We compared Fortinet FortiAnalyzer and IBM Security QRadar based on our users' reviews in five categories. We reviewed all of the data, and you can find the conclusion below.
Features: Fortinet FortiAnalyzer features exceptional log collection capabilities and customizable reporting. FortiAnalyzer enables users to centrally manage and analyze logs in real time. QRadar users say the solution provides extensive information and helpful leads for locating pertinent data. QRadar stands out with its comprehensive network visibility and strong SIEM capabilities. Fortinet FortiAnalyzer could simplify its reporting module and cloud storage capabilities. QRadar could improve its rule deployment and lower its false positive rate. Users would also like expanded storage capacity, streamlined user management, and a more mature architecture.
Service and Support: Some Fortinet customers were dissatisfied with support, but others said it was helpful and responsive. Some QRadar customers have had trouble connecting with knowledgeable support staff and experienced delayed responses.
Ease of Deployment: FortiAnalyzer's initial setup is uncomplicated and manageable, typically taking approximately 30 minutes to a few hours. Some IT knowledge may be required. QRadar's initial setup can be complex for users without expertise, and the difficulty may vary depending on the size of the data set.
Pricing: While FortiAnalyzer isn't the most expensive option, users say the pricing could be more competitive. FortiAnalyzer's cost depends on the storage requirements, and many customers consider it reasonable. QRadar can be costly because users need to buy new hardware to upgrade.
ROI: FortiAnalyzer helps customers by providing insight into network traffic and speeding up issue resolution. QRadar delivers a high return on investment, improving security through its advanced user behavior analytics.
"The solution is easy to use and easy to integrate."
"Separating sections or conditions on Fortinet FortiAnalyzer is quite clear."
"The most important feature is to be able to get reports or information about the state of all firewalls."
"This solution offers one view of incident management which has been the most valuable feature."
"The reporting features, which offer customization, real-time insights, and compliance support, are particularly noteworthy aspects."
"The initial setup is pretty straightforward."
"It gives you live logs, which can be really helpful during troubleshooting."
"The feature I find most useful is the handy dashboard."
"The tool's most valuable feature is log source management. It enables us to connect to various log sources, including content, authentications, or other customized integrations. These integrations can be tailored for use with other platforms that don’t already have built-in IBM add-ons."
"This solution has allowed us to correlate logs from multiple sources."
"We find predictive analysis capabilities valuable."
"It integrates very easily with other solutions. The solution is flexible. We can add anything to it, as it is a good companion to other tools."
"The detection rate is good and the false positive rate is low."
"The most valuable features are the AI assistant, which is good at detecting known types of behavior."
"The most valuable feature is the DSM Editor. The custom parsing tool is very nice, outstanding."
"The feature that I find the most useful is that IBM QRadar User Behavior Analytics is free of charge. It's a fully free product that can be installed on top of IBM QRadar SIEM."
"Pricing-wise, it not affordable for the normal customer. Most of the people want to see different types of reporting, but FortiAnalyzer's fee is a little bit difficult."
"It would be good if the product could provide data about the websites users visit."
"Fortinet FortiAnalyzer could improve the user interface, and the experience of users receiving the reports and tracking could be better."
"It should have customized reports as well. While it currently has them, you need to write a script which is not straightforward."
"When using this solution, you need a high-level expert to make it work as it should."
"Automated reports focusing on compliance issues would provide a clearer understanding of potential gaps and the need for remediation."
"I would like to see an improvement in the technical support. Stronger authentication will also be a plus."
"The pricing could be better. They could work to make it more competitive on the market."
"The solution lacks some maturity."
"The interface is very old. IBM should remake it into a more modern interface."
"You can scale IBM QRadar User Behavior Analytics, but it has room for improvement."
"In terms of what could be improved, I would say the script which we have to create for custom actions. QRadar needs to improve that feature. Additionally, QRadar has to provide the playbooks designing features."
"The product can be a bit complex."
"I would like to see more integration in place after the security lock."
"I would like for them to develop a detection management solution. It does not have a detecting management solution in it, you have to buy it as it is, on top of the extended solution."
"Technical support is good, but not great."
Fortinet FortiAnalyzer is ranked 8th in Log Management with 81 reviews while IBM Security QRadar is ranked 6th in Log Management with 198 reviews. Fortinet FortiAnalyzer is rated 8.0, while IBM Security QRadar is rated 8.0. The top reviewer of Fortinet FortiAnalyzer writes "We can automate event-based handling solutions, is stable, and is great for heavy traffic". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". Fortinet FortiAnalyzer is most compared with Wazuh, Splunk Enterprise Security, Graylog, Grafana Loki and Check Point Security Management, whereas IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Cortex XSIAM. See our Fortinet FortiAnalyzer vs. IBM Security QRadar report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.