In my job, I design and propose different solutions from Check Point Infinity for some final customers in final champ profiles. With Check Point Infinity solutions, I can integrate different tools of Check Point like security appliances such as Quantum or Quantum Smart or the orchestrator under Smart Events like different tools of Harmony, Harmony Mail, Harmony Point, and Harmony Browse. I use the Infinity Portal to take control of the administration of these tools and orchestrate and integrate all the information to bring the logs to the final customer to deploy new strategies for cybersecurity or change or update the architecture of security policies.

One of the valuable aspects of Check Point Infinity is that I can use one unified portal for the administration of all these tools. I can integrate other tools from other brands too, to consolidate and unify cybersecurity strategies. Check Point uses robust AI software to detect and recognize all cyber-attacks, giving me the ability to prevent these attacks.

If Check Point continues reforms of AI and takes more information from different origins, not only from its database but also from other brands, it can complete this information and make it stronger.

I have had about three years of experience with Check Point Infinity.

Check Point Infinity is scalable because Check Point has a deployment ecosystem with technical support and the quality of the final information from these tools.

The technical support is excellent with quick response times and high-quality answers to provide the best solutions needed.

The initial setup is not complex; it is straightforward. It depends on the reality of the moment for the final customer and what they want for their roadmap. The deployment is usually in a short time as this technology enables quick deployment into the customer's architecture.

The required number of people depends on the size of the final customer, but maybe three to five people, including analysts, engineers, and someone senior, are sufficient for this.

The value is in the capacity to protect against problems or attacks with technology, developing and strengthening cybersecurity policies and administration.

The pricing is good as Check Point Infinity includes many tools and details that others might not have. The cost depends on the different architecture or needs of the final customer.

Some brands like Trend Micro, Sophos, and Fortinet offer good solutions too. However, I prefer Check Point as an expert brand in cybersecurity.

I rate Check Point Infinity a nine out of ten.

We have been deploying Check Point Infinity as a new technology for security purposes with our biggest customer in Ethiopia. It serves to secure endpoints and protect from intrusion and various threats. The product is deployed as a SaaS solution, and we use it to protect mobile users and other aspects of the organization.

Check Point Infinity offers a multi-layered security approach that enhances our IT security environment. It provides tracking protection, intrusion prevention, and supports mobile users efficiently.

The AI integration helps in guiding configurations and installations, making the process smoother.

Additionally, Check Point is a supportive vendor, offering notable assistance and knowledge sharing during installations and configurations.

I would recommend having more comprehensive documentation, including a guide for installation and configuration of Check Point Infinity. This would help users to easily understand and deploy the solution.

We have been working with Check Point Infinity for one year, as it was deployed with the aid of professional service last year.

For the time being, Check Point Infinity is stable with no issues concerning stability.

The product is scalable. If customers require scalability, we can scale the product accordingly to suit organizational growth.

Check Point provides excellent support. As soon as we raise a ticket, they engage promptly, indicating strong vendor support. User support has not presented any issues.

We are also working with IBM, Cisco, and FortiGate along with Check Point, for different solutions.

The initial setup is quite seamless and smooth. We follow the solutions easily without encountering any challenges.

The deployment was conducted with the assistance of professional services. This external team has been very supportive and provided necessary guidance throughout the process.

We are currently not assessing the financial benefits or return on investment for Check Point Infinity, as we are in the process of deploying it.

I am not aware of the financial cost of the licensing for Check Point Infinity, as I am involved in the technical aspects. The product, as supported by Check Point, offers invaluable assistance for ease of deployment.

We are also working with other vendors such as IBM, Cisco, and FortiGate.

I recommend Check Point Infinity to other customers due to its notable benefits and positive experiences with a major financial institution.

I rate Check Point Infinity nine out of ten for its overall satisfactory and scalable features.

Our company used Check Point Infinity to connect various locations worldwide through VPN, specifically using IPsec, rather than for cybersecurity. We implemented it in on-premises networks to collect data in data centers from different locations.

The solution is expensive.

The tool is 100 percent stable.

Check Point Infinity is scalable.

The initial deployment took about a month, subsequent deployments were much faster, typically taking only a few days.

The solution's price is quite high, and the licensing model requires extra licenses for various features like SD-WAN.

The tool is one of the most secure and stable products, with clear administration. I rate the overall product an eight out of ten.

I recommend Check Point Infinity to others, especially if they aren't planning to use Fortinet or Palo Alto. All three solutions—Check Point Infinity, Fortinet, and Palo Alto—offer similar levels of security. However, one thing to consider is that the tool's licensing can be expensive and complex.

Infinity is a single platform where you can integrate all the Check Point solutions such as Check Point Email Security, Check Point Endpoint Protection, Check Point SaaS, Check Point web proxy solutions, and Check Point Firewall. It can be integrated into the Infinity portal, and we can manage and configure it from the Infiniti portal.

Infinity is a technical console where we have to log in, and we can navigate to all the products very easily because it is written in a normal installation. People who know about the product can click and take care of their activity.

Technical support is pretty delayed. It's very slow, and they have not yet received their IT. Compared to other OEMs, Check Point's response is a bit slow but could have been improved. There are two areas to improve: The latency of the sandboxing and the technical support efficacy.

I have been using Check Point Infinity for five years.

I never felt any downtime or any login issues. Whenever I try to log in, it happens properly and normally.

I rate the solution’s stability a nine out of ten.

5,000 end users are using the solution.

I rate the solution’s scalability a nine out of ten.

The initial setup is very straightforward. Also, the OEM vendor will help you with the login, configure the authentication, get into the login, or get into the console, load your device, and start configuring it.

Check Point Infinity offers numerous benefits. It provides peace of mind by simplifying security management. It is responsible for on-premises security, allowing users to configure it anywhere. Additionally, it enables seamless remote connection, even if the user is away from the central point. It's the latest in security technology, offering immense value.

Customers need to pay yearly.

Infiniti is a portal that integrates multiple products.

It's a unified management console. I'm able to manage all the solutions and products from my single Infinity console regardless of multiple branches across the globe, anywhere in the world, and they can be controlled from a single console. The major benefit is the SaaS offering. So, customers don't have to manage everything or keep any infrastructure on-premises; it's completely provided by Check Point, with data centers integrated into Infinity. Thus, there are no data integration problems.

Check Point Infinity is well known for its CDR (Content Disarm and Reconstruction) technology rather than CRO (Customer Revenue Optimization) debt protection. This technology is primarily associated with its sandboxing capabilities. However, there is room for improvement in terms of latency when scanning and delivering attachments, links, or files. Although the delay is often negligible, competitors may offer faster results with their sandboxing solutions.

For customers prioritizing robust security, performance, and stability, Check Point can be an excellent choice. Their extensive technical expertise and global deployments contribute to the reliability of their products. With the Infinity architecture, which facilitates comprehensive threat coverage, Check Point offers scalability, reliability, and expandability across various infrastructure needs.

Overall, I rate the solution a nine out of ten.

We have main offices in Brazil and branch offices in each of our state capitals. So, we have 26 branch offices in total. Each branch office used to have a small Check Point appliance. We're moving away from that model; they won't access the internet directly anymore. Instead, they'll pass through a central kind of star network.

We use two levels of firewalls: an external firewall and an internal firewall. We have a DMZ between these two firewall clusters with high availability. Each firewall has IPS, web content filtering, bot protection, and antivirus enabled. We'll contract some of those features as part of an MSSP service. We don't buy products or appliances directly.

Our procurement requirements allow other manufacturers to participate. The decision isn't ours or the integrator's – it's how we buy in Brazil. The vendor offering the lowest price for a product that meets the requirements wins. We cannot choose a specific brand or product name.

Before contracting the MSSP, we had an IPS (I don't remember if it was Check Point). However, we only detected signatures; we weren't confident enough to block them due to false positives. For the past 10 years, we have had a procedure where we get new signatures weekly, test for false positives, and set exclusions. Most relevant signatures are now in use, so the IPS is an important layer of protection for us. So, Check Point Infinity's threat prevention capabilities benefitted our organization.

We haven't had any problems with integration, but we don't need many integrations. The main one is with SIEM. The bigger issue is that we use ArcSight as our SIEM. It's very difficult to migrate from one SIEM solution to another.

We are on the journey of moving to the cloud right now. We had on-premises services, but we are going to move to a cloud environment where we have Azure and AWS Cloud. Because of this, the new solution will have virtual firewalls at the edge of each cloud.

I like all the features because within the suite we use, it's sometimes hard to know exactly which features are being used and where they come from.

But, the main feature is the integration with Active Directory, where you can allow or deny traffic based on users or groups of users from Active Directory.

We have had some performance issues. Because of this, we had to redirect traffic to be analyzed by other appliances. I'm not sure if higher-end appliances would still have this problem.

We also experienced issues with deploying new configuration versions to all branch appliances, but we won't be using this setup anymore. We don't know exactly how the virtual appliances will work to protect the cloud. It's a new thing for us.

I have been using it for 14 years now.

I would rate the stability an eight out of ten. We've had some problems in the past.

We had an issue with scalability before. We think the technology changes caused by mobile traffic impacted our appliances. Since we're buying a bigger solution now, I think we won't have this problem this time.

Check Point engineers were involved, and they suggested we use a virtual appliance to remove this traffic from our physical appliance.

We've had some difficult experiences sometimes, such as we have to send again files and information.

We had another solution a long time ago. It was a small, free solution, very difficult to compare. We've used Check Point for a long time, so it's impossible to make a fair comparison.

We also use Azure Sentinel, but we do not receive logs from security solutions. It's possible we'll migrate to Azure Sentinel in the future. Nowadays, it's difficult to use a SIEM that is local and not cloud-based.

The initial setup will be done by the MSSP provider, not us. They'll handle the appliances, configuration, and integration. When we pay, everything must be working perfectly, and the documentation must be delivered to us.

The first deployment took about nine months because we changed the active tool. The second deployment was a bit different and took about six months. This timeline includes everything: equipment and features, but it also has solutions that aren't exactly Check Point firewalls, like the WAF (Web Application Firewall) or integration with SIEMs—also, the implementation of use cases in the SIEM.

There are two teams involved in the deployment: our team and the supplier's team. Usually, there are three or four people from the supplier and the same number from us.

It's maintained by the supplier. We have an SLA (Service Level Agreement) in place. They install, maintain, and manage the entire solution. We are a user of the solution; we open tickets to them, and they make the configurations. They're also responsible for availability and other aspects.

I would recommend it. However, Check Point could improve its tech support systems. If they had more engineers in Brazil, I think it would be good.

Overall, I would rate the solution a nine out of ten.

The tool's most valuable feature for threat prevention is the encryption alarm.
I find the centralized management console, including the log analyzer and reports in Check Point Infinity, extremely beneficial for enhancing security and operations efficiency in our enterprise. I would rate it a perfect ten out of ten, as it effectively helps us analyze logs, and detect potential attacks.

The tool's technical support lags.

I have been using the product for six to seven months.

I rate the solution's stability a nine out of ten.

I rate the tool's scalability an eight point five out of ten.

We used Trend Mico before Check Point Infinity.We currently have approximately 500 endpoints deployed. So far, the system is working seamlessly, and we haven't encountered any security issues. I'm confident in the product's security features. We are currently the documentation, and the support portal has been reliable, providing us with ample resources to troubleshoot any issues.

When it comes to price, the paramount consideration is the strength of the security. If the security measures provided by the product, such as Check Point Infinity, are robust and meet our requirements, price becomes a secondary concern.

For those considering Check Point Infinity, my advice is to gain hands-on experience and acquire a foundational understanding of the product before diving into the implementation process. I rate it a nine out of ten.

The use case involves managing various aspects, including endpoint security, SaaS interface, and firewall management within the Check Point Infinity architecture. The Infinity portal serves as a centralized hub for overseeing all components of the Check Point security suite. The architecture incorporates XDR and MDR, enabling automatic correlation of information. In scenarios where a security issue arises, the system can automatically analyze data from diverse platforms, such as endpoints, firewalls, and Office 365. T

It offers significant benefits as a cybersecurity leader, known for pioneering the logical firewall and excelling with its Infinity suite. The expertise of Check Point professionals ensures efficient handling of challenges.

I have a positive history with Check Point, having worked with their firewall models since the nineties. A notable aspect that I appreciate is their ongoing effort to redesign the portal, giving it a fresh and centralized appearance. This is particularly significant as the transition from Check Point on-premises solutions to the cloud.

I've observed some challenges in terms of usability and performance, particularly since the shift to a service-oriented model like Infinity. It seems that the performance varies, likely influenced by the client's size and the provisioning of resources.

We have been using it for several years, and since it was released we have become partners.

The stability is influenced by the specific configuration and the capabilities of the machine itself. Currently, I can confidently rate the stability at eight out of ten.

The scalability and power seem to impact the interface quality; larger clients with more resources receive a better interface experience. In cases where clients initially buy licenses for a certain number of machines and later realize they need more, Check Point offers flexibility. Clients can purchase additional licenses even if it's mid-year, without the need to synchronize license renewal dates.

My experiences with Check Point's tech support have been positive. They responded promptly to issues, even conducting a video call for clarification. A licensing complication was swiftly addressed, showing their commitment to resolving bugs.

The initial setup was straightforward.

The deployment time varies depending on the specific machine and its configuration, however, in general, the implementation and installation processes are relatively quick. The deployment process is contingent on the specific configuration and the underlying infrastructure. However, due to our familiarity with the products, deployment is straightforward and typically doesn't extend over days. Instead, it can be accomplished in a matter of hours or even minutes, particularly in smaller cases. The process begins with obtaining the necessary licenses through a purchase order. Once acquired, we seamlessly integrate them into the Check Point dashboard, either through a physical conversion or by utilizing the Infinity portal. Subsequently, if configuration is required, we create the tenant and apply the license to it. From this point onward, the deployment process is quite straightforward and efficient.

The price is justified by the security it provides. In a world where security breaches can lead to significant financial losses, the investment in robust cybersecurity solutions is seen as essential. Moreover, the ongoing improvements in the dashboard experience further enhance the overall value proposition of Check Point Infinity, making it a comprehensive and worthwhile security solution for businesses in Portugal.

In Portugal, pricing for security solutions, particularly Check Point, is not a fixed rate. It's determined by factors like the brand's prominence and whether the product is flagged. The flexibility in pricing is advantageous, and being a special partner allows for negotiating special rates based on the project requirements. Unlike services like Office 365, Check Point licenses are not based on users but rather on machines. Clients are required to pay when submitting a purchase order. However, for those interested in trying the product, whether for a Proof of Concept or other purposes, we can facilitate trials. As partners, we have the ability to request trials from Check Point or conduct trials ourselves for one to three months. While trial versions can't be extended, we can release a new license with an additional thirty days, allowing clients to continue testing the product. After the trial period, we can convert the tenants and apply for a full license, enabling clients to choose the desired products for implementation.

Overall, I would rate it nine out of ten.

We required a first line of defense to protect, monitor, and ensure that no confidential information leaves the internal network. We also required a device that can segment our network so that different subnets like the DMZ, Production network, and testing environments. Threat prevention that required AI and ML capabilities was another reason to acquire the Check Point Quantum Spark NGFW. Finally, it offers an all-in-one solution that was a necessity where the same instance could manage and monitor VPNs, application control, web filtering, intrusion detection, and email security.

With Check Point Quantum Spark, we have a first line of defense in our environment, seated just after the router that connects to the ISP's endpoint, all traffic entering and leaving the network is monitored, and filtered depending on the different rules created.

The functionality of AI helps further in the threat detection field. This NGFW is able to support a large number of VPN connections and at the same time monitor these connections for any anomaly.

Finally, for any flagged threats, a sandbox functionality is also provided making it even more robust in detecting zero-day attacks.

The sandblast threat emulation is great. We are able to visualize the extent of specific threats without necessarily having them deployed in our environment. The Sandbox feature is able to virtualize an environment that can mirror what we have in the internal environment.

The quality of Service for different traffic types is excellent. We are able to prioritize business-critical traffic over other types of traffic like streaming.

Artificial intelligence threat profiling has helped a lot in detecting and protecting the internal network from zero-day, DNS, and DDoS attacks.

We'd like to see support for fiber connections. With the growth of the network, we would expect that more and more traffic is going through this device and soon enough, the bottleneck will be the type of connection being used to transfer data to the router and further to the ISP. A throughput of 1GBPS will hinder performance on the network.

Configuring fault tolerance for specific features, for example, power sources would ensure that the chances of the system shutting down due to a power surge are highly limited. This can further increase the SLA to 99.99%

We've used the solution for three years and we just recently upgraded to the 1535 series.

The system is stable and able to perform with the advised load without fail.

Quantum Spark is designed for small to medium businesses. With this in mind, the scalability is perfect and will support up to a firewall throughput of 1GBPS which is favorable for an SMB.

The Check Point customer service is prompt and with their knowledge base, the majority of the issues incurred are already cleared noted with a list of multiple solutions.

Previously we used the Sophos XGS series. The Sophos XGS firewall no longer met the business' growing needs as it further led to a slowness in the performance of the network hence the search for a new system that would fix this.

The initial setup was straightforward. Check Point's GUI interfaces are user-friendly, and it also provides a lot of information on setting up their devices.

This was an in-house deployment.

With the increased internal network performance and a decrease in the threats being exposed to the network; the return on investment for this is roughly in the range of 40% to 60%.

Quantum Spark has different subscription models where you can add more functionality as required. For a constrained budget, you can specifically pick out the functionalities you want, and pay for that.

We also considered:

• Cisco ASA 5500 series
• Cisco FirePower 1000s