We performed a comparison between Fortinet FortiSIEM and ManageEngine OpManager based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I like the unified security console. You can close incidents using Sentinel in all other Microsoft Security portals, when it comes to incident response."
"The best functionality that you can get from Azure Sentinel is the SOAR capability. So, you can estimate any type of activity, such as when an alert was triggered or an incident was found."
"The best feature is that onboarding to the SIM solution is quite easy. If you are using cloud-based solutions, it's just a few clicks to migrate it."
"Sentinel is a Microsoft product, so they provide very robust use cases and analytic groups, which are very beneficial for the security team. I also like the ability to integrate data sources into the software for on-premise and cloud-based solutions."
"The ability of all these solutions to work together natively is essential. We have an Azure subscription, including Log Analytics. This feature automatically acts as one of the security baselines and detects recommendations because it also integrates with Defender. We can pull the sysadmin logs from Azure. It's all seamless and native."
"The most valuable features are its threat handling and detection. It's a powerful tool because it's based on machine learning and on the behavior of malware."
"The machine learning and artificial intelligence on offer are great."
"It is quite efficient. It helps our clients in identifying their security issues and respond quickly. Our clients want to automate incident response and all those things."
"FortiSIEM's log correlation is good."
"The stability is very reliable. It offers very good performance."
"There are things like dashboards and reports (pre-configured and custom) that let me know that things are operating the way they should be, and when they are not."
"The interface is very easy to use. The connector in the core has FortiSIEM support from the vendor."
"Some of our customers who use this solution have seen improvement in their connection with load balancing on both connections."
"It's very easy for anyone to work with."
"Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features."
"Real-time monitoring makes life quite easy for me."
"The solution's most valuable feature is its ability to reach most of our network devices and get the most from them."
"The traffic monitoring and the traffic analysis are great."
"I liked Network Configuration Manager. They had some pretty decent features there, and they also had pretty good monitoring and alerts."
"The solution gives pretty good network visibility. I am also impressed with it's monitoring."
"The setup was easy."
"Device monitoring is a good tool of this solution."
"The product provides intensive reports."
"The application monitoring is the solution's most valuable feature."
"There is some relatively advanced knowledge that you have to have to properly leverage Sentinel's full capabilities. I'm thinking about things like the creation of workbooks, how you do threat-hunting, and the kinds of notifications you're getting... It takes time for people to ramp up on that and develop a familiarity or expertise with it."
"I would like to be able to monitor applications outside of the Azure Cloud."
"The built-in SOAR is not really good out-of-the-box. The SOAR relies on logic apps and you almost need to have some kind of developer background to be able to make these logic apps. Most security people cannot develop anything..."
"We have been working with multiple customers, and every time we onboard a customer, we are missing an essential feature that surprisingly doesn't exist in Sentinel. We searched the forums and knowledge bases but couldn't find a solution. When you onboard new customers, you need to enable the data connectors. That part is easy, but you must create rules from scratch for every associated connector. You click "next," "next," "next," and it requires five clicks for each analytical rule. Imagine we have a customer with 150 rules."
"The following would be a challenge for any product in the market, but we have some in-house apps in our environment... our apps were built with different parameters and the APIs for them are not present in Sentinel. We are working with Microsoft to build those custom APIs that we require. That is currently in progress."
"I believe one of the challenges I encountered was the absence of live training sessions, even with the option to pay for them."
"I would like Sentinel to have more out-of-the-box analytics rules. There are already more than 400 rules, but they could add more industry-specific ones. For example, you could have sets of out-of-the-box rules for banking, financial sector, insurance, automotive, etc., so it's easier for people to use it out of the box. Structuring the rules according to industry might help us."
"The only thing is sometimes you can have a false positive."
"The UI could improve in Fortinet FortiSIEM. Humans view the UI frequently for data and if it was more visually pleasing it would be beneficial."
"The reporting feature is not very attractive for the upper management and I am not able to perform complex/nested queries."
"Does not have load-sharing or high-availability, and these are important things to implement. I can do the same things in another way, but not naturally having these features makes it complicated."
"Fortinet FortiSIEM could improve by having a signature update."
"Its training can be improved. Its price also needs to be improved."
"The solution's interface could be modernized and improved."
"There could be more AI features included in the product."
"Fortinet FortiSIEM could improve by having better integration and extensions. This would benefit by allowing us to give more rules."
"Some of our customers have been asking that OpManager have a feature to monitor the operating system, however, I tell them that Endpoint Central is doing that. You can buy endpoints and then OpManager, and they integrate between them, and everything is okay."
"It is sometimes difficult to manage the user interface. It can get very complicated."
"The dashboard could include more features."
"The licensing for this solution is not straightforward and should be improved."
"The solution's reports need to include the number of applications consumed."
"There should be an option to get mobile notifications or SMS mirror notifications for critical issues. That way, when we don't have access to email, we can still receive notifications via our phones."
"We had some stability issues at the outset that have since been resolved."
"The licensing model is confusing."
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 64 reviews while ManageEngine OpManager is ranked 15th in Network Monitoring Software with 44 reviews. Fortinet FortiSIEM is rated 7.6, while ManageEngine OpManager is rated 8.0. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of ManageEngine OpManager writes "Helps us monitor all the infrastructure in our company but UI monitoring is not practical". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and ThousandEyes, whereas ManageEngine OpManager is most compared with SolarWinds NPM, Zabbix, PRTG Network Monitor, Nagios XI and DX Unified Infrastructure Management. See our Fortinet FortiSIEM vs. ManageEngine OpManager report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.