We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The most valuable feature was the EDR, endpoint detection and response."
"The most valuable feature is the protection and the way it works, the technology is what I like the most."
"The solution is very good because it catches a lot of threats in emails."
"he solution's GUI is good."
"The technical support is very good."
"What I find most valuable, is that it is easy to use."
"The analysis engine is a very valuable feature."
"The initial setup is straightforward."
"The most valuable feature is the ability to write rules and triggers for network communication, and then being able to investigate based on that."
"It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible."
"The most valuable features are the packet decoder, log decoder, and concentrator."
"The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it."
"The most valuable features are the integration and ease of use."
"Performance and reporting are very good."
"The most valuable features are the threat prediction and network forensics."
"The most valuable feature is the security that it provides."
"In the next release, I would like to see machine learning and anti-exploitation included."
"The licensing can be very confusing. It needs to be simplified."
"The response time from technical support should be improved."
"At least once a week we have a false alarm. This needs to be adjusted so that we get fewer of these occurrences."
"Most people are confused about how to use the right integration of the right Fortinet product."
"Something that needs to improve, is the end-point protection."
"Product could include a user interface and be made simpler for customers to configure."
"The integration is limited. The solution needs to offer better integration with multiple vendors."
"The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together."
"They should implement algorithms to digest that data and produce additional, more advanced reporting, alerting and support of internal security teams."
"Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance."
"The initial setup is very complex and should be simplified."
"The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly."
"The user interface is a little bit difficult for new users and it needs to be improved."
"Lots of competing products have vulnerability protection built into their products, and this solution would be improved by including that support."
"It is not so easy to customize this product."
"There are additional costs, which isn't included in the licensing fee."
"The solution is not expensive at all."
"Altogether, it is about €10,000 for the Sandbox and Email Gateway."
"This is a pricey solution; it's not cheap."
"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."
"Our license is for one year."
Today’s threats are increasingly sophisticated and often bypass traditional malware security by masking their malicious activity. A sandbox augments your security architecture by validating threats in a separate, secure environment. FortiSandbox offers a powerful combination of advanced detection, automated mitigation, actionable insight, and flexible deployment to stop targeted attacks and subsequent data loss. It's also a key component of our Advanced Threat Protection solution.
If you’re relying on log data to detect and prevent cyber threats, you’re in trouble. Attackers increasingly evade detection of log-centric security and network monitoring tools. But logs combined with full packet, endpoint NetFlow data are proven to provide the essential details for early threat detection. Here’s a closer look at our solution.
Fortinet FortiSandbox is ranked 5th in Advanced Threat Protection with 10 reviews while RSA NetWitness Logs and Packets (RSA SIEM) is ranked 3rd in Advanced Threat Protection with 10 reviews. Fortinet FortiSandbox is rated 8.0, while RSA NetWitness Logs and Packets (RSA SIEM) is rated 7.4. The top reviewer of Fortinet FortiSandbox writes "Good performance and integration capabilities with good technical support". On the other hand, the top reviewer of RSA NetWitness Logs and Packets (RSA SIEM) writes "Good support, powerful decoders and concentrator, but the dashboard is not reflecting events in real-time ". Fortinet FortiSandbox is most compared with Palo Alto Networks WildFire, Check Point SandBlast Network, FireEye Network Security, McAfee Advanced Threat Defense and Fortinet FortiClient, whereas RSA NetWitness Logs and Packets (RSA SIEM) is most compared with Splunk, IBM QRadar, LogRhythm NextGen SIEM, ArcSight Enterprise Security Manager (ESM) and RSA enVision. See our Fortinet FortiSandbox vs. RSA NetWitness Logs and Packets (RSA SIEM) report.
See our list of best Advanced Threat Protection vendors.
We monitor all Advanced Threat Protection reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.