Managing network security is a critically important and challenging task, especially in cloud environments. Scaling firewalls across tens of subnets and VPCs can become challenging with creating, maintaining, and updating many custom rule sets.  Depending on the how many firewalls are deployed, traditional manual rule deployment can take 20 hours per week or more, requiring constant monitoring to protect against emerging threats and new attack vectors, placing a significant burden on scarce IT resources.

To meet this challenge, Check Point and AWS have teamed to deliver Check Point Managed Rules for AWS Network Firewall to simplify scaling the deployment of firewall rules and reduce management overhead. This new service provided by Check Point provides expertly curated, automatically updated, pre-configured rule sets designed to detect and prevent malicious network activity.

How It Works

Check Point Partner Managed Rules are curated rule sets developed and maintained by Check Point ThreatCloud AI. These rules provide:

  • Intrusion detection/prevention rules based on frameworks like Snort or Suricata.
  • Automatic updates of firewall rules directly from Check Point.

They’re distributed and updated automatically via AWS Marketplace, and you can subscribe to them just like other AWS Marketplace security products.

Check Point Managed Rules for AWS prevent malicious attacks with broad coverage against evolving threats helping AWS customers maintain compliance, reduce manual effort, and strengthen their cloud security posture.

Key Benefits of Check Point Partner Managed Rules for AWS Network Firewall:
  • Comply with industry standards: Delivers enhanced threat prevention to support security practices required by industry compliance standards like PCI DSS, SOX, and GDPR.
  • Reduced manual effort: Address the latest threats and vulnerabilities, ensuring up-to-date protection without the need for extensive in-house expertise or intervention.
  • Increased security posture: Delivers network security rules created by Check Point security experts protecting your organization from advanced attacks.
  • Smarter operations: Leverage Check Point security expert rules creation while repositioning valuable IT resources to critical business needs.

Easy Deployment

Once subscribed, the managed rules appear as available rule groups in your AWS Network Firewall console and are automatically updated by Check Point.
You can then:

  • Add them to your firewall policy alongside your own custom rules.
  • Configure priority (so partner rules can run before or after your own).
  • Combine multiple partner rule groups in one firewall for layered protection.

Example:

  • Rule Group 1 – Check Point Managed Rules (threat prevention).
  • Rule Group 2 – Your organization’s custom allow/block policies.
Billing & Licensing

Managed rules are sold as AWS Marketplace subscriptions, consumption based on total GigaBytes network traffic inspected, billed hourly or monthly.

  • Charges are added to your AWS bill.
  • No separate infrastructure deployment is required—rules are hosted and delivered via AWS.
Use Case Example: Check Point Managed Rules for AWS Network Firewall
  • Run within AWS Network Firewall (no external gateway needed).
  • Leverage Check Point ThreatCloud AI to provide the latest signatures.
  • Are configured and monitored via the AWS console, CLI, or Terraform — just like any native AWS rule group.

Check Point Managed Rules for AWS Network Firewall is available now on AWS marketplace. You can also learn more by requesting a free network security a demo from a Check Point Cloud Security Architect.

You may also like