Try our new research platform with insights from 80,000+ expert users

Check Point CloudGuard CNAPP vs Runecast comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

SentinelOne Singularity Clo...
Sponsored
Ranking in Vulnerability Management
6th
Ranking in Container Security
2nd
Ranking in Cloud Workload Protection Platforms (CWPP)
4th
Ranking in Cloud Security Posture Management (CSPM)
3rd
Ranking in Cloud-Native Application Protection Platforms (CNAPP)
3rd
Ranking in Compliance Management
3rd
Average Rating
8.6
Reviews Sentiment
7.9
Number of Reviews
105
Ranking in other categories
Cloud and Data Center Security (5th)
Check Point CloudGuard CNAPP
Ranking in Vulnerability Management
9th
Ranking in Container Security
7th
Ranking in Cloud Workload Protection Platforms (CWPP)
6th
Ranking in Cloud Security Posture Management (CSPM)
5th
Ranking in Cloud-Native Application Protection Platforms (CNAPP)
5th
Ranking in Compliance Management
6th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
70
Ranking in other categories
Cloud and Data Center Security (9th), Data Security Posture Management (DSPM) (4th)
Runecast
Ranking in Vulnerability Management
36th
Ranking in Container Security
27th
Ranking in Cloud Workload Protection Platforms (CWPP)
21st
Ranking in Cloud Security Posture Management (CSPM)
24th
Ranking in Cloud-Native Application Protection Platforms (CNAPP)
18th
Ranking in Compliance Management
10th
Average Rating
9.0
Reviews Sentiment
7.0
Number of Reviews
1
Ranking in other categories
GRC (16th)
 

Mindshare comparison

As of March 2025, in the Cloud-Native Application Protection Platforms (CNAPP) category, the mindshare of SentinelOne Singularity Cloud Security is 2.9%, up from 1.2% compared to the previous year. The mindshare of Check Point CloudGuard CNAPP is 3.3%, up from 3.3% compared to the previous year. The mindshare of Runecast is 0.1%, down from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud-Native Application Protection Platforms (CNAPP)
 

Featured Reviews

Andrew W - PeerSpot reviewer
Tells us about vulnerabilities as well as their impact and helps to focus on real issues
Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.
Bart Coddens - PeerSpot reviewer
Evolved cloud security with active monitoring but needs interface consistency
The user interface needs work. Sometimes, it is a transition from the old tool to the new CNAPP Two that I currently have, and remnants of the old environment can still be detected. I require consistency in the user interface to ensure everything is streamlined into the same look and feel. More work is needed in fine-tuning the threat data towards your CSPM and activity logs, aligning them with business intelligence, which requires a cohesive console interface. My assessment of CloudGuard CDRs in intrusion detection and threat hunting capabilities is that it still needs some work. All the threat data that comes in, you need to fine tune it a bit.
Burak AKCAGUN - PeerSpot reviewer
Helps with risk assessments for containers, assessing security, and ensuring container compliance
I rate the overall product a nine out of ten. Customers can conveniently view all companies in a single dashboard if they have different companies. This feature eliminates the need for different solutions and separate installations. Moreover, the solution extends beyond servers, encompassing various platforms such as VMware and Kubernetes. Additionally, end-users can install the solution from their client's perspective.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"PingSafe provides email alerts and ranks issues based on severity, such as high, critical, etc., that help us prioritize issues."
"SentinelOne Singularity Cloud Security has improved our security posture."
"We use the infrastructure as code scanning, which is good."
"We liked the search bar in PingSafe. It is a global search. We were able to get some insights from there."
"The UI is responsive and user-friendly."
"It is fairly simple. Anybody can use it."
"Singularity Cloud Native Security provides us with a platform to scan instances when they are getting created, and the dashboard helps us to identify the critical issues."
"The user-friendliness is the most valuable feature."
"It learns from behavior, attacks, management, detections, captures packets, real-time analysis, et cetera. It's generating knowledge from a variety of sources for an excellent analysis."
"Dome9 wraps our FTP infrastructure with its network security configurations, and this also gives us the ability to monitor FTP activity."
"The visibility in our cloud environment is the most valuable feature."
"The identification of misconfigurations, maintenance of compliance in a centralized way, and visibility across all the multi-cloud tenants are the key functionalities."
"The most valuable feature is the CloudBots for auto-remediation of security findings."
"The way they offer container security is a big highlight that I have noticed. The solution is also agentless, so the scanning, runtime, really everything is offered directly by CloudGuard."
"I love the work involved in maintaining and scaling security services and configurations across multiple public clouds using this solution, versus using native native cloud security controls. It is so much better. The different cloud platforms all have their own way that they handle a lot of the stuff that Dome9 handles. Even within their platform, they are in a lot of disparate places, e.g., in AWS, there are five different tools. You have to jump between them to get the same information that you can just pull in automatically on Dome9, which is just one platform. We are using multiple platforms, so that makes it even more complicated and time consuming if you had to just rely on them to get all of your information. Whereas, it's all just summarized and put together on the Dome9 end."
"Visibility is a key feature. It helps me to validate my overall network posture."
"Runecast is a good partner for VMware. Once we have installed it, we can see all the problems and issues. It also has VMware knowledge-based articles."
 

Cons

"The Kubernetes scanning on the Oracle Cloud needs to be improved. It's on the roadmap. AWS has this capability, but it's unavailable for Oracle Cloud."
"We recently adopted a new ticket management solution, so we've asked them to include a connector to integrate that tool with Cloud Native Security directly. We'd also like to see Cloud Native Security add a scan for personally identifying information. We're looking at other tools for this capability, but having that functionality built into Cloud Native Security would be nice. Monitoring PII data is critical to us as an organization."
"Maybe container runtime security could be improved."
"I would like PingSafe to add real-time detection of vulnerabilities and cloud misconfigurations."
"It does not bring much threat intel from the outside world. All it does is scan. If it can also correlate things, it will be better."
"It would be really helpful if the solution improves its agent deployment process."
"They can work on policies based on different compliance standards."
"Some of the navigation and some aspects of the portal may be a little bit confusing."
"Automatic remediation requires read/write access. When providing read/write access to third-party applications, this can add risk. It should have some options of triggering API calls to the cloud platform, which in turn, can make the required changes."
"I would like to see some AI on the back-end, just to assist with doing analysis and making recommendations."
"One feature of the product that I would like to enhance is the possibility to connect to vulnerability management platforms so that the issues that emerge from the scans can then be ingested directly into the vulnerability management process."
"The integration process could be enhanced by enabling integration at the organizational level rather than requiring the manual setup of individual accounts."
"Integration could be improved."
"I strongly advise that the multi-layered security system of Check Point often undergoes updates and new versions keep coming."
"The tool should incorporate more use cases like improving security scores. It should also improve documentation."
"I am not a technical person, but generically, the user interface can be a little more intuitive. Our staff has trained network security and cloud security professionals, and they get it, but when you are trying to get to the customers to be able to pick it up and maintain it, it can be a bit difficult."
"The product lacks network assessment capabilities. We cannot view our network assets or scan switches, routers, or IPs for vulnerabilities and issues."
 

Pricing and Cost Advice

"Singularity Cloud Workload Security's licensing and price were cheaper than the other solutions we looked at."
"I would rate the cost a seven out of ten with ten being the most costly."
"While I'm slightly out of touch with pricing, I know SentinelOne is much cheaper than other products."
"I am personally not taking care of the pricing part, but when we moved from CrowdStrike to PingSafe, there were some savings. The price of CrowdStrike was quite high. Compared to that, the price of PingSafe was low. PingSafe is charging based on the subscription model. If I want to add an AWS subscription, I need to pay more. It should not be based on subscription. It should be based on the number of servers that I am scanning."
"The pricing is somewhat high compared to other market tools."
"It was reasonable pricing for me."
"PingSafe is priced reasonably for our workload."
"I am not involved in the pricing, but it is cost-effective."
"The solution’s pricing is a little bit high."
"The licensing part still needs some work. The issue that I have is that we do not use all the services in the cloud, but sometimes, CloudGuard identifies them as an asset."
"It is a very straightforward licensing model that is based on the number of assets you are discovering and managing with the solution."
"It is difficult to contextualize the pricing because we are used to Indian pricing and licensing."
"In the beginning, the price of Dome9 was cheap, whereas now it is not."
"We have the enterprise-level license and we renew it annually because it is worth the cost."
"The price is on the higher end."
"The pricing is extremely competitive."
"Runecast's pricing is cheaper than that of its competitors."
report
Use our free recommendation engine to learn which Cloud-Native Application Protection Platforms (CNAPP) solutions are best for your needs.
841,656 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
15%
Manufacturing Company
9%
Government
5%
Computer Software Company
15%
Financial Services Firm
14%
Manufacturing Company
8%
University
6%
No data available
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about PingSafe?
The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...
What is your experience regarding pricing and costs for PingSafe?
It is cost-effective compared to other solutions in the market.
What needs improvement with PingSafe?
In version 2, a lot of rules have been deployed for Kubernetes security and CDR, which makes a lot of issues of criti...
What do you like most about Runecast?
Runecast is a good partner for VMware. Once we have installed it, we can see all the problems and issues. It also has...
What is your experience regarding pricing and costs for Runecast?
Runecast's pricing is cheaper than that of its competitors.
What needs improvement with Runecast?
The product lacks network assessment capabilities. We cannot view our network assets or scan switches, routers, or IP...
 

Also Known As

PingSafe
Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence
Runecast Analyzer
 

Overview

 

Sample Customers

Information Not Available
Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners
Our customers tell us regularly how Runecast benefits CIOs, CISOs, and both Security and Operations teams across verticals with a proactive approach that results in major time and cost savings, increased uptime and security standards complianceSuccess Highlight 75-85% troubleshooting time savings – Kiel Municipal Hospital90% time savings on reactive troubleshooting – Near East Bank90% time savings in upgrade planning– FLEXdata80% reduction in monthly incidents and issues – University of St Andrews78,000 EUR/year minimum annual cost savings – Notino100s of hours saved on security compliance with remediation scripts alone – Kiel Municipal Hospital75% time saved on troubleshooting and root cause analysis – de Volksbank
Find out what your peers are saying about Wiz, Palo Alto Networks, SentinelOne and others in Cloud-Native Application Protection Platforms (CNAPP). Updated: March 2025.
841,656 professionals have used our research since 2012.