We performed a comparison between Check Point CloudGuard Posture Management and SUSE NeuVector based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Check Point CloudGuard Posture Management provides robust data security measures, incident detection, and detailed reporting. It offers IAM role control, training features, and governance support. On the other hand, SUSE NeuVector stands out for its user-friendly interface and automation. NeuVector seamlessly integrates with CI/CD pipelines and supports ISO certification checks. Check Point CloudGuard could be more customizable and improve its vulnerability. NeuVector needs improvements in monitoring, reporting, and hybrid environment integration.
Service and Support: Customers generally have positive experiences with Check Point CloudGuard Posture Management's customer service, citing quick response times and good support. However, some say technical support needs improvement. In contrast, SUSE NeuVector is praised for its helpful and responsive support, although the process can sometimes be complicated.
Ease of Deployment: The setup process for Check Point CloudGuard Posture Management is quick and easy, typically taking only a few minutes. On the other hand, the setup for SUSE NeuVector can be more challenging, with varying levels of difficulty reported by users. Some users find it easy, while others find it complex. One specific challenge with NeuVector is integrating it with pipelines.
Pricing: Some users consider Check Point CloudGuard Posture Management affordable, while others say the licensing model is a barrier to scaling and suggest a more flexible licensing model. While some SUSE NeuVector users say the price is low, others believe there is room for improvement.
ROI: Check Point CloudGuard Posture Management provides effective cloud management, streamlines compliance, and decreases administrative workload, resulting in a notable return on investment. SUSE NeuVector is particularly advantageous for industries with significant risk and exposure, but other sectors like retail might not see the same return.
Comparison Results: Our users prefer Check Point CloudGuard Posture Management over SUSE NeuVector. It is highly regarded for its strong data protection and comprehensive coverage of cloud infrastructure. Users appreciate its intuitive dashboard and powerful reporting capabilities. SUSE NeuVector users say the initial setup is a chore and the solution offers limited support for scanning IaaS and virtual machines.
"We like PingSafe's vulnerability assessment and management features, and its vulnerability databases."
"The visibility is the best part of the solution."
"PingSafe offers three key features: vulnerability management notifications, cloud configuration assistance, and security scanning."
"The solution's most valuable features are its ability to detect vulnerabilities inside AWS resources and its ability to rescan after a specific duration set by the administrator."
"I like CSPM the most. It captures a lot of alerts within a short period of time. When an alert gets triggered on the cloud, it throws an alert within half an hour, which is very reasonable. It is a plus point for us."
"The user interface is well-designed and easy to navigate."
"The tool identifies issues quickly."
"The most valuable feature of PingSafe is its integration with most of our technology stack, specifically all of our cloud platforms and ticketing software."
"Dome9 continues to be a major piece of our cloud security architecture and has given our senior leadership team a high degree of confidence in our ability to protect our cloud environment."
"The feature that I value the most about Check Point CloudGuard CNAPP is the possibility of checking compliance with different standards. This compliance check can be performed for each subscription or service that we have on all the different cloud providers that we use."
"The most valuable feature is the CloudBots for auto-remediation of security findings."
"On Dome9, you can have reports on compliance, users created, and EAM access to the cloud infrastructure. For example, if some machine is exposed to the Internet, importing and exporting to the Internet when it shouldn't, we get immediate alerts if someone does this type of configuration by mistake. Dome9 is very important because AWS doesn't protect us for this. It is the client's responsibility to make sure that we don't export things to the Internet. This solution helps us ensure that we comply with our security measures."
"The CloudGuard for Cloud Intelligence tool has several significant features that provide security to our company."
"Its monitoring and alerts are triggered by a failure or non-compliance with policies. It helps us to be able to act effectively and quickly."
"I can take proactive actions based on an alert without having to interact with the platform directly."
"The administration portal panel is very intuitive."
"The most valuable feature of SUSE NeuVector is its run-time security."
"The tool's deployment is simple. Also, I am impressed with its risk capabilities."
"The UI has a lot of features."
"The initial setup is quite good, it's straightforward."
"The features of image scanning and anti-malware are really valuable."
"The most valuable feature of SUSE NeuVector is the performance, deployment, and cost."
"When it comes to the price, we got a really good deal from the vendor instantly."
"The recommended actions aren't always specific, so it might suggest recommendations that don't apply to the particular infrastructure code I'm reviewing."
"There is no break-glass account feature. They should implement this as soon as possible because we can't implement SSO without a break-glass feature."
"We use PingSafe and also SentinelOne. If PingSafe integrated some of the endpoint security features of SentinelOne, it would be the perfect one-stop solution for everything. We wouldn't need to switch between the products. At my organization, I am responsible for endpoint security and vulnerability management. Integrating both functions into one application would be ideal because I could see all the alerts, heat maps, and reports in one console."
"We'd like to have better notifications. We'd like them to happen faster."
"One area for improvement could be the internal analysis process, specifically the guidance provided for remediation."
"PingSafe is an excellent CSPM tool, but the CWPP features need to improve, and there is a scope for more application security posture management features. There aren't many ASPM solutions on the market, and existing ones are costly. I would like to see PingSafe develop into a single pane of glass for ASPM, CSPM, and CWPP. Another feature I'd like to see is runtime protection."
"I would like PingSafe's detections to be openly available online instead of only accessible through their portal. Other tools have detections that are openly available without going through the tool."
"There's an array of upcoming versions with numerous features to be incorporated into the roadmap. Customers particularly appreciate the service's emphasis on intensive security, especially the secret scanning aspect. During the proof of concept (POC) phase, the system is required to gather logs from the customer's environment. This process entails obtaining specific permissions, especially in terms of gateway access. While most permissions for POC are manageable, the need for various permissions may need improvement, especially in the context of security."
"There are opportunities for improvement that can be addressed through a roadmap."
"The reporting dashboard responds slowly, which leads to late report compilation."
"Automatic remediation requires read/write access. When providing read/write access to third-party applications, this can add risk. It should have some options of triggering API calls to the cloud platform, which in turn, can make the required changes."
"I would like an interface more adapted to cell phones or tablets."
"You do need to pay extra in order to get better support."
"The main issue that we found with Dome9 is that we have a default rule set with better recommendations that we want to use. So, you do a clone of that rule set, then you do some tweaks and customizations, but there is a problem. When they activate the default rule set with the recommendations and new security measures, it doesn't apply the new security measures to your clones profile. Therefore, you need to clone the profile again. We are already writing a report to Check Point."
"The Check Point Infinity admin portal sometimes freezes."
"Especially with cloud security, there's too much clutter on the screen and too many things going on."
"SUSE NeuVector should provide more security protection rules and better container image scanning."
"The documentation needs to improve a bit."
"SUSE NeuVector could improve by increasing its visibility into other elements of the DevSecOps pipeline. Additionally, scanning around infrastructure would be helpful."
"The image-scanning features need improvement."
"We are also working with IaaS VMS, but NeuVector doesn't support virtual machines."
"I would say that this solution should improve monitoring and reporting. I would also like to see more integrations so that we could essentially make it a part of a developing pipeline."
"The tool should offer seamless integration of other security tools while in a hybrid environment."
More SentinelOne Singularity Cloud Security Pricing and Cost Advice →
Check Point CloudGuard CNAPP is ranked 5th in Cloud Workload Protection Platforms (CWPP) with 64 reviews while SUSE NeuVector is ranked 15th in Cloud Workload Protection Platforms (CWPP) with 7 reviews. Check Point CloudGuard CNAPP is rated 8.6, while SUSE NeuVector is rated 7.8. The top reviewer of Check Point CloudGuard CNAPP writes "Threat intel integration provides us visibility in case any workload is communicating with suspicious or blacklisted IPs". On the other hand, the top reviewer of SUSE NeuVector writes "Good value for money; great for policy management". Check Point CloudGuard CNAPP is most compared with Prisma Cloud by Palo Alto Networks, Wiz, AWS GuardDuty, Microsoft Defender for Cloud and Qualys VMDR, whereas SUSE NeuVector is most compared with Sysdig Falco, Prisma Cloud by Palo Alto Networks, Aqua Cloud Security Platform, Red Hat Advanced Cluster Security for Kubernetes and Sysdig Secure. See our Check Point CloudGuard CNAPP vs. SUSE NeuVector report.
See our list of best Cloud Workload Protection Platforms (CWPP) vendors.
We monitor all Cloud Workload Protection Platforms (CWPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.