
    • Operational Efficiency: Automated compliance and posture management reduce the manual work needed to maintain security standards.
    • Multi-cloud Support: CloudGuard CNAPP integrates across AWS, Azure, and Google Cloud, streamlining security operations for hybrid and multi-cloud deployments.

    Check Point CloudGuard CNAPP simplifies cloud security management with integrated protection and automation.




    Check Point Software Technologies

    Drata is a powerful tool for automating compliance processes, effectively reducing audit preparation time and continuously monitoring security controls. It is highly valued for its ability to integrate seamlessly with existing tech stacks and manage security for remote teams, ensuring adherence to standards like SOC 2 and HIPAA. Drata enhances organizational efficiency, improves workflows, and supports real-time compliance monitoring, making compliance management less stressful and more accurate.

    Drata
     

    Sample Customers

    Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners
    Information Not Available
    Buyer's Guide
    Check Point CloudGuard CNAPP vs. Drata
    March 2025
    Free Report: Check Point CloudGuard CNAPP vs. Drata
    Find out what your peers are saying about Check Point CloudGuard CNAPP vs. Drata and other solutions. Updated: March 2025.
    DOWNLOAD NOW
    845,406 professionals have used our research since 2012.
    See our Check Point CloudGuard CNAPP vs. Drata report.
    See our list of best Compliance Management vendors.

    We monitor all Compliance Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.