Loading...
Check Point Software Technologies logo

Check Point Software Technologies

checkpoint.com ↗ Enterprise 2 sectors

About Check Point Software Technologies

Check Point Software Technologies is a global cybersecurity leader protecting over 100,000 organizations with its AI-powered Infinity Platform. The unified architecture includes Quantum (network security/NGFW), CloudGuard (cloud-native security), and Harmony (workspace security including email, endpoint, and SASE). Powered by ThreatCloud AI with 50+ AI engines and Infinity AI Copilot for GenAI-assisted security operations. Named Gartner MQ Leader for Email Security (2025) with #1 Core Email Protection score (3.49). Strategic acquisitions include Avanan, Perimeter 81, Cyberint, Veriti, Spectral, and Lakera. Industry pioneer since 1993 with 99.8% malware/phishing block rate.

Why Notable

Gartner MQ Leader 2025; #1 Core Email Protection (3.49/5), Content Analysis (4.1), Artifact Analysis (4.2), Ease of Administration (2.7) — all Gartner Critical Capabilities Dec 2025; GigaOm Anti-Phishing Leader & Outperformer 2025; SE Labs 99.92% bypass prevention; 4.7/5.0 Gartner Peer Insights (941 reviews); 65,000+ customers; acquired Avanan 2021

Sector Coverage

Email Security: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Leader
Gartner Peer Insights Score 4.7
Peer Insights Reviews 941
GigaOm Anti-Phishing Position Leader & Outperformer
SE Labs Detection Rate 99.9% malware, 99.92% bypass (SE Labs), 99.7% phishing
Deployment Model Inline + API
Pre-Delivery Blocking Yes
MX Record Required No
Deployment Speed Minutes - auto-configured transport rules
Supported Platforms Microsoft 365, Gmail, M365 hybrid on-prem
Data Residency Regions US, CA, IE, UAE, IN, AU, UK (7 regions)
Admin Console Unified (Infinity Portal)
Licensing Model 2 plans: Advanced Protect, Complete Protect
Licensing Notes Most features included natively; clear predictable pricing
Primary Market Enterprise
MSP Support Yes - MSP Portal with 2-min onboarding
FedRAMP Status GCC High and DoD support

Firewall & Network Security: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Leader
GigaOm Anti-Phishing Position Industry pioneer since 1993
SE Labs Detection Rate 99.8% threat prevention
Deployment Model Appliance/Virtual/Cloud
Licensing Notes Quantum Force, Lightspeed, Spark appliances with subscription services
Primary Market Enterprise
FedRAMP Status FedRAMP High authorized

Cloud Security: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Leader
Deployment Model Cloud-native/API
Licensing Notes CloudGuard CNAPP (Wiz partnership 2025), CSPM, CWPP, Network Security, WAF
Primary Market Enterprise, Cloud-first
FedRAMP Status FedRAMP authorized

Endpoint Security: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Leader
SE Labs Detection Rate 99.9% detection
Deployment Model Agent-based
Licensing Notes Harmony Endpoint: Essentials/Advanced/Complete; includes EPP, EDR, Mobile
Primary Market Enterprise, Mid-market

Zero Trust & SASE: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Leader
Deployment Model Cloud-delivered
Licensing Notes Harmony SASE (Perimeter 81): SWG, ZTNA, FWaaS, CASB, SD-WAN; global private backbone
Primary Market Enterprise, Distributed workforce

Threat Intelligence: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Leader
Deployment Model Cloud service/Platform integrated
Licensing Notes ThreatCloud AI (50+ engines, 150K networks); Cyberint ERM for dark web/brand protection; CP Research team
Primary Market Enterprise

AI & ML Security: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Leader
GigaOm Anti-Phishing Position Pioneer in AI security
Deployment Model Cloud/Platform integrated
Licensing Notes Infinity AI Copilot included with Infinity Platform; Lakera for AI app security
Primary Market Enterprise

Application Security: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Strong Performer
Deployment Model Cloud/CI-CD integrated
Licensing Notes Spectral for code/secrets scanning; CloudGuard AppSec for WAF/API protection
Primary Market Enterprise, DevOps teams

Data Security & DLP: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Strong Performer
Deployment Model Integrated across platform
Licensing Notes DLP integrated across Harmony Email, Endpoint, SASE; encryption included
Primary Market Enterprise

Hardware & Infrastructure: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Leader
Deployment Model Hardware appliances
Licensing Notes Quantum Force/Lightspeed/Spark appliances; Maestro hyperscale orchestration; Scalable Chassis
Primary Market Enterprise, Data centers

Identity & Access Management: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Strong Performer
Deployment Model Integrated with SASE/Network
Licensing Notes Identity Awareness in Quantum; ZTNA in Harmony SASE; SSO/MFA integration
Primary Market Enterprise

SIEM & Security Operations: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Leader
Deployment Model Cloud platform
Licensing Notes Infinity XDR/XPR; AI Copilot for investigations; Infinity Portal unified management; Global Services MDR
Primary Market Enterprise SOC teams

Security Awareness: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Competitor
Deployment Model Integrated with Email Security
Licensing Notes SAT integrated within Harmony Email & Collaboration; phishing simulations included
Primary Market Enterprise

Vulnerability Management: Evaluation & Deployment

Gartner MQ Position (Dec 2025) Strong Performer
Deployment Model Cloud/Multi-vendor
Licensing Notes Veriti (2025 acquisition) for exposure management; Cyberint ASM for external attack surface; automated remediation
Primary Market Enterprise

Feature Coverage

AI Copilot

Automated policy generation full AI-created security rules
Incident summarization full AI-generated threat reports
Natural language queries full Conversational security management
Remediation recommendations full AI-suggested fixes

AI Data Center Security

AI Defense Plane full Enterprise AI workload protection
Agentic AI security full AI agent protection

Access Control

Geo-based access control full Location-aware policies
Privileged access management full Admin account protection
Risk-adaptive authentication full Dynamic MFA based on risk
Role-based access control full Granular permission management
Session management full Active session monitoring and control
Time-based access policies full Scheduled access windows

Account Protection

Account takeover prevention full Compromised credential detection
MFA enforcement full Multi-factor authentication

Add-On Modules

Archive (Data Retention) full Extended retention and searchable history
Browse (Secure Browser Plugin) full Click-time malicious link blocking and credential theft prevention
GenAI visibility full Monitoring of ChatGPT, Gemini, and AI tool usage
Leaked Credentials (ERM) full Dark web monitoring for exposed credentials
Web form DLP full Data loss prevention for web-based forms

Advanced Threat Detection

Behavioral analysis full User and entity behavior analytics for anomaly detection
Deepfake detection full AI-powered detection of deepfake social engineering
Hidden link scanning full Detection of malicious URLs hidden in attachments
Outbound email scanning full Protection against data exfiltration and compromised accounts
Zero-day exploit detection full Real-time protection against unknown threats

Cloud Features

Container image scanning full Pre-deployment vulnerability scanning
Infrastructure as Code scanning full IaC security scanning
Multi-cloud visibility full Unified view across cloud providers
Runtime protection full Active cloud workload defense

Cloud Integrations

AWS integration full Native AWS security integration
Azure integration full Native Azure security integration
Google Cloud integration full Native GCP security integration
Kubernetes security full Container and K8s protection
Serverless security full Lambda/Functions protection
Wiz partnership (2025) full Integrated CNAPP with Wiz

CloudGuard AppSec

API discovery full Shadow API detection
API protection full API security and rate limiting
Bot prevention full Automated threat mitigation
Credential stuffing protection full Account takeover prevention
DDoS protection full Application-layer DDoS defense
GraphQL protection full GraphQL-specific security
Runtime application protection full RASP capabilities
Web Application Firewall (WAF) full OWASP Top 10 protection
WebSocket protection full Real-time protocol security

CloudGuard Platform

CloudGuard CNAPP full Cloud-native application protection platform
CloudGuard CSPM full Cloud security posture management
CloudGuard CWPP full Cloud workload protection platform
CloudGuard Intelligence full Cloud threat intelligence
CloudGuard Network Security full Cloud network firewall
CloudGuard WAF full Cloud web application firewall

Collaboration & User Experience

Collaboration App Protection full 8+ apps: Teams, OneDrive, SharePoint, Slack, Box, Dropbox, Drive, Citrix
CASB & Shadow IT full SaaS discovery, shadow IT visibility, SSPM from single console
M365 Unified Quarantine full Patented unified quarantine + detections; reduces issues by 95%
Browser Isolation & GenAI full Browse: RBI + GenAI DLP (ChatGPT, Claude, Gemini)
Smart Banners full Configurable banners for external/suspicious; admin customization

Collaboration Security

Box integration full Security for Box cloud content
Citrix ShareFile protection full Enterprise file sharing security
Dropbox integration full Protection for Dropbox file sharing
Google Drive protection full Security for Google Drive files and sharing
Microsoft Teams protection full Real-time scanning of Teams messages and files
OneDrive protection full File security for OneDrive cloud storage
SharePoint scanning full Malware and DLP scanning for SharePoint
Slack protection full Security for Slack channels and direct messages

Compliance & Archiving

DoD support full Department of Defense compliance certification
GCC High support full Government cloud compliance for US government
Long-term message retention full Searchable archive for compliance requirements
Secure export full Compliant data export capabilities

Core Threat Protection

AI Anti-Phishing / NLP Engine full SmartPhish: NLP, deep learning, LLMs, behavioral analysis; >99% detection rate
BEC & Social Engineering full BEC 2.0/3.0; sender analysis, CEO fraud, impersonation detection
Malware Sandbox full ThreatCloud AI sandbox; pre-delivery analysis; 90+ solution feeds globally
CDR & Threat Extraction full 17 CDR features; Clean, Convert to PDF, per-policy config
URL Rewriting & Click-Time full Click-Time Protection; rewrites URLs in body, attachments & QR codes
QR Code / Quishing Protection full Scans QR codes in emails; detected 587% attack spike
Spam & Graymail Filtering full Pre-delivery; flexible graymail routing; per-user/group policies
Post-Delivery Remediation full Auto-remediation; updated intel, click-time, user-reported handling
Internal/Lateral Scanning full Inline tri-directional: inbound, outbound, internal-to-internal
Password-Protected Files full Sandbox + CDR workflows; per-policy config for encrypted files

Cyberint (acquired)

Attack surface management full External asset discovery
Dark web monitoring full Underground threat visibility
Digital risk protection full Brand impersonation detection
External Risk Management full Brand and digital risk protection
Threat actor tracking full Adversary intelligence

Cyberint ASM

External attack surface discovery full Internet-facing asset inventory
Third-party risk visibility full Supply chain exposure detection
Vulnerability prioritization full Risk-based vulnerability ranking

Cyberint Platform

Credential leak monitoring full Exposed password detection
Digital footprint discovery full Shadow IT and asset identification
Mobile app monitoring full Rogue application detection
Phishing site detection full Brand impersonation identification
Social media monitoring full Executive impersonation alerts
Threat actor profiling full Adversary intelligence reports

DLP Capabilities

Content inspection full Deep content analysis
Exact data matching full PII and sensitive data detection
Fingerprinting full Document and data fingerprinting
Incident workflow full DLP violation management
Machine learning classifiers full AI-powered data classification
OCR scanning full Image text extraction and scanning
Remediation actions full Block, encrypt, quarantine options
User behavior analytics full Insider threat detection

Data Loss Prevention

Cloud DLP full SaaS and cloud data protection
Custom DLP rules full Flexible policy creation
Data classification full Automated sensitive data discovery
Email DLP full Outbound email data protection
Endpoint DLP full Endpoint data leak prevention
Network DLP full Network-level data monitoring
Pre-built DLP policies full Industry compliance templates

Data Protection & Compliance

Data Loss Prevention full Full DLP: email + 7 collaboration apps; OCR, regex, dictionaries; included
Behavioral AI DLP full Dedicated engine for misdirected email and accidental send
Email Encryption full CP encryption + Purview/OME + Google Workspace support
Compliance Coverage full Built-in data types, custom patterns, regex, M365 Sensitivity labels
Archiving & eDiscovery full Archive add-on: legal hold, eDiscovery, journaling, tamperproof

Deployment & Architecture

Pre-Delivery Email Blocking full Inline via transport rules + API; blocks before inbox
No MX Record Changes full Patented transport rules; MX hidden from attackers
Deployment Speed full Minutes — auto-configured transport rules
Unified Admin Console full Single Infinity Portal for all capabilities
Fail-Open Mechanisms full Non-MX host; fails open to native provider seamlessly

Encryption

Email encryption full Message-level encryption
Full disk encryption full Endpoint data protection

Encryption Services

Key management full Centralized encryption key control
Rights management full Document access control
S/MIME support full Email signing and encryption
TLS enforcement full Transport layer security

Harmony Endpoint

Anti-Ransomware full Ransomware-specific protection
Endpoint Detection & Response (EDR) full Threat hunting and investigation
Endpoint Protection Platform (EPP) full Anti-malware and threat prevention
Forensic analysis full Deep endpoint investigation
Full disk encryption full Data-at-rest protection
Port protection full USB/removable media control
Threat hunting full Proactive threat detection
VPN client full Endpoint VPN connectivity

Harmony Mobile

Mobile app reputation full App risk assessment
Mobile threat defense full iOS/Android protection
Network protection (mobile) full WiFi and cellular security
OS vulnerability assessment full Mobile device security posture
Phishing protection (mobile) full Mobile phishing prevention

Harmony SASE

Cloud Access Security Broker (CASB) full SaaS security
Firewall as a Service (FWaaS) full Cloud-delivered firewall
Internet Access full Secure internet browsing
Private Access full Secure application access
SD-WAN integration full Optimized branch connectivity
Secure Web Gateway (SWG) full Cloud-delivered web security
Zero Trust Network Access (ZTNA) full Identity-based access control

Hyperscale

CloudGuard Network for AWS/Azure/GCP full Cloud-native virtual firewalls
Maestro Hyperscale Orchestrator full Multi-gateway orchestration
Scalable Chassis full Carrier-grade modular platform
Security Gateway Virtual Edition full VMware/Hyper-V/KVM support

Identity & Access

Account Takeover Protection full 54 ATO features built-in all plans; anomaly detection, auto-block
SPF/DKIM/DMARC Management full Full enforcement + hosted SPF/DKIM + DMARC reports + AI suggestions
Dark Web Monitoring full Cyberint: deep/dark web, 8 sources, brand abuse, partner threats
Supplier/Partner Risk full Analyzes third-party email behavior; compromised partner alerts
Brand & Domain Protection full ATO + DMARC + Cyberint brand protection + OAuth monitoring

Identity Awareness

Identity-based policies full User and group-based rules
SSO integration full Single sign-on support
User identity correlation full AD/LDAP integration

Identity Security

Active Directory integration full Seamless AD/LDAP connectivity
Azure AD integration full Cloud identity provider support
Certificate-based auth full PKI/smart card authentication
Guest access management full Temporary user provisioning
Okta integration full IdP federation support
RADIUS/TACACS+ full Network authentication protocols

Infinity AI Copilot

30 years of intelligence full AI trained on Check Point knowledge
90% time savings full Accelerated security administration
GenAI security assistant full Natural language security management
Incident response acceleration full AI-assisted threat mitigation
Policy management automation full AI-driven rule deployment
XDR integration full Cross-domain AI analysis

Infinity Global Services

Incident response services full Expert breach assistance
Managed security services full 24/7 SOC operations

Infinity Portal

Multi-domain visibility full Network, cloud, endpoint, email
Security event correlation full Cross-product threat analysis
Unified security management full Single pane of glass

Infinity XDR

API-based automation full SOAR platform integration
Attack story visualization full End-to-end attack timeline
Automated threat correlation full Cross-domain attack detection
Custom detection rules full Organization-specific alerts
Third-party SIEM integration full Splunk/QRadar/Sentinel connectors
Threat hunting queries full Proactive threat search

Infinity XDR/XPR

AI-powered investigations full Automated incident analysis
Automated playbooks full Orchestrated response workflows
Extended Detection & Response full Cross-domain threat correlation
Extended Prevention & Response full Proactive threat blocking
MITRE ATT&CK mapping full Threat technique classification

Lakera (acquired)

AI application security full LLM and GenAI protection
AI model protection full Machine learning security
Prompt injection protection full AI input validation

Lakera Platform

AI red teaming full Adversarial AI testing
Data poisoning detection full Training data integrity
LLM security testing full AI model vulnerability assessment
Model theft prevention full AI IP protection
Prompt injection defense full Input validation for AI

Managed Services

Incident Response retainer full Expert breach response
Infinity SOC full 24/7 threat monitoring
Security assessment full Penetration testing and audit
Threat hunting service full Proactive adversary detection

Management

Multi-Domain Management full MSSP/large enterprise segmentation
Smart-1 Cloud full Cloud-hosted security management
Smart-1 appliances full Dedicated management servers
SmartEvent full Log analysis and reporting
SmartProvisioning full Zero-touch deployment

Network Security

Anti-Bot protection full Command & control traffic blocking
Anti-Virus gateway full Network-level malware prevention
Application Control full Granular application visibility and control
IPS/IDS full Intrusion prevention and detection
SD-WAN full Software-defined WAN optimization
SSL/TLS inspection full Encrypted traffic inspection
SandBlast Zero-Day Protection full Zero-day attack prevention
Threat Emulation full Sandbox analysis for unknown files
Threat Extraction full Content disarm and reconstruction (CDR)
URL Filtering full Web content filtering and control
VPN (IPsec/SSL) full Secure remote access VPN

Operations & Management

Security Awareness Training full SmartAwareness: phishing sim + training in same console; included
AI-Powered Analytics full Dashboards, custom queries, AI Copilot (natural language), Check Up reports
VAP Identification full VIP lists, customizable settings, protection visibility; included
API & SIEM/SOAR full REST API, HTTPS forwarding, IoC feeds; Splunk, Sentinel, CrowdStrike
XDR Integration full Native Horizon XDR/XPR; cross-product correlation across full portfolio
IRaaS full 24/7 analyst review of reported emails and quarantine requests
SSPM full Continuous M365 & Google Workspace misconfiguration scanning
Multi-Tenant/MSP full MSP Portal: 2-min onboarding, config templates, multi-tenant mgmt
Insider Threat Management full Tri-directional scanning; insider threat detection for all mail flows
Secure Email Relay full Enterprise relay: domain verification, anti-spoof, DMARC-compliant

Perimeter 81 (acquired)

Always-on protection full Continuous security enforcement
Global private backbone full High-performance network

Platform & AI

Deep Learning Engine full AI/ML-powered threat detection with minimal false positives
Infinity AI Copilot full Natural language analysis and automated investigation assistant
Infinity Platform Integration full Unified protection across email, endpoints, SSE, and DLP
Large Language Models full LLM-based analysis for sophisticated social engineering detection
ThreatCloud AI full World's largest threat intelligence network with billions of URLs/files analyzed daily

Quantum Appliances

Quantum Force 3000 series full Branch/remote office firewall
Quantum Force 5000 series full Medium enterprise firewall
Quantum Force 7000 series full Large enterprise firewall
Quantum Force 9000 series full High-end enterprise firewall
Quantum Lightspeed full 400Gbps data center firewall
Quantum Spark 1500/1600 full SMB security gateway

Quantum Platform

Quantum Force NGFW full AI-powered next-generation firewall appliances
Quantum Lightspeed full High-performance data center firewall
Quantum Maestro full Hyperscale network security orchestration
Quantum Scalable Chassis full Carrier-grade chassis-based security
Quantum Spark full SMB-focused security gateway
Smart-1 Management full Centralized security management

Recent Innovations

75+ new features (2023-2025) full Continuous platform enhancement and innovation
DMARC Forensic Reports full Detailed DMARC failure analysis and reporting
Patented Unified Quarantine full Consolidated quarantine management across platforms
Smart Banners full Contextual user warnings for suspicious emails

SOC Operations

Alert prioritization full Risk-based alert ranking
Collaborative investigation full Team-based incident handling
Evidence collection full Forensic data preservation
Infinity Portal dashboard full Real-time security posture

Security Awareness Training

Compliance training full Regulatory awareness modules
Integrated SAT full Training within Harmony Email
Phishing simulations full Real-world attack testing
Risk-based training full Targeted user education
Training analytics full Program effectiveness metrics

SmartAwareness

Attack simulation campaigns full Customizable phishing tests
Behavioral analytics full User security behavior tracking
Compliance training library full GDPR, HIPAA, PCI-DSS modules
Contextual security banners full Real-time warnings on suspicious emails
Executive reporting full Board-level security awareness dashboards
Gamified training full Engaging security education modules
Just-in-time training full Training triggered by risky behavior
Multi-language support full Training in 40+ languages
Training effectiveness reports full ROI and improvement metrics
User risk scoring full Individual employee risk assessment

Spectral (acquired)

CI/CD integration full DevSecOps pipeline integration
Code security scanning full Static application security testing
IaC security scanning full Infrastructure code analysis
Secrets scanning full Credential and API key detection
Software composition analysis full Open source vulnerability detection

Spectral Platform

Custom detection rules full Organization-specific policies
Dependency scanning full Third-party library vulnerabilities
GitHub/GitLab integration full Native SCM integration
Kubernetes manifest scanning full K8s security validation
License compliance full Open source license detection
Pre-commit hooks full Block secrets before commit
Terraform scanning full IaC misconfiguration detection

ThreatCloud AI

150,000+ connected networks full Massive telemetry network
3 billion attacks blocked annually full Global threat prevention
50+ AI engines full Multi-layered AI threat detection
99.8% block rate full Industry-leading detection efficacy
Behavioral AI full Anomaly detection algorithms
Campaign detection full Attack pattern clustering
Check Point Research (CP<R>) full In-house threat research team
Deep learning models full Neural network-based detection
Evasion-resistant detection full Anti-sandbox bypass
Predictive intelligence full Emerging threat forecasting
Real-time IoC sharing full Sub-2-second threat intelligence propagation
Zero-phishing protection full AI-powered phishing prevention

Veriti (acquired)

Automated remediation full Safe, automated security fixes
Continuous assessment full Real-time exposure monitoring
Multi-vendor support full Cross-platform security validation
Security control verification full Configuration drift detection
Threat exposure management full Proactive vulnerability prioritization

Veriti Platform

Compensating controls full Alternative mitigation recommendations
Compliance gap analysis full Regulatory requirement mapping
Multi-vendor visibility full Cross-platform security posture view
Risk prioritization engine full Business context-aware scoring
Safe remediation full Non-disruptive automated fixes
Security drift detection full Configuration change monitoring

ZTNA Features

Contextual access control full Risk-adaptive policies
Continuous authentication full Real-time access verification
Device posture checking full Endpoint compliance validation

Zero Trust Features

Continuous verification full Real-time trust assessment
Identity-aware policies full User and device context
Micro-segmentation full Granular network segmentation

Related Endpoint Security Vendors

Vendor Directory
Lookup Tools
Analysis
Bulk & Enterprise
Resources
Close