We compared Check Point Security Management and Graylog based on our users' reviews in five categories. We reviewed all of the data and you can find the conclusion below.
Features: Check Point Security Management is praised for its centralized management features, user-friendly interface, and extensive monitoring capabilities. Graylog stands out with its exceptional search functions, seamless integration with Elasticsearch, and real-time data access. Check Point Security Management could improve by simplifying the migration of security policies, optimizing performance, and expanding its management API. Other pain points include threat tracking and documentation. Graylog could benefit from additional customization options and an improved rule-creation process.
Service and Support: Check Point Security Management's customer service is widely praised for being knowledgeable, supportive, and reliable. Although some users had problems with inexperienced agents and coordination issues, the overall support experience is positive. Graylog's customer service is generally well-regarded, with reviewers noting effective solutions and satisfactory experiences. While response times may differ, Graylog's support is considered superior compared to that of other products.
Ease of Deployment: Check Point Security Management is generally seen as easy to set up if the user has some expertise. Some Graylog users said the setup was easy. Other reviewers faced challenges, but these were easily resolved with help from the vendor’s support staff. Graylog is easier to set up in smaller environments, but it could get complicated in large clusters.
Pricing: Check Point Security Management is seen as a solid investment, offering flexibility and a good value for the price. Graylog offers an enterprise edition and an open-source option with a daily capacity restriction. Some users said that data costs can be expensive.
ROI: Check Point users said the solution offers a steady ROI over time. Graylog can offer some cost savings. The precise ROI may vary depending on the organization’s size and use case.
"The product has done a great job in protecting our business network and SCADA systems."
"Each department can easily share data with the management without fear of data compromise."
"Check Point Security Management has a great feature that allows you to automate the request of the automated server."
"The solution is ideal for use and deployment in a large infrastructure environment."
"The solution is easy to use and comes with few vulnerabilities. You don't have to worry about release upgrades. Life cycle management is very easy."
"The intuitive interface also allows new team members to adapt to the technology if they are not familiar with it initially. It doesn't take much for one to familiarize themselves with the product."
"The firewall's blades are the solution's most valuable feature."
"The cluster solution made our job easier any fault to the device will not halt entire internet connectivity."
"I like the correlation and the alerting."
"The best feature of Graylog is the Elasticsearch integration. We can integrate and we can run filters, such as an event of interest, and those logs we can send to any SIEM tool or as an analytic. Additionally, there are clear and well-documented implementation instructions on their website to follow if needed."
"Everything stands out as valuable, including the fact that I can quantify and qualify the logs, create pipelines and process the logs in any way I like, and create charts or data maps."
"Real-time UDP/GELF logging and full text-based searching."
"It is used as a log manager/SIEM. It provides visibility into the infrastructure and security related events."
"I am very proud of how very stable the solution is."
"UDP is a fast and lightweight protocol, perfect for sending large volumes of logs with minimal overhead."
"What I like about Graylog is that it's real-time and you have access to the raw data. So, you ingest it, and you have access to every message and every data item you ingest. You can then build analytics on top of that. You can look at the raw data, and you can do some volumetric estimations, such as how big traffic you have, how many messages of data of a type you have, etc."
"The management API can be further developed so that all functions offered by the dashboard are also available via the API (for example, Network Topology)."
"Support is the main area that they need to improve. Our support experience is not very smooth. We are based in Africa, and we don't know whether it is because of our region. I would like a feature where there is a workflow to provide authorization to some users before they're able to create and apply rules. Such a feature should be integrated with the management. It should not be in the box that comes with it."
"I would like to bind users to their network, as well as their local office machine."
"It could improve by showing DNS-specific information for connections to unknown public IPs."
"While the console and administration work well, they have to work on performance since it consumes a lot of CPU and memory."
"I would like for users to have more control over the platform in the next release. Right now, the system is very central and general requiring new rules to be created that better-suite our requirements."
"Check Point could improve by enhancing the networking in their solution in order to align it with the existing network architecture."
"It would be great if the SmartView Monitor could become integrated into the SmartView Console Platform."
"More complex visualizations and the ability to execute custom Elasticsearch queries would be great."
"I hope to see improvements in Graylog for more interactivity, user-friendliness, and creating alerts. The initial setup is complex."
"More customization is always useful."
"Over six months, I had two similar issues where searches were performed on field "messages". It exhausted all the memory of the ES node causing an ES crash and a Graylog halt."
"Dashboards, stream alerts and parsing could be improved."
"Graylog could improve the process of creating rules. We have to create them manually by doing parses and applying them. Other SIEM solutions have basic rules and you can create and get more events of interest."
"Since container orchestration systems are popular and Graylog fits the niche well, perhaps they could officially support running in docker containers on Kubernetes as a StatefulSet as a use case. That way, the declarative nature of Kubernetes config files would document their best case deployment scenario-"
"With technical support, you are on your own without an enterprise license."
More Check Point Security Management Pricing and Cost Advice →
Check Point Security Management is ranked 10th in Log Management with 56 reviews while Graylog is ranked 11th in Log Management with 18 reviews. Check Point Security Management is rated 8.8, while Graylog is rated 8.0. The top reviewer of Check Point Security Management writes "Great DDoS protection, high availability, and useful firewall rule implementation". On the other hand, the top reviewer of Graylog writes "Great detailed search features and easy Java integration, but needs improvement in integration with Python". Check Point Security Management is most compared with Wazuh, Fortinet FortiAnalyzer, IBM Security QRadar, LogRhythm SIEM and Datadog, whereas Graylog is most compared with Grafana Loki, Wazuh, syslog-ng, Fortinet FortiAnalyzer and Splunk Enterprise Security. See our Check Point Security Management vs. Graylog report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.