Fortinet FortiSIEM Reviews

Fortinet FortiSIEM is the #7 ranked solution of our top Security Information and Event Management (SIEM) tools. It's rated 3.9 out of 5 stars, and is most commonly compared to Splunk - Fortinet FortiSIEM vs Splunk

Filter by:
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
JoshuaGardner
Real User
IT Executive: Operations & Security at Icon Information Systems (Pty) Ltd
Nov 13 2019

What is most valuable?

The most valuable feature is the differentiator, which has a combination of not only the SOC which covers the security operations aspect, but it also includes NOC capabilities. FortiSIEM uses PAM (Performance, Availability, and Monitoring) from an NOC perspective. So not only do you natively look at security data as most SIEM solutions, but you're also looking at the performance and the… more »

What needs improvement?

When they started out after acquiring AccelOps, the user interface wasn't that great. But from version 5.0 they have obviously radically changed the interface, aligning it to the rest of the Forti products from a user experience point of view. This means that there is constant improvement on the interface side of the solution. The other thing that I've noticed is when searching for very old… more »

What other advice do I have?

We use an on-premises deployment model from our perspective and a hybrid model from a customer/user perspective. I will recommend this solution to others out there looking for a SIEM solution. I've already done a few events we were talk about FortiSIEM and its advantages. I do, however, think the main dashboard where you create and design your graphs could do with some improvement improved. On a… more »
Smadi Huthaifa
Real User
Network and Security Administrator at PETRA Engineering Industries Co.
Jul 07 2019

What is most valuable?

The comprehensive view of the dashboard and the attribute base interface and the flexibility of implementation methods.

How has it helped my organization?

FortiSIEM gives us a lot of valuable events and details by using a unified event-based framework to analyze all data including logs, performance monitoring data and provides a broad range of metrics.

What needs improvement?

The Fortinet Fabric should be more easy more friendly to use. They use a different parsing log format. for example Symantec ATP is not supported by FortiSIEM. Our reseller provided us FortiSIEM as a service. They should also provide us with… more »

Which solution did I use previously and why did I switch?

They have a poor correlation. They didn't use any new concepts like Fortinet. They just display the logs as it is with no attribute base.

What other advice do I have?

The interface is easy to use but initial setup is not . The connector in the core has FortiSIEM support from the vendor. FortiSIEM supports a lot of vendors. It is a good product for us. I rank it as eight on a scale from one to ten… more »
Learn what your peers think about Fortinet FortiSIEM. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
438,560 professionals have used our research since 2012.
Real User
Asst Programmer Data Center at a consultancy with 10,001+ employees
Aug 04 2020

What is most valuable?

There's a great feature on the solution that allows us to analyze security issues and incidents. It automatically allows us to trace any incident. It's an invaluable aspect of the solution. The… more »

How has it helped my organization?

Single pane of glass for security issues

What needs improvement?

The solution needs to be form flow diagram automatically with AWS platform

What's my experience with pricing, setup cost, and licensing?

The solution is very cost-effective compared to competitors. We just need to pay licensing and support costs. There aren't added costs beyond that.

What other advice do I have?

We're a public utility, so we just use the solution. We don't have a business relationship with the company. We use the latest version of the solution. We use a variety of Fortinet solutions at our… more »

Which other solutions did I evaluate?

We didn't previously look at other solutions. We saw that Fortinet fit our needs, and therefore we chose it.
Mohamed H Yassim
Real User
Network Security Engineer at Spectrotel
Jun 15 2019

How has it helped my organization?

This solution allows us to ingest syslogs from Fortinet firewalls and other products into what we call FortiSIEM. This is a processor that correlates it with the event types and incidents. It gives us the opportunity to generate… more »

What needs improvement?

The backup and recovery process for this solution needs improvement. I would like to see a database with more structure in terms of maintenance and ease of use. The process of creating is much simpler than that of duplication. The… more »

What's my experience with pricing, setup cost, and licensing?

We bought the perpetual license, so we own the product, but there is a three-year support renewal fee for that.

What other advice do I have?

We are very impressed with this product. However, they have to fix their backup and recovery procedure and provide a good DR service without charging for a secondary license. I would rate this solution a seven and a half out of ten.

Which other solutions did I evaluate?

We did evaluate Splunk before choosing this solution, but it was too much on the high end for our business model.
ICTenterprserv67
Real User
Manager, ICT Enterprise Services at a government with 201-500 employees
Aug 20 2019

What is most valuable?

Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features.

What needs improvement?

Their product support, in general, is not that great. The product support is in the same ecosystem. Their support is improving but it's not that great. It should also have better integration.

What's my experience with pricing, setup cost, and licensing?

Licensing is a one time cost. If you want to enable different modules then there will be additional costs.

Which solution did I use previously and why did I switch?

We didn't previously use another SIEM solution.

What other advice do I have?

Properly review this solution and your requirements. See how it will scale up to cloud requirements. Cloud technologies are becoming more prominent and you should see how you will be able to manage it with this tool. It's a good product but… more »
SahrahMohammed
Real User
Network Security Engineer at Go Faster
Jul 02 2020

What is most valuable?

Every feature is good. This is one of the greatest SIEM products on the market. The most valuable feature this solution offers is that it protects the server and the client. It's very easy for anyone… more »

How has it helped my organization?

Fortinet is very helpful for our customers.

What needs improvement?

This is a great product for everyone. The disadvantage is the product portfolio. We need more incidents automatically to protect our network. We need to see incident reports about the event log… more »

What's my experience with pricing, setup cost, and licensing?

Pricing is acceptable for more than 90% of our customers, as they normally get discounts.

Which solution did I use previously and why did I switch?

We only use Fortinet products. I work with version 5, version 6, and version 6.2.

What other advice do I have?

My advice would be to know this solution, and study it well to avoid mistakes. The configuration is simple, not complex. It's a very good product. I have not experienced any issues with it. I would… more »
Consultant
Solutions Consultant at a comms service provider with 51-200 employees
Sep 19 2019

What is most valuable?

Both the collecting logs and duo correlation are valuable features for us. Fortinet also offers very good pricing. Their pricing is incredible.

What needs improvement?

The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients. They also have to improve their import perfection solution.

What other advice do I have?

We use the public cloud deployment model. I like the product, and I would recommend it, but I much prefer Splunk. The beautiful thing about Fortinet is that they have integrated many, many solutions. Their platform is very powerful. In the case of the customer, if he decides to choose Fortinet… more »

Which other solutions did I evaluate?

I did not evaluate other options; this solution was the decision of the customer. However, in the past, I have evaluated and worked with Splunk and IBM.
Systeng67
Consultant
System Engineer / Network Consultant at a tech services company with 51-200 employees
Aug 23 2019

What is most valuable?

The solution has an all-in-one approach. We buy one product and everything our customer needs is included. He doesn't have to pay any additional licenses to get more functionality, so everything is there and if we have to do any adjustments, it's also done very quickly and easily.

What needs improvement?

The solution can't be improved, but it can be managed more clearly. The solution just needs minor improvements. I'm quite sure Fortinet is already working on this. They could work on their documentation. If there's anything about the solution that needs improvement, it's that. For example… more »

What's my experience with pricing, setup cost, and licensing?

If we do an overall comparison with other products and also count additional licenses, which are necessary for other products, then the prices are comparative. If we just leave it at base prices, for example, Splunk: Splunk is cheaper, but if you also count the price for licenses, reports, and other… more »

What other advice do I have?

I would rate the solution nine out of ten. Our clients have been very happy with the solution.
See 3 More Fortinet FortiSIEM Reviews

What is Fortinet FortiSIEM?

FortiSIEM (formerly AccelOps 4) provides an actionable security intelligence platform to monitor security, performance and compliance through a single pane of glass.

Companies around the world use FortiSIEM for the following use cases:

  • Threat management and intelligence that provide situational awareness and anomaly detection
  • Alleviating compliance mandate concerns for PCI, HIPAA and SOX
  • Managing “alert overload”
  • Handling the “too many tools” reporting issue
  • Addressing the MSPs/MSSPs pain of meeting service level agreements
Also known as
FortiSIEM, AccelOps
Fortinet FortiSIEM customers

FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia.

Read Archived Reviews