We leveraged Check Point Infinity primarily for gateway security, cloud security, endpoint security, and infrastructure as a service.

Architecturally, Check Point functions as a unified security system. Only one policy management section enables administrators to manage all policies from one console. The platform offers intelligent threat prevention capabilities, flagging suspicious activities and preventing potential threats before they impact your network, cloud, or mobile environments.

The whole process of consolidation, centralization, and obtaining a single pane of glass view into the current state, necessary changes, and areas for improvement.

Check Point Infinity has significantly improved our workflow within the ecosystem, making processes smoother and more efficient. It hasn’t added unnecessary work; instead, it has streamlined operations and simplified tasks.

Some aspects of the reporting in Check Point may take time to learn and become comfortable with. Training is necessary for certain areas, as some features might not be as intuitive. It's important to understand the workflow and how various components function.

I have been using Check Point Infinity for one year.

It was very fairly stable.

I rate the stability an eight out of ten.

It is a scalable solution. It can accommodate an increase in user count, handle new requirements and changes, and address emerging attack vectors, ensuring continued functionality and security.

It is used by security analysts, security engineers, and some architects.

I rate the scalability an eight out of ten.

We were using CrowdStrike.

The initial setup is straightforward. The deployment process involves a team of network architects, security architects, security analysts, and security engineers.

I rate it an eight out of ten.

It saved our time by 25%.

It costs around 40k to 50k. We ended up getting a premium one. There was some additional cost.

We could have faced it if Check Point Infinity had not prevented it. This includes understanding the potential security incident we were looking at, gaining insights into where the attempt was being made from, identifying the associated IOCs, and potentially attributing who might be targeting us. 

Maintenance wasn't much needed. The fifteen people we had were sufficient. We had coverage across different time zones, so they were able to cover it.

I recommend the solution.

Overall, I rate the solution a seven out of ten.

Infinity is a single platform where you can integrate all the Check Point solutions such as Check Point Email Security, Check Point Endpoint Protection, Check Point SaaS, Check Point web proxy solutions, and Check Point Firewall. It can be integrated into the Infinity portal, and we can manage and configure it from the Infiniti portal.

Infinity is a technical console where we have to log in, and we can navigate to all the products very easily because it is written in a normal installation. People who know about the product can click and take care of their activity.

Technical support is pretty delayed. It's very slow, and they have not yet received their IT. Compared to other OEMs, Check Point's response is a bit slow but could have been improved. There are two areas to improve: The latency of the sandboxing and the technical support efficacy.

I have been using Check Point Infinity for five years.

I never felt any downtime or any login issues. Whenever I try to log in, it happens properly and normally.

I rate the solution’s stability a nine out of ten.

5,000 end users are using the solution.

I rate the solution’s scalability a nine out of ten.

The initial setup is very straightforward. Also, the OEM vendor will help you with the login, configure the authentication, get into the login, or get into the console, load your device, and start configuring it.

Check Point Infinity offers numerous benefits. It provides peace of mind by simplifying security management. It is responsible for on-premises security, allowing users to configure it anywhere. Additionally, it enables seamless remote connection, even if the user is away from the central point. It's the latest in security technology, offering immense value.

Customers need to pay yearly.

Infiniti is a portal that integrates multiple products.

It's a unified management console. I'm able to manage all the solutions and products from my single Infinity console regardless of multiple branches across the globe, anywhere in the world, and they can be controlled from a single console. The major benefit is the SaaS offering. So, customers don't have to manage everything or keep any infrastructure on-premises; it's completely provided by Check Point, with data centers integrated into Infinity. Thus, there are no data integration problems.

Check Point Infinity is well known for its CDR (Content Disarm and Reconstruction) technology rather than CRO (Customer Revenue Optimization) debt protection. This technology is primarily associated with its sandboxing capabilities. However, there is room for improvement in terms of latency when scanning and delivering attachments, links, or files. Although the delay is often negligible, competitors may offer faster results with their sandboxing solutions.

For customers prioritizing robust security, performance, and stability, Check Point can be an excellent choice. Their extensive technical expertise and global deployments contribute to the reliability of their products. With the Infinity architecture, which facilitates comprehensive threat coverage, Check Point offers scalability, reliability, and expandability across various infrastructure needs.

Overall, I rate the solution a nine out of ten.

The Infinity Portal is primarily a management tool. It's a single pane of glass to access and control all our Check Point products from one central location.

I work extensively with the Infinity Portal. It's the central management interface for all our Check Point products.

It has brought value. For example, a customer already has Check Point solutions in place. Rather than opening a separate console for each product, they can use the Infinity Portal. Just open Infinity, and with a single click, they're redirected to the product they need – email security, Harmony Connect, Harmony Internet Access, for example. It eliminates the need to open multiple interfaces.

It's how we manage products like Harmony Mobile, which enhances our mobile security.

Infinity is a platform. The zero-day protection capabilities would come from the specific products we use within it. 

My primary work involves Check Point firewalls and the Harmony product portfolio. We've definitely seen a lot of focus and new business growth in areas like Harmony and Arbor.

It's very easy to access and works fine for me. Centralizing the management of all our Check Point products in one place saves our team a ton of time.

Infinity is a platform rather than a specific security feature. It provides a central access point for our purchased Check Point products like Harmony Email, Harmony Connect, Harmony Browser, Harmony VPN, etc.

The unified management console enhances security operations. We manage all our products through a single console instead of needing to open separate interfaces for each one.

The updates could be less frequent. 

I have been using it for six years now. 

I would rate the stability a ten out of ten. Stability is always important. I haven't faced any issues with the Infinity Portal in the last six or seven years.

There is no need for scalability as it is a ready-made and web-based product that we got from Check Point. Most of our customers use it, for example, firewalls, Harmony product portfolio, and cloud/network security. Most of these customers find the Infinity Portal beneficial because of its convenience.

There are easily over a hundred customers. Customers already using Check Point products are, by default, using the Infinity Portal to access them. Even I use it.

The customer service and support are very good. It is very fast and customer friendly. It has been very friendly. 

It's incredibly easy. Once you have a Check Point account, the portal is ready to use. All you need is the URL.

As a cloud-based platform, so, there wasn't easy to difficult. It is a one-minute job. There are no specific requirements for the platform. 

One of the benefits is that there's no deployment required for the Infinity Portal itself. It's accessible via a simple URL.

There's no additional license requirement.

Overall, I would rate the solution a ten out of ten. It's reliable, stable, and very easy for anyone to access from anywhere.

We have main offices in Brazil and branch offices in each of our state capitals. So, we have 26 branch offices in total. Each branch office used to have a small Check Point appliance. We're moving away from that model; they won't access the internet directly anymore. Instead, they'll pass through a central kind of star network.

We use two levels of firewalls: an external firewall and an internal firewall. We have a DMZ between these two firewall clusters with high availability. Each firewall has IPS, web content filtering, bot protection, and antivirus enabled. We'll contract some of those features as part of an MSSP service. We don't buy products or appliances directly.

Our procurement requirements allow other manufacturers to participate. The decision isn't ours or the integrator's – it's how we buy in Brazil. The vendor offering the lowest price for a product that meets the requirements wins. We cannot choose a specific brand or product name.

Before contracting the MSSP, we had an IPS (I don't remember if it was Check Point). However, we only detected signatures; we weren't confident enough to block them due to false positives. For the past 10 years, we have had a procedure where we get new signatures weekly, test for false positives, and set exclusions. Most relevant signatures are now in use, so the IPS is an important layer of protection for us. So, Check Point Infinity's threat prevention capabilities benefitted our organization.

We haven't had any problems with integration, but we don't need many integrations. The main one is with SIEM. The bigger issue is that we use ArcSight as our SIEM. It's very difficult to migrate from one SIEM solution to another.

We are on the journey of moving to the cloud right now. We had on-premises services, but we are going to move to a cloud environment where we have Azure and AWS Cloud. Because of this, the new solution will have virtual firewalls at the edge of each cloud.

I like all the features because within the suite we use, it's sometimes hard to know exactly which features are being used and where they come from. 

But, the main feature is the integration with Active Directory, where you can allow or deny traffic based on users or groups of users from Active Directory.

We have had some performance issues. Because of this, we had to redirect traffic to be analyzed by other appliances. I'm not sure if higher-end appliances would still have this problem. 

We also experienced issues with deploying new configuration versions to all branch appliances, but we won't be using this setup anymore. We don't know exactly how the virtual appliances will work to protect the cloud. It's a new thing for us.

I have been using it for 14 years now.

I would rate the stability an eight out of ten. We've had some problems in the past.

We had an issue with scalability before. We think the technology changes caused by mobile traffic impacted our appliances. Since we're buying a bigger solution now, I think we won't have this problem this time. 

Check Point engineers were involved, and they suggested we use a virtual appliance to remove this traffic from our physical appliance.

We've had some difficult experiences sometimes, such as we have to send again files and information.  

Neutral

We had another solution a long time ago. It was a small, free solution, very difficult to compare. We've used Check Point for a long time, so it's impossible to make a fair comparison.

We also use Azure Sentinel, but we do not receive logs from security solutions. It's possible we'll migrate to Azure Sentinel in the future. Nowadays, it's difficult to use a SIEM that is local and not cloud-based.

The initial setup will be done by the MSSP provider, not us. They'll handle the appliances, configuration, and integration. When we pay, everything must be working perfectly, and the documentation must be delivered to us.

The first deployment took about nine months because we changed the active tool. The second deployment was a bit different and took about six months. This timeline includes everything: equipment and features, but it also has solutions that aren't exactly Check Point firewalls, like the WAF (Web Application Firewall) or integration with SIEMs—also, the implementation of use cases in the SIEM.

There are two teams involved in the deployment: our team and the supplier's team. Usually, there are three or four people from the supplier and the same number from us.

It's maintained by the supplier. We have an SLA (Service Level Agreement) in place. They install, maintain, and manage the entire solution. We are a user of the solution; we open tickets to them, and they make the configurations. They're also responsible for availability and other aspects.

I would recommend it. However, Check Point could improve its tech support systems. If they had more engineers in Brazil, I think it would be good.

Overall, I would rate the solution a nine out of ten.

We use the solution for testing and conducting. For instance, we test this product using open-source samples containing different ransomware tools and another element.

The detection rate is good. It also has personal management that provides all the details on one dashboard. Depending upon the requirements, you can customize the dashboard. The visibility part is also very good. It can customised. The reaction rate is good.

There is an issue with high agent size, which impacts performance. The EDR part should provide more features.

I have been using Check Point Infinity for 6 months.

The solution’s scalability is good but complex to maintain. They need to provide technical training to the partners. Expanding the team to get expertise and hands-on solutions will be easy.

Support is not that much good. Response time is very high. Some issues take a few days to resolve.

The initial setup is neither easy nor complex. Any technical user can quickly deploy it. You need two to three resources to monitor and support the solution for a thousand assets. We use email deployment and data deployment. You don't use manual deployment. It is challenging for multiple users.

Check Point is a universal solution with multiple features that customers expect in one product to meet all the requirements.

The product has moderate pricing depending on the devices. The OEM's services are quite high.

We are a cybersecurity company providing solutions for our customers. We tested the Check Point solution, not just as a solution provider but also to assess cybersecurity for Check Point. We tested various products and have found that the Check Point endpoint protection offers multiple capabilities. It covers postal management, DDR capabilities, and many other features, such as cloud assessment and sandboxing in the cloud.

They should have a dedicated team or take services from third-party sources to maintain the solution. They can have this solution for endpoint protection and mobile protection.

We can customize the dashboard to meet our needs. We can tailor the dashboard to display the information we need depending on our requirements.

Overall, I rate the solution a seven out of ten.

The tool's most valuable feature for threat prevention is the encryption alarm. 
I find the centralized management console, including the log analyzer and reports in Check Point Infinity, extremely beneficial for enhancing security and operations efficiency in our enterprise. I would rate it a perfect ten out of ten, as it effectively helps us analyze logs,  and detect potential attacks. 

The tool's technical support lags. 

I have been using the product for six to seven months. 

I rate the solution's stability a nine out of ten. 

I rate the tool's scalability an eight point five out of ten. 

We used Trend Mico before Check Point Infinity.We currently have approximately 500 endpoints deployed. So far, the system is working seamlessly, and we haven't encountered any security issues. I'm confident in the product's security features. We are currently the documentation, and the support portal has been reliable, providing us with ample resources to troubleshoot any issues.

When it comes to price, the paramount consideration is the strength of the security. If the security measures provided by the product, such as Check Point Infinity, are robust and meet our requirements, price becomes a secondary concern.

For those considering Check Point Infinity, my advice is to gain hands-on experience and acquire a foundational understanding of the product before diving into the implementation process. I rate it a nine out of ten. 

The use case involves managing various aspects, including endpoint security, SaaS interface, and firewall management within the Check Point Infinity architecture. The Infinity portal serves as a centralized hub for overseeing all components of the Check Point security suite. The architecture incorporates XDR and MDR, enabling automatic correlation of information. In scenarios where a security issue arises, the system can automatically analyze data from diverse platforms, such as endpoints, firewalls, and Office 365. T

It offers significant benefits as a cybersecurity leader, known for pioneering the logical firewall and excelling with its Infinity suite. The expertise of Check Point professionals ensures efficient handling of challenges.

I have a positive history with Check Point, having worked with their firewall models since the nineties. A notable aspect that I appreciate is their ongoing effort to redesign the portal, giving it a fresh and centralized appearance. This is particularly significant as the transition from Check Point on-premises solutions to the cloud.

I've observed some challenges in terms of usability and performance, particularly since the shift to a service-oriented model like Infinity. It seems that the performance varies, likely influenced by the client's size and the provisioning of resources.

We have been using it for several years, and since it was released we have become partners.

The stability is influenced by the specific configuration and the capabilities of the machine itself. Currently, I can confidently rate the stability at eight out of ten.

The scalability and power seem to impact the interface quality; larger clients with more resources receive a better interface experience. In cases where clients initially buy licenses for a certain number of machines and later realize they need more, Check Point offers flexibility. Clients can purchase additional licenses even if it's mid-year, without the need to synchronize license renewal dates.

My experiences with Check Point's tech support have been positive. They responded promptly to issues, even conducting a video call for clarification. A licensing complication was swiftly addressed, showing their commitment to resolving bugs.

The initial setup was straightforward.

The deployment time varies depending on the specific machine and its configuration, however, in general, the implementation and installation processes are relatively quick. The deployment process is contingent on the specific configuration and the underlying infrastructure. However, due to our familiarity with the products, deployment is straightforward and typically doesn't extend over days. Instead, it can be accomplished in a matter of hours or even minutes, particularly in smaller cases. The process begins with obtaining the necessary licenses through a purchase order. Once acquired, we seamlessly integrate them into the Check Point dashboard, either through a physical conversion or by utilizing the Infinity portal. Subsequently, if configuration is required, we create the tenant and apply the license to it. From this point onward, the deployment process is quite straightforward and efficient.

The price is justified by the security it provides. In a world where security breaches can lead to significant financial losses, the investment in robust cybersecurity solutions is seen as essential. Moreover, the ongoing improvements in the dashboard experience further enhance the overall value proposition of Check Point Infinity, making it a comprehensive and worthwhile security solution for businesses in Portugal.

In Portugal, pricing for security solutions, particularly Check Point, is not a fixed rate. It's determined by factors like the brand's prominence and whether the product is flagged. The flexibility in pricing is advantageous, and being a special partner allows for negotiating special rates based on the project requirements. Unlike services like Office 365, Check Point licenses are not based on users but rather on machines. Clients are required to pay when submitting a purchase order. However, for those interested in trying the product, whether for a Proof of Concept or other purposes, we can facilitate trials. As partners, we have the ability to request trials from Check Point or conduct trials ourselves for one to three months. While trial versions can't be extended, we can release a new license with an additional thirty days, allowing clients to continue testing the product. After the trial period, we can convert the tenants and apply for a full license, enabling clients to choose the desired products for implementation.

Overall, I would rate it nine out of ten.

We required a first line of defense to protect, monitor, and ensure that no confidential information leaves the internal network. We also required a device that can segment our network so that different subnets like the DMZ, Production network, and testing environments. Threat prevention that required AI and ML capabilities was another reason to acquire the Check Point Quantum Spark NGFW. Finally, it offers an all-in-one solution that was a necessity where the same instance could manage and monitor VPNs, application control, web filtering, intrusion detection, and email security.

With Check Point Quantum Spark, we have a first line of defense in our environment, seated just after the router that connects to the ISP's endpoint, all traffic entering and leaving the network is monitored, and filtered depending on the different rules created. 

The functionality of AI helps further in the threat detection field. This NGFW is able to support a large number of VPN connections and at the same time monitor these connections for any anomaly. 

Finally, for any flagged threats, a sandbox functionality is also provided making it even more robust in detecting zero-day attacks.

The sandblast threat emulation is great. We are able to visualize the extent of specific threats without necessarily having them deployed in our environment. The Sandbox feature is able to virtualize an environment that can mirror what we have in the internal environment.

The quality of Service for different traffic types is excellent. We are able to prioritize business-critical traffic over other types of traffic like streaming.

Artificial intelligence threat profiling has helped a lot in detecting and protecting the internal network from zero-day, DNS, and DDoS attacks. 

We'd like to see support for fiber connections. With the growth of the network, we would expect that more and more traffic is going through this device and soon enough, the bottleneck will be the type of connection being used to transfer data to the router and further to the ISP. A throughput of 1GBPS will hinder performance on the network.

Configuring fault tolerance for specific features, for example, power sources would ensure that the chances of the system shutting down due to a power surge are highly limited. This can further increase the SLA to 99.99%

We've used the solution for three years and we just recently upgraded to the 1535 series.

The system is stable and able to perform with the advised load without fail. 

Quantum Spark is designed for small to medium businesses. With this in mind, the scalability is perfect and will support up to a firewall throughput of 1GBPS which is favorable for an SMB.

The Check Point customer service is prompt and with their knowledge base, the majority of the issues incurred are already cleared noted with a list of multiple solutions. 

Positive

Previously we used the Sophos XGS series. The Sophos XGS firewall no longer met the business' growing needs as it further led to a slowness in the performance of the network hence the search for a new system that would fix this.

The initial setup was straightforward. Check Point's GUI interfaces are user-friendly, and it also provides a lot of information on setting up their devices.

This was an in-house deployment. 

With the increased internal network performance and a decrease in the threats being exposed to the network; the return on investment for this is roughly in the range of 40% to 60%.

Quantum Spark has different subscription models where you can add more functionality as required. For a constrained budget, you can specifically pick out the functionalities you want, and pay for that.

We also considered:

• Cisco ASA 5500 series
• Cisco FirePower 1000s

My company's clients use Check Point Infinity to protect their data.

The most valuable features of the solution stem from factors like ease of use, visibility, and cost to the enterprise.

Endpoints are an area of concern when it comes to Check Point Infinity. There are some issues around the marketing of the endpoint solution, because of which it is not as prominent as other players in the market. The endpoint solutions offered by Check Point are not prominent enough in the market due to Check Point's poor marketing efforts. If the marketing for the endpoint solutions offered by Check Point is done properly, then Check Point can get a more thorough positioning in the marketplace.

I have been using Check Point Infinity for two years. My company is a reseller of products from Check Point and Palo Alto. I have experience with the solution's latest version.

Stability-wise, I rate the solution a nine out of ten.

Scalability-wise, I rate the solution an eight out of ten.

My company's clients who use Check Point Infinity are mostly enterprise-sized companies.

I rate the technical support a nine out of ten.

Positive

The deployment process of the tool can be completed in a few hours.

The solution is deployed on the cloud and on-premises.

I rate the product's price a six on a scale of one to ten, where one is cheap, and ten is expensive.

A payment of 15,000 USD needs to be made towards the licensing costs attached to the solution. There are no costs in addition to the standard licensing costs attached to the solution.

I recommend the solution to those who plan to use it.

I rate the overall solution an eight out of ten.