We compared Check Point Security Management and Graylog based on our users' reviews in five categories. We reviewed all of the data and you can find the conclusion below.
Features: Check Point Security Management is praised for its centralized management features, user-friendly interface, and extensive monitoring capabilities. Graylog stands out with its exceptional search functions, seamless integration with Elasticsearch, and real-time data access. Check Point Security Management could improve by simplifying the migration of security policies, optimizing performance, and expanding its management API. Other pain points include threat tracking and documentation. Graylog could benefit from additional customization options and an improved rule-creation process.
Service and Support: Check Point Security Management's customer service is widely praised for being knowledgeable, supportive, and reliable. Although some users had problems with inexperienced agents and coordination issues, the overall support experience is positive. Graylog's customer service is generally well-regarded, with reviewers noting effective solutions and satisfactory experiences. While response times may differ, Graylog's support is considered superior compared to that of other products.
Ease of Deployment: Check Point Security Management is generally seen as easy to set up if the user has some expertise. Some Graylog users said the setup was easy. Other reviewers faced challenges, but these were easily resolved with help from the vendor’s support staff. Graylog is easier to set up in smaller environments, but it could get complicated in large clusters.
Pricing: Check Point Security Management is seen as a solid investment, offering flexibility and a good value for the price. Graylog offers an enterprise edition and an open-source option with a daily capacity restriction. Some users said that data costs can be expensive.
ROI: Check Point users said the solution offers a steady ROI over time. Graylog can offer some cost savings. The precise ROI may vary depending on the organization’s size and use case.
"It is good when it comes to access control, which is the basic feature that we use in a firewall appliance or solution. Check Point is effective when it comes to security control and threat prevention."
"The reporting system provides real-time insights into the security situation and shows measures that can be taken to protect our data."
"It provides for capabilities and has allowed us to be more scalable."
"Having the possibility to use Smart Event to check for threats on a broader scale helps after a security incident and also makes it easier to check - instead of looking through different logs."
"As the security administrator, who is responsible for the day-to-day tasks (e.g. creating new firewall rules, monitoring the security alerts and incidents etc.) and the maintenance (e.g. installing the new Jumbo Hotfixes), I find the Check Point Security Management R80.10 to be the great solution."
"The product has done a great job in protecting our business network and SCADA systems."
"With the generation and review of logs, we have verified some vulnerabilities and attempted attacks to generate improvements in our infrastructure and policies to help avoid issues in the future."
"Check Point Security Management has improved our organization because all corporate firewalls can be managed with a single interface."
"One of the most valuable features is that you are able to do a very detailed search through the log messages in the overview."
"What I like about Graylog is that it's real-time and you have access to the raw data. So, you ingest it, and you have access to every message and every data item you ingest. You can then build analytics on top of that. You can look at the raw data, and you can do some volumetric estimations, such as how big traffic you have, how many messages of data of a type you have, etc."
"Graylog's search functionality, alerting functionality, user management, and dashboards are useful."
"We have scaled from a single machine installation (a VM with a Graylog + ES + MongoDB) to (2 Graylog + 2 ES + 3 MongoDB). This was done smoothly with a minimal impact on logging."
"I like the correlation and the alerting."
"UDP is a fast and lightweight protocol, perfect for sending large volumes of logs with minimal overhead."
"The build is stable and requires little maintenance, even compared to some extremely expensive products."
"We're using the Community edition, but I know that it has really good dashboarding and alerts."
"They could offer educational courses to help individuals improve their knowledge and skills."
"I would like it to be the administrator of equipment or Next Generation firewalls (which have to be managed on this platform) and to be able to manage other services (like Harmony) that also belong to Check Point."
"The upgrade procedure already made huge improvements, yet it remains more challenging compared to other products."
"The web administration tool that allows administration in the browser must be developed even more."
"Some of the configuration elements could be improved."
"It would be helpful if we could enable URL and application traffic control remote access."
"The application filtering and URL filtering could be better."
"They need to make a Mac version of the SmartConsole, in my opinion."
"Elasticsearch recommendations for tuning could be better. Graylog doesn't have direct support for running the system inside of Kubernetes, so it can be challenging to fill in the gaps and set up containers in a way that is both performant and stable."
"The infrastructure cost is the main issue. I like the rest. If the infrastructure costs could be lower, it would be fantastic."
"We ran into problems with Elasticsearch throwing a circuit-breaking exception due to field data size being too large. It turned out that the heap size directly impacted this size in a high-throughput environment, causing unexplained instability in Graylog. We were able to troubleshoot on the Elasticsearch size, but we should have been able to reference some minimum requirements for Graylog to know that our settings weren't sufficient."
"More customization is always useful."
"I would like to see some kind of visualization included in Graylog."
"More complex visualizations and the ability to execute custom Elasticsearch queries would be great."
"Graylog could improve the process of creating rules. We have to create them manually by doing parses and applying them. Other SIEM solutions have basic rules and you can create and get more events of interest."
"With technical support, you are on your own without an enterprise license."
More Check Point Security Management Pricing and Cost Advice →
Check Point Security Management is ranked 9th in Log Management with 55 reviews while Graylog is ranked 11th in Log Management with 18 reviews. Check Point Security Management is rated 8.8, while Graylog is rated 8.0. The top reviewer of Check Point Security Management writes "Great DDoS protection, high availability, and useful firewall rule implementation". On the other hand, the top reviewer of Graylog writes "Great detailed search features and easy Java integration, but needs improvement in integration with Python". Check Point Security Management is most compared with Wazuh, Fortinet FortiAnalyzer, IBM Security QRadar, LogRhythm SIEM and ManageEngine EventLog Analyzer, whereas Graylog is most compared with Grafana Loki, Wazuh, syslog-ng, Splunk Enterprise Security and Fortinet FortiAnalyzer. See our Check Point Security Management vs. Graylog report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.