Check Point CloudGuard CNAPP
by Check Point
Automate security, compliance, risk management and more—across your cloud environments
Check Point CloudGuard Cloud-Native Application Protection Platform (CNAPP) offers a comprehensive and sophisticated end-to-end security solution. With distinct modules and a suite of 52 engines, CloudGuard integrates with Azure natively, providing an unparalleled breadth of security features, from Code Security to Cloud Workload Protection (CWPP) to advanced Cloud Security Posture Management (CSPM) and beyond.
The unified platform of CloudGuard CNAPP meets and exceeds the evolving security demands of current cloud environments.
https://www.checkpoint.com/cloudguard/cnapp/
Each module includes distinct capabilities:
- Cloud Security Posture Management (CSPM) provides service inventory, out-of-the-box rulesets, best practice rulesets, compliance standards rulesets, and custom rules for comprehensive cloud security. CloudGuard CSPM integrates with Azure Load Balancer, Microsoft Defender for Cloud, Microsoft Entra ID, and more.
- Cloud Workload Protection (CWPP) offers container vulnerability scanning, malware scanning, runtime threat detection, behavior anomalies monitoring, and function self-protection for Azure Functions and other serverless architectures, with both agent and agentless deployment options.
- Data Security Posture Management (DSPM) offers integrated, intelligent monitoring and management of potential threats to the data of an organization. Interoperating with Microsoft Purview, CloudGuard DSPM identifies and tracks corporate data in the cloud and intelligently identifies configuration errors, vulnerabilities, and other potential threats to data security.
- Cloud Infrastructure Entitlement Management (CIEM) includes graph visualization to understand how roles can materialize into attack chains in interconnected assets, providing effective permissions calculation, detection of overprivileged and inactive identities, tracking behavior anomalies, and identification of best practice violations, enforcing least privilege across Azure.
- Cloud Detection and Response (CDR) conducts network log analysis, Kubernetes network log analysis, account activity log analysis, threat identification, behavioral analysis, anomaly detection, MITRE ATT&CK correlation, and ThreatCloud IOC correlation.
- Code Security scans the Software Bill of Materials (SBOM) that development teams create to ensure no vulnerabilities exist in 3rd-party libraries and components. Interoperating with Azure build tools, Code Security scans code pre- and post-commit to ensure no secrets are embedded in the code, APIs, and artifacts, including Infrastructure as Code (IaC) templates. It also provides developers with detailed playbooks when issues are detected, notifying them of issues through ticketing systems and messaging apps, and keeps security experts apprised of any issue that was not resolved.
This robust array of features ensures that Check Point CloudGuard integrates seamlessly with Azure services to deliver end-to-end protection, safeguarding every aspect of Azure cloud security with precision and reliability. Integrating these modules into a single platform exemplifies how Check Point is committed to providing its users with a unified, powerful security experience.