Check Point Security Gateways Offered On Amazon Web Services Cloud

Check Point offers Amazon Web Services customers virtual security appliances built into their cloud environments

Check Point Software Technologies has partnered with Amazon to bring virtual security appliances to its Amazon Web Services (AWS).

Customers will be able to manage Check Point’s virtual security gateways from the centralised management dashboard to apply security policies to the AWS cloud infrastructure, Check Point announced.

Virtual Appliance for Amazon Web Services offers customers access to more than 30 security applications, including a firewall, virtual private network, URL filtering, application control, intrusion prevention, mobile access, data loss prevention, antivirus and others, the company said.

Virtually the same

The virtual appliance looks just like an on-premise appliance within the Check Point management dashboard, Fred Kost, head of product marketing at Check Point, told eWEEK. Customers who are used to the dashboard and have been trained on Check Point’s security gateways will have no trouble switching to the cloud because the security layer will remain consistent, Kost said.
The virtual appliance is running the “same gateway code and has the same management capabilities”, such as unified logs and reporting, as the physical boxes, said Kost.

With this partnership, Check Point customers would be able to apply security policies to protect applications and data stored in the public cloud on Amazon’s infrastructure in the same way it would have protected data on-premises.

Amazon built into the platform some security features that are available to everyone but rely on a “shared-responsibility security model” to encourage customers to run security products that fit their requirements, according to Stephen Schmidt, chief information security officer at Amazon Web Services.

Customers bring their own applications onto Amazon’s cloud infrastructure, and can use Check Point’s line of virtual appliances to add their own layers of security on top of what is already in place, Kost said. The customer picks and chooses between more than 30 software “blades”, or security applications, in order to create the level of security they require.

IT departments can “enforce a consistent security policy across the organisation”, Kost said.

Important addition

“Security gateways in cloud environments are equally as important as they are in on-premise locations; therefore, unifying their policies and reporting capabilities in a centralised way is critical to ensuring both the security and compliance mandates of enterprises worldwide,” said Lawrence Pingree, research director at Gartner.

For organisations interested in cloud security, they often run the security tool within a single machine instance and have to manage them all independently. Since Check Point’s gateway appliance software runs on a machine running the Check Point operating system, the engineers worked with Amazon to tweak the installation process, according to Kost.

Amazon created a special machine image that accommodated the gateway appliance, he said. Customers have to present Amazon with a valid Check Point licence, specifically for use in the Amazon cloud, before access to the virtual appliance is allowed. Customers simply click on the appliance to enable the blades in the cloud environment, making it fast and easy to deploy. Cost depends on the number of software blades they need.

Pricing for a Virtual Appliance for Amazon Web Services licence starts at $2,000 (£1,281).