We performed a comparison between Fortinet FortiSIEM and Ixia Hawkeye based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Splunk, Wazuh and others in Security Information and Event Management (SIEM)."Sentinel also enables you to ingest data from your entire ecosystem and not just from the Microsoft ecosystem. It can receive data from third-party vendors' products such firewalls, network devices, and antivirus solutions. It's not only a Microsoft solution, it's for everything."
"The product can integrate with any device."
"The UI of Sentinel is very good and easy to use, even for beginners."
"I like the KQL query. It simplifies getting data from the table and seeing the logs. All you need to know are the table names. It's quite easy to build use cases by using KQL."
"Investigations are something really remarkable. We can drill down right to the raw logs by running different queries and getting those on the console itself."
"It's easy to use. It's a very good product. It can easily ingest data from anywhere. It has an easily understandable language to perform actions."
"It has basic out-of-the-box integrations with multiple log sources."
"Azure Application Gateway makes things a lot easier. You can create dashboards, alert rules, hunting and custom queries, and functions with it."
"It is used as an alerting platform."
"One of the most valuable features is that we can combine SOC and NOC operations in the same tool. We can provide NOC and SOC services in the same tool for two separate teams. There are plenty of third-party solutions that integrate with FortiSIEM. All these solutions already have a ready integration, and we have the possibility to create a custom connector for these solutions. Its reports are also very good."
"The seamless integration with FortiGate is the solution's most valuable aspect."
"Both the collecting logs and duo correlation are valuable features for us."
"FortiSIEM sends an email or SMS notifications to admins when there are significant incidents. It's a highly efficient way of responding to incidents."
"Fortinet FortiSIEM is easy to use."
"Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features."
"Easy alert setup which enables different alerts in different categories."
"The most valuable feature is the deployment because it's very easy to deploy real flow through the network."
"Our customer was happiest with the price of this product."
"The ease of setup is the most valuable aspect of this solution. It's easy to set up and run tests."
"It empowers network administrators to access specialized and detailed views for specific tests, including video streaming and performance related to specific applications like video games."
"The AI capabilities must be improved."
"The interface could be more user-friendly. It''s a small improvement that they could make if they wanted to."
"I would like to be able to monitor applications outside of the Azure Cloud."
"Sentinel's alerts and notifications are not fully optimized for mobile devices. The overall reporting and the analytics processes for the end user should also be improved. Also, the compatibility and availability of data sources and reports are not always perfect."
"There is room for improvement in entity behavior and the integration site."
"Sentinel could improve its ticketing and management. A few customers I have worked with liked to take the data created in Sentinel. You can make some basic efforts around that, but the customers wanted to push it to a third-party system so they could set up a proper ticketing management system, like ServiceNow, Jira, etc."
"The playbook development environment is not as rich as it should be. There are multiple occasions when we face problems while creating the playbook."
"Not all information shows up in Sentinel. Sometimes there are items provided in 365 and if you looked in Sentinel you would not see them and therefore think they do not exist. There can be discrepancies between Microsoft tools."
"They need to integrate better with Cisco and Palo Alto."
"The performance can be improved. Sometimes it takes a long time to fetch data."
"The interface needs some improvements because it's a bit cumbersome when you're trying to view items. It takes some time to get used to. Additionally, sometimes the scrolling does not work."
"Our customers are noticing configuration available in the GUI interface and I think that they should be equal."
"The only drawback is the licensing model. It can get expensive if you want to integrate more solutions."
"The nodes on our network did not comply with the SIEM solution. They use a different format parking log."
"Fortinet FortiSIEM could improve by having a signature update."
"Areas for improvement would be the ease of use and the integration with Fortinet's own products."
"Improvements in network performance are essential."
"The customization of tests and even the results can be improved."
"Ixia has one flaw, which is that they do not print the license code on the paper licenses that are shipped to the customers."
"You can't delete more than one thing at a time. It would be great to be able to highlight three out of five things and delete them, whether it's a test or an actual report."
Fortinet FortiSIEM is ranked 8th in Security Information and Event Management (SIEM) with 63 reviews while Ixia Hawkeye is ranked 53rd in Network Monitoring Software with 4 reviews. Fortinet FortiSIEM is rated 7.6, while Ixia Hawkeye is rated 9.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of Ixia Hawkeye writes "A valuable tool for optimizing network performance and security with comprehensive network monitoring capabilities, user-friendly interface, and flexibility for scripting". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ThousandEyes, whereas Ixia Hawkeye is most compared with ThousandEyes, Gigamon Deep Observability Pipeline, NETSCOUT nGeniusONE and SolarWinds NPM.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
