We performed a comparison between Fortinet FortiSIEM and Pandora FMS based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Sentinel has features that have helped improve our security poster. It helped us in going ahead and identifying the gaps via analysis and focusing on the key elements."
"The most valuable features in my experience are the UEBA, LDAP, the threat scheduler, and integration with third-party straight perform like the MISP."
"I like the unified security console. You can close incidents using Sentinel in all other Microsoft Security portals, when it comes to incident response."
"The most valuable features are its threat handling and detection. It's a powerful tool because it's based on machine learning and on the behavior of malware."
"The data connectors that Microsoft Sentinel provides are easy to integrate when we work with a Microsoft agent."
"The pricing of the product is excellent."
"The best functionality that you can get from Azure Sentinel is the SOAR capability. So, you can estimate any type of activity, such as when an alert was triggered or an incident was found."
"Microsoft Sentinel provides the capability to integrate different log sources. On top of having several data connectors in place, you can also do integration with a threat intelligence platform to enhance and enrich the data that's available. You can collect as many logs and build all the use cases."
"The solution is easy to use and user-friendly."
"The most valuable feature of Fortinet FortiSIEM is the correlation of many events."
"It gives us the opportunity to generate notifications based upon rules that get triggered, and the rules could be specific to PCI, HIPAA, GIBA, NIST, and so forth."
"Fortinet FortiSIEM is easy to use."
"The most valuable feature is the anomaly-reporting alarms."
"We find the solution to be stable."
"The stability is very reliable. It offers very good performance."
"Real-time monitoring makes life quite easy for me."
"The monitoring system within this solution is very good. It is easy to use and navigate, and makes issue alarms easily viewable."
"The official forum is active enough to answer most of the high-end technical questions that you may have."
"The most valuable features are auto-discovery and automatic detection of the network topology and network monitoring."
"Features I have found most valuable with Pandora are the personalized metrics and the simplicity of data."
"What I value most about Pandora FMS is the simplicity of working with it."
"We are able to control our business with this all-in-one monitoring tool."
"This solution has screens that are easy to understand and provide a wealth of information."
"I like this solution a lot because it has a very large Hispanic community and the platform looks very friendly."
"They only classify alerts into three categories: high, medium, and low. So, from the user's point of view, having another critical category would be awesome."
"Sentinel could improve its ticketing and management. A few customers I have worked with liked to take the data created in Sentinel. You can make some basic efforts around that, but the customers wanted to push it to a third-party system so they could set up a proper ticketing management system, like ServiceNow, Jira, etc."
"We have been working with multiple customers, and every time we onboard a customer, we are missing an essential feature that surprisingly doesn't exist in Sentinel. We searched the forums and knowledge bases but couldn't find a solution. When you onboard new customers, you need to enable the data connectors. That part is easy, but you must create rules from scratch for every associated connector. You click "next," "next," "next," and it requires five clicks for each analytical rule. Imagine we have a customer with 150 rules."
"The performance could be improved. If I create 15 to 20 lines for a single-use case in KQL, sometimes it takes more time to execute. If I create use cases within a certain timeline, the result will show in .01 seconds. A complex query takes more time to get results."
"Sentinel can be used in two ways. With other tools like QRadar, I don't need to run queries. Using Sentinel requires users to learn KQL to run technical queries and check things. If they don't know KQL, they can't fully utilize the solution."
"I would like Sentinel to have more out-of-the-box analytics rules. There are already more than 400 rules, but they could add more industry-specific ones. For example, you could have sets of out-of-the-box rules for banking, financial sector, insurance, automotive, etc., so it's easier for people to use it out of the box. Structuring the rules according to industry might help us."
"I believe one of the challenges I encountered was the absence of live training sessions, even with the option to pay for them."
"Sometimes, it is hard for us to estimate the costs of Microsoft Sentinel."
"Not very good on non-API features, lacks that functionality."
"It's difficult to integrate unsupported devices with FortiSIEM compared to QRadar. It's easier to integrate and develop processes in QRadar. It's harder to develop a custom process in FortiSIEM."
"Fortinet FortiSIEM could improve by having a signature update."
"The solution's interface could be modernized and improved."
"The policy editing should be easier. Right now, it's too hard."
"They could work on their documentation. If there's anything about the solution that needs improvement, it's that. For example, documentation already is on a very high level but specifically on the CLI there are tons of features which can be fine-tuned and thousands of commands are very difficult to document. If they could make this easier, it would improve the overall solution."
"Its training can be improved. Its price also needs to be improved."
"The only drawback is the licensing model. It can get expensive if you want to integrate more solutions."
"It would be useful if Pandora FMS included an ISO image (or «software appliance») for each big company that leases virtual private machines (VPS), just like in AWS."
"Their support is good, but it is just online communication. It would be great to be able to just call someone and talk to them instead of always writing. It works well for me because I am a decent communicator in email, but some people might find it difficult to describe in a written fashion and communicate with them that way. There is a learning curve to the interface, but once you get used to it, it is actually very powerful. They have a lot of options, but people struggle with the interface. They've improved it though, and it is getting better. They need to keep improving the learning curve to help buy-in. I'm the guy that manages it, so I'm comfortable with it. They can refine the upgrade agents to be easier. They can also do more refinement in end-user usability because not everyone is strong technically, and people who aren't strong technically might be averse to the product, even though it has come a long way. It has a complete GUI and everything."
"I would like for the solution to be faster and have a better tolerance between parallel servers for Pandora and Pest Control."
"A nice feature in the next release would be an automation module to run workflow actions."
"In the future, we may have double the number of devices, and we do not want to have any issues with performance in the data display."
"It would be helpful to include the generation of reports for times that the network was out of service."
"I find that this software is resource heavy, and demands a lot of processing capacity."
"I think some improvements to the Android app would be good."
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 64 reviews while Pandora FMS is ranked 28th in Network Monitoring Software with 22 reviews. Fortinet FortiSIEM is rated 7.6, while Pandora FMS is rated 9.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of Pandora FMS writes "The open architecture is easy to extend and enhance". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and ThousandEyes, whereas Pandora FMS is most compared with Zabbix, Wazuh, PRTG Network Monitor, Nagios XI and SolarWinds NPM. See our Fortinet FortiSIEM vs. Pandora FMS report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.