Overview:
Check Point Security Management sets the standard for reliability and ease-of-use in security management. From policies and operations to people and technology, consolidate all aspects of your security environment seamlessly so you can deploy the strongest protections across your organization effectively and efficiently – without impeding business innovation.
Smart-1 Cloud: The Best Security Management Meets the Cloud
Check Point Smart-1 Cloud is Check Point security management delivered as a cloud service. Smart-1 Cloud provides security policy management of on-premises and IaaS security gateways, security event analytics and reporting from a single user-friendly web-based SmartConsole. Because it’s delivered as a Software-as-a-Service (SaaS), ramp-up time changes from hours to minutes when compared with on-premises deployments. Check Point provides the infrastructure and the software so installation, deployment and maintenance times are eliminated — and you get the latest software from Check Point.
With security management delivered as a cloud service, businesses benefit from the elasticity and scalability available in cloud services. Smart-1 Cloud includes ample disk space for you to store your logs in the cloud for as long as you need them. As you grow and add additional managed security gateways, extend your security events log storage space as needed.
Check Point provides the infrastructure and the software and provides secure multi-factor authentication access to the service. You own your security policy and security event data. Data security and privacy is assured, in accordance with GDPR (General Data Protection Regulation) requirements.
Always the Latest Security Management
Newest features automatically updated in a unified management platform
On-Demand Expansion
Seamlessly expand capacity supporting additional gateways and storage
Zero Maintenance
Security Management as a Service has no installation, no upgrades
Seamlessly Support More Gateways and Storage
Smart-1 Cloud answers the evolving needs of enterprise security management today. By keeping up with the latest security you are able to manage the latest threats, across devices and workloads via a single management console now in the cloud. It has the ability to scale and manage the increasing number of gateways as our environments grow without having to worry about limited physical storage space or log storage capacity. Most importantly you can effectively manage maintenance and save incredible time on onboarding new gateways, monitoring devices, facility power and any new updates or hotfixes – instead this is all done for you, automatically, thanks to Smart-1 Cloud.
Manage Your On-Premises Gateways Directly from the Cloud
SmartEvent and Compliance Included!
Real-time log analysis and event correlation with SmartEvent
Translate thousands of complex regulatory requirements into actionable security best practices with Compliance
Security Management Delivered from the Cloud
Check Point's best-in-class management solution now available as a service. Security management architecture from the cloud provides you with full management capabilities such as policy management, device management, log analysis, reporting and log retention.
With Check Point Smart-1 Cloud, Your Management is Auto Scaled
On Demand
No Physical Limits!
Add as many gateways as you please!
Keep logs indefinitely.
Always Protected Against Gen V Attacks
Highest Caliber Prevention with SandBlast and R80
Always use the latest security technologies, no time spent on upgrades
Zero Maintenance gives IT teams more control to secure and manage their environments
Features:
Lower the complexity of managing your security
When it comes to security management, Check Point has a solution. From zero-touch gateway provisioning to security policy management to threat visibility and analytics to compliance and reporting to large scale multi-domain management to central deployment of software updates to codifying security management using RESTful APIs – Check Point has you covered.
- One Console to Manage Them All
With one console, security teams can manage all aspects of security from policy to threat prevention – across the entire organization – on both physical and virtual environments. Consolidated management means increased operational efficiency.
- Unified Policy
In addition to a unified console, a unified access control policy for users, applications, data and networks simplifies policy management.
- Next Generation Policy Management
Check Point’s next generation policy makes it extremely easy to segment policy into manageable sections with inline shared policies. Create rules in sub-policies aligned to specific business function like control of safe Internet use. Then delegate authority of the policy and share it across teams, ensuring consistency and freeing key security personnel to handle other tasks.
- Delegation and Collaboration
Work without conflict. Session-based object locking enables multiple administrators and the same administrator to work simultaneously on the same rule base. Granular administrator delegation enables access based on role such as SOC analyst, auditor and security administrator.
- Threat Management
Threat Management is fully integrated, with logging, monitoring, event correlation and reporting in one place. Visual dashboards provide full visibility into security across the network, helping you monitor the status of your enforcement points and stay alert to potential threats.
- Compliance Reports
Security can be complex, but there are industry and security best practices to guide you. Real-time compliance monitoring and reporting is built-in, showing admins how their policy compares with Security Best Practices and regulations such as GDPR, HIPAA and PCI DSS.
- APIs Enable Operational Efficiency
With too much work and too little staff, security teams need to work smarter. Automation and granular delegation are key to helping alleviate operational overhead. With RESTful APIs, security teams can automate any task.
- Zero-touch Deployment
An intuitive web-based user interface, enables large enterprises to provision security efficiently. Apply a template describing device configuration settings to your inventory of new security gateways. When powered on Check Point gateways get their configuration from the cloud and are ready for a security policy.
Lower your Startup Time, Costs, Maintenance….
Smart-1 Cloud answers the evolving needs of enterprise security management today. Businesses are up to date with the latest security and are able to manage the latest threats across devices and workloads via a single management console. Security management delivered from the cloud scales as environments grow without having to worry about limited physical storage space or log storage capacity. With Smart-1 Cloud organizations save time on startup, infrastructure and maintenance costs.
In minutes, have the latest Security Management release with the full functionality running as a service and have all your gateways connected. Connecting a gateway is easy. Create an HTTPS tunnel from the gateway to the service using a unique authentication key. Once the gateway object is created, all that is left is to initiate the Secure Internal Communication (SIC). Then focus on managing your organizations security and analyzing the logs and events.
Always the Latest Security Management
Security is a process. As threats evolve so do the security processes and technologies designed to address these threats. This includes security and threat management. New releases include new capabilities and new tools like threat analytics for improved threat visibility. With cloud delivered security management, organizations don’t have to worry about finding a change window to update the security management server to the latest, new software release.
On-demand Expansion
Like other Software-as-a-Service models, Smart-1 Cloud is available for a yearly subscription. Start with management for 5 gateways with 200 GB of log storage to store up to 5 GB of logs per day. As your business grows and you add additional gateways, you get 50 GB of additional log storage to store up to 1 GB of logs per day. Easily expand on-demand, adding more gateways and storage as you see fit.
Zero Maintenance
Check Point maintains the infrastructure and software. Until now, you had to plot your windows of maintenance, run testing, and then roll out an upgrade campaign to all selected candidates to get them up to date. Today, with Smart-1 Cloud, this is automatically updated for you. In addition we do daily backups and monitor systems and disk space for any issues.
Smart-1 Cloud Shared Responsibility Model
Use Cases:
Smart-1 Cloud On-boarding, the Fastest On-ramp to Check Point Security Management
Smart-1 Cloud is an ideal platform for anyone interested in quickly provisioning a Check Point security management server. When compared with an on-premises or CloudGuard IaaS deployment the ramp-up process is simpler and the ramp-up time is much quicker. Smart-1 Cloud deployments do not require expertise in specifying a hardware platform meeting the recommend system requirements. Likewise users do not need to have the cloud expertise to provision one of Check Point’s public or private cloud CloudGuard IaaS offerings. Additionally, with the web-based SmartConsole in Smart-1 Cloud, there’s no need for an additional Windows host to run the SmartConsole GUI client.
Simply register at the Check Point Infinity Portal, the portal to all of Check Point’s SaaS offerings, and you have 30 days to trial Smart-1 Cloud. The free trial includes the full Smart-1 Cloud feature set. When ready, purchase a 30 day or yearly Starter Pack.
Startups and Small Enterprises
In companies where employees wear many hats, Smart-1 Cloud is an option. IT staff at these companies may not have the time to acquire and provision new hardware or software. Smart-1 Cloud with its fast ramp-up time, no maintenance, always up to date security and scalability may be the ideal solution. If the company is geographically distributed, and doesn’t’ require sharing objects and rules, admins at the different locations can have their own tenant or domain. Customers can have multiple environments on the same Infinity Portal account and registered under the same email address. Switching between the different environments in the portal is easy. Simply select the environment name from the drop down list at the top of the Infinity Portal window. The login from the portal to the web SmartConsole uses the portal's credentials, allowing Single Sign-on (SSO) to the web SmartConsole.
Migrating from a Standalone to a Distributed Deployment
If you started your Check Point journey with one NGFW with security management and are now adding additional gateways to better segment your network or protect additional remote offices or virtual gateways, then Smart-1 Cloud is an option. In the distributed deployment model security management runs on its own separate system. This frees the standalone gateway to handle more traffic and additional security features. Additionally central management of more than one gateway is a linear OPEX savings for each additional gateway added. And you minimize errors introduced when repeating tasks on multiple management servers.
Refreshing an Existing Security Management Server or Adding HA Management
Maybe you have an existing management server and it’s time to consider adding more capacity or you want to add an additional HA (Highly Available) management server to reduce your risk. Smart-1 Cloud is an option. When you’re ready to migrate to Smart1 Cloud we offer a Migration Tool to save time and facilitate the migration process. Run the export tool on your existing management server and then import the configuration into Smart-1 Cloud.
Smart-1 Cloud is highly available. You may be familiar with the existing Check Point management HA functionality which syncs objects and policy to a backup server so that backup server is ready if and when the primary server goes offline. Smart-1 cloud does not offer full HA functionality, but with an SLA of three nines (99.9%) is highly available. In addition Smart-1 Cloud is backed up every 12 hours. If you need to revert to a backup this is available by contacting our support staff.
The Managed Security Service Provider (MSSP) Solution
Smart-1 Cloud’s per-tenant pricing and business model, management APIs and ability to easily scale to accommodate future growth is an ideal solution for MSPs and MSSPs interested in growing their business. Managed Security Services Providers step in and fill an essential service for businesses facing IT security skills shortages and resource constraints. MSSPs can customize Check Point’s broad offering of integrated security products to fit the needs of these resource constrained businesses. Furthermore Check Point provides the APIs needed to deliver these security services with operational efficiency, increasing the profit margin of tech-savvy MSSPs.
Specifications:
Manage One Enterprise Gateway or 5 SMB Gateways
|
Management |
Management with SmartEvent |
Smart-1 Cloud Plus |
One Year SKU |
CPSM-CLOUD-GW-1Y |
CPSM-CLOUD-GW-SME-1Y |
CPSM-CLOUD-GW-SME-COMP-1Y |
5 SMB Gateway SKU |
CPSM-CLOUD-5-SMB-GW-1Y |
CPSM-CLOUD-5-SMB-GW-SME-1Y |
CPSM-CLOUD-5-SMB-GW-SME-COMP-1Y |
Number of Managed Gateways |
1 enterprise or 5 SMB |
1 enterprise or 5 SMB |
1 enterprise or 5 SMB |
Storage |
50 GB (10 GB in the 1 Month SKU) |
100 GB (20 GB in the 1 Month SKU) |
100 GB (20 GB in the 1 Month SKU) |
Daily Logs |
up to 1 GB |
up to 3 GB |
up to 3 GB |
Compliance, SmartEvent Options |
- |
SmartEvent |
SmartEvent and Compliance |
Gateway Expansion Options |
+ 50 GB storage and 1 GB logs/day |
+ 50 GB storage and 1 GB logs/day |
+ 50 GB storage and 1 GB logs/day |
+ 1 TB storage and 20 GB logs/day |
+ 1 TB storage and 20 GB logs/day |
+ 1 TB storage and 20 GB logs/day |
Note: 2 and 3 year SKUs are available in the online product catalog, Manage up to 100 enterprise gateways or 500 SMB gateways in a single Smart-1 Cloud environment. 5 SMB (1500) gateways are equivalent to 1 Enterprise gateway (all other models). Add more environments as needed.
Manage 5 Enterprise Gateways
|
Management |
Management with SmartEvent |
Smart-1 Cloud Plus |
One Year SKU |
CPSM-CLOUD-5-GW-1Y |
CPSM-CLOUD-5-GW-SME-1Y |
CPSM-CLOUD-5-GW-SME-COMP-1Y |
Number of Managed Gateways |
5 enterprise |
5 enterprise |
5 enterprise |
Storage |
200 GB (40 GB Month SKU) |
400 GB (80 GB Month SKU) |
400 GB (80 GB Month SKU) |
Daily Logs |
up to 5 GB |
up to 15 GB |
up to 15 GB |
Compliance, SmartEvent Options |
- |
SmartEvent |
SmartEvent and Compliance |
Gateway Expansion Options |
+ 50 GB storage and 1 GB logs/day |
+ 50 GB storage and 1 GB logs/day |
+ 50 GB storage and 1 GB logs/day |
+ 1 TB storage and 20 GB logs/day |
+ 1 TB storage and 20 GB logs/day |
+ 1 TB storage and 20 GB logs/day |
Note: 2 and 3 year SKUs are available in the online product catalog, In the 3Y SKUs, SmartEvent and Compliance are included for the 1st year. Manage up to 100 gateways in a single Smart-1 Cloud environment. Add more environments as needed.