We performed a comparison between Fortinet FortiSIEM and PRTG Network Monitor based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
"Sentinel enables us to ingest data from our entire ecosystem. In addition to integrating our Cisco ASA Firewall logs, we get our Palo Alto proxy logs and some on-premises data coming from our hardware devices... That is very important and is one way Sentinel is playing a wider role in our environment."
"You can fine-tune the SOAR and you'll be charged only when your playbooks are triggered. That is the beauty of the solution because the SOAR is the costliest component in the market today... but with Sentinel it is upside-down: the SOAR is the lowest-hanging fruit. It's the least costly and it delivers more value to the customer."
"Sentinel is a Microsoft product, so they provide very robust use cases and analytic groups, which are very beneficial for the security team. I also like the ability to integrate data sources into the software for on-premise and cloud-based solutions."
"Native integration with Microsoft security products or other Microsoft software is also crucial. For example, we can integrate Sentinel with Office 365 with one click. Other integrations aren't as easy. Sometimes, we have to do it manually."
"The initial setup is very simple and straightforward."
"It's easy to use. It's a very good product. It can easily ingest data from anywhere. It has an easily understandable language to perform actions."
"The ability of all these solutions to work together natively is essential. We have an Azure subscription, including Log Analytics. This feature automatically acts as one of the security baselines and detects recommendations because it also integrates with Defender. We can pull the sysadmin logs from Azure. It's all seamless and native."
"It is able to connect to an ever-growing number of platforms and systems within the Microsoft ecosystem, such as Azure Active Directory and Microsoft 365 or Office 365, as well as to external services and systems that can be brought in and managed. We can manage on-premises infrastructure. We can manage not just the things that are running in Azure in the public cloud, but through Azure Arc and the hybrid capabilities, we can monitor on-premises servers and endpoints. We can monitor VMware infrastructure, for instance, running as part of a hybrid environment."
"To add workers and even collectors is pretty easy."
"It works well with medium to large-scale enterprises."
"Fortinet FortiSIEM is less costly than other products and is available 24/7."
"I like the various options, including the option for CMDB and the easier access to create rules, playbooks, or use cases. It's also easier to use for creating dashboards and reports."
"The event correlation is pretty robust. The GUI is pretty good."
"It's easy to manage. There's a web interface and a command line, depending on what the user is comfortable with. There's a large knowledge base available, and the support is timely."
"The advanced agents used to collect logs have been most valuable. We have also made use of the advanced intelligence this solution offers."
"Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features."
"I really love the activity library. It gives the flexibility to discover data and metrics about my interface and data server."
"PRTG is integrated on Windows."
"The product is easy to use and the web interface is fantastic."
"The sensors and probes are great, nice and lightweight, they don't take up too many resources on the system. We just deploy them out and they start reporting instantly."
"The most valuable feature of PRTG Network Monitor is the different monitoring probes available."
"Ease of set-up – it is quick and easy to add a probe and start collecting data from a device."
"The best feature is that it lets me know what is going on. I need to know if something has gone down, I need to know if something is running very slowly. PRTG tells me that."
"The initial setup is very simple."
"Some of the data connectors are outdated, at least the ones that utilize Linux machines for log forwarding. I believe that Microsoft is already working on improving this."
"The performance could be improved. If I create 15 to 20 lines for a single-use case in KQL, sometimes it takes more time to execute. If I create use cases within a certain timeline, the result will show in .01 seconds. A complex query takes more time to get results."
"For certain vendors, some of the data that Microsoft Sentinel captures is redacted due to privacy reasons."
"The KQL query does not function effectively with Windows 11 machines, and in the majority of machine-based investigations, KQL queries are essential for organizing the data during investigations."
"Sentinel's alerts and notifications are not fully optimized for mobile devices. The overall reporting and the analytics processes for the end user should also be improved. Also, the compatibility and availability of data sources and reports are not always perfect."
"The troubleshooting has room for improvement."
"We are invoiced according to the amount of data generated within each log."
"There is a wider thing called Jupyter Notebooks, which is around the automation side of things. It would be good if there are playbooks that you can utilize without having to have the developer experience to do it in-house. Microsoft could provide more playbooks or more Jupyter Notebooks around MITRE ATT&CK Framework."
"The stability of the product is an area of concern where improvements are required."
"Not very good on non-API features, lacks that functionality."
"I would like to see more integration with other platforms."
"They could work on their documentation. If there's anything about the solution that needs improvement, it's that. For example, documentation already is on a very high level but specifically on the CLI there are tons of features which can be fine-tuned and thousands of commands are very difficult to document. If they could make this easier, it would improve the overall solution."
"FortiSIEM needs to expand its integration with third-party vendors. I don't know if Forcepoint has been added, but there were limited resources for integrating Forcepoint solutions when we implemented FortiSIEM. It integrates well with other Fortinet products and solutions from established cybersecurity companies like Palo Alto but doesn't integrate with some of the newer vendors."
"The solution's interface could be modernized and improved."
"Fortinet FortiSIEM is a little out of sight and needs more marketing efforts to be popular in the market."
"FortiSIEM could be better integrated with other vendors."
"Scalability is the only major sticking point for me. There is a recommended number of sensors, which is around 10,000 and we're double that... The only option we have to scale is to buy another core, which would be a separate, stand-alone instance..."
"I would like to see Office 365 monitoring. Essentially, it doesn't do it. I assumed not at all, but apparently it does it slightly. However, due to issues with APIs, they currently don't provide full monitoring for O365."
"If PRTG could help me see the bandwidth for each host I have on my network, either for a wireless or a wired network, that would be very helpful."
"The solution could be better and faster when it comes to performance."
"The product could be improved by being cross-platform friendly."
"Sometimes, it is difficult to drill down further to get information, e.g., if we saw spike in traffic, then we would want to drill down and find out what is causing that spike in traffic."
"Maybe in the future there will be room for improvement, but currently, there is nothing pressing that I can think of"
"PRTG access works best from the web GUI. There are dedicated apps on Windows/Android/iOS, but they are slow and don’t work as well as the web GUI."
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 65 reviews while PRTG Network Monitor is ranked 5th in Network Monitoring Software with 96 reviews. Fortinet FortiSIEM is rated 7.6, while PRTG Network Monitor is rated 8.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of PRTG Network Monitor writes "It's an all-in-one solution, and net flow is included in the licensing ". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and ManageEngine Log360, whereas PRTG Network Monitor is most compared with Zabbix, Centreon, Nagios XI, SolarWinds NPM and Auvik Network Management (ANM). See our Fortinet FortiSIEM vs. PRTG Network Monitor report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
