We compared Fortinet FortiAnalyzer and IBM Security QRadar based on our users' reviews in five categories. We reviewed all of the data, and you can find the conclusion below.
Features: Fortinet FortiAnalyzer features exceptional log collection capabilities and customizable reporting. FortiAnalyzer enables users to centrally manage and analyze logs in real time. QRadar users say the solution provides extensive information and helpful leads for locating pertinent data. QRadar stands out with its comprehensive network visibility and strong SIEM capabilities. Fortinet FortiAnalyzer could simplify its reporting module and cloud storage capabilities. QRadar could improve its rule deployment and lower its false positive rate. Users would also like expanded storage capacity, streamlined user management, and a more mature architecture.
Service and Support: Some Fortinet customers were dissatisfied with support, but others said it was helpful and responsive. Some QRadar customers have had trouble connecting with knowledgeable support staff and experienced delayed responses.
Ease of Deployment: FortiAnalyzer's initial setup is uncomplicated and manageable, typically taking approximately 30 minutes to a few hours. Some IT knowledge may be required. QRadar's initial setup can be complex for users without expertise, and the difficulty may vary depending on the size of the data set.
Pricing: While FortiAnalyzer isn't the most expensive option, users say the pricing could be more competitive. FortiAnalyzer's cost depends on the storage requirements, and many customers consider it reasonable. QRadar can be costly because users need to buy new hardware to upgrade.
ROI: FortiAnalyzer helps customers by providing insight into network traffic and speeding up issue resolution. QRadar delivers a high return on investment, improving security through its advanced user behavior analytics.
"The anti-virus protection it offers our clients is solid."
"The IBS (Intent Based Segmentation) and application web filtering are the most valuable aspects of the solution."
"The traffic log information we receive from Fortinet FortiAnalyzer is valuable."
"Logging is the best feature."
"The product works well with other products."
"It supports SQL for logging and reporting. Log data is inserted into the SQL database for log view and report generation."
"The most valuable features are customizing reports, and the ability to drill down to display critical information in real-time."
"The scalability is good. It is also good in the cluster nodes. You can make multiple FortiAnalyzer clusters groups, and you can distribute the logs between these FortiAnalyzer nodes. In other words, you can expand the scale."
"I like that it's easy to use and the performance is good."
"The UBA feature is the most valuable because you can see everything about users' activities."
"Vulnerability data, network data and the like, are part of correlation and detection."
"It'll get you from point A to B."
"We can easily monitor many things using this tool."
"Most of our clients are interested in automation. The automation part is good because they are able to detect threats and vulnerabilities in real time. It's very fast."
"It protect us from multiple authentication values, unauthorized access and antivirus threats."
"It can analyze event logs, event security, and give a good consult."
"It doesn't easily integrate with other solutions."
"The UI can be more user-friendly for new users."
"We should be able to do the patch upgrades in a centralized manner. This functionality is currently not there. It would be good to be able to do the firmware updates from one place and at the same time. Currently, if we want to update all appliances, we require FortiManager, which is another solution from Fortinet. Its documentation can be improved. It will be helpful for implementing the product and gaining knowledge for management purposes."
"We'd like to see more embedded features."
"The pricing could be better."
"Fortinet FortiAnalyzer could improve the user interface, and the experience of users receiving the reports and tracking could be better."
"The solution lacks business intelligence features. It's much too basic."
"Our organization wants the solution to be able to provide us access to a centralized dashboard that displays a log view for all firewalls under Fortinet FortiAnalyzer."
"We sometimes get an error about the hard drive. Approximately once in two months, we can't find the logs, and they go missing, which is a terrible issue. We are getting support for this issue from our support company."
"The released patch quality is poor. IBM should test those patches on their side, not on the client's side."
"It's resource-intensive."
"What needs to be improved in IBM QRadar User Behavior Analytics is the user experience. It's not optimal. Some screens are a bit clunky. The solution needs to be more user-friendly."
"QRadar UBA only keeps the data for a short while (it's refreshed every five minutes) and would be improved if this were extended to a week or month."
"IBM QRadar Advisor with Watson could be more user-friendly. You need some skills and understanding of what you're looking at, especially if you're going to draw down specific information."
"In terms of additional features, a mobile app would be nice. Also, the reporting is definitely okay, but you have to make sure that everybody with different roles can understand it. There is room for improvement in the reporting."
"I would also like to see more integration with other vendors. IBM doesn't integrate well with products from China, like Huawei. Many Middle Eastern customers are switching to Huawei from American vendors like Cisco because of the price. In most RFPs, Huawei wins because it costs less."
Fortinet FortiAnalyzer is ranked 8th in Log Management with 81 reviews while IBM Security QRadar is ranked 6th in Log Management with 198 reviews. Fortinet FortiAnalyzer is rated 8.0, while IBM Security QRadar is rated 8.0. The top reviewer of Fortinet FortiAnalyzer writes "We can automate event-based handling solutions, is stable, and is great for heavy traffic". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". Fortinet FortiAnalyzer is most compared with Wazuh, Splunk Enterprise Security, Graylog, Grafana Loki and SolarWinds Kiwi Syslog Server, whereas IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Rapid7 InsightIDR. See our Fortinet FortiAnalyzer vs. IBM Security QRadar report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.