Try our new research platform with insights from 80,000+ expert users

Check Point CloudGuard CNAPP vs Runecast comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

SentinelOne Singularity Clo...
Sponsored
Ranking in Vulnerability Management
6th
Ranking in Container Security
2nd
Ranking in Cloud Workload Protection Platforms (CWPP)
4th
Ranking in Cloud Security Posture Management (CSPM)
3rd
Ranking in Cloud-Native Application Protection Platforms (CNAPP)
3rd
Ranking in Compliance Management
3rd
Average Rating
8.6
Reviews Sentiment
7.9
Number of Reviews
105
Ranking in other categories
Cloud and Data Center Security (5th)
Check Point CloudGuard CNAPP
Ranking in Vulnerability Management
9th
Ranking in Container Security
7th
Ranking in Cloud Workload Protection Platforms (CWPP)
6th
Ranking in Cloud Security Posture Management (CSPM)
5th
Ranking in Cloud-Native Application Protection Platforms (CNAPP)
5th
Ranking in Compliance Management
6th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
70
Ranking in other categories
Cloud and Data Center Security (9th), Data Security Posture Management (DSPM) (4th)
Runecast
Ranking in Vulnerability Management
36th
Ranking in Container Security
27th
Ranking in Cloud Workload Protection Platforms (CWPP)
21st
Ranking in Cloud Security Posture Management (CSPM)
24th
Ranking in Cloud-Native Application Protection Platforms (CNAPP)
18th
Ranking in Compliance Management
10th
Average Rating
9.0
Reviews Sentiment
7.0
Number of Reviews
1
Ranking in other categories
GRC (16th)
 

Mindshare comparison

As of March 2025, in the Cloud-Native Application Protection Platforms (CNAPP) category, the mindshare of SentinelOne Singularity Cloud Security is 2.9%, up from 1.2% compared to the previous year. The mindshare of Check Point CloudGuard CNAPP is 3.3%, up from 3.3% compared to the previous year. The mindshare of Runecast is 0.1%, down from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud-Native Application Protection Platforms (CNAPP)
 

Featured Reviews

Andrew W - PeerSpot reviewer
Tells us about vulnerabilities as well as their impact and helps to focus on real issues
Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.
Bart Coddens - PeerSpot reviewer
Evolved cloud security with active monitoring but needs interface consistency
The user interface needs work. Sometimes, it is a transition from the old tool to the new CNAPP Two that I currently have, and remnants of the old environment can still be detected. I require consistency in the user interface to ensure everything is streamlined into the same look and feel. More work is needed in fine-tuning the threat data towards your CSPM and activity logs, aligning them with business intelligence, which requires a cohesive console interface. My assessment of CloudGuard CDRs in intrusion detection and threat hunting capabilities is that it still needs some work. All the threat data that comes in, you need to fine tune it a bit.
Burak AKCAGUN - PeerSpot reviewer
Helps with risk assessments for containers, assessing security, and ensuring container compliance
I rate the overall product a nine out of ten. Customers can conveniently view all companies in a single dashboard if they have different companies. This feature eliminates the need for different solutions and separate installations. Moreover, the solution extends beyond servers, encompassing various platforms such as VMware and Kubernetes. Additionally, end-users can install the solution from their client's perspective.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution helped free other staff to work on other projects or other tasks. We basically just had to do a bunch of upfront configuring. With it, we do not have to spend as much time in the console."
"They're responsive to feature requests. If I suggest a feature for Prisma, I will need to wait until the next release on their roadmap. Cloud Native Security will add it right away."
"SentinelOne Singularity Cloud Security has saved up to 50 percent in engineering time."
"It saves time, makes your environment more secure, and improves compliance. PingSafe helps with audits, ensuring that you are following best practices for cloud security. You don't need to be an expert to use it and improve your security."
"Cloud Native Security's evidence-based reporting allows us to prioritize issues by understanding their impact, helping us resolve the most important problems first."
"The most valuable feature of SentinelOne Singularity Cloud Security is its advanced AI and machine learning capabilities, which allow it to identify and respond to threats in real time."
"We noted immediate benefits from using the solution."
"The cloud misconfiguration is the most valuable feature."
"We can monitor each activity from our mobile devices, so there is complete visibility of our cloud traffic flows, with threat intelligence provided by Check Point."
"The ability to drill down to individual hosts on an account and see which ones are affected is valuable."
"We have more visibility than ever before, appreciating the valuable and proactive insight that we receive from the platform."
"I love the work involved in maintaining and scaling security services and configurations across multiple public clouds using this solution, versus using native native cloud security controls. It is so much better. The different cloud platforms all have their own way that they handle a lot of the stuff that Dome9 handles. Even within their platform, they are in a lot of disparate places, e.g., in AWS, there are five different tools. You have to jump between them to get the same information that you can just pull in automatically on Dome9, which is just one platform. We are using multiple platforms, so that makes it even more complicated and time consuming if you had to just rely on them to get all of your information. Whereas, it's all just summarized and put together on the Dome9 end."
"Assets Management as it provide complete visibility of our workload inkling EC2 instance or Serverless"
"It has an analytics service that does research for us."
"The administration portal panel is very intuitive."
"It's helped with misconfigurations."
"Runecast is a good partner for VMware. Once we have installed it, we can see all the problems and issues. It also has VMware knowledge-based articles."
 

Cons

"SentinelOne Singularity Cloud Security has limited legacy system support and may not fully support older operating systems or legacy environments."
"A few YouTube videos could be helpful. There isn't a lot of information out there to look at."
"Some of the navigation and some aspects of the portal may be a little bit confusing."
"We've found a lot of false positives."
"I would like PingSafe's detections to be openly available online instead of only accessible through their portal. Other tools have detections that are openly available without going through the tool."
"One of the issues with the product stems from the fact that it clubs different resources under one ticket."
"PingSafe can be improved by developing a comprehensive set of features that allow for automated workflows."
"The area of improvement is the cost, which is high compared to other traditional endpoint protections."
"I would like CloudGuard's pricing to be cheaper, but I think that's impossible. The pricing is the only thing I think they can improve."
"Automation and advanced threat prevention have room for improvement."
"Integration could be improved."
"You do need to pay extra in order to get better support."
"I would like to see improvements in the vulnerability assessments in terms of how the solution discovers vulnerabilities or compromised workloads. Also, customizable reports would be nice."
"It feels somewhat fractured to me. I haven't grasped all the parts yet, and better integration would make CNAPP most valuable."
"The biggest thing is the documentation aspect of Dome9 is a little lacking. They were purchased by Check Point about a year and a half to two years ago. When they integrated into Check Point's support system, a lot of the documentation that they had previously got mangled in the transition, e.g., linking to stuff on the Dome9 website that no longer exists. There are still a lot of spaces with incomplete links and stuff that is not as fully explained as it could be."
"Adding a feature that allows me to easily identify the changes that have been made to the CIS benchmark and update my own policy accordingly would be a valuable addition to Check Point CloudGuard Posture Management."
"The product lacks network assessment capabilities. We cannot view our network assets or scan switches, routers, or IPs for vulnerabilities and issues."
 

Pricing and Cost Advice

"Singularity Cloud Workload Security's licensing and price were cheaper than the other solutions we looked at."
"I would rate the cost a seven out of ten with ten being the most costly."
"It is cost-effective compared to other solutions in the market."
"I wasn't sure what to expect from the pricing, but I was pleasantly surprised to find that it was a little less than I thought."
"While I'm slightly out of touch with pricing, I know SentinelOne is much cheaper than other products."
"The licensing is easy to understand and implement, with some flexibility to accommodate dynamic environments."
"I am personally not taking care of the pricing part, but when we moved from CrowdStrike to PingSafe, there were some savings. The price of CrowdStrike was quite high. Compared to that, the price of PingSafe was low. PingSafe is charging based on the subscription model. If I want to add an AWS subscription, I need to pay more. It should not be based on subscription. It should be based on the number of servers that I am scanning."
"It is not that expensive. There are some tools that are double the cost of PingSafe. It is good on the pricing side."
"We have the enterprise-level license and we renew it annually because it is worth the cost."
"The licensing and costs are straightforward, as they have a baseline of 100 workloads (number of instances) within one license with no additional nor hidden charges. If you want to have 200 workloads under Dome9, then you need to take out two licenses for that. Also, it does not have any impact on cloud billing, as data is shared using the API call. This is well within the limit of free API calls provided by the cloud provider."
"Right now, we have licenses on 500 machines, and they are not cheap."
"In the beginning, the price of Dome9 was cheap, whereas now it is not."
"The price is on the higher end."
"​They support either annual licensing or hourly. At the time of our last negotiation, it was either one or the other, you could not mix or match. I would have liked to mix/match. ​"
"The pricing is extremely competitive."
"Check Point CloudGuard Posture Management is always known as a good solution but an expensive one. When you're using Cisco, Check Point, or Palo Alto, you know that you will pay more, but you know that it will work."
"Runecast's pricing is cheaper than that of its competitors."
report
Use our free recommendation engine to learn which Cloud-Native Application Protection Platforms (CNAPP) solutions are best for your needs.
841,656 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
15%
Manufacturing Company
9%
Government
5%
Computer Software Company
15%
Financial Services Firm
14%
Manufacturing Company
8%
University
6%
No data available
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about PingSafe?
The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...
What is your experience regarding pricing and costs for PingSafe?
It is cost-effective compared to other solutions in the market.
What needs improvement with PingSafe?
In version 2, a lot of rules have been deployed for Kubernetes security and CDR, which makes a lot of issues of criti...
What do you like most about Runecast?
Runecast is a good partner for VMware. Once we have installed it, we can see all the problems and issues. It also has...
What is your experience regarding pricing and costs for Runecast?
Runecast's pricing is cheaper than that of its competitors.
What needs improvement with Runecast?
The product lacks network assessment capabilities. We cannot view our network assets or scan switches, routers, or IP...
 

Also Known As

PingSafe
Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence
Runecast Analyzer
 

Overview

 

Sample Customers

Information Not Available
Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners
Our customers tell us regularly how Runecast benefits CIOs, CISOs, and both Security and Operations teams across verticals with a proactive approach that results in major time and cost savings, increased uptime and security standards complianceSuccess Highlight 75-85% troubleshooting time savings – Kiel Municipal Hospital90% time savings on reactive troubleshooting – Near East Bank90% time savings in upgrade planning– FLEXdata80% reduction in monthly incidents and issues – University of St Andrews78,000 EUR/year minimum annual cost savings – Notino100s of hours saved on security compliance with remediation scripts alone – Kiel Municipal Hospital75% time saved on troubleshooting and root cause analysis – de Volksbank
Find out what your peers are saying about Wiz, Palo Alto Networks, SentinelOne and others in Cloud-Native Application Protection Platforms (CNAPP). Updated: March 2025.
841,656 professionals have used our research since 2012.