We performed a comparison between Check Point CloudGuard Posture Management and Microsoft Defender for Cloud based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Microsoft Defender for Cloud includes regulatory compliance, ransomware protection, and UEBA, while Check Point CloudGuard Posture Management provides granular level reports, governance and administration portal panel, and comprehensive security features for data governance. Microsoft Defender for Cloud has room for improvement in consistency, customization, automation, and integration, while Check Point CloudGuard Posture Management needs expanded reporting options, reduced price, and better integration with third-party software.
Service and Support: Both Microsoft Defender for Cloud and Check Point CloudGuard Posture Management have received mixed reviews for their customer service, with some users reporting positive experiences and others facing frustration or stating that technical support needs improvement.
Ease of Deployment: Microsoft Defender for Cloud is easy to set up and does not require infrastructure deployment, while Check Point CloudGuard Posture Management may be more complicated and require vendor support or multiple administrators. Both solutions are user-friendly.
Pricing: Microsoft Defender for Cloud offers a range of license options with varying metrics, while Check Point CloudGuard Posture Management's pricing is based on the size of the cloud infrastructure. Check Point's setup cost is affordable and easy, but some reviewers express concern that Microsoft Defender for Cloud may be too costly for small or startup businesses.
ROI: Microsoft Defender for Cloud provides basic security features that may or may not provide a good ROI depending on the company's needs. On the other hand, Check Point CloudGuard Posture Management offers a high ROI growth rate along with essential compliance and asset protection.
Comparison Results: Users prefer Microsoft Defender for Cloud over Check Point CloudGuard Posture Management due to its valuable features such as regulatory compliance, ransomware protection, and access controls. Microsoft Defender for Cloud is also more automated and easier to use, with incident alerts and collaborative services.
"The CSPM module has been the most effective. It was easy to deploy and covered all our accounts through APIs, requiring no agents. Wiz provides instant visibility into high-level risks that we need to address."
"With Wiz, we get timely alerts for leaked data or any vulnerabilities already existing in our environment."
"The product supports out-of-the-box reporting with context about the asset and allows us to perform complex custom queries on UI."
"The first thing that stood out was the ease of installation and the quick value we got out of the solution."
"The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster."
"Out of all the features, the one item that has been most valuable is the fact that Wiz puts into context all the pieces that create an issue, and applies a particular risk evaluation that helps us prioritize when we need to address a misconfiguration, vulnerability, or any issue that would put our environment into risk."
"Our most important features are those around entitlement, external exposure, vulnerabilities, and container security."
"The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at."
"The CloudGuard for Cloud Intelligence tool has several significant features that provide security to our company."
"We like the GSL Builder feature. When you're running a security operations center, you spend a lot of time monitoring endpoint activity to ensure there is no malicious traffic or anonymous access in the environment. The GSL Builder is helpful for deep investigations of a particular reason for an incident. You can use it to get more information."
"Check Point CloudGuard CNAPP's initial configuration is very easy. It is plug-and-play. It also gives regular updates."
"We know the vulnerability in advance, so we can take some action for that vulnerability."
"Cloud security posture management is the feature we've been using the longest."
"It has an analytics service that does research for us."
"The most valuable feature is the CloudBots for auto-remediation of security findings."
"It provides complete visibility of workload hosted on different cloud platforms including AWS and Azure, along with multiple tenants."
"Threat protection is comprehensive and simple."
"The most valuable features of this solution are the vulnerability assessments and the glossary of compliance."
"Good compliance policies."
"Defender lets you orchestrate the roll-out from a single pane. Using the Azure portal, you can roll it out over all the servers covered by the entire subscription."
"The entire Defender Suite is tightly coupled, integrated, and collaborative."
"Everything is built into Azure, and if we go for cross-cloud development with Azure Arc, we can use most of the features. While it's possible to deploy and convert third-party applications, it is difficult to maintain, whereas Azure deployments to the cloud are always easier. Also, Microsoft is a big company, so they always provide enough support, and we trust the Microsoft brand."
"It works seamlessly on the Azure platform because it's a Microsoft app. Its setup is similar, so if you already have a Microsoft account, it just flows into it."
"It helps you to identify the gaps in your solution and remediate them. It produces a compliance checklist against known standards such as ISO 27001, HIPAA, iTrust, etc."
"One significant issue is that the searches are case-sensitive, so finding a misconfigured resource can become very challenging."
"Given the level of visibility into all the cloud environments Wiz provides, it would be nice if they could integrate some kind of mechanism to better manage tenants on multiple platforms. For example, let's say that some servers don't have an application they need, such as an antivirus. Wiz could include an API or something to push those applications out to the servers. It would be great if you could remedy these issues directly from the Wiz platform."
"The reporting isn't that great. They have executive summaries, but it's only a compliance report that maps all current issues to specific controls. Whether you look at one subscription or project, regardless of the size, you will get a multipage report on how the issues in that account map to that control. Our CSO isn't going to read through that. He won't filter that out or show that to his leadership and say, "Here's what we're doing." It isn't a helpful report. They're working on it, but it's a poor executive summary."
"The remediation workflow within the Wiz could be improved."
"We wish there were a way, beyond providing visibility and automated remediation, to wait on a given remediation, due to a critical aspect, such as the cost associated with a particular upgrade... We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately."
"We're looking at some of the data compliance stuff that they've got Jon offer. I know they're looking at container security, which we gonna be looking at next."
"The only thing that needs to be improved is the number of scans per day."
"Wiz's reporting capabilities could be refined a bit. They are making headway on that, but more executive-style dashboards would be nice. They just implemented a community aspect where you can share documents and feedback. This was something users had been requesting for a while. They are listening to customer feedback and making changes."
"The Check Point solution is somewhat expensive."
"CloudGuard CNAPP could be enhanced by increasing the number of components that run natively on Azure."
"We're looking for a solution that can incorporate legacy infrastructure for some of our business needs."
"There are opportunities for improvement that can be addressed through a roadmap."
"The reporting has a lot of opportunities to continuously improve so that we can continue to show value."
"I would like to see some AI on the back-end, just to assist with doing analysis and making recommendations."
"The security of Check Point CloudGuard Posture Management could improve. There are always new security issues coming out."
"The Check Point Infinity admin portal sometimes freezes."
"The documentation could be much clearer."
"From my own perspective, they just need a product that is tailored to micro-segmentation so I can configure rules for multiple systems at once and manage it."
"The solution's portal is very easy to use, but there's one key component that is missing when it comes to managing policies. For example, if I've onboarded my server and I need to specify antivirus policies, there's no option to do that on the portal. I will have to go to Intune to deploy them. That is one main aspect that is missing and it's worrisome."
"The overview provides you with good information, but if you want more details, there is a lot more customization to do, which requires knowledge of the other supporting solutions."
"Microsoft Defender could be more centralized. For example, I still need to go to another console to do policy management."
"Microsoft can improve the pricing by offering a plan that is more cost-effective for small and medium organizations."
"The initial setup is not actually so complex but it feels complex because there are many add-ons. There are many options and my team needs to be aware of all of these changes happening on the backend which is a distraction."
"After getting a recommendation, it takes time for the solution to refresh properly to show that the problem has been eliminated."
Check Point CloudGuard CNAPP is ranked 5th in Cloud Workload Protection Platforms (CWPP) with 63 reviews while Microsoft Defender for Cloud is ranked 3rd in Cloud Workload Protection Platforms (CWPP) with 46 reviews. Check Point CloudGuard CNAPP is rated 8.6, while Microsoft Defender for Cloud is rated 8.0. The top reviewer of Check Point CloudGuard CNAPP writes "Threat intel integration provides us visibility in case any workload is communicating with suspicious or blacklisted IPs". On the other hand, the top reviewer of Microsoft Defender for Cloud writes "Provides multi-cloud capability, is plug-and-play, and improves our security posture". Check Point CloudGuard CNAPP is most compared with Prisma Cloud by Palo Alto Networks, AWS GuardDuty, Qualys VMDR, Prisma Access by Palo Alto Networks and Orca Security, whereas Microsoft Defender for Cloud is most compared with AWS GuardDuty, Prisma Cloud by Palo Alto Networks, Microsoft Defender XDR and Microsoft Defender for Endpoint. See our Check Point CloudGuard CNAPP vs. Microsoft Defender for Cloud report.
See our list of best Cloud Workload Protection Platforms (CWPP) vendors, best Vulnerability Management vendors, and best Container Management vendors.
We monitor all Cloud Workload Protection Platforms (CWPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.