Try our new research platform with insights from 80,000+ expert users

Check Point CloudGuard CNAPP vs Tenable Security Center comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 30, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Ranking in Vulnerability Management
27th
Average Rating
9.6
Reviews Sentiment
8.1
Number of Reviews
2
Ranking in other categories
Continuous Threat Exposure Management (CTEM) (6th)
Check Point CloudGuard CNAPP
Ranking in Vulnerability Management
9th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
71
Ranking in other categories
Cloud and Data Center Security (9th), Container Security (7th), Cloud Workload Protection Platforms (CWPP) (6th), Cloud Security Posture Management (CSPM) (5th), Cloud-Native Application Protection Platforms (CNAPP) (5th), Data Security Posture Management (DSPM) (4th), Compliance Management (6th)
Tenable Security Center
Ranking in Vulnerability Management
4th
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
54
Ranking in other categories
Cloud Security Posture Management (CSPM) (11th), Risk-Based Vulnerability Management (1st)
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
Bart Coddens - PeerSpot reviewer
Evolved cloud security with active monitoring but needs interface consistency
The user interface needs work. Sometimes, it is a transition from the old tool to the new CNAPP Two that I currently have, and remnants of the old environment can still be detected. I require consistency in the user interface to ensure everything is streamlined into the same look and feel. More work is needed in fine-tuning the threat data towards your CSPM and activity logs, aligning them with business intelligence, which requires a cohesive console interface. My assessment of CloudGuard CDRs in intrusion detection and threat hunting capabilities is that it still needs some work. All the threat data that comes in, you need to fine tune it a bit.
OndrejKOVAC - PeerSpot reviewer
Empower clients with risk-based vulnerability management through continuous workflow and valuable insights
Tenable Security Center could improve by implementing more dynamic data displays and translating reports into European languages. This is especially relevant in Central Eastern Europe, where clients often require reports in local languages. Additionally, the licensing model could be more flexible for managed security providers, similar to a pay-as-you-go model.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Zafran has become an indispensable tool in our cybersecurity arsenal."
"Zafran is an excellent tool."
"The various CNAPP modules have granted more visibility of our cloud applications to our system engineers and developers."
"Gives us centralized firewall management for both Windows and Linux distros. Also provides a clear view of the security configurations and connections across environments (DMZ, external and internal networks)."
"The most valuable features are the ability to create pipeline rules, the enhanced NetOps security, and the deep visibility across our entire infrastructure."
"The initial setup is easy and not complex at all."
"The identification of misconfigurations, maintenance of compliance in a centralized way, and visibility across all the multi-cloud tenants are the key functionalities."
"Cloud security posture management is the feature we've been using the longest."
"The platform's full visibility and control across many cloud environments allows us to effectively monitor the security posture, uncover vulnerabilities, and consistently enforce security standards."
"Dome9 continues to be a major piece of our cloud security architecture and has given our senior leadership team a high degree of confidence in our ability to protect our cloud environment."
"The feature we've liked most recently was being able to take the YARA rules from FireEye and put them into Tenable's scan for the most recent SolarWinds exploit. That was really useful."
"Overall, I rate the solution 9.8 out of 10."
"What is useful to me is being able to fulfill very customized scanning policies. In the clinical environment, because of vendor control, we can't perform credential-vulnerability scanning. And network scans, which I've done before, can cause a lot of impact. Being able to create very customized policies to be able to routinely scan and audit our clinical networks, while simultaneously not causing impact, is important to us."
"The Auto-Remediate feature is good."
"The most valuable feature is the automatic and periodic management of security scans, along with the ability to consolidate all information into a single dashboard."
"Tenable.sc is user-friendly."
"The most valuable features of Tenable SC are the reports and the dashboards."
"The product is our second solution, and we are happy that it meets our requirements."
 

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"CloudGuard CNAPP could be enhanced by increasing the number of components that run natively on Azure."
"It feels somewhat fractured to me. I haven't grasped all the parts yet, and better integration would make CNAPP most valuable."
"It does not support on-premise deployments such as VMware Tanzu, and this has been a major drawback when it comes to integrations with some applications."
"Timely updates and upgrades to meet modern technological changes could help improve performance and limit the chances of downtime."
"The costs are high."
"The reporting dashboard responds slowly, which leads to late report compilation."
"The costs are really high if you want the entire capabilities of the platform."
"I would like CloudGuard's pricing to be cheaper, but I think that's impossible. The pricing is the only thing I think they can improve."
"The reports and plugins for reports and scans could benefit from enhancements."
"The reports and plugins for reports and scans could benefit from enhancements."
"A good plugin editor would be a good additional option for the Security Center."
"Security can always be improved."
"In terms of configuration, there is some level of flexibility that we are not able to achieve."
"It's good at creating information, it's good creating dashboards, it's good at creating reports, but if you want to take that reporting metadata and put it into another tool, that is a little bit lacking."
"We experienced some difficulties with the solution’s support."
"It's important for Tenable to catch up on testing capabilities that are present in solutions like Qualys."
 

Pricing and Cost Advice

Information not available
"The pricing is tremendous and super cheap. It is shockingly cheap for what you get out of it. I am happy with that. I hope that doesn't get reported back and they increase the prices. I love the pricing and the licensing makes sense. It is just assets: The more stuff that you have, the more you pay."
"The license for CloudGuard Posture Management is about $80 a year, and it's based on your cloud footprint, not the number of users. So you could have a million users, and it doesn't matter."
"The licensing and costs are straightforward, as they have a baseline of 100 workloads (number of instances) within one license with no additional nor hidden charges. If you want to have 200 workloads under Dome9, then you need to take out two licenses for that. Also, it does not have any impact on cloud billing, as data is shared using the API call. This is well within the limit of free API calls provided by the cloud provider."
"I suggest that you pay attention to the product pricing because while there are no tricks, and the licensing model is transparent, the final numbers may surprise you."
"CloudGuard is fairly priced."
"In the beginning, the price of Dome9 was cheap, whereas now it is not."
"Everything in this field is very expensive."
"We have the enterprise-level license and we renew it annually because it is worth the cost."
"The tool provides competitive pricing."
"For 500 users the licensing fee is roughly $100,000."
"Tenable is open-source."
"Tenable.sc is more expensive than its competitors."
"I would rate the pricing a nine out of ten, where ten is expensive. It is the most expensive tool my company is using."
"The tool costs around 15,000 Saudi riyals monthly."
"We're a Fortune 500 company... our licensing costs [are] in the seven figures."
"The licensing costs for this solution are approximately $100,000 US, and I think that covers everything."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
842,767 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
11%
University
6%
Retailer
6%
Computer Software Company
16%
Financial Services Firm
14%
Manufacturing Company
9%
University
6%
Educational Organization
21%
Computer Software Company
11%
Financial Services Firm
11%
Government
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
Pricing for Zafran Security is not expensive. We have a contract for five years, and the cost is lower than other too...
What needs improvement with Zafran Security?
I would like to see an integration with Check Point firewalls. It's essential for us and they are currently working o...
What is your primary use case for Zafran Security?
We use Zafran Security for threat prioritization. We establish priority to understand which risks should be patched o...
What do you like most about Tenable SC?
The tool's dashboard and reporting capabilities match our company's needs since we are able to modify the basic view ...
What is your experience regarding pricing and costs for Tenable SC?
Tenable Security Center is quite expensive, particularly for the CEE region, causing us to lose cases due to its pric...
What needs improvement with Tenable SC?
Tenable Security Center could improve by implementing more dynamic data displays and translating reports into Europea...
 

Also Known As

No data available
Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence
Tenable.sc, Tenable Unified Security, Tenable SecurityCenter
 

Overview

 

Sample Customers

Information Not Available
Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners
IBM, Sempra Energy, Microsoft, Apple, Adidas, Union Pacific
Find out what your peers are saying about Check Point CloudGuard CNAPP vs. Tenable Security Center and other solutions. Updated: February 2025.
842,767 professionals have used our research since 2012.