Robust AWS Security with Check Point CloudGuard

Prevent advanced fifth-generation cyber-attacks at any scale on Amazon AWS

Enhancing your Security and Compliance Posture on AWS

Checkpoint CloudGuard platform is comprehensive security solution for Amazon AWS environments. CloudGuard IaaS provides a unified management pane for policy enforcement across cloud and on-prem environments. CloudGuard also extends as a security orchestration platform that offers visibility and management into the security posture, compliance automation and intrusion detection in the public cloud.

CloudGuard has a native API integration with Amazon Security Hub to provide enhanced visibility into vulnerabilities in an organization’s cloud security and compliance posture from a consolidated security console.

Solution Overview

Comprehensive Threat Prevention
Comprehensive Threat Prevention

CloudGuard IaaS actively prevents both north-south and east-west cyber-attacks as well as network vulnerabilities and feeds these threat alerts into the AWS Security Hub console. This continuous threat prevention is driven by the platform’s native firewall, IPS, application control, IPsec VPN, antivirus, and anti-bot capabilities.

Powerful Security Visualization
Powerful Security Visualization

CloudGuard helps you visualize your cloud security posture at the infrastructure level (VPCs, security groups, EC2 and RDS instances, Amazon S3 buckets, Elastic Load Balancers, etc) using a purpose-built platform that allows you to interactively detect configuration drift, assess impact of new vulnerabilities and spot firewall rule misconfigurations quickly.

Security Policy Management
Security Policy Management

CloudGuard IaaS adds contextual information such as asset tags, security groups and availability zones to dynamically update security policies in the AWS Security Hub. Security teams can also quickly assess their security posture across multiple VPCs, regions and AWS accounts and ensure there are meeting appropriate security requirements from a single consolidated AWS Security Hub console.

Active Cloud Protection
Active Cloud Protection

CloudGuard provides always-on security enforcement that serves as guard rails for your cloud infrastructure, ensuring that you stay secure without losing agility.

Compliance and Governance
Compliance and Governance

CloudGuard’s platform delivers automated security, compliance and governance for AWS environments. It provides real-time cloud oversight and enacts policy enforcement via auto-remediation capabilities in order to support company’s cloud security objectives. Compliance teams can see the results of continuous compliance assessments within the AWS Security Hub.

Cloud Security Intelligence
Cloud Security Intelligence

Dome9 surfaces critical threats into the AWS Security Hub console. This is powered by enriching and correlating multiple data feeds such as asset configuration, AWS CloudTrail, VPC Flow Logs, Amazon Inspector, and Amazon GuardDuty. SOC teams can now find the needle in the haystack by getting specifically alerted on suspicious network activity or account behavior, all from within the AWS Security Hub.

CloudGuard Integration with AWS Services

AWS Security Hub

The Check Point CloudGuard solution natively integrates with Amazon AWS Security Hub to provide AWS customers with better visibility into gaps in their security and compliance posture, and context-rich security intelligence for enhanced threat prevention.

Amazon Inspector

CloudGuard integrates the Amazon Inspector service into its security automation framework. With CloudGuard, AWS customers can ensure that Amazon Inspector is deployed and configured correctly in large-scale environments, and continuously monitor and act on findings.

Amazon GuardDuty

The integration with Amazon GuardDuty provides contextual visibility into the findings directly from the entity explorer. This allows the user to quickly identify and correlate a resource with its configuration, networking and IAM settings, as well as host vulnerabilities and detected threats – dramatically shortening the time to prioritize and investigate alerts.

VPC Flow Logs

CloudGuard taps into VPC flow log data and enables users to act on powerful security and operational insights based on network traffic. CloudGuard presents the flow logs data in easy-to-consume tabular and visual formats that are contextualized at a per-security group level in the Clarity visualization tool. It also uses flow logs to detect malicious activity occurring within the network traffic.

AWS CloudTrail

CloudGuard tracks all API activity by consuming CloudTrail logs and incorporates the feed into an independent third party audit. The CloudGuard audit trail provides timestamps and context of user activity for any configuration change within the AWS environment.
“As a security department, it’s very important to have a quick, reliable, and current view of the configuration and control over the security settings of cloud accounts and assets. This enables us to automate controls and react quicker with fewer resources.”
-Ewald Wicher, Senior Manager Information Security, Western Union

Ready to Experience CloudGuard Dome9?

How it Works

Get Pricing

Already a customer? Login or contact support.

This website uses cookies to ensure you get the best experience. Got it, Thanks! MORE INFO