Sr Manager Engineering at a consumer goods company with 1,001-5,000 employees
Real User
Top 20
2024-11-27T11:52:12Z
Nov 27, 2024
We are dealing with customer data, so we use a firewall to cover all API calls. If you access our sites, it will be via Check Point Firewall. Or if you send a file, it will go via Check Point Firewall.
Our primary use case for CloudGuard Network Security is to secure the cloud environment where we host our backend systems. The platform helps to guard the network security of our infrastructure by securing the traffic and preventing cyber threats. It also ensures compliance with industry regulations. Moreover, it integrates easily with AWS and Google Cloud, allowing us to apply a unified security policy throughout our cloud infrastructure.
Security Solution Architect at a tech consulting company with 10,001+ employees
Real User
Top 20
2024-08-21T12:16:48Z
Aug 21, 2024
We use the solution to secure cloud infrastructures and manage incoming and outgoing traffic. Our clients operating in hybrid environments must ensure robust security for their applications and data.
Sr network engineer at a outsourcing company with 10,001+ employees
Real User
Top 5
2024-07-24T10:04:00Z
Jul 24, 2024
The solution is primarily used for security. We had 48 to 50 firewalls for data center segmentation. All data centers were fitted into multiple zones. Each zone had a different data classification. We had the firewalls deployed on several overseas remote sites.
When we build security for companies, we use the cloud of services for building and configuring networks and Security on the company Network, including EDR or XDR on the computers, routers, and switches.
Manager - Enterprise Architecture and Cloud at Axis Bank
Real User
Top 10
2024-05-22T11:10:00Z
May 22, 2024
We are using Check Point CloudGuard as a firewall. Along with the firewall, we have incorporated multiple blades. Initially, the firewall used to be a single security device, and along with that, we required antibot, antivirus, IPS, and IDS devices. Check Point CloudGuard is a combination of all the devices and functionalities in a single device. It is a next-generation firewall. The main use case of this firewall is to protect our entire cloud and provide perimeter cloud security at L3 and L4 levels.
Learn what your peers think about Check Point CloudGuard Network Security. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
I use CloudGuard Network Security to enhance our cloud exchange points' security. Our customers can seamlessly connect across multiple clouds within the region, and CloudGuard provides next-generation firewall services to ensure their data and applications are protected.
Senior IT Analyst at a manufacturing company with 10,001+ employees
Real User
Top 20
2024-03-15T12:55:00Z
Mar 15, 2024
My main use cases for CloudGuard Network Security are to scale the technology for protecting and filtering traffic within AWS and Azure environments. The main challenge I was looking to address by implementing CloudGuard Network Security was the need to establish a firewall on our cloud perimeter for enhanced security.
Sr Security Engineer at a computer software company with 51-200 employees
MSP
Top 10
2024-03-15T12:39:00Z
Mar 15, 2024
Many traditional on-premise customers transitioning to the cloud often prioritize solutions like CloudGuard, especially when dealing with scale sets and clusters. These customers are accustomed to constructing their own network infrastructure and are drawn to CloudGuard for its compatibility with these setups. This primary use case highlights the appeal of CloudGuard for organizations seeking to maintain control over their network security while migrating to cloud environments.
We utilize CloudGuard Network Security as virtual appliances deployed within virtual machines, acting as firewalls at the perimeter of our data center in QSaver. These virtual appliances safeguard all internet access originating from the virtual machines at our factory in Curitiba, Brazil.
We mainly use the firewall part. We use it to interface with our cloud environments. We have a CloudGuard firewall in place, and we have Azure or AWS networks at the backend. We use it to secure workloads and be a bridge to our on-prem as a hybrid solution.
Director of IT Operations at a tech services company with 10,001+ employees
Real User
Top 10
2024-03-14T16:37:00Z
Mar 14, 2024
We use it to secure our network. We use it to manage our firewalls and some of the other services that we have with them. By implementing CloudGuard Network Security, we mainly wanted visibility.
Security lead at a manufacturing company with 10,001+ employees
Real User
Top 20
2024-03-07T23:53:00Z
Mar 7, 2024
We've implemented CloudGuard in Azure, configuring it as firewalls and file management systems. These functionalities skillfully oversee our API application and various aspects of our data center environment. Our entire infrastructure, hosted within Azure's data centers, is effectively managed by CloudGuard, ensuring comprehensive security coverage.
IT Advisor at a manufacturing company with 10,001+ employees
Real User
Top 20
2024-03-07T22:23:00Z
Mar 7, 2024
We have deployed CloudGuard in our environment to protect conversations between different network segments. For example, we can protect north-south traffic and east-west traffic. We deploy our production workload in different cloud provider environments, such as GCP, Azure, AWS, and IBM.
Senior Enterpirse Security Architect at a healthcare company with 11-50 employees
Real User
Top 20
2024-03-07T22:02:00Z
Mar 7, 2024
When we began our digital transformation, we had already invested in on-premises Check Point firewalls. We desired the same level of security in the cloud along with the elasticity that the cloud demands.
Senior Network Security Engineer at a manufacturing company with 10,001+ employees
Real User
Top 10
2024-03-07T19:09:00Z
Mar 7, 2024
We are using it for in and out of our cloud from on-premises. Security from our SD-WAN and express route connectivity is our main use case. We also have vendor integrations. SAP RISE was the big one that we recently had where we were using dedicated CloudGuard network gateways for straight vendor implementations.
I can easily secure communication between our Azure Stack Hub and local Azure environments using CloudGuard gateways. This ensures that when I deploy applications in Azure, I can securely access databases and other resources in my local environment through a VPN channel. It is a straightforward way to keep everything protected as I work between the cloud and on-premises infrastructure.
Our use case is simple. We utilize CloudGuard Network Security with a bridge to connect all components in the cloud directly to the on-premise. By establishing peering with the bridge, we route traffic to the Google Cloud-based cluster. We apply our standard on-premise environment rules to CloudGuard, utilizing threat prevention, EPS, etc.
Sr Network Engineer at a comms service provider with 1,001-5,000 employees
Real User
Top 20
2024-03-03T12:08:00Z
Mar 3, 2024
The solution helps protect network security by offering threat prevention, addressing vulnerabilities, and utilizing blades. We use it for the protection of our internal services. We're a Telco company, our internal users are on the machines. We also have some external services that we protect. We protect our customers and our public cloud with it. VMware is our public cloud provider.
Global network and telecom director at a hospitality company with 10,001+ employees
Real User
Top 20
2024-03-03T07:49:00Z
Mar 3, 2024
I use it to protect our public cloud workloads today. It safeguards them directly from the internet and also from the corporate network. We have interconnected our Azure environments with our on-premises network, including our data centre. CloudGuard Network Security helps protect workloads within Azure from both the corporate network and the internet.
Solution Architect at BNC Business Network Communications AG
Real User
Top 10
2024-02-26T15:50:00Z
Feb 26, 2024
Our use case for the product is to prevent or protect the file server in the Cloud. The plan is to gradually integrate more solutions behind it. We work with Azure and AWS.
We use the solution for the ingress and egress, often for VMSS auto-scaling groups. This involves linking on-premises to the cloud and managing incoming traffic within the same cloud environment.
EVP, chief product and revenue officer at BBT.live
Real User
Top 10
2024-02-26T15:44:00Z
Feb 26, 2024
We offer a full security and connectivity solution leveraging SD-WAN and SASE technologies. We partner with service integrators and providers who, in turn, sell the solution to business customers. Our solution is built on SD-WAN and SASE, facilitating the connection of offices and home users to the organization through various WAN connections. By aggregating multiple connections over the Internet, we deliver security and connectivity to meet the needs of retail and finance. We can help any vertical that needs a connection between the branch and the cloud.
We place our CloudGuard Network Security gateways at the front on Azure, positioned with a load balancer. The configuration includes a load balancer and gateways on a virtual automation scale set in Azure.
Network security at a tech services company with 5,001-10,000 employees
Real User
Top 20
2024-02-26T15:21:00Z
Feb 26, 2024
We utilize CloudGuard Network Security for internet surfing and handle inter-sector traffic between VPCs. Specifically, we have over 200 accounts in AWS, each with its own VPC. The solution interconnects all the regions.
Network and Security Manager at a financial services firm with 1,001-5,000 employees
Real User
Top 20
2024-02-26T14:59:00Z
Feb 26, 2024
We are using it for network security. The whole reason we got it was to expand and make an extension to the Azure Cloud so that we could establish services that would make a link between the on-prem and the cloud. That was the goal.
Platform Lead at a financial services firm with 5,001-10,000 employees
Real User
Top 20
2024-02-26T14:45:00Z
Feb 26, 2024
For the Azure platform, especially Azure endpoint protections and other network aspects, we utilize CloudGuard Network Security to secure the egress connection. This includes configuring and maintaining express route connectivity between on-premises and Azure.
Senior Network Security Engineer at Atos IT Solutions and Services A/S
User
Top 20
2023-12-28T13:20:00Z
Dec 28, 2023
The architecture proposed is based on Microsoft’s Cloud Adoption Framework enterprise-scale landing zone architecture. Enterprise-scale is an architectural approach and a reference implementation that enables effective construction and operationalization of landing zones on Azure at scale. We're using CloudGuard solution in a NorthBound - SouthBound design to protect and filter both incoming and outgoing traffic. Also, we are using a VMSS solution deployed in Azure, with a minimum of two instances
Principle Network and Security Consultant at Vodafone Global Enterprise
Consultant
Top 20
2023-10-12T16:17:00Z
Oct 12, 2023
We use Check Point firewalls and SMS servers in on-prem DC and in multi-cloud environments extensively. These are used to protect the perimeter, DMZ, and internal network to protect and inspect network traffic. The firewalls are best of breed and provide extensive rich features and a diverse range of protection against DDoS, malware, ransomware, and zero-day attacks. Also, it is used for terminating client and mobile VPN tunnels, URL filtering, IDP, DLP, etc. The environment is Internal and a multi-tenant hosted for external clients which is a complex setup.
Delivery Executive at a tech services company with 10,001+ employees
Real User
Top 20
2023-05-01T08:03:00Z
May 1, 2023
I manage the delivery team of a tech services company. We implement and manage security systems for our clients. CloudGuard is a solution we deploy for larger enterprise clients.
This feature is integrated into the security solution of Check Point, and its CloudGuard flagship product is very valuable to our company. It has helped us to make posture, recommendations, and security improvements to the network of our Azure public cloud. We have been able to improve our current implementations and future deployments of networks in our infrastructure in the best way, making assessments that provide us with improvements that include building a more secure environment.
CloudGuard Network Security ensures that there is integrity and secure network services in the enterprise. It gives the IT team an opportunity to access and control the internet infrastructure in both on-premise and cloud-based services. The technical analysis and data assessment from all the sources enable us to protect our computing devices from cyber-attacks and minimize potential risks. The network security controls have enhanced efficiency and adequate security for implementing set projects and tasks.
Check Point CloudGuard Network Security is a security solution that provides advanced threat prevention, network security, and compliance enforcement for public cloud environments. It can be used to protect workloads in various cloud environments, such as different clouds. The primary use case of Check Point CloudGuard Network Security is to secure and protect workloads and applications running in the cloud by providing a multi-layered security approach that includes a firewall, intrusion prevention, anti-malware, and sandboxing capabilities.
Cloud Engineer at IT Quest Solutions|interglobalmsp
User
Top 5
2022-12-23T14:29:00Z
Dec 23, 2022
We recently migrated a certain number of servers to the Azure cloud. At the moment, we are in a hybrid state; the idea is to be 100% in the cloud soon. As a result, we also needed to build an infrastructure for our perimeter network that would supply all the needs of the company and its users. With this technology and Azure, we want to have all the vulnerabilities that arise under control to be able to attack them with this tool and its recommendations since the integration with Azure is very good and safe.
We have a constant need to evolve and are migrating towards the cloud due to greater availability and better benefits at the level of hardware and computing. With the understanding that we must have a faster, more efficient team with greater benefits when creating equipment or application services, we were looking for a solution with high user acceptance. We also wanted to meet the external and internal needs of the company and maintain solid corporate governance that includes offering the highest level of security standards. This product allowed us to create that level of security and develop natively in the cloud.
We use the solution for safeguarding the network security infrastructure. This has been one of the greatest achievements since we come across CloudGuard Network Security. It has launched effective security measures that can monitor security and provide feedback. Workflows across the company ecosystem have can flow smoothly without experiencing any challenges. The multi-channel security system monitors our cloud and hybrid servers. Transfer of files from the company database to the cloud servers goes through secure channels mapped by this platform.
In our company, we have infrastructure in both Microsoft Azure and on-premise. We wanted to centralize an environment of governance, control, and best practices, at the level of Microsoft Azure. We were able to implement Defender for the cloud at some point. However, we already had security products from Check Point. The idea was to centralize all our tools in the same environment to make it easier to support administration. With Check Point CloudGuard we have been able to successfully implement a layer of protection for our cloud and our on-premise environments.
Currently, we were counting on a hybrid cloud and we needed to integrate the latest generation of security. We came to lean towards one of the security leaders in the market. These powerful capabilities position it and allow us to increase cloud security elastically while keeping up with the dynamic requirements of our business. We use the cloud to integrate it into our hybrid cloud. It dynamically provides us with advanced security and consistent policy enforcement that automatically grows and scales with our cloud environment. With CloudGuard IaaS, we can easily protect workloads and applications.
Check Point CloudGuard Network Security helps resolve potential regulatory and compliance issues when moving to the cloud. The high-visibility rule base's granular approach helps us with potential security leaks and highlights items to focus on for immediate action. The functionality that we're using it for is the cloud firewall piece. For this reason, it was necessary to implement this tool in our organization and the results have been very positive, providing the necessary security.
Firewall Engineer at a logistics company with 1,001-5,000 employees
User
2021-09-30T06:28:00Z
Sep 30, 2021
We use a hybrid environment, so we have an on-premise data center and branch offices as well as resources in the cloud. On-premise is secured with different Check Point Gateways while for our security in the cloud we use Check Point Cloud Guard. Depending on the traffic, we use different Cloud Guard firewalls. External traffic is handled by using a scale-set that can adapt on the fly to increase/decrease the number of firewall instances. Internal traffic is handled by a normal Cloud Guard HA cluster with a certain amount of cores.
Security Platform Administrator at a tech services company with 501-1,000 employees
User
2021-07-23T13:48:00Z
Jul 23, 2021
I have been using Check Point CloudGuard for 3 years now. I use it in the financial sector, and use the gateways for perimeter security, east-west traffic inspections, and internet access. We have gateways for production, development, and outbound (internet access). The blades for IPS, FW, And URL filtering have been enabled with no problems. All the gateways are stable. We mostly use it for VPN site to site, and we can establish VPNs with Azure and other services.
Network, Systems and Security Engineer at SOLTEL Group
Real User
2021-05-12T10:55:00Z
May 12, 2021
We had a big problem with how to protect our host services, which are directly accessed via the cloud. We wanted to protect our organization tenant and workload from any next-generation attack. For this protection, we implemented the Check Point solution named CloudGuard Network. This NGFW is provided by Check Point and has all of the capabilities that are required to protect against next-generation attacks at the perimeter level. The modules or security features that we use are provided as part of the base license. These include VPN, IPS, Application Control, and Content Awareness. Together, these are strong and help to protect the organization.
Senior Manager at a financial services firm with 10,001+ employees
Real User
2021-05-07T09:54:00Z
May 7, 2021
As we are moving our workloads to the cloud, it means that we now have a need to protect our cloud infrastructure. This will ensure that our business is deploying products faster and with all of the required security. Our solution needs to be able to protect workloads hosted on multiple clouds with the required security control. The license should be a subscription-based model so that we can add or remove depending upon the requirement to scale. It needs to support a microservice platform such as Docker or another container, and it should be quick to deploy.
The perimeter firewall provides me control over my perimeter servers and devices. Current cloud applications are getting good protection from CASB solutions but they are limited to data leakage and application control. Beyond that, I require something to monitor my data that flows inside of my cloud application. Sophisticated threats, such as zero-day attacks, can't be controlled by CASB solutions. Instead, they require something that can work using artificial intelligence. They should have a correlation with machine learning algorithms to defend against today's attacks for my cloud applications.
CloudGuard is cloud-native security that secures your public, private, or hybrid environment under a unified platform, which can also be automated. It comes with multiple installation availabilities such as Software-as-a-Service(SaaS), Platform-as-a-Service(PaaS), Infrastructure-as-a-Service(IaaS), and more. This solution can be installed on leading Cloud Service Providers such as Amazon Web Services, Google Platform, and Microsoft Azure, as well as on other not-so-known CSPs such as OCI.
Information security officer at a tech services company with 1-10 employees
Real User
2021-03-15T16:32:48Z
Mar 15, 2021
We are a solution integrator and the Check Point CloudGuard Network is a product that I have experience with. We implement firewalls and other products for our customers.
DBA Team Lead at a tech services company with 51-200 employees
Real User
2021-03-08T07:36:00Z
Mar 8, 2021
We are a small consulting company. We have around 100 employees. We don't use advanced firewalls because we don't really have important data that can be hacked. Nobody is going to care about our data because it's only the HR department's timesheet data on our on-premise systems. The firewall is protecting remote access, allowing the employees to access our office environment. So sometimes employees connect to our systems which have some test systems on it. They run some tests about the consulting we've given to clients. That's all. We just have basic things on our firewall. Just two things are important for us - the site to site VPN, which we have with some customers, and the government site. That is important. That's why I want to change the firewall to a new and up-to-date one so maybe it will be an improvement to prevent some hackers.
We primarily use the solution when clients are for searching in the servers. We compare the solutions or servers that are available and we seek out new features for the new solutions for our customers. We're solution providers. This is one of the products we offer.
We integrate this solution, and we also provide the maintenance of the device. We are using this solution for those sites that are kind of medium in size and require a more complex solution but don't have too much space for big equipment.
Advisory Information Security Analyst at a financial services firm with 501-1,000 employees
Real User
2020-12-06T06:40:00Z
Dec 6, 2020
It is building the network infrastructure for our cloud environment around it. Primarily, the functionality that we are using it for is the firewall piece in the cloud. We have three different things going on right now. I think Dome9 is considered a part of the whole CloudGuard thing. We have AWS and Azure environments behind just straight up Check Point Firewalls. We are in the midst of deploying a new network in AWS that fully leverages the whole IaaS that they offer. Primarily, it's the firewall main piece. However, we are transitioning into using the scale-up, scale-down gateways, which are mostly the network security piece of it.
We mainly used CloudGuard for IPS and IDS in our AWS environment, and we also used it for additional logging to see what was going in and out of our network in AWS. We have very limited visibility, especially when it comes to logging, and AWS does not support IPS and IDS as of now.
We have an AWS environment with servers and resources. We also have a Cloud environment and CloudGuard is our solution to protect the internet access to and from the database environment. For example, servers on the AWS that need to do upgrades go to the internet and cross the CloudGuard solution. People that need to connect to the AWS environment, to a server are protected by CloudGuard. The environment is protected by CloudGuard. It's our perimeter firewall on the AWS environment.
Our company works in the area of developing and delivering online gambling platforms. The Check Point Next-Generation Firewalls are the core security solution that we use for the protection of our DataCenter environment located in Asia (Taiwan). The environment has about 50 physical servers as virtualization hosts, and we have two HA Clusters that consist of 2x5400 hardware appliances, managed by an OpenServer Security Management Server on a Virtual Machine (KVM), all running on R80.10 with the latest JumboHotfix. The Check Point Virtual Systems are activated on the NGFWs to logically divide the firewall into two parts. One is for serving internal, intra-VLAN traffic, and the other is for serving the external traffic coming from the Internet.
IT Security Manager at a retailer with 10,001+ employees
Real User
2020-09-15T11:13:00Z
Sep 15, 2020
We use CloudGuard IaaS for cloud security in AWS, and it serves all kinds of purposes for us. It could be internal segmentation between on-prem or between application VPCs, and it can also help us to provide perimeter security for those parts of the network that require internet access.
Cyber Security Manager at H2O Power Limited Partnership
Real User
2020-09-07T05:57:00Z
Sep 7, 2020
We use it as an edge firewall to our entire cloud environment. It protects our connections to all of our sites, to our cloud data center. And it's the internet edge, the protection mechanism between the internet and our network.
The main usage of the Check Point CloudGuard IaaS within our company is for the protection of our cloud assets. It is deployed on Google Cloud Platform with the help of the Firewall, Application Control, and Intrusion Prevention System software blades. In addition, we rely heavily on the GeoIP module to restrict undesired countries from accessing our services, as for now, you can't achieve it with the GCP firewall. There are about 30 Google Cloud projects of different sizes ranging from 10 to 250 virtual machines, and they are used for development, staging, production, etc. For every project, there is one dedicated scalable instance group of the Check Point CloudGuard IaaS gateways.
Senior System Engineer at a energy/utilities company with 201-500 employees
Real User
2020-07-28T16:32:00Z
Jul 28, 2020
It secures our assets in the cloud while providing access to applications in our vendor hosted data centers via IPSEC tunnels. We also use it for endpoint vpn for all our users. We have it deployed in our cloud and it forms the gateway for all external connectivity and access to the assets in the cloud. We also have a backup site to site connection with our on premise data center so in case the primary connection to the cloud fails we can quick fail over to this backup connection and business can continue as normal .
Senior Security Architect at Hexaware Technologies Limited
Vendor
2020-06-14T08:03:11Z
Jun 14, 2020
My experience with the solution has mainly been implementing it with an auto-scaling on behalf of my clients. My job was to migrate an on-prem firewall to AWS cloud. I'm a senior security architect.
CISO and Senior Director Technical Operations at a insurance company with 201-500 employees
Real User
2020-06-10T08:05:00Z
Jun 10, 2020
Most security solutions traditionally have been protecting physical assets within an environment, or reliance on an inline hardware appliance. CloudGuard takes the security controls that were previously packaged with physical appliances in mind and extends them to the virtual infrastructure. It's an add-on capability to an existing virtual infrastructure, such as an AWS, Azure, or even on-premise solutions. It adds a security layer on top of your existing infrastructure with zero latency. We're hosting it ourselves on our hypervisors, as well as starting to do so in some of our private cloud instances. It's solely managed by us with a pair of consolidated management servers.
Assistant Manager IT Projects at Mustafa Sultan Office Technology Co. LLC
Real User
2019-09-02T05:33:00Z
Sep 2, 2019
We install the solution for our customers and Check Point is our preferred solution in any firewall deployment. The two-layer architecture with the administration and security makes a difference and in every instance, we know who the user is. The touch features are very different than other brands. From the feedback I get from my customers, Check Point is the best.
We are able to use the solution for cloud protection and in parallel with or just for network protection. In our scenario, we use it as a border network firewall, which is based on a virtual environment and we're using it for the border protection of our network.
We are a solution reseller, and we also assist our clients with support. This is one of the solutions that we provide to our customers. This solution can be deployed in many ways. It is available in the cloud on AWS and Azure. You can install it in a virtual machine, you can have it as a hybrid, and you can have it on-premises.
Network and Security Manager at a financial services firm with 1,001-5,000 employees
Real User
2019-08-04T07:38:00Z
Aug 4, 2019
This solution is very important for our network. We use it for the data on our servers and for our internet connections. We also use it for all of our user devices to connect to outside corporations. The IPS on our devices prevents any issues from occurring. We use the on-prem version of this solution.
Check Point CloudGuard Network Security is designed to secure cloud assets, offering robust firewall capabilities and protection for both internal and external traffic across AWS, Azure, and on-premises environments.
Enterprises rely on Check Point CloudGuard Network Security for comprehensive network protection, threat prevention, and compliance enforcement. Supporting virtual machines and hybrid environments, it delivers advanced security measures including intrusion prevention and...
We are dealing with customer data, so we use a firewall to cover all API calls. If you access our sites, it will be via Check Point Firewall. Or if you send a file, it will go via Check Point Firewall.
Our primary use case for CloudGuard Network Security is to secure the cloud environment where we host our backend systems. The platform helps to guard the network security of our infrastructure by securing the traffic and preventing cyber threats. It also ensures compliance with industry regulations. Moreover, it integrates easily with AWS and Google Cloud, allowing us to apply a unified security policy throughout our cloud infrastructure.
We use the solution to secure cloud infrastructures and manage incoming and outgoing traffic. Our clients operating in hybrid environments must ensure robust security for their applications and data.
The solution is primarily used for security. We had 48 to 50 firewalls for data center segmentation. All data centers were fitted into multiple zones. Each zone had a different data classification. We had the firewalls deployed on several overseas remote sites.
When we build security for companies, we use the cloud of services for building and configuring networks and Security on the company Network, including EDR or XDR on the computers, routers, and switches.
We are using Check Point CloudGuard as a firewall. Along with the firewall, we have incorporated multiple blades. Initially, the firewall used to be a single security device, and along with that, we required antibot, antivirus, IPS, and IDS devices. Check Point CloudGuard is a combination of all the devices and functionalities in a single device. It is a next-generation firewall. The main use case of this firewall is to protect our entire cloud and provide perimeter cloud security at L3 and L4 levels.
My company uses the solution as an Edge firewall and East-West firewall.
Primarily, we are using it for deploying cloud firewalls on Azure to protect our applications. We are using TerraForm.
I use CloudGuard Network Security to enhance our cloud exchange points' security. Our customers can seamlessly connect across multiple clouds within the region, and CloudGuard provides next-generation firewall services to ensure their data and applications are protected.
My main use cases for CloudGuard Network Security are to scale the technology for protecting and filtering traffic within AWS and Azure environments. The main challenge I was looking to address by implementing CloudGuard Network Security was the need to establish a firewall on our cloud perimeter for enhanced security.
Many traditional on-premise customers transitioning to the cloud often prioritize solutions like CloudGuard, especially when dealing with scale sets and clusters. These customers are accustomed to constructing their own network infrastructure and are drawn to CloudGuard for its compatibility with these setups. This primary use case highlights the appeal of CloudGuard for organizations seeking to maintain control over their network security while migrating to cloud environments.
In our Azure deployment, CloudGuard Network Security serves as our cloud firewall.
We utilize CloudGuard Network Security as virtual appliances deployed within virtual machines, acting as firewalls at the perimeter of our data center in QSaver. These virtual appliances safeguard all internet access originating from the virtual machines at our factory in Curitiba, Brazil.
We mainly use the firewall part. We use it to interface with our cloud environments. We have a CloudGuard firewall in place, and we have Azure or AWS networks at the backend. We use it to secure workloads and be a bridge to our on-prem as a hybrid solution.
We use it to secure our network. We use it to manage our firewalls and some of the other services that we have with them. By implementing CloudGuard Network Security, we mainly wanted visibility.
We've implemented CloudGuard in Azure, configuring it as firewalls and file management systems. These functionalities skillfully oversee our API application and various aspects of our data center environment. Our entire infrastructure, hosted within Azure's data centers, is effectively managed by CloudGuard, ensuring comprehensive security coverage.
We use it for security in public cloud implementations, specifically in AWS and Azure.
We use it to analyze all the traffic in our network. It is the main tool for security services and networking in our company.
We have deployed CloudGuard in our environment to protect conversations between different network segments. For example, we can protect north-south traffic and east-west traffic. We deploy our production workload in different cloud provider environments, such as GCP, Azure, AWS, and IBM.
When we began our digital transformation, we had already invested in on-premises Check Point firewalls. We desired the same level of security in the cloud along with the elasticity that the cloud demands.
We are using it for in and out of our cloud from on-premises. Security from our SD-WAN and express route connectivity is our main use case. We also have vendor integrations. SAP RISE was the big one that we recently had where we were using dedicated CloudGuard network gateways for straight vendor implementations.
I can easily secure communication between our Azure Stack Hub and local Azure environments using CloudGuard gateways. This ensures that when I deploy applications in Azure, I can securely access databases and other resources in my local environment through a VPN channel. It is a straightforward way to keep everything protected as I work between the cloud and on-premises infrastructure.
Our use case is simple. We utilize CloudGuard Network Security with a bridge to connect all components in the cloud directly to the on-premise. By establishing peering with the bridge, we route traffic to the Google Cloud-based cluster. We apply our standard on-premise environment rules to CloudGuard, utilizing threat prevention, EPS, etc.
We use the product for network security and cloud workload protection.
The solution helps protect network security by offering threat prevention, addressing vulnerabilities, and utilizing blades. We use it for the protection of our internal services. We're a Telco company, our internal users are on the machines. We also have some external services that we protect. We protect our customers and our public cloud with it. VMware is our public cloud provider.
The solution helps to protect our customers at the perimeter. We have integrated the solution into our NSX environment.
We use the product to protect Azure workloads.
We use the security gateways to protect the virtual data centers.
We use it to protect cloud infrastructure, workloads, and applications from advanced threats and attacks.
I use it to protect our public cloud workloads today. It safeguards them directly from the internet and also from the corporate network. We have interconnected our Azure environments with our on-premises network, including our data centre. CloudGuard Network Security helps protect workloads within Azure from both the corporate network and the internet.
Our use case for the product is to prevent or protect the file server in the Cloud. The plan is to gradually integrate more solutions behind it. We work with Azure and AWS.
We use the solution for the ingress and egress, often for VMSS auto-scaling groups. This involves linking on-premises to the cloud and managing incoming traffic within the same cloud environment.
We offer a full security and connectivity solution leveraging SD-WAN and SASE technologies. We partner with service integrators and providers who, in turn, sell the solution to business customers. Our solution is built on SD-WAN and SASE, facilitating the connection of offices and home users to the organization through various WAN connections. By aggregating multiple connections over the Internet, we deliver security and connectivity to meet the needs of retail and finance. We can help any vertical that needs a connection between the branch and the cloud.
I use the product to secure the Azure environment.
We use CloudGuard Network Security to protect our customer's Azure environments.
We place our CloudGuard Network Security gateways at the front on Azure, positioned with a load balancer. The configuration includes a load balancer and gateways on a virtual automation scale set in Azure.
We utilize CloudGuard Network Security for internet surfing and handle inter-sector traffic between VPCs. Specifically, we have over 200 accounts in AWS, each with its own VPC. The solution interconnects all the regions.
We use the product as an internal firewall between Azure, on-premises, and the internet.
We use CloudGuard Network Security to protect Azure's networking environment.
We are using it for perimeter inbound and outbound detection. It is running in an EC2 instance in AWS.
We are using it for network security. The whole reason we got it was to expand and make an extension to the Azure Cloud so that we could establish services that would make a link between the on-prem and the cloud. That was the goal.
For the Azure platform, especially Azure endpoint protections and other network aspects, we utilize CloudGuard Network Security to secure the egress connection. This includes configuring and maintaining express route connectivity between on-premises and Azure.
The architecture proposed is based on Microsoft’s Cloud Adoption Framework enterprise-scale landing zone architecture. Enterprise-scale is an architectural approach and a reference implementation that enables effective construction and operationalization of landing zones on Azure at scale. We're using CloudGuard solution in a NorthBound - SouthBound design to protect and filter both incoming and outgoing traffic. Also, we are using a VMSS solution deployed in Azure, with a minimum of two instances
We use Check Point firewalls and SMS servers in on-prem DC and in multi-cloud environments extensively. These are used to protect the perimeter, DMZ, and internal network to protect and inspect network traffic. The firewalls are best of breed and provide extensive rich features and a diverse range of protection against DDoS, malware, ransomware, and zero-day attacks. Also, it is used for terminating client and mobile VPN tunnels, URL filtering, IDP, DLP, etc. The environment is Internal and a multi-tenant hosted for external clients which is a complex setup.
The solution is a core operating system, and we use it for threat intelligence.
We use it for network protection. We're using its latest version.
My clients were different small businesses, and they were migrating to the cloud. We've been using it as a general cloud security tool.
I manage the delivery team of a tech services company. We implement and manage security systems for our clients. CloudGuard is a solution we deploy for larger enterprise clients.
This feature is integrated into the security solution of Check Point, and its CloudGuard flagship product is very valuable to our company. It has helped us to make posture, recommendations, and security improvements to the network of our Azure public cloud. We have been able to improve our current implementations and future deployments of networks in our infrastructure in the best way, making assessments that provide us with improvements that include building a more secure environment.
CloudGuard Network Security ensures that there is integrity and secure network services in the enterprise. It gives the IT team an opportunity to access and control the internet infrastructure in both on-premise and cloud-based services. The technical analysis and data assessment from all the sources enable us to protect our computing devices from cyber-attacks and minimize potential risks. The network security controls have enhanced efficiency and adequate security for implementing set projects and tasks.
Check Point CloudGuard Network Security is a security solution that provides advanced threat prevention, network security, and compliance enforcement for public cloud environments. It can be used to protect workloads in various cloud environments, such as different clouds. The primary use case of Check Point CloudGuard Network Security is to secure and protect workloads and applications running in the cloud by providing a multi-layered security approach that includes a firewall, intrusion prevention, anti-malware, and sandboxing capabilities.
We recently migrated a certain number of servers to the Azure cloud. At the moment, we are in a hybrid state; the idea is to be 100% in the cloud soon. As a result, we also needed to build an infrastructure for our perimeter network that would supply all the needs of the company and its users. With this technology and Azure, we want to have all the vulnerabilities that arise under control to be able to attack them with this tool and its recommendations since the integration with Azure is very good and safe.
We have a constant need to evolve and are migrating towards the cloud due to greater availability and better benefits at the level of hardware and computing. With the understanding that we must have a faster, more efficient team with greater benefits when creating equipment or application services, we were looking for a solution with high user acceptance. We also wanted to meet the external and internal needs of the company and maintain solid corporate governance that includes offering the highest level of security standards. This product allowed us to create that level of security and develop natively in the cloud.
We use the solution for safeguarding the network security infrastructure. This has been one of the greatest achievements since we come across CloudGuard Network Security. It has launched effective security measures that can monitor security and provide feedback. Workflows across the company ecosystem have can flow smoothly without experiencing any challenges. The multi-channel security system monitors our cloud and hybrid servers. Transfer of files from the company database to the cloud servers goes through secure channels mapped by this platform.
Our primary use case for this solution is for basic cloud network security, posture management and threat hunting. The solution is deployed on cloud.
We are using Check Point CloudGuard Network Security for protecting our Office 365 mail.
In our company, we have infrastructure in both Microsoft Azure and on-premise. We wanted to centralize an environment of governance, control, and best practices, at the level of Microsoft Azure. We were able to implement Defender for the cloud at some point. However, we already had security products from Check Point. The idea was to centralize all our tools in the same environment to make it easier to support administration. With Check Point CloudGuard we have been able to successfully implement a layer of protection for our cloud and our on-premise environments.
We use Check Point CloudGuard Network Security for internal and external traffic filtering.
Currently, we were counting on a hybrid cloud and we needed to integrate the latest generation of security. We came to lean towards one of the security leaders in the market. These powerful capabilities position it and allow us to increase cloud security elastically while keeping up with the dynamic requirements of our business. We use the cloud to integrate it into our hybrid cloud. It dynamically provides us with advanced security and consistent policy enforcement that automatically grows and scales with our cloud environment. With CloudGuard IaaS, we can easily protect workloads and applications.
Check Point CloudGuard Network Security helps resolve potential regulatory and compliance issues when moving to the cloud. The high-visibility rule base's granular approach helps us with potential security leaks and highlights items to focus on for immediate action. The functionality that we're using it for is the cloud firewall piece. For this reason, it was necessary to implement this tool in our organization and the results have been very positive, providing the necessary security.
We use a hybrid environment, so we have an on-premise data center and branch offices as well as resources in the cloud. On-premise is secured with different Check Point Gateways while for our security in the cloud we use Check Point Cloud Guard. Depending on the traffic, we use different Cloud Guard firewalls. External traffic is handled by using a scale-set that can adapt on the fly to increase/decrease the number of firewall instances. Internal traffic is handled by a normal Cloud Guard HA cluster with a certain amount of cores.
I have been using Check Point CloudGuard for 3 years now. I use it in the financial sector, and use the gateways for perimeter security, east-west traffic inspections, and internet access. We have gateways for production, development, and outbound (internet access). The blades for IPS, FW, And URL filtering have been enabled with no problems. All the gateways are stable. We mostly use it for VPN site to site, and we can establish VPNs with Azure and other services.
We had a big problem with how to protect our host services, which are directly accessed via the cloud. We wanted to protect our organization tenant and workload from any next-generation attack. For this protection, we implemented the Check Point solution named CloudGuard Network. This NGFW is provided by Check Point and has all of the capabilities that are required to protect against next-generation attacks at the perimeter level. The modules or security features that we use are provided as part of the base license. These include VPN, IPS, Application Control, and Content Awareness. Together, these are strong and help to protect the organization.
As we are moving our workloads to the cloud, it means that we now have a need to protect our cloud infrastructure. This will ensure that our business is deploying products faster and with all of the required security. Our solution needs to be able to protect workloads hosted on multiple clouds with the required security control. The license should be a subscription-based model so that we can add or remove depending upon the requirement to scale. It needs to support a microservice platform such as Docker or another container, and it should be quick to deploy.
Our primary use case for this solution is a firewall.
The perimeter firewall provides me control over my perimeter servers and devices. Current cloud applications are getting good protection from CASB solutions but they are limited to data leakage and application control. Beyond that, I require something to monitor my data that flows inside of my cloud application. Sophisticated threats, such as zero-day attacks, can't be controlled by CASB solutions. Instead, they require something that can work using artificial intelligence. They should have a correlation with machine learning algorithms to defend against today's attacks for my cloud applications.
CloudGuard is cloud-native security that secures your public, private, or hybrid environment under a unified platform, which can also be automated. It comes with multiple installation availabilities such as Software-as-a-Service(SaaS), Platform-as-a-Service(PaaS), Infrastructure-as-a-Service(IaaS), and more. This solution can be installed on leading Cloud Service Providers such as Amazon Web Services, Google Platform, and Microsoft Azure, as well as on other not-so-known CSPs such as OCI.
We are a solution integrator and the Check Point CloudGuard Network is a product that I have experience with. We implement firewalls and other products for our customers.
We are a small consulting company. We have around 100 employees. We don't use advanced firewalls because we don't really have important data that can be hacked. Nobody is going to care about our data because it's only the HR department's timesheet data on our on-premise systems. The firewall is protecting remote access, allowing the employees to access our office environment. So sometimes employees connect to our systems which have some test systems on it. They run some tests about the consulting we've given to clients. That's all. We just have basic things on our firewall. Just two things are important for us - the site to site VPN, which we have with some customers, and the government site. That is important. That's why I want to change the firewall to a new and up-to-date one so maybe it will be an improvement to prevent some hackers.
We primarily use the solution when clients are for searching in the servers. We compare the solutions or servers that are available and we seek out new features for the new solutions for our customers. We're solution providers. This is one of the products we offer.
We primarily use the solution as a firewall. It is for the perimeter protection of our products. We use it as a UTM kind of environment.
We integrate this solution, and we also provide the maintenance of the device. We are using this solution for those sites that are kind of medium in size and require a more complex solution but don't have too much space for big equipment.
It is building the network infrastructure for our cloud environment around it. Primarily, the functionality that we are using it for is the firewall piece in the cloud. We have three different things going on right now. I think Dome9 is considered a part of the whole CloudGuard thing. We have AWS and Azure environments behind just straight up Check Point Firewalls. We are in the midst of deploying a new network in AWS that fully leverages the whole IaaS that they offer. Primarily, it's the firewall main piece. However, we are transitioning into using the scale-up, scale-down gateways, which are mostly the network security piece of it.
We mainly used CloudGuard for IPS and IDS in our AWS environment, and we also used it for additional logging to see what was going in and out of our network in AWS. We have very limited visibility, especially when it comes to logging, and AWS does not support IPS and IDS as of now.
We have an AWS environment with servers and resources. We also have a Cloud environment and CloudGuard is our solution to protect the internet access to and from the database environment. For example, servers on the AWS that need to do upgrades go to the internet and cross the CloudGuard solution. People that need to connect to the AWS environment, to a server are protected by CloudGuard. The environment is protected by CloudGuard. It's our perimeter firewall on the AWS environment.
Our company works in the area of developing and delivering online gambling platforms. The Check Point Next-Generation Firewalls are the core security solution that we use for the protection of our DataCenter environment located in Asia (Taiwan). The environment has about 50 physical servers as virtualization hosts, and we have two HA Clusters that consist of 2x5400 hardware appliances, managed by an OpenServer Security Management Server on a Virtual Machine (KVM), all running on R80.10 with the latest JumboHotfix. The Check Point Virtual Systems are activated on the NGFWs to logically divide the firewall into two parts. One is for serving internal, intra-VLAN traffic, and the other is for serving the external traffic coming from the Internet.
We use CloudGuard IaaS for cloud security in AWS, and it serves all kinds of purposes for us. It could be internal segmentation between on-prem or between application VPCs, and it can also help us to provide perimeter security for those parts of the network that require internet access.
We use it as an edge firewall to our entire cloud environment. It protects our connections to all of our sites, to our cloud data center. And it's the internet edge, the protection mechanism between the internet and our network.
The main usage of the Check Point CloudGuard IaaS within our company is for the protection of our cloud assets. It is deployed on Google Cloud Platform with the help of the Firewall, Application Control, and Intrusion Prevention System software blades. In addition, we rely heavily on the GeoIP module to restrict undesired countries from accessing our services, as for now, you can't achieve it with the GCP firewall. There are about 30 Google Cloud projects of different sizes ranging from 10 to 250 virtual machines, and they are used for development, staging, production, etc. For every project, there is one dedicated scalable instance group of the Check Point CloudGuard IaaS gateways.
It secures our assets in the cloud while providing access to applications in our vendor hosted data centers via IPSEC tunnels. We also use it for endpoint vpn for all our users. We have it deployed in our cloud and it forms the gateway for all external connectivity and access to the assets in the cloud. We also have a backup site to site connection with our on premise data center so in case the primary connection to the cloud fails we can quick fail over to this backup connection and business can continue as normal .
My experience with the solution has mainly been implementing it with an auto-scaling on behalf of my clients. My job was to migrate an on-prem firewall to AWS cloud. I'm a senior security architect.
Most security solutions traditionally have been protecting physical assets within an environment, or reliance on an inline hardware appliance. CloudGuard takes the security controls that were previously packaged with physical appliances in mind and extends them to the virtual infrastructure. It's an add-on capability to an existing virtual infrastructure, such as an AWS, Azure, or even on-premise solutions. It adds a security layer on top of your existing infrastructure with zero latency. We're hosting it ourselves on our hypervisors, as well as starting to do so in some of our private cloud instances. It's solely managed by us with a pair of consolidated management servers.
We use this solution as our perimeter firewall.
We install the solution for our customers and Check Point is our preferred solution in any firewall deployment. The two-layer architecture with the administration and security makes a difference and in every instance, we know who the user is. The touch features are very different than other brands. From the feedback I get from my customers, Check Point is the best.
We primarily use the solution as firewall security for our clients.
We are able to use the solution for cloud protection and in parallel with or just for network protection. In our scenario, we use it as a border network firewall, which is based on a virtual environment and we're using it for the border protection of our network.
Our primary use case of this solution is for security.
We are a solution reseller, and we also assist our clients with support. This is one of the solutions that we provide to our customers. This solution can be deployed in many ways. It is available in the cloud on AWS and Azure. You can install it in a virtual machine, you can have it as a hybrid, and you can have it on-premises.
This solution is very important for our network. We use it for the data on our servers and for our internet connections. We also use it for all of our user devices to connect to outside corporations. The IPS on our devices prevents any issues from occurring. We use the on-prem version of this solution.