Most Helpful Review | |||
| |||
Find out what your peers are saying about Fortinet FortiSIEM (AccelOps) vs. Splunk and other solutions. Updated: November 2019. 382,196 professionals have used our research since 2012. |
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Pros | |
To add workers and even collectors is pretty easy. The seamless integration with FortiGate is the solution's most valuable aspect. Both the collecting logs and duo correlation are valuable features for us. The solution is very stable. It's run for years without the need to do anything except, add new patches when they are available, which are always a good idea to install. Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features. The most valuable feature is the dashboard. CMDB database collects data from a lot of pre-configured devices. The interface is very easy to use. The connector in the core has FortiSIEM support from the vendor. It gives us the opportunity to generate notifications based upon rules that get triggered, and the rules could be specific to PCI, HIPAA, GIBA, NIST, and so forth. | With good domain knowledge, one can build almost anything. If you throw in Alert Manager or an integration with ServiceNow. Then, you have your own SIEM Our clients are easily able to modify and evolve their implementations. The initial setup is really straightforward. It's one of the easiest installations. It helps us uncover bottlenecks in the network. it can explain to management about what kind of traffic is visiting the network. It can also explain other traffic coming in and out, along with protecting against malware. The most valuable feature of Splunk is the log monitoring. It can log more logs than other solutions. It's a good way to troubleshoot problems. We can present to our management in real time the security of the batch management for the PCs, security regarding the network equipment. We're currently working in the Azure Cloud project, so we can send any logs from the cloud to Splunk. We can monitor them and we can present to the managers and customers. It's a very good solution for reporting. We use Splunk for reporting and monitoring of any solution in the company. |
Cons | |
The dashboard needs to improve. When compared with some competitors, in terms of performance, the CPU and RAM requirements and the capability of coordination with development all need some improvement. The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients. They could work on their documentation. If there's anything about the solution that needs improvement, it's that. For example, documentation already is on a very high level but specifically on the CLI there are tons of features which can be fine-tuned and thousands of commands are very difficult to document. If they could make this easier, it would improve the overall solution. Their product support, in general, is not that great. The product support is in the same ecosystem. Their support is improving but it's not that great.vvv The performance can be improved. Sometimes it takes a long time to fetch data. The nodes on our network did not comply with the SIEM solution. They use a different format parking log. The backup and recovery process for this solution needs improvement. | It needs a better way to export dynamic views without requiring a ton of code and user/pw. It needs integration with a configuration management solution. It needs integration with a configuration management solution. They should make data onboarding easier. The product was difficult to back up the first time. Splunk needs local technical support. If possible, we would like to have not only a log monitoring system but a network monitoring feature in this solution as well. Cybersecurity and infrastructure monitoring have room for improvement. |
Pricing and Cost Advice | |
We bought the perpetual license, so we own the product, but there is a three-year support renewal fee for that. | Splunk is really expensive. Splunk should be able to integrate with other product using the free version. The pricing and licensing of the product are quite high. Splunk's cost is very high. They need to review the pricing. They have to go back and totally readdress the market. It's a little bit expensive for a small to medium enterprise. I think the price could be improved. I am not personally involved with the pricing of the solution. Some of the insights that we have obtained as a part of using Splunk have greatly helped us in increasing our revenue in terms of selling our products. |
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs. 382,196 professionals have used our research since 2012. | |
Ranking | |
Views 10,433 Comparisons 7,221 Reviews 9 Average Words per Review 425 Avg. Rating 7.4 | Views 97,577 Comparisons 78,990 Reviews 56 Average Words per Review 332 Avg. Rating 8.8 |
Top Comparisons | |
Compared 28% of the time. Compared 11% of the time. Compared 10% of the time. | Compared 10% of the time. Compared 9% of the time. Compared 8% of the time. |
Learn | |
Fortinet | Splunk |
Overview | |
FortiSIEM (formerly AccelOps 4) provides an actionable security intelligence platform to monitor security, performance and compliance through a single pane of glass. Companies around the world use FortiSIEM for the following use cases:
| Splunk software has been around since 2006 and the company has since grown to become an industry leader. Splunk's vision is to make machine data accessible, usable and valuable to everybody. The company offers a wide range of products to turn machine data into valuable information by monitoring and analyzing all activities. This is known as Operational Intelligence and is the unique value proposition of Splunk. Splunk is well-known for its Log Management capabilities and also for its Security Information and Event Management (SIEM) solutions. |
Offer | |
Learn more about Fortinet FortiSIEM (AccelOps) | Learn more about Splunk |
Sample Customers | |
FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia. | Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey. |
Top Industries | |
Comms Service Provider14% Healthcare Company7% University7% Government7% Software R&D Company23% Comms Service Provider15% Manufacturing Company10% Retailer9% | Financial Services Firm20% Energy/Utilities Company16% Retailer12% Insurance Company8% Software R&D Company28% Comms Service Provider11% Financial Services Firm11% Media Company6% |
Company Size | |
Small Business42% Midsize Enterprise25% Large Enterprise33% | Small Business28% Midsize Enterprise13% Large Enterprise59% Small Business17% Midsize Enterprise20% Large Enterprise63% |
See also Fortinet FortiSIEM (AccelOps) Reviews, Splunk Reviews, and our list of Best Security Information and Event Management (SIEM) Companies.