We performed a comparison between AlienVault OSSIM and Fortinet FortiSIEM based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The pricing of the product is excellent."
"The product can integrate with any device."
"It's pretty powerful and its performance is pretty good."
"Log aggregation and data connectors are the most valuable features."
"One of the most valuable features is that it creates a kind of a single pane of glass for organizations that already use Microsoft software. So, when they have things like Microsoft 365, it is very easy for them to kind of plug in or enroll those endpoints into the Azure Sentinel service."
"The best feature is that onboarding to the SIM solution is quite easy. If you are using cloud-based solutions, it's just a few clicks to migrate it."
"The UI of Sentinel is very good and easy to use, even for beginners."
"The SOAR playbooks are Sentinel's most valuable feature. It gives you a unified toolset for detecting, investigating, and responding to incidents. That's what clearly differentiates Sentinels from its competitors. It's cloud-native, offering end-to-end coverage with more than 120 connectors. All types of data logs can be poured into the system so analysis can happen. That end-to-end visibility gives it the advantage."
"The solution is free to use."
"The initial setup is straightforward."
"The product is easy to use."
"With AlienVault you get everything in one box."
"Better than other SIEM solutions because almost everything can be integrated."
"Its user-friendliness is the most valuable. It is very easy to use and explore. The dashboard is very well packaged and integrated. You don't have to spend a lot of time in configuring it and checking out the RPM etc. It is also free and very powerful."
"There are a lot of people you will find using OSSIM since they are also offering OTX as a service"
"The most valuable features of this solution are the data correlation and vulnerability assessment."
"Both the collecting logs and duo correlation are valuable features for us."
"Fortinet FortiSIEM is easy to use."
"The solution’s IP database is awesome."
"The most valuable feature is the dashboard. CMDB database collects data from a lot of pre-configured devices."
"The stability is very reliable. It offers very good performance."
"The solution is easy to use and user-friendly."
"Its automated response feature has benefited our customer communication. Analysts feel more confident in providing timely responses."
"We're able to get real-timec as well as our customer networks that we're monitoring at all times."
"It would be good to have some connectors for third-party SIEM solutions. Many customers are struggling with the integration of Azure Sentinel with their on-premise SIEM. Microsoft is changing the log structure many times a year, which can corrupt a custom integration. It would be good to have some connectors developed by Microsoft or supply vendors, but they are not providing such functionality or tools."
"When it comes to ingesting Azure native log sources, some of the log sources are specific to the subscription, and it is not always very clear."
"We'd like to see more connectors."
"The solution could improve the playbooks."
"The interface could be more user-friendly. It''s a small improvement that they could make if they wanted to."
"I would like to be able to monitor applications outside of the Azure Cloud."
"I believe one of the challenges I encountered was the absence of live training sessions, even with the option to pay for them."
"We do see continuous improvement all the time, however, I haven't got a specific feature that is lacking or not well designed."
"The documentation could be improved."
"AlienVault OSSIM should improve the deployment and make it unified like the USM."
"When comparing AlienVault OSSIM to other solutions it looks a bit outdated. Additionally, they need to improve their integration."
"AlienVault OSSIM on-premise version is more difficult to implement than the cloud version. Additionally, they should add integration between several different environments at once and improve their online knowledge base."
"The correlation engine needs to be improved."
"AlienVault OSSIM’s configuration and integration could be a little easier."
"The user interface needs to be friendlier across the board."
"GUI could be improved."
"Fortinet FortiSIEM is a little out of sight and needs more marketing efforts to be popular in the market."
"When compared with some competitors, in terms of performance, the CPU and RAM requirements and the capability of coordination with development all need some improvement."
"They need to integrate better with Cisco and Palo Alto."
"The log collection and configuration management are not great."
"The backup and recovery process for this solution needs improvement."
"It would be good if the solution offered even more configuration options, especially in relation to the VPN so that it continues to be a very flexible option."
"Fortinet FortiSIEM could improve by having better integration and extensions. This would benefit by allowing us to give more rules."
"It's difficult to integrate unsupported devices with FortiSIEM compared to QRadar. It's easier to integrate and develop processes in QRadar. It's harder to develop a custom process in FortiSIEM."
AlienVault OSSIM is ranked 14th in Security Information and Event Management (SIEM) with 27 reviews while Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 63 reviews. AlienVault OSSIM is rated 7.4, while Fortinet FortiSIEM is rated 7.6. The top reviewer of AlienVault OSSIM writes "An easy-to-scale open-source solution used for monitoring events on devices ". On the other hand, the top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". AlienVault OSSIM is most compared with Wazuh, Elastic Security, USM Anywhere, Splunk Enterprise Security and AWS Security Hub, whereas Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ManageEngine EventLog Analyzer. See our AlienVault OSSIM vs. Fortinet FortiSIEM report.
See our list of best Security Information and Event Management (SIEM) vendors.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.