We performed a comparison between Fortinet FortiSIEM and ScienceLogic based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM)."The UI-based analytics are excellent."
"The analytics has a lot of advantages because there are 300 default use cases for rules and we can modify them per our environment. We can create other rules as well. Analytics is a useful feature."
"The data connectors that Microsoft Sentinel provides are easy to integrate when we work with a Microsoft agent."
"What is most useful, is that it has a good connection to the Microsoft ecosystem, and I think that's the key part."
"The dashboard that allows me to view all the incidents is the most valuable feature."
"The in-built SOAR of Sentinel is valuable. Kusto Query Language is also valuable for the ease of writing queries and ease of getting insights from the logs. Schedule-based queries within Sentinel are also valuable. I found these three features most useful for my projects."
"The best functionality that you can get from Azure Sentinel is the SOAR capability. So, you can estimate any type of activity, such as when an alert was triggered or an incident was found."
"Microsoft Sentinel comes preloaded with templates for teaching and analytics rules."
"Fortinet FortiSIEM is less costly than other products and is available 24/7."
"The Threat Hunting feature provides complete traffic analysis."
"FortiSIEM provides a single PIN to monitor SOC and NOC. It's a nice tool for integration and monitoring. It provides multiple categories for monitoring based on security designations like low, medium, and high."
"Fortinet FortiSIEM is easy to use."
"One of the most valuable features is that we can combine SOC and NOC operations in the same tool. We can provide NOC and SOC services in the same tool for two separate teams. There are plenty of third-party solutions that integrate with FortiSIEM. All these solutions already have a ready integration, and we have the possibility to create a custom connector for these solutions. Its reports are also very good."
"The solution’s IP database is awesome."
"We have found the most important features in Fortinet FortiSIEM to be the correlation, file utility check, latest file, and hash changes. These features are important for us."
"We find the solution to be stable."
"The best feature is the highly flexible graphs."
"The tool is quite easy to deploy, and it offers very good support."
"The solution provides good infra-monitoring features."
"Dynamic Component Mapping is key and unique."
"Its ITSM and EMS combination is really amazing. There is no need to purchase two products, one for ITSM and a second for EMS/NMS."
"When it comes to features, the power pack is the most valuable."
"It has good monitoring capabilities across cloud environments, data centers, and hybrid environments."
"The most valuable features of ScienceLogic are AI and machine learning."
"Microsoft should improve Sentinel, considering that from the legacy systems, it cannot collect logs."
"The solution could be more user-friendly; some query languages are required to operate it."
"Documentation is the main thing that could be improved. In terms of product usage, the documentation is pretty good, but I'd like a lot more documentation on Kusto Query Language."
"There is room for improvement in entity behavior and the integration site."
"The dashboards can be improved. Creating dashboards is very easy, but the visualizations are not as good as Microsoft Power BI. People who are using Microsoft Power BI do not like Sentinel's dashboards."
"The KQL query does not function effectively with Windows 11 machines, and in the majority of machine-based investigations, KQL queries are essential for organizing the data during investigations."
"At the network level, there is a limitation in integrating some of the switches or routers with Microsoft Sentinel. Currently, SPAN traffic monitoring is not available in Microsoft Sentinel. I have heard that it is available in Defender for Identity, which is a different product. It would be good if LAN traffic monitoring or SPAN traffic monitoring is available in Microsoft Sentinel. It would add a lot of value. It is available in some of the competitor products in the market."
"We've seen delays in getting the logs from third-party solutions and sometimes Microsoft products as well. It would be helpful if Microsoft created a list of the delays. That would make things more transparent for customers."
"Our customers are noticing configuration available in the GUI interface and I think that they should be equal."
"The log collection and configuration management are not great."
"The UI could improve in Fortinet FortiSIEM. Humans view the UI frequently for data and if it was more visually pleasing it would be beneficial."
"Fortinet FortiSIEM is a little out of sight and needs more marketing efforts to be popular in the market."
"The performance can be improved. Sometimes it takes a long time to fetch data."
"Its training can be improved. Its price also needs to be improved."
"The graphs on the user interface could be improved as we often experience glitches."
"FortiSIEM could be better integrated with other vendors."
"They should improve database issues in HA and Failover mode, and provide documentation for all users , even if they are not customers."
"It doesn't have the complete application-level topology. It could have service topology and business service monitoring. I would like to see how business service monitoring will function with agent-based installation, and how flexible and business-oriented it is for service modeling and service infrastructure. I have a lot of experience in using business service monitoring, service topology, and service hierarchy functionalities in similar products from BMC and Micro Focus (OpenView), and I want to see how these functionalities will look like in ScienceLogic."
"There are often bugs in new releases."
"They need a little more self-service."
"I would like to see out-of-the-box standard dashboards for common services."
"From a performance perspective, it needs to improve a lot."
"They should add CLI command modes and scripts for high performance."
"ScienceLogic does not have application monitoring. We definitely need something integrated within ScienceLogic to monitor applications so that we don't have to rely on monitoring tools to monitor other applications. At least the ones that are market leaders, such as SAP, Oracle, and others."
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 64 reviews while ScienceLogic is ranked 12th in IT Infrastructure Monitoring with 42 reviews. Fortinet FortiSIEM is rated 7.6, while ScienceLogic is rated 8.6. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of ScienceLogic writes "Great integrations, power flow, and good support". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and ThousandEyes, whereas ScienceLogic is most compared with Dynatrace, LogicMonitor, SolarWinds NPM, Datadog and Zabbix.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
