Try our new research platform with insights from 80,000+ expert users

Check Point CloudGuard CNAPP vs SUSE NeuVector comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 16, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

SentinelOne Singularity Clo...
Sponsored
Ranking in Container Security
2nd
Ranking in Cloud Workload Protection Platforms (CWPP)
4th
Average Rating
8.8
Reviews Sentiment
7.9
Number of Reviews
107
Ranking in other categories
Vulnerability Management (6th), Cloud and Data Center Security (5th), Cloud Security Posture Management (CSPM) (3rd), Cloud-Native Application Protection Platforms (CNAPP) (3rd), Compliance Management (3rd)
Check Point CloudGuard CNAPP
Ranking in Container Security
7th
Ranking in Cloud Workload Protection Platforms (CWPP)
6th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
71
Ranking in other categories
Vulnerability Management (9th), Cloud and Data Center Security (9th), Cloud Security Posture Management (CSPM) (5th), Cloud-Native Application Protection Platforms (CNAPP) (5th), Data Security Posture Management (DSPM) (4th), Compliance Management (6th)
SUSE NeuVector
Ranking in Container Security
21st
Ranking in Cloud Workload Protection Platforms (CWPP)
18th
Average Rating
7.8
Reviews Sentiment
7.3
Number of Reviews
8
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of March 2025, in the Container Security category, the mindshare of SentinelOne Singularity Cloud Security is 2.1%, up from 1.1% compared to the previous year. The mindshare of Check Point CloudGuard CNAPP is 2.0%, down from 2.1% compared to the previous year. The mindshare of SUSE NeuVector is 3.4%, down from 4.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Container Security
 

Featured Reviews

Andrew W - PeerSpot reviewer
Tells us about vulnerabilities as well as their impact and helps to focus on real issues
Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.
Bart Coddens - PeerSpot reviewer
Evolved cloud security with active monitoring but needs interface consistency
The user interface needs work. Sometimes, it is a transition from the old tool to the new CNAPP Two that I currently have, and remnants of the old environment can still be detected. I require consistency in the user interface to ensure everything is streamlined into the same look and feel. More work is needed in fine-tuning the threat data towards your CSPM and activity logs, aligning them with business intelligence, which requires a cohesive console interface. My assessment of CloudGuard CDRs in intrusion detection and threat hunting capabilities is that it still needs some work. All the threat data that comes in, you need to fine tune it a bit.
Danie Joubert - PeerSpot reviewer
Good value for money; great for policy management
Our model of deployment for this solution is on-premises. For people looking into this solution and trying to use it for the first time, I'd say make your life easier by using the SUSE product as well on top of your community scale stack. That makes your integration points a lot easier and smoother. I would also say during your initial setup, make sure that your clusters are already in terms of the capabilities with the version required. I would rate this solution an eight, on a scale from one to 10, with one being the worst and 10 being the best. The reason for this rating is that what they offer is solid, but they could expand their service and add more features just to make more things integrated into an enterprise itself.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"They're responsive to feature requests. If I suggest a feature for Prisma, I will need to wait until the next release on their roadmap. Cloud Native Security will add it right away."
"Singularity Cloud Security's most valuable features are its ease of scalability and comprehensive security measures."
"Support has been very helpful and provides regular feedback and help whenever needed. They've been very useful."
"The most valuable aspects of PingSafe are its alerting system and the remediation guidance it provides."
"The multi-cloud support is valuable. They are expanding to different clouds. It is not restricted to only AWS. It allows us to have different clouds on one platform."
"Cloud Native Security's most valuable features include cloud misconfiguration detection and remediation, compliance monitoring, a robust authentication security engine, and cloud threat detection and response capabilities."
"Singularity Cloud's ability to create custom correlation searches and reduce noise is highly valuable."
"We really appreciate the Slack integration. When we have an incident, we get an instant notification. We also use Joe Sandbox, which Singularity can integrate with, so we can verify if a threat is legitimate."
"It is able to bring visibility into that cloudy space where the security departments do not really see what is happening on the DevOps side. It brings visibility, security control, and standardization."
"The platform's full visibility and control across many cloud environments allows us to effectively monitor the security posture, uncover vulnerabilities, and consistently enforce security standards."
"We know the vulnerability in advance, so we can take some action for that vulnerability."
"The reporting is quite good. It is the most powerful aspect of this solution."
"It offers advanced detection of threats that can harm data from the cloud database."
"Overall, it provides good security."
"Dome9 has improved our organization; we have a centralized view of all of our assets, our visible assets our ECs, our inventories. And then all the policies are centralized, and it is easier to manage because everything is one component console."
"The valuable features of Checkpoint CloudGuard CNAPP include its automation capabilities."
"The features of image scanning and anti-malware are really valuable."
"The initial setup is quite good, it's straightforward."
"The solution includes many features, not only for container and client security but also for scanning nodes, networks, and vulnerabilities."
"The solution includes many features, not only for container and client security but also for scanning nodes, networks, and vulnerabilities."
"The most valuable feature of SUSE NeuVector is the performance, deployment, and cost."
"The UI has a lot of features."
"When it comes to the price, we got a really good deal from the vendor instantly."
"The tool's deployment is simple. Also, I am impressed with its risk capabilities."
 

Cons

"I'd like to see better onboarding documentation."
"In some cases, the rules are strictly enforced but do not align with real-world use cases."
"Customized queries should be made easier to improve PingSafe."
"I believe the UI/UX updates for SentinelOne Singularity Cloud Security have room for improvement."
"In the Analytics section, there is a tab for showing the severity of open issues by day. There are three options: by week, by month, and for more than thirty days. However, despite being aware of many issues open for more than thirty days, it shows no data available."
"We wanted it to provide us with something like Claroty Hub in AWS for lateral movement. For example, if an EC2 instance or a virtual machine is compromised in a public subnet based on a particular vulnerability, such as Log4j, we want it to not be able to reach some of our databases. This kind of feature is not supported in PingSafe."
"A two-month grace period for extended searches would be a valuable improvement."
"PingSafe takes four to five hours to detect and highlight an issue, and that time should be reduced."
"Improvements can be made to the user interface."
"The shift left part is not yet at a maturity level I desire. I need more integration from the code-to-cloud principle."
"The rules are not well-tuned, and many of them generate false positives or nonsensical results."
"You do need to pay extra in order to get better support."
"Currently, I would like this solution extended to cellular devices or tablets."
"The biggest thing is the documentation aspect of Dome9 is a little lacking. They were purchased by Check Point about a year and a half to two years ago. When they integrated into Check Point's support system, a lot of the documentation that they had previously got mangled in the transition, e.g., linking to stuff on the Dome9 website that no longer exists. There are still a lot of spaces with incomplete links and stuff that is not as fully explained as it could be."
"I strongly advise that the multi-layered security system of Check Point often undergoes updates and new versions keep coming."
"The technical support could be better, but I do not know of any other needed improvements."
"SUSE NeuVector could improve by increasing its visibility into other elements of the DevSecOps pipeline. Additionally, scanning around infrastructure would be helpful."
"However, I found that the support in Egypt was not very qualified, and there was a need to upgrade to a higher support layer to solve my issues."
"The tool should offer seamless integration of other security tools while in a hybrid environment."
"The image-scanning features need improvement."
"I would say that this solution should improve monitoring and reporting. I would also like to see more integrations so that we could essentially make it a part of a developing pipeline."
"SUSE NeuVector should provide more security protection rules and better container image scanning."
"Using a node port instead of a cluster IP is less ideal when implementing federation features between two clusters and could be improved."
"We are also working with IaaS VMS, but NeuVector doesn't support virtual machines."
 

Pricing and Cost Advice

"I am not involved in the pricing, but it is cost-effective."
"SentinelOne offers excellent pricing and licensing options."
"The price depends on the extension of the solution that you want to buy. If you want to buy just EDR, the price is less. XDR is a little bit more expensive. There are going to be different add-ons for Singularity."
"For pricing, it currently seems to be in line with market rates."
"SentinelOne Singularity Cloud Security is costly."
"It is cheap."
"The features included in PingSafe justify its price point."
"It is not that expensive. There are some tools that are double the cost of PingSafe. It is good on the pricing side."
"Its price is very fair."
"The pricing is tremendous and super cheap. It is shockingly cheap for what you get out of it. I am happy with that. I hope that doesn't get reported back and they increase the prices. I love the pricing and the licensing makes sense. It is just assets: The more stuff that you have, the more you pay."
"In the beginning, the price of Dome9 was cheap, whereas now it is not."
"Check Point CloudGuard Posture Management is always known as a good solution but an expensive one. When you're using Cisco, Check Point, or Palo Alto, you know that you will pay more, but you know that it will work."
"I suggest that you pay attention to the product pricing because while there are no tricks, and the licensing model is transparent, the final numbers may surprise you."
"The price is on the higher end."
"​They support either annual licensing or hourly. At the time of our last negotiation, it was either one or the other, you could not mix or match. I would have liked to mix/match. ​"
"I would advise taking into account the existing number of devices and add a forecast of the number of devices to be added in the coming year or two, to obtain better pricing."
"Licensing fees are paid yearly."
"The solution's pricing could be better. The cost of a subscription is calculated on the basis of work."
"SUSE NeuVector is an open-source solution."
"The price of SUSE NeuVector is low. There is an additional cost for support."
report
Use our free recommendation engine to learn which Container Security solutions are best for your needs.
842,651 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
16%
Manufacturing Company
9%
Government
5%
Computer Software Company
16%
Financial Services Firm
14%
Manufacturing Company
9%
University
6%
Computer Software Company
19%
Financial Services Firm
15%
Manufacturing Company
9%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about PingSafe?
The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...
What is your experience regarding pricing and costs for PingSafe?
It is cost-effective compared to other solutions in the market.
What needs improvement with PingSafe?
In version 2, a lot of rules have been deployed for Kubernetes security and CDR, which makes a lot of issues of criti...
What do you like most about NeuVector?
The most valuable feature of SUSE NeuVector is its run-time security.
What is your experience regarding pricing and costs for NeuVector?
SUSE NeuVector is an open-source solution. You have to pay for the support.
What needs improvement with NeuVector?
One area for improvement is NeuVector's ability to import CVEs from different sources. Additionally, using a node por...
 

Also Known As

PingSafe
Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence
NeuVector
 

Overview

 

Sample Customers

Information Not Available
Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners
Figo, Clear Review, Arvato Bertelsmann, Experian, Chime
Find out what your peers are saying about Check Point CloudGuard CNAPP vs. SUSE NeuVector and other solutions. Updated: March 2025.
842,651 professionals have used our research since 2012.