My main use case for Check Point Security Management is using it as a firewall, which ignores all my data threats, and it is useful to secure my inside IT infrastructure. It secures all the data and all the devices connected to the network. Actually, this is not the one I selected; I used Check Point 1800 Quantum Spark, which is not available in your content sharing, and for that reason, I selected this one.

Check Point Security Management helps with my daily operations as I use Check Point 1800, which is connected to the internet and all the networks. Nearly 200 to 350 people connect to the inside internet, and my ISP is connected to the firewall, which gives internet access to all the access points. Everyone who connects their laptop, mobile devices, or any kind of device with internet facility is secured because Check Point has internal visibility into end threats and will not allow any other DNS inside. Whenever any unauthorized access occurs with the devices, it gives me a pop-up, and I immediately go and block them. Check Point Security Management is very useful when compared to other devices.

One specific situation where Check Point Security Management really helped me catch or block a threat is its best feature: it segregates all the devices such as mobile devices, phone devices, tablets, smartwatches, laptops, and desktops. It shows each and everything in a segregation method. I have an old device as well, which shows everything in a single line, making it difficult to identify which one is a phone device and which one is a laptop. Check Point Security Management does not operate like that; it shows the mobile device, tablet, smartphone, laptop, and desktop separately so that I can easily find out how many desktops are connected, how many mobile devices are connected, and I can easily block mobile devices and free up the IPs. This is the main beautiful thing about Check Point 1800 Quantum Spark.

Check Point Security Management can be improved by addressing a negative challenge I face: sometimes it does not show internet utilization in the GUI. When I ask support, they tell me to upgrade the firmware, which happens quite frequently. Since I deployed the device in my on-premises environment 1.5 years ago, I have experienced this issue three times.

Check Point Security Management has not impacted my daily work or decision-making in any negative way. As an IT person, I occasionally need to check how much internet bandwidth has been used in the internal network over the past month, day, or week. During those times, when I open the data utilization column, it shows nothing available. Each time this happens, I need to upgrade to the latest version of the firmware, and this frequent updating affects my productivity negatively. If Check Point addresses this issue in the future, it will be beneficial for all customers using Check Point SMBs.

I have been using Check Point Security Management for the past 1.5 years.

In my environment, Check Point Security Management is stable, as I do not see any downtime. The only issue I face is with data utilization not showing, which I have mentioned previously. Other than that, everything is going well.

Check Point Security Management's scalability is quite sufficient for my organization with below 500 employees, and it functions very smoothly. Currently, it handles the network well, and I am unsure if the Check Point 1800 will work adequately if my organization increases from 500 to 600 employees, but so far, it has been functioning smoothly without any issues in the past 1.5 years.

I would rate the customer support for Check Point Security Management as four out of five, or seven out of ten.

Neutral

I previously used a different solution before Check Point Security Management, but I do not want to disclose the product name due to marketing strategies. I switched because that device hung every time when connecting to the network; it could only support 40 to 50 users, while my organization had 150 users when I joined.

The initial setup with Check Point Security Management is very straightforward and easy; we implemented the tools within a six-hour timeframe.

I have seen a return on investment with Check Point Security Management, as my security concerns regarding data production have been greatly diminished, and my time is also saved. Additionally, my reports that I send to management monthly are automated, which also saves time.

My experience with pricing, setup costs, and licensing for Check Point Security Management involves a bit of a challenge in pricing, as it is somewhat costlier than previous devices. However, it is worth paying extra for this product.

Before choosing Check Point Security Management, I evaluated other options including the same device I had earlier but in a newer version. I found that the latest version and Check Point 1800 have multiple variations and use cases. We checked three other devices as well, which could not match the capabilities of Check Point 1800 due to its significant improvements and multiple use cases. That is why we chose Check Point Security Management for our internal IT infrastructure.

I save significant time with the alert system and device management because it provides data in graphs and reports. Whenever a data threat arises, it alerts me when the threat comes inside the device or from the devices to the inside network. I receive alerts and block that device, preventing the threat from affecting the entire network. This is one of the positive aspects of the Check Point 1800 device.

My advice to others looking into using Check Point Security Management is to first assess your organization's needs regarding how many people will connect to the internal network. This decision depends on that number. If you have more than 500 or 550 people, please check whether this solution will be effective for you. It's important to take demos a few times from Check Point vendors or directly from Check Point before making a purchase.

I rate Check Point Security Management eight out of ten.

This is the Wi-Fi documentation. I work with the service, and we are partners with Check Point. One of our clients, Parliament, required an upgrade from physical to virtual implementation. This was my first implementation. We have another client, and the plan is to do something with them this year, although I'm not sure when. I've been involved in some other things, however, this was my first implementation.

It's a reliable solution for security without mentioning its importance. We can't work without Check Point since it provides the real visibility needed to manage the environment. You can depend on it, as it assures the environment is well-secured. It's doing great work, and we can't work without SQL. We don't work with any other solution.

One case I saw was with the logs, which gave me the transfer and the vibration. There's a lot of logs, and I'm unsure about their validity, however, they take up a lot of space. We had to provision the virtual machine twice. Another reason is that the database was already large thanks to the numerous logs. I'm not sure how they can be managed comprehensively.

I have done my first implementation of the solution.

Ever since I implemented it, we have not had any complaints from the client side. That is a good sign regarding stability.

Check support was involved during the implementation. We had support during the migration process. The issue was the size of the partition for logs. After the support, we realized we needed to resize. The challenge was with drivers due to the size, and we had not provisioned the partition to the right size. This was resolved with support.

Neutral

We had to determine the specifications required for the security of the virtual machine, such as memory, storage, and network setup. The provisioning of the VM depended on the available resources since the box itself had a lot of memory. Specifications are crucial for the setup, and we needed enough storage. The migration was time-consuming but manageable.

With Check Point, I can compare it with Fortinet. Fortinet is a bit lower, while Check Point is on a higher level in terms of visibility and reliability. I've seen recommendations for Check Point over other products.

I would definitely recommend Check Point, especially since our client was already using it. We had considered other options, but Check Point was preferable. The implementation supports an environment with more than one hundred users. 

Overall, I would rate this product a ten out of ten.

We work with multiple security tools, including network security and information security solutions. Our primary use case includes using Check Point and other tools like CyberArk for privilege access management, Cisco, and WebSight CloudSec.

The product helps in securing our complete organization. We have not received any alerts that were suspicious, which assures us that it's working as expected.

It's already helped secure our organization effectively. That said, the integration of all the firewalls should be centralized, which would make management easier.

We are not sure if there is a centralized security console available. It would be beneficial if all firewalls could be integrated under one management console.

We have been using the firewall for more than ten years.

We are confident in the security solution as we have not faced any alerts that were suspicious.

We have partner support that helps us mitigate vulnerabilities reported by our infrastructure team. Most of the time, we get good support.

Neutral

The first deployment takes two to three days. After setup, maintenance and updates are straightforward.

Since we are using it extensively, we get significant discounts during procurement. The tool is cost-effective.

I'd rate the solution eight out of ten.

The Security Management server provides centralized management to manage all the security gateways.

Many organizations will have more than one firewall. This may be in the same location or in a different location. Users can manage all the firewalls from a single location.                                    

It provides centralized logging for all incoming and outgoing traffic.

The solution centralizes licensing and auto-licensing with smart updating. 

In organizations where there are many firewalls, one firewall license may expire. We can easily update licenses from the smart console from the same location or from different locations.                                               

It also provides centralized logging that helps during troubleshooting - which provides detailed logging of access rules, NAT rules, application filters, VPNs, etc.                                                                                                              

The centralized logs and management are helpful. All of the logs are stored in an external server or within the Management Server. All of the logs are very easy to understand and provide detailed information about the instance. 

Through the Management Server we can easily enable all the features and easily disable them as well. 

Check Point offers PS services in India. As per personal experience and based on many organizations, Check Point needs to improve PS services. 

For the past one and a half years, I have been using a Check Point Firewall and Check Point Management Server.

The stability is the best.

I am satisfied with the scalability.

So far, there is no point reach out to technical support.

Positive

No, we have not selected any other solution.

As a Check Point implementation engineer, I found the setup process easy. 

The vendor expertise is very good.

The licensing price is a bit expensive. However, it provides very good security at the perimeter level.

No, we have not evaluated other options.

They just need to improve PS service in India.

To make the tool better, I think we could have some sort of analysis similar to how some products offer information related to social media sentiments. If we could get that kind of assessment, some sort of analysis of some sort, I think that would be something that can really improve the solution.

In the future, I would like to see more frequent updates because of the changing security landscape. We should be seeing more updates in the tool, especially those that are not paid. The tool can also put in efforts in terms of maybe the community by conducting some sort of workshop or some sort of online event to bring the community together so that we can all meet. A community portal is needed.

I have been using Check Point Security Management for five years.

Stability-wise, I rate the solution a nine to ten out of ten, especially for the cloud version. The on-premises version was a bit unstable, and I think I will give stability a ten out of ten.

Speaking about scalability, in terms of maturity, product security, and reliability, I would rate the tool an eight out of ten.

Around 200 to 250 people in my company use the tool.

I have experience with the solution's technical support, and I don't think the product is doing well. We have to reach out to the first level of support and then to the third level of support. I rate the technical support a six out of ten.

Neutral

The product's initial setup phase had no problems.

The product's installation phase was easy. The moment we transitioned from on-prem to the cloud, we realized that the on-prem version was a bit more difficult to use, and the cloud version was easier because it has some sort of configuration wizard. The provisioning was easy.

The solution is deployed on the private cloud version offered by AWS, but we use it across the company's group, and it is hosted in South Africa.

The solution can be deployed in an hour and a half. The deployment phase was not so bad.

I was not involved in the deployment since I had my tech team with 12 security engineers for it who can take care of the product and the firewall. My company's IT department has around 30 technical members but only 12 take care of information security matters associated with the tool.

In terms of the tool's financial and commercial aspects, we do a risk assessment every quarter. There is a huge cycle of risk assessment every quarter. As a part of risk assessment, Check Point reviews threats. When the risk team comes, it assesses the group. They give us some values about the threats that we are facing. They explain that since implementing the solution, this is the threat, and this is the value. Some empirical data is used.

Honestly, the tool is expensive. It's a good product, so definitely, it is expensive. I realized that the tool is a bit more expensive than the rest, at over 20 to 30 percent overall. If one will be very expensive, and ten means low price, I rate the tool's price as a three out of ten. There are so many other products out there that are more expensive than Check Point. There are also so many other products that are cheaper than Check Point.

Over the other tools in the market, my company chose Check Point even if it is a bit pricey, but it fits the bill. From a business requirements point of view, it fits the bill. With the tool, we have been able to restructure our infrastructure in terms of the IT landscape. We are also able to bring policies without any fear of infiltration. In a nutshell, it fits before a business case.

Check Point Security Management streamlines operations in our specific industry. We used to have a lot of instances, but because of the alerts that come from the kind of configuration the solution offers, we are now able to take care of instances even before they happen. Basically, the tool has really helped us reduce instances by about 40 to 50 percent.

The tool has a firewall and endpoint security to improve our company's security posture, especially for our mobile devices. Our company has a sort of principle where there is a need to bring your own device, so it is used to take care of things in terms of security. The security team within our department escalates things quickly.

Speaking about threat prevention in our daily operations, I would say that before the tool's implementation, we used to report a loss of about 50,000,000 dollars, but it has now gone down after the product was installed. It looks like it has helped capture those threats, alert in advance, and anomaly detection. It has been a very helpful product.

Speaking about the influence of Check Point Security Management on our IT infrastructure, I would say that we have implemented the product across endpoints, including mobile devices and devices that fall under the BYOD category. With Check Point, we were able to implement and allow our staff to bring their devices and work from wherever they want. Without Check Point, we would not have been able to do so, and that changes the landscape and trims down on the devices that we would have been acquiring centrally for our staff.

My company started the analysis on AI and areas like trends. The trends, especially transactional trends and all that kind of thing, are areas where we have already started some use cases for AI, about five of them, and I think the engine is still in the learning phase. I would say that we haven't really started using AI, but we already have it set up in Check Point, and it will be around the area associated with trends. Basically, we have not really explored the AI part yet.

I recommend the tool to others.

The tool's maintenance is done automatically on the cloud. When we were using the tool's on-prem version, we were happy to offer support for the product in our company.

I rate the tool an eight out of ten.

We use the solution for VPN with multifactor authentication, IPS protection, and threat emulation. We have deployed the product in the cloud data center.

It's very easy for management to understand workflow and everything.

Check Point Tech Support will not assist with new configurations if we encounter any issues during the configuration process. They only provide support if there are issues with existing configurations.

I have been using Check Point Security Management for four years.

The solution is stable.

It is 100% scalable. Behind the firewalls, around 25 web applications are accessed daily. Each application can be accessed by up to one lakh people every day.

Support is good.

Positive

Previously, I worked with FortiGate, and integrating that product with cloud platforms was very difficult. The workflows were overly complex, and the documentation was inadequate.

Check Point is superior to other security vendors. Their signature database, which includes antivirus, IPS, and anti-malware, is highly advanced. The system is easy to understand, and deployment via the web interface is also straightforward.

For example, during the COVID-19 pandemic, a new vulnerability known as Log4j emerged. While many vendors were unaware of this vulnerability, Check Point promptly emailed all its customers to inform them. They reassured customers that their gateways already had predefined prevention signatures to protect against this threat, requiring no additional action. 

The initial setup is straightforward. Fresh deployment and creating the gateways will take approximately three to four hours.

With Fortinet, managing the product through cloud formation can be difficult to implement in a cloud environment because it's not straightforward. First, we need to spin up some VMs and configure everything manually. In contrast, Check Point provides a more seamless cloud formation process. With Check Point, you click on the cloud formation option, and the VMs and necessary configurations are automatically set up. You will get GUI access quickly.

Only two resources are required. One knows Check Point, and another guy knows the cloud platform where they want to deploy the gateway.

The integration process is straightforward. If you have some knowledge of your cloud service provider, you can easily integrate with it.

It has improved over the past four years. Previously, pushing any policy from the management server to the security gateway could take around ten to fifteen minutes. However, this task is now completed in about one minute with the new firmware version. This improvement demonstrates the substantial advancements made in the Management of Check Point products. It continuously updates its products to align with security standards and market awareness. They implement these updates in their own unique way. It is a strong player in the security market and has a long-standing presence. Their solutions are reliable and trusted for real security needs.

Maintenance is very easy.

First, we will thoroughly understand their requirements. Once we understand clearly, we will design tailored solutions for them. Next, we will present these solutions to the customer for review and discussion. Following their approval, we will run POC, collect evidence as required, and submit the comprehensive report.

Overall, I rate the solution a ten out of ten.

We use the product as a perimeter and core firewall for multiple clients at different locations.

We have physical Smart-1 appliances and virtual appliances in our environment. We merged all of the old managers into these managers and managed to centralize the management of firewalls and see the logs altogether.

We are using management API for large configs, and clear rules, blocking malicious IP addresses with SAM rules, and migrating the VLANs with it.

We have deployed Check Point high-end firewall UTMs to medium business-grade devices with different models. We also have a cloud-based Check Point firewall for one of our clients. It's easy to manage either centrally or as separate devices. We use them for network security including firewall rules, NATTing, Web application access, IPSec VPN tunneling between offices and cloud services, user VPN clients for access from home, data encryption, anti-malware/anti-virus solutions, and as network gateway devices for routing and DNS.

Check Point's management portal and firmware are very stable and don't require frequent maintenance. Their IPSec tunneling is very stable, especially with Azure and AWS networks.

Access to detailed network logs in real time helps us decide and take prompt action to block and fix threats.

Centralized management is great. With this, we manage all of Check Point products from one central management, we can apply rules, and NATS and manage app and URL Policies, threat prevention, and IPS protection rules.

Secondly, centralized log and report management is important. We can distribute logs to our log appliances with centralized management and view logs without logging additional devices.

HA Structure provides good coverage and works fine. With the HA structure, we can manage two data centers as one, and this is helping much.

We can keep old revisions, and with that, we can check or revert to one when needed.

The most valuable aspects of the solution include:

• IPSec VPN Tunneling, 
• DDoS Protection, 
• HÀ and Clustering, 
• Firewall Rules, 
• Proxy support, 
• Revision history
• Detailed audit log, 
• Smart Event
• Filter syntax.

These features are easy to configure and offer multiple options to set them up with cloud services and other vendor firewall products.

We can always feel secure if some things go wrong, I'm sure that we can restore to the old one.

We can apply centralized proxy settings to get additional databases when we need them.

We can get a graphical view of the traffic and provide history when we need it.

We didn't find any major feature missing or lacking in Check Point products that we used. We'd just like them to continue to improve their products with new features and updates.

However, license update and upgrade processes can be made a little easier.

Also, I'd like to see more integration possibilities between Check Point and other vendor security solutions.

The Check Point SandBlast platform could also be merged with the Check Point GAIA platform for a central management console and easier controls.

I have been using Check Point for more than 10 years for different clients.

The solution is highly scalable.

Check Point's knowledge base is very vast and provides lots of information if we need some help. The community is very helpful as well.

Positive

We have multiple clients and use different technologies, so we work on other vendor products also.

We have a professional service team that we work together for setup-related work to Check Point appliances.

We handle the initial setup in-house.

We have multiple clients and use different technologies, so we work on other vendor products also like Cisco ASA, FTD, Palo Alto, FortiGate etc.

Overall I am fully satisfied with Check Point

The main function is to securely manage and deploy configurations to firewall devices and logs through its security management console. We configure and test all settings within the security manager and subsequently push these configurations to the relevant firewall devices.

Check Point Security Management in cloud environments focuses on securing cloud services and managing traffic within the cloud environment. Network security typically involves managing Layer 3 to Layer 4 services. Access Control Lists are used to secure network access.

It offers numerous features and blades, including intrusion prevention (IPS) and malware detection. It excels in network security and VPN capabilities, including IPSec VPNs. IPS is particularly powerful due to its signature-based detection, which automatically checks for and identifies malicious software.

Check Point is highly regarded for its effectiveness and the three-layer architecture for security, comprising the client, Security Management, and secure management console, integrated with firewall capabilities. This architecture differentiates it from other security solutions like Palo Alto, Cisco, and FortiGate. Our files are more secure against potential compromises with three layers, as configurations are managed centrally on the Management servers. The SmartConsole facilitates easy configuration and management, aligning with modern automation trends. Integrating Check Point with AI and API security features enhances its effectiveness and user-friendliness. Customizable logs tailored to sources, businesses, and IPs can be automated for delivery via email, ensuring accessibility without needing to log into devices directly.

I have been using Check Point Security Management as a partner for ten years.

The product is stable. I rate the solution’s stability a ten out of ten.

600 users are using this solution.

I rate the solution’s scalability a ten out of ten.

There are multiple ways to contact Check Point Security Management, such as phone calls, chats, and emails. We receive responses based on the ticket's priority and the business need.

Positive

The initial setup is straightforward and takes three hours to complete. I rate it a ten out of ten, where one is difficult and ten is easy.

The product is a bit expensive. It has yearly licensing, costing around 48 bucks.

It is very effective nowadays due to its ability to provide feedback from DDoS attacks and man-in-the-middle attacks, which are powerful and useful in today's enterprise scenarios. It integrates with various software APIs and provides web firewalls and security, which are crucial in security. These features protect against DDoS attacks, man-in-the-middle attacks, and other implementation vulnerabilities. It provides security and ensures that our services are available 24/7.

I recommend the solution because it is proactive and easy to use.

Overall, I rate the solution a nine out of ten.

We utilize the security management solution to oversee all our Check Point products, including firewall, IPS, and antivirus policies. It serves as our primary tool for managing all Check Point devices.

Check Point Security Management excels over Forti Management in daily operations, policy management, and graphical interface. It is easy to open and edit policies, search within them, and view logs.

The only issue is that, you need to install an application instead of managing it through a browser. Thus, it requires installation. Additionally, it can be slow when multiple users access the manager simultaneously. Even with increased CPU and memory resources, some performance issues may still occur when multiple users check simultaneously.

I have been using Check Point Security Management for ten years.

Sometimes, we encounter crashes while working on Check Point Security Management, necessitating application restarts. We also face connectivity issues with certain firewalls, making it less stable than other products.

The solution’s scalability is good ; adding more CPUs and memory can give you more gateways.

20 managers are using this solution.

I rate the solution’s scalability a nine out of ten.

We currently have at least two or three cases open, and some are regarding demand. We struggle to find a good engineer who can truly help us instead of just sending some comments for us to run and provide feedback. They need to improve, especially in their initial client support.

Positive

The initial setup is complex.

Compared to Forti Management, Check Point Security Management involves much more work and is more difficult. You need to establish connections to all the firewalls manually, one by one. However, with the function manager, you point the firewall to the manager and accept it on the Management, and it's done. Additionally, you need to manage certificates on Check Point, making the process less straightforward than FortiManager. 

You depend entirely on the manager to edit the security gateway policies. If the manager encounters an issue with Fortinet, you can still access the FortiGate and delete policies. In Check Point, you cannot delete firewall policies directly on the firewall itself if you encounter a Management issue.

Deployment, including firewall synchronization, takes about four days to complete.

You usually need to create and use the VM Manager VM. So, you need to deploy the VM, configure the IPs, and install the Check Point console software. Then, you need to perform an SIP IT connection to all the firewalls to manage them. After that, you need to configure the firewall networks and public IPs. 

I rate the initial setup as seven out of ten, where one is difficult, and ten is easy.

The product is more expensive than Fortinet. We need to pay the license for the Management. I rate the product’s pricing a seven out of ten, where one is cheap and ten is expensive.

It enhances our daily operational efficiency. Therefore, all management personnel prioritizing working on Check Point policies over Fortinet would benefit. However, maintenance upgrades, backups, snapshots, and synchronization between primary and secondary management can become cumbersome. These tasks tend to be more challenging and time-consuming.

The learning curve for Check Point is quite steep. Sometimes, when we recruit new members to our company, they take a lot of time to understand how our Check Point system works, including the connection between the Management and the firewall, among other components. With Fortinet, it takes only two or three weeks for them to get acquainted with everything. With Check Point, they need at least three months to become accustomed to upgrades, managing policies, and maintenance of the Management system. So, it takes at least three or four times longer than with Fortinet.

AI is essential for correlating logs and presenting the ones that matter. They could strengthen how they present logs by giving more attention to the ones that matter most.

Check Point is easy to use, allowing users to drag and drop objects effortlessly. However, it's essential to note that deploying and maintaining the solution may require a bit more expertise than some competitors.

Overall, I rate the solution an eight out of ten.

Check Point Security Management Server is a comprehensive solution designed to streamline and centralize the management of security policies across an organization's network infrastructure. 

One of the standout features of the Check Point Security Management Server is its ability to manage security policies across multiple Check Point security gateways centrally. This centralized approach simplifies policy deployment, monitoring, and updates, making it easier for administrators to maintain a consistent security posture.

The Check Point Security Management Server has the ability to centrally manage security policies across multiple Check Point security gateways. This centralized approach simplifies policy deployment, monitoring, and updates, making it easier for administrators to maintain a consistent security posture. 

It offers high-performance capabilities to handle large volumes of traffic while maintaining low latency, ensuring minimal impact on network performance. This product greatly improved our company customers and allowed us to implement the solution easily.

The most valuable aspects of the solution are:

1. Centralized Management: It can centrally manage security policies across multiple Check Point security gateways. This centralized approach simplifies policy deployment, monitoring, and updates, making it easier for administrators to maintain a consistent security posture. 

2. Intuitive User Interface: The management console provides an intuitive user interface that allows administrators to configure and monitor security policies with ease. The interface is well-designed, with clear navigation and comprehensive options for managing security rules, network objects, and logs. 

3. Comprehensive Security Features: Check Point Security Management Server offers a wide range of security features, including firewall, intrusion prevention, VPN, application control, and threat prevention capabilities. These features work together to provide multi-layered protection against various cyber threats.

Check Point Security Management Server integrates seamlessly with other Check Point security products, providing a cohesive security ecosystem for organizations. It also offers compatibility with third-party security solutions, however, it is not a lot. This needs to be improved.

Check Point offers comprehensive product support and documentation, including online resources, knowledge bases, and technical support services. This ensures that administrators have access to the assistance they need to deploy and maintain the Security Management Server effectively, but when customers raise issues, the support is not satisfactory and timely.

I've used the solution for more than one and a half years.