We performed a comparison between Fortinet FortiSIEM and ManageEngine IT360 based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The Identity Behavior tab furnishes us with the entire history linked to each IP or domain that has either accessed or attempted to access our system."
"Log aggregation and data connectors are the most valuable features."
"The most valuable feature is the onboarding of the workloads. You can see all that has been onboarded in your account on the dashboards."
"If you know how to do KQL (kusto query language) queries, which are how you query the log data inside Sentinel, the information is pretty rich. You can get down to a good level of detail regarding event information or notifications."
"The best feature is that onboarding to the SIM solution is quite easy. If you are using cloud-based solutions, it's just a few clicks to migrate it."
"Sentinel has an intuitive, user-friendly way to visualize the data properly. It gives me a solid overview of all the logs. We get a more detailed view that I can't get from the other SIEM tools. It has some IP and URL-specific allow listing"
"The most valuable features in my experience are the UEBA, LDAP, the threat scheduler, and integration with third-party straight perform like the MISP."
"It has a lot of great features."
"The most valuable features of Fortinet FortiSIEM are the SD-WAN, Global LAN, and application controls."
"We're able to get real-timec as well as our customer networks that we're monitoring at all times."
"I like FortiSIEM because it integrates natively with our other Fortinet solutions and the Fortinet Fabric, but it also integrates with Cisco, Palo Alto and other security fabrics."
"It works well with medium to large-scale enterprises."
"The seamless integration with FortiGate is the solution's most valuable aspect."
"Analytics. It can provide log information from the device. With log information, I can see if there is a threat"
"Its automated response feature has benefited our customer communication. Analysts feel more confident in providing timely responses."
"The solution is easy to use and user-friendly."
"It is easy to identify and collect information from all of the nodes on the network."
"The product helps users stay on top of gaining insight into the active directory, permissions and security sets, and user group policy changes."
"The technical support is good."
"The AI capabilities must be improved."
"Everyone has their favorites. There is always room for improvement, and everybody will say, "I wish you could do this for me or that for me." It is a personal thing based on how you use the tool. I do not necessarily have those thoughts, and they are probably not really valuable because they are unique to the context of the user, but broadly, where it can continue to improve is by adding more connectors to more systems."
"We are invoiced according to the amount of data generated within each log."
"Only one thing is missing: NDR is not available out-of-the-box. The competitive cloud-native SIEM providers have the NDR component. Currently, Sentinel needs NDR to be powered from either Corelight or some other NDR provider."
"Multi-tenancy, in my opinion, needs to be improved. I believe it can do better as a managed service provider."
"Its documentation is not so simple. It is easy for somebody who is Microsoft certified or more closely attached to Microsoft solutions. It is not easy for those who are working on open-source platforms. There isn't a central point where everything is documented, and there is no specific training or certification."
"We have been working with multiple customers, and every time we onboard a customer, we are missing an essential feature that surprisingly doesn't exist in Sentinel. We searched the forums and knowledge bases but couldn't find a solution. When you onboard new customers, you need to enable the data connectors. That part is easy, but you must create rules from scratch for every associated connector. You click "next," "next," "next," and it requires five clicks for each analytical rule. Imagine we have a customer with 150 rules."
"Microsoft Sentinel is relatively expensive, and its cost should be improved."
"We need to see incident reports about the event log, without events from the administrator or through human interaction."
"FortiSIEM is not a market leader in the SIEM space."
"The only drawback is the licensing model. It can get expensive if you want to integrate more solutions."
"The policy editing should be easier. Right now, it's too hard."
"They need to integrate better with Cisco and Palo Alto."
"The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients."
"The graphs on the user interface could be improved as we often experience glitches."
"Fortinet FortiSIEM could improve to extend to several locations or sites."
"We would like to have support for integration with ServiceDesk."
"The ManageEngine features could improve to show graphs of the traffic and network utility."
"The product could use more intelligence, automation and general availability of product information."
Earn 20 points
Fortinet FortiSIEM is ranked 8th in Security Information and Event Management (SIEM) with 63 reviews while ManageEngine IT360 is ranked 90th in Network Monitoring Software. Fortinet FortiSIEM is rated 7.6, while ManageEngine IT360 is rated 8.4. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of ManageEngine IT360 writes "Good monitoring and alerting capability, and it is easy to deploy". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ThousandEyes, whereas ManageEngine IT360 is most compared with StackPath Monitoring, eG Enterprise and HPE OneView. See our Fortinet FortiSIEM vs. ManageEngine IT360 report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
