• Home
  • Check Point CloudGuard CNAPP vs. Forcepoint CASB

Check Point CloudGuard CNAPP vs Forcepoint CASB comparison

Cancel
You must select at least 2 products to compare!
Check Point Software Technologies Logo
Check Point CloudGuard CNAPP
Read 64 Check Point CloudGuard CNAPP reviews
1,511 views|884 comparisons
95% willing to recommend
Forcepoint Logo
Forcepoint CASB
Read 6 Forcepoint CASB reviews
996 views|876 comparisons
66% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Vulnerability Management
June 2024
Executive Summary

We performed a comparison between Check Point CloudGuard CNAPP and Forcepoint CASB based on real PeerSpot user reviews.

Find out what your peers are saying about Tenable, Wiz, SentinelOne and others in Vulnerability Management.
To learn more, read our detailed Vulnerability Management Report (Updated: June 2024).
Download the complete report
772,679 professionals have used our research since 2012.
Featured Review
reviewer2379448
The benefits were immediate, effectively providing compliance rule sets and security best practices
We haven't had any cloud security incidents since implementing CloudGuard CNAPP in 2017. It's been a critical tool as we've grown our cloud usage,... Read more →
Edwin Eze Osiago
Reliable, easy to set up and offers good visibility
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"I love the work involved in maintaining and scaling security services and configurations across multiple public clouds using this solution, versus using native native cloud security controls. It is so much better. The different cloud platforms all have their own way that they handle a lot of the stuff that Dome9 handles. Even within their platform, they are in a lot of disparate places, e.g., in AWS, there are five different tools. You have to jump between them to get the same information that you can just pull in automatically on Dome9, which is just one platform. We are using multiple platforms, so that makes it even more complicated and time consuming if you had to just rely on them to get all of your information. Whereas, it's all just summarized and put together on the Dome9 end.""Compliance is becoming an important tool for us as well.""Good interface and visibility.""It saves time because I can look across the organization. Instead of checking 50 different accounts atomically and spending 15 minutes investigating each, I can spend 15 minutes exploring all 50 accounts. It allows me to quickly look across the org for similar problems when one comes up. That's a huge time saver.""Dome9 continues to be a major piece of our cloud security architecture and has given our senior leadership team a high degree of confidence in our ability to protect our cloud environment.""The ability to drill down to individual hosts on an account and see which ones are affected is valuable.""It is able to bring visibility into that cloudy space where the security departments do not really see what is happening on the DevOps side. It brings visibility, security control, and standardization.""It is easy to administer and easy to deploy. It has automated or pre-configured templates, security features, and proactive threat detection."

More Check Point CloudGuard CNAPP Pros →

"The product offers an easy initial setup.""Macro integration is a good feature.""As it is based on AWS, it is not a problem.""It gives you value for your investment.""Generally, most of our customers are happy with it though.""The most valuable aspect for us is the fact that the product seamlessly integrates with the Forcepoint DLP."

More Forcepoint CASB Pros →

Cons
"I am not a technical person, but generically, the user interface can be a little more intuitive. Our staff has trained network security and cloud security professionals, and they get it, but when you are trying to get to the customers to be able to pick it up and maintain it, it can be a bit difficult.""Currently, worldwide, there are many companies of all sizes that do not understand the value that their data has, but even with all existing clouds, they also do not understand what the shared responsibility model is. They only assume that by having a cloud, the provider must ensure safety, when the truth is that the providers only secure their sites. Everything we do in the cloud and how we configure it is actually our responsibility.""The support must be more effective.""Down the road, we would like to see automation. That is probably a feature that most people want. If they can automate patching a vulnerability, it will be much easier.""The reporting has a lot of opportunities to continuously improve so that we can continue to show value.""Integration could be improved.""Currently, this solution is somewhat expensive.""The tool should incorporate more use cases like improving security scores. It should also improve documentation."

More Check Point CloudGuard CNAPP Cons →

"The solution needs to be easier to install, and they need to clean up the backend, so stuff doesn't break.""Integration is an area of the solution that needs to be improved.""When using the Forcepoint CASB, and you are a remote worker, basically not in the office, you have to have an agent on your computer, a Forcepoint agent. However, with many other CASB solutions, they can integrate with MDM.""Forcepoint removed the ability to scan for unsanctioned applications on the CASB.""They should work on the possibility of consolidating all of the products with the group of agents.""Lacks different ways to authenticate users."

More Forcepoint CASB Cons →

Pricing and Cost Advice
  • "​They support either annual licensing or hourly. At the time of our last negotiation, it was either one or the other, you could not mix or match. I would have liked to mix/match. ​"
  • "I would advise taking into account the existing number of devices and add a forecast of the number of devices to be added in the coming year or two, to obtain better pricing."
  • "It is a very straightforward licensing model that is based on the number of assets you are discovering and managing with the solution."
  • "The licensing and costs are straightforward, as they have a baseline of 100 workloads (number of instances) within one license with no additional nor hidden charges. If you want to have 200 workloads under Dome9, then you need to take out two licenses for that. Also, it does not have any impact on cloud billing, as data is shared using the API call. This is well within the limit of free API calls provided by the cloud provider."
  • "I suggest that you pay attention to the product pricing because while there are no tricks, and the licensing model is transparent, the final numbers may surprise you."
  • "Right now, we have licenses on 500 machines, and they are not cheap."
  • "The pricing is tremendous and super cheap. It is shockingly cheap for what you get out of it. I am happy with that. I hope that doesn't get reported back and they increase the prices. I love the pricing and the licensing makes sense. It is just assets: The more stuff that you have, the more you pay."
  • "Licensing and costs are straightforward, as they have a baseline of 100 workloads within one license and no additional charges."

    • More Check Point CloudGuard CNAPP Pricing and Cost Advice →

  • "The pricing really depends on the size of the customer's business because it is price-relevant to the environment."

    • More Forcepoint CASB Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
    See Recommendations
    772,679 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Check Point CloudGuard Posture Management?
    Top Answer:The visibility in our cloud environment is the most valuable feature.
    Read all 33 answers   →
    What is your experience regarding pricing and costs for Check Point Cloud...
    Top Answer:The price is on the higher end.
    Read all 27 answers   →
    What needs improvement with Check Point CloudGuard Posture Management?
    Top Answer:We have concerns regarding the pricing and would appreciate seeing some improvements.
    Read all 32 answers   →
    What do you like most about Forcepoint CASB?
    Top Answer:It gives you value for your investment.
    Read all 6 answers   →
    What is your experience regarding pricing and costs for Forcepoint CASB?
    Top Answer:It gives you value for your investment, but it doesn't contribute. So, I would rate it as an eight.
    Read all 5 answers   →
    What needs improvement with Forcepoint CASB?
    Top Answer:Some IDPs, such as Azure AD, are not compatible at the moment. It becomes a problem just to authenticate with Azure AD. I hope they will look into it. For Fort Knoxville, the agent is different from… more »
    Read all 6 answers   →
    Ranking
    6th
    out of 111 in Vulnerability Management
    Views
    1,511
    Comparisons
    884
    Reviews
    55
    Average Words per Review
    668
    Rating
    8.6
    13th
    out of 30 in Cloud Access Security Brokers (CASB)
    Views
    996
    Comparisons
    876
    Reviews
    4
    Average Words per Review
    462
    Rating
    7.5
    Comparisons
    Also Known As
    Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence
    Imperva Skyfence
    Learn More
    Check Point Software Technologies
    Forcepoint
    Overview

    Check Point CloudGuard CNAPP is a robust cloud security solution, offering comprehensive protection for cloud workloads and applications against cyberattacks. This platform encompasses cloud security posture management, threat prevention, and efficient incident response, providing organizations with a unified defense against threats. Key features include continuous visibility and remediation of misconfigurations, threat prevention through various techniques like intrusion prevention and malware detection, and rapid, cost-effective incident response. With CloudGuard CNAPP, you can safeguard cloud-native applications, cloud infrastructure, and sensitive data, enhancing your overall cloud security posture. This solution is a powerful asset for organizations seeking to fortify their cloud environments against a range of cyber threats.

    Forcepoint CASB (Cloud Access Security Broker) is a security solution which is designed to secure and monitor the use of cloud services within an organization. It helps organizations gain visibility and control over the cloud applications and services being used by their employees. Forcepoint CASB integrates with cloud service providers' APIs and employs various techniques such as traffic analysis, proxying, and API-based controls to provide security and visibility into cloud application usage. It can be deployed as a standalone solution or integrated with other security technologies within an organization's existing infrastructure.

    Forcepoint CASB Features:

    • Cloud Application Visibility: CASB helps organizations discover and gain insights into the cloud applications and services being used across their network.
    • Data Loss Prevention (DLP): It enables organizations to enforce data protection policies and prevent sensitive information from being leaked or exposed in cloud applications.
    • User Behavior Monitoring: CASB monitors user activities and behavior within cloud services, allowing organizations to detect and respond to potential insider threats or anomalous behavior.
    • Compliance and Governance: It helps organizations enforce regulatory compliance requirements and maintain control over data stored and processed in the cloud.
    • Threat Protection: CASB offers protection against cloud-specific threats such as account hijacking, unauthorized access, malware, and data breaches.
    • Access Control and Encryption: It provides capabilities to control user access to cloud applications and data, as well as encryption options for securing sensitive information.

    Forcepoint CASB Benefits:

    • Cloud Visibility: Provides a clear view of cloud applications and services used within the network.
    • Data Protection: Enforces policies to prevent data leakage and ensures compliance with regulations.
    • Insider Threat Detection: Monitors user behavior to identify potential insider threats or malicious activities.
    • Compliance and Governance: Helps meet regulatory requirements and maintain control over cloud data.
    • Threat Protection: Detects and prevents cloud-specific threats like account compromise and data breaches.
    • Access Control and Encryption: Implements strong access controls and encryption for secure cloud access.
    • Shadow IT Discovery: Identifies unauthorized cloud applications for risk assessment and control.
    • Integration and Orchestration: Integrates with existing security technologies for enhanced visibility and response.

    Reviews from Real Users

    Edwin Eze Osiago, Regional Solutions Manager (Sub-Sahara Africa) at InfodataReliable, says that Forcepoint CASB is "Easy to set up and offers good visibility".

    PeerSpot user, Professional Services Coordinator at a tech vendor, writes that Forcepoint CASB "Needs better backend code, requires stronger technical support, and the initial setup should be easier" and also adds  that "The most valuable aspect for us is the fact that the product seamlessly integrates with the Forcepoint DLP".

    Mahendra Bedre, Lead at Infrastructure Solutions ALM, says that Forcepoint CASB's "Macro integration and IDs for credentials are great features; It is easy to use with a good layout".

    Sample Customers
    Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners
    Zions Bank, GE Healthcare, HomeAway, Logitech, Universal, California National Resources Agency and many mor
    Top Industries
    REVIEWERS
    Security Firm22%
    Financial Services Firm18%
    Computer Software Company11%
    Cloud Solution Provider8%
    VISITORS READING REVIEWS
    Financial Services Firm17%
    Computer Software Company15%
    Security Firm8%
    Manufacturing Company8%
    VISITORS READING REVIEWS
    Financial Services Firm16%
    Computer Software Company13%
    Educational Organization7%
    Comms Service Provider7%
    Company Size
    REVIEWERS
    Small Business43%
    Midsize Enterprise12%
    Large Enterprise45%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise11%
    Large Enterprise63%
    REVIEWERS
    Small Business63%
    Midsize Enterprise13%
    Large Enterprise25%
    VISITORS READING REVIEWS
    Small Business28%
    Midsize Enterprise12%
    Large Enterprise60%
    Buyer's Guide
    Vulnerability Management
    June 2024
    Download Free Report
    Find out what your peers are saying about Tenable, Wiz, SentinelOne and others in Vulnerability Management. Updated: June 2024.
    DOWNLOAD NOW
    772,679 professionals have used our research since 2012.

    Check Point CloudGuard CNAPP is ranked 6th in Vulnerability Management with 64 reviews while Forcepoint CASB is ranked 13th in Cloud Access Security Brokers (CASB) with 6 reviews. Check Point CloudGuard CNAPP is rated 8.6, while Forcepoint CASB is rated 7.4. The top reviewer of Check Point CloudGuard CNAPP writes "Threat intel integration provides us visibility in case any workload is communicating with suspicious or blacklisted IPs". On the other hand, the top reviewer of Forcepoint CASB writes "Reliable, easy to set up and offers good visibility". Check Point CloudGuard CNAPP is most compared with Prisma Cloud by Palo Alto Networks, Wiz, AWS GuardDuty, Microsoft Defender for Cloud and Qualys VMDR, whereas Forcepoint CASB is most compared with Appgate SDP, Microsoft Defender for Cloud Apps, Netskope , Cisco Umbrella and Skyhigh Security.

    We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.