We performed a comparison between Akamai Guardicore Segmentation and Check Point CloudGuard CNAPP based on real PeerSpot user reviews.
Find out in this report how the two Cloud and Data Center Security solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We like the centralized management of the firewalls. Until we installed Guardicore Centra, we managed all our firewalls individually, so making changes was complicated, difficult, and time-consuming."
"Its deception features are great, providing a rich telemetry of lured origins, and are a great resource for any active defense strategy."
"The tool's most valuable feature is its visibility."
"The most valuable features of the solution are the maps and ring fencing that help monitor events."
"Guardicore Centra offers the best coverage specifically in backward compatibility with legacy operating systems."
"The real bonus is the fact that we can secure applications, all the way down to the individual services, on each host. It's actually more granular security than we can get out of a traditional firewall."
"From day one, you get threat intelligence. It will immediately block active threats, which has been useful."
"The solution is very scalable, especially when connected to the cloud resources."
"The user interface is responsive and quite intuitive; when selecting an object it automatically shows the relevant actions."
"The initial setup is easy and not complex at all."
"People implementing this solution are concerned with addressing a significant risk, and within the AWS realm, this tool does de-risk substantially."
"Checkpoint posture management gives you visibility across your entire cloud infrastructure, so it helps you with management, maintenance, and compliance. With visibility across all these cloud platforms, you can protect against compromised credentials or identity theft."
"It saves time because I can look across the organization. Instead of checking 50 different accounts atomically and spending 15 minutes investigating each, I can spend 15 minutes exploring all 50 accounts. It allows me to quickly look across the org for similar problems when one comes up. That's a huge time saver."
"The new scanning function is a valuable feature that wasn't available until recently."
"On Dome9, you can have reports on compliance, users created, and EAM access to the cloud infrastructure. For example, if some machine is exposed to the Internet, importing and exporting to the Internet when it shouldn't, we get immediate alerts if someone does this type of configuration by mistake. Dome9 is very important because AWS doesn't protect us for this. It is the client's responsibility to make sure that we don't export things to the Internet. This solution helps us ensure that we comply with our security measures."
"Almost all the features are valuable, but the most important is proactive threat detection. The overall administration, seamless integration, and being able to have one platform for monitoring our applications for suspicious activities and any potential security threats are also valuable."
"The maps could go a bit faster. They are useful but slightly slow."
"The long-term management of the security policies could be improved with some kind of automation platform, something like Chef or Puppet or Ansible, to help you manage the policies after day-one... to then manage the policies and changes to those policies, going forward, through some type of automation process is not turning out to be really easy."
"Customers would want to see the cost improved."
"In our version, when using the terminal server, we cannot exclude user tasks for each session."
"Clients would like to see that the security policies of GuardiCore can continue to be comparable to all the major firewall players out there."
"Incident tagging could be improved. Other vendors offer semi-automatic tagging, which Guardicore doesn't yet have."
"Supports become difficult when it's for a big organization. For a small organization, medium organization, it still makes sense, however, for a big organization, it makes life difficult."
"It doesn't support a PAAC solution (Platforma as a service) in the cloud."
"The main issue that we found with Dome9 is that we have a default rule set with better recommendations that we want to use. So, you do a clone of that rule set, then you do some tweaks and customizations, but there is a problem. When they activate the default rule set with the recommendations and new security measures, it doesn't apply the new security measures to your clones profile. Therefore, you need to clone the profile again. We are already writing a report to Check Point."
"The license cost is expensive and has room for improvement."
"Addressing the large amount of compliance information and benchmarks we need to observe, the tools are becoming our goto dashboards."
"The dashboard customization has room for improvement."
"Especially with cloud security, there's too much clutter on the screen and too many things going on."
"The biggest thing is the documentation aspect of Dome9 is a little lacking. They were purchased by Check Point about a year and a half to two years ago. When they integrated into Check Point's support system, a lot of the documentation that they had previously got mangled in the transition, e.g., linking to stuff on the Dome9 website that no longer exists. There are still a lot of spaces with incomplete links and stuff that is not as fully explained as it could be."
"The solution could be improved with a greater analysis of its Microsoft Security score."
"Streamlining the user interface would greatly improve the user experience."
More Akamai Guardicore Segmentation Pricing and Cost Advice →
Akamai Guardicore Segmentation is ranked 3rd in Cloud and Data Center Security with 17 reviews while Check Point CloudGuard CNAPP is ranked 8th in Cloud and Data Center Security with 63 reviews. Akamai Guardicore Segmentation is rated 8.2, while Check Point CloudGuard CNAPP is rated 8.6. The top reviewer of Akamai Guardicore Segmentation writes "Allowed us to build out a data center topology without worrying about placement of physical or virtual firewalls that can create bottlenecks". On the other hand, the top reviewer of Check Point CloudGuard CNAPP writes "Threat intel integration provides us visibility in case any workload is communicating with suspicious or blacklisted IPs". Akamai Guardicore Segmentation is most compared with Illumio, VMware NSX, Cisco Secure Workload, Prisma Cloud by Palo Alto Networks and CrowdStrike Falcon Cloud Security, whereas Check Point CloudGuard CNAPP is most compared with Prisma Cloud by Palo Alto Networks, AWS GuardDuty, Wiz, Microsoft Defender for Cloud and Qualys VMDR. See our Akamai Guardicore Segmentation vs. Check Point CloudGuard CNAPP report.
See our list of best Cloud and Data Center Security vendors and best Cloud Workload Protection Platforms (CWPP) vendors.
We monitor all Cloud and Data Center Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
