Try our new research platform with insights from 80,000+ expert users

AWS Security Hub vs FortiCNAPP comparison

Amazon Web Services (AWS) and Fortinet are both solutions in the Cloud Security Posture Management (CSPM) category. Amazon Web Services (AWS) is ranked #13 with an average rating of 7.9, while Fortinet is ranked #22 with an average rating of 7.3. Amazon Web Services (AWS) holds a 3.5% mindshare in CSPM, compared to Fortinet’s 3.4% mindshare. Additionally, 89% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 85% of Fortinet users who would recommend it.
AWS Security Hub
Read 26 AWS Security Hub reviews
  • 7,636 Views
  • 3,283 Comparison Views
89% willing to recommend
FortiCNAPP
Read 13 FortiCNAPP reviews
  • 5,179 Views
  • 2,693 Comparison Views
85% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Feb 22, 2026

FortiCNAPP and AWS Security Hub are competitors in the realm of security solutions. FortiCNAPP appears more robust due to its comprehensive network segmentation and multi-cloud capability.

Features: FortiCNAPP offers strong network segmentation, supports automated policy recommendations, and integrates with multiple SIEM solutions to enhance security. Its machine learning features provide accurate anomaly detection and compliance reports. AWS Security Hub provides seamless integration with AWS services and offers detailed alerts and compliance checks. Its native cloud features are comprehensive but lack flexibility in third-party and multi-cloud integrations.

Room for Improvement: FortiCNAPP could improve user-friendliness, increase visibility on compliance metrics, and enhance IAM security controls and third-party integration. AWS Security Hub needs better non-native service integration, real-time scanning abilities, and more user-friendly dashboards. It also requires greater adaptability for hybrid or multi-cloud deployments.

Ease of Deployment and Customer Service: FortiCNAPP is well-suited for both public and private cloud environments with strong DevOps tool integration and proactive support. AWS Security Hub performs well in public cloud settings, particularly AWS, but lacks adaptability in private clouds. AWS customer service is extensive but notedly less proactive compared to FortiCNAPP's feedback-oriented approach.

Pricing and ROI: FortiCNAPP offers competitive pricing within the Fortinet ecosystem, yielding high ROI by enhancing security efficiency and reducing staffing needs. AWS Security Hub presents a cost-effective model within AWS with options like PAYG. It offers savings through AWS service integration, although limited multi-cloud capabilities may diminish its perceived value.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AWS Security Hub vs. FortiCNAPP Report (Updated: February 2026).
Buyer's Guide
AWS Security Hub vs. FortiCNAPP
February 2026
Download the complete report
Helped 883,692 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Security Hub
Ranking in Cloud Security Posture Management (CSPM)
13th
Average Rating
7.6
Reviews Sentiment
6.5
Number of Reviews
26
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (6th)
FortiCNAPP
Ranking in Cloud Security Posture Management (CSPM)
22nd
Average Rating
8.4
Reviews Sentiment
6.7
Number of Reviews
13
Ranking in other categories
Vulnerability Management (35th), Container Security (28th), Cloud Workload Protection Platforms (CWPP) (17th), Cloud-Native Application Protection Platforms (CNAPP) (16th), Compliance Management (10th)
 

Mindshare comparison

As of March 2026, in the Cloud Security Posture Management (CSPM) category, the mindshare of AWS Security Hub is 3.5%, down from 4.5% compared to the previous year. The mindshare of FortiCNAPP is 3.4%, up from 2.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Posture Management (CSPM) Mindshare Distribution
ProductMindshare (%)
AWS Security Hub3.5%
FortiCNAPP3.4%
Other93.1%
Cloud Security Posture Management (CSPM)
 

Featured Reviews

Karthik Ekambaram - PeerSpot reviewer
Karthik Ekambaram
Director at Scybers
Has helped identify misconfigurations and prioritize risks but lacks multi-cloud support and deeper integration features
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfigurations, even Microsoft for that matter. Regarding the integration of AWS Security Hub with third-party tools, I am not certain whether we can integrate them, but there is no need to do so. However, AWS Security Hub cannot integrate with other cloud providers, so it only supports the AWS environment. The compliance checks within AWS Security Hub are good, but we don't use them much. We utilize compliance frameworks such as CIS compliance frameworks and ISO 27017 framework, which are beneficial, but it can improve in other areas too, such as including NIST and other frameworks beyond just ISO and CIS. Improvements can be applicable for scalability, particularly on integration with multi-cloud environments, and compliance frameworks can be added for more variety as well. The unified dashboard in AWS Security Hub is adequate; I cannot say it is exceptional, but the content available in the dashboards is satisfactory for now.
Read full review
Mark Freeborough - PeerSpot reviewer
Mark Freeborough
Client Manager at MLL Telecom Ltd
Network segmentation has strengthened access control and now streamlines automated threat response
The most valuable features in FortiCNAPP include robust network segmentation and restricting access to network assets. It also supports security measures by leveraging security fabrics for better enforcement and policy enforcement. FortiCNAPP integrates with SIEM solutions, and we offer different SIEM options that work with Fortinet and AlienVault, among others, providing multiple scenarios.FortiCNAPP's automated policy recommendations significantly help improve security measures as part of an overall service wrap. When deploying a Fortinet SD-WAN or network, these tools provide greater visibility to vulnerabilities and enhanced security on the network. It functions as a proactive tool, enabling me to identify threats quickly and automate responses.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Very good at detection and providing real-time alerts."
"AWS Security Hub brings many features into one table that is quite useful, and the app team finds it easier to see what is missing."
"The most beneficial aspect of Security Hub is its proactive capability, allowing us to identify potential security issues before they escalate."
"AWS Security Hub's unified dashboard does help streamline my process of identifying vulnerabilities, but we don't use Inspector."
"Finding out if your infrastructure is secure is a valuable feature."
"The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud."
"I really like the seamless integration with the AWS account structure. It can even be made mandatory as part of the landing zone. These are great features. And there's a single pane of glass for the entire account."
"Easily integrates with third-party tools"
More AWS Security Hub pros
"FortiCNAPP definitely brings time-saving benefits, and security is the main concern for the company."
"Polygraph compliance is a valuable feature. In our perspective, it delivers significant benefits. The clarity it offers, along with the ability to identify and address misconfigurations, is invaluable. When such issues arise, we promptly acknowledge and take action, effectively collaborating with our teams and the responsible parties for those assets. This enables us to promptly manage problems as soon as they arise."
"The machine learning capability in Lacework FortiCNAPP is used for threat detection, and automated policy recommendation helps to improve my security measures in general."
"FortiCNAPP is a competitive and robust solution, the only one in the IT sphere that addresses all quadrants in the Gartner Quadrants."
"The compliance reports are definitely most valuable because they save time and are accurate. So, instead of relying on a human going through and checking or providing me with a report, I could just log into Lacework and see for myself."
"For the most part, out-of-the-box, it tells you right away about the things you need to work on. I like the fact that it prioritizes alerts based on severity, so that you can focus your efforts on anything that would be critical/high first, moderate second, and work your way down, trying to continue to improve your security posture."
"The most valuable feature is Lacework's ability to distill all the security and audit logs. I recommend it to my customers. Normally, when I consult for other customers that are getting into the cloud, we use native security tools. It's more of a rule-based engine."
"The most valuable feature, from a compliance perspective, is the ability to use Lacework as a platform for multiple compliance standards. We have to meet multiple standards like PCI, SOC 2, CIS, and whatever else is out there. The ability to have reports generated, per security standard, is one of the best features for me."
More FortiCNAPP pros
 

Cons

"There is room for improvement in implementing AI capabilities. It would be beneficial for Security Hub to implement preventative measures and to directly apply recommendations instead of just suggesting them."
"AWS Security Hub's configuration and integration are areas where it lacks and needs to improve."
"AWS Security Hub should improve the time it takes to update. It takes a long period of time when updating. It can take 24 hours sometimes to update. Additionally, when integrating this solution with more security tools, takes time."
"I would like a more fine-grained capability for creating custom rules and a more user-friendly experience programmatically in writing queries and configuring custom security rules, making it quicker and easier."
"The solution will only give you insight if you have configure rule enabled. It should work more like Prisma Cloud and Dome9 which have a better approach."
"The user interface, graphs, and dashboards of the solution could improve in the future. They are not very sophisticated and could use an update."
"Security Hub is currently not worth investing in, as it requires more configurations and integration with other services to work effectively."
"I would like a more fine-grained capability for creating custom rules and a more user-friendly experience programmatically in writing queries and configuring custom security rules, making it quicker and easier."
More AWS Security Hub cons
"The vulnerability part is not systematically organized; it is all clumsy in the web UI, and it is not user-friendly."
"The solution lacks a cohesive data model, making extracting the necessary data from the platform challenging. It uses its own LQL query language, and each database across different layers and modules is structured differently, complicating correlation efforts. Consequently, I had to create extensive custom reports outside Lacework because their default dashboards didn't communicate risk metrics. They're addressing these issues by redesigning their tools, including introducing the dashboard, which is a step closer to actionable insights but still needs refinement."
"The configuration and setup of alerts should be easier. They should make it easier to integrate with systems like Slack and Datadog. I didn't spend too much time on it, but to me, it wasn't as simple as the alerting that I've seen on other systems."
"The biggest thing I would like to see improved is for them to pursue and obtain a FedRAMP moderate authorization... I don't believe they have any immediate plans to get FedRAMP moderate authorized, which is a bit of a challenge for us because we can only use Lacework in our commercial environment."
"I would like to see a remote access assistance feature. And the threat-hunting platform could be better."
"Policy implementation is quite complex, and the stability will take more time for the solutions."
"However, the solution could be more user-friendly and intuitive."
"A feature that I have requested from them is the ability to sort alerts and policies based on a security framework. Right now, when you go into alerts, you have hundreds and hundreds of them that you have to manually pick. It would be useful to have categories for CIS Benchmark or SOC 2 and be able to display all the alerts and policies for one security framework."
More FortiCNAPP cons
 

Pricing and Cost Advice

"The pricing is fine. It is not an expensive tool."
"The price of AWS Security Hub is average compared to other solutions."
"There are multiple subscription models, like yearly, monthly, and packaged."
"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."
"The price of the solution is not very competitive but it is reasonable."
"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
"Security Hub is not an expensive solution."
"AWS Security Hub's pricing is pretty reasonable."
"My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz."
"The licensing fee was approximately $80,000 USD, per year."
"It is slightly expensive. It depends on how big your environment is, but it is expensive. Right now, we are spending a lot of money. We have covered all of the cloud providers and most of our colocation facilities as well, so we cannot complain, but it is slightly expensive. It is not super expensive."
"The pricing has gotten better. That scenario was somewhat unstable. They have a rather interesting licensing structure. I believe you get 200 resources per "Lacework unit." It was difficult, in the beginning, to figure out exactly what a "resource" was... That was a problem until about a year or so ago. They have improved it and it has stabilized quite a bit."
report
See which vendors are best for you
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
See recommendations
883,692 professionals have used our research since 2012.
 

Comparison Review

it_user186927 - PeerSpot reviewer
it_user186927
Director of Operations at a comms service provider with 10,001+ employees
Feb 16, 2015
Cybereason vs. Interset vs. SQRRL
Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Computer Software Company
11%
Manufacturing Company
10%
Government
7%
Computer Software Company
11%
Financial Services Firm
11%
Manufacturing Company
7%
University
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise5
Large Enterprise12
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise4
Large Enterprise4
 

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
What do you like most about AWS Security Hub?
The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.
See all answers
What needs improvement with AWS Security Hub?
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfig...
See all answers
What is your experience regarding pricing and costs for Lacework?
My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz.
See all answers
What needs improvement with Lacework?
FortiCNAPP performs well in terms of threat notification and response times. However, the solution could be more user-friendly and intuitive. When managing the platform, navigating to certain detai...
See all answers
What is your primary use case for Lacework?
FortiCNAPP is typically used for network access control. The standard use cases for FortiCNAPP center around reporting and automated responses, particularly in IoT environments and workflow automat...
See all answers
 

Comparisons

Microsoft Sentinel vs AWS Security Hub Logo
Microsoft Sentinel vs AWS Security Hub
Compared 36% of the time
Prisma Cloud by Palo Alto Networks vs AWS Security Hub Logo
Prisma Cloud by Palo Alto Networks vs AWS Security Hub
Compared 8% of the time
Wiz vs AWS Security Hub Logo
Wiz vs AWS Security Hub
Compared 5% of the time
Microsoft Defender for Cloud vs AWS Security Hub Logo
Microsoft Defender for Cloud vs AWS Security Hub
Compared 4% of the time
Qualys TotalCloud vs AWS Security Hub Logo
Qualys TotalCloud vs AWS Security Hub
Compared 1% of the time
More AWS Security Hub Competitors
Wiz vs FortiCNAPP Logo
Wiz vs FortiCNAPP
Compared 6% of the time
SentinelOne Singularity Cloud Security vs FortiCNAPP Logo
SentinelOne Singularity Cloud Security vs FortiCNAPP
Compared 5% of the time
Prisma Cloud by Palo Alto Networks vs FortiCNAPP Logo
Prisma Cloud by Palo Alto Networks vs FortiCNAPP
Compared 4% of the time
Tenable Cloud Security vs FortiCNAPP Logo
Tenable Cloud Security vs FortiCNAPP
Compared 3% of the time
Veracode vs FortiCNAPP Logo
Veracode vs FortiCNAPP
Compared 2% of the time
More FortiCNAPP Competitors
 

Product Reports

Buyer's Guide
AWS Security Hub
March 2026
AWS Security Hub reportDownload AWS Security Hub product report
Buyer's Guide
FortiCNAPP
March 2026
FortiCNAPP reportDownload FortiCNAPP product report
 

Also Known As

SQRRL
Polygraph, FortiCNP, Lacework
 

Overview

AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts. 

The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments. 

With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

Amazon Web Services (AWS)

FortiCNAPP is a comprehensive cloud security platform focusing on ease of use and machine learning-driven anomaly detection. It offers robust compliance reporting, seamless integration, and continuous monitoring, making it an essential tool for organizations managing multi-cloud environments and security configurations.

FortiCNAPP provides significant capabilities in cloud security, compliance, and vulnerability management. Designed for organizations needing efficient monitoring, it enables detection of anomalies across cloud infrastructures while optimizing security posture and ensuring compliance with environments like AWS and GCP. The platform offers in-depth insights through scanning of IAC scripts, host systems, and cloud configurations. Recognized for effectively managing security posture, it safeguards Kubernetes and container environments, providing comprehensive threat detection and response. However, some areas like visibility, IAM security controls, and compliance metrics need improvement. Users face challenges with alert setup and lack intuitive design, alongside issues like FedRAMP authorization absence and complexity in the data model.

What are the key features of FortiCNAPP?
  • Ease of Use: FortiCNAPP simplifies security management for cloud environments.
  • Machine Learning Anomaly Detection: Automatically identifies and prioritizes threats.
  • Compliance Reporting: Streamlines compliance procedures and reporting.
  • Seamless Integration: Ensures smooth operation across multi-cloud environments.
  • Continuous Monitoring: Provides ongoing oversight of security vulnerabilities.
  • Multi-Cloud Integration: Enables swift response to misconfigurations and vulnerabilities.
What benefits should users expect when evaluating FortiCNAPP?
  • Time Efficiency: Reduces time spent on compliance and threat management.
  • Improved Security Posture: Enhances protection for cloud and container environments.
  • Valuable Security Insights: Provides in-depth analysis for proactive threat response.
  • Noise Reduction: Distills security logs to minimize alert fatigue.
  • Operational Effectiveness: Facilitates seamless multi-cloud security management.

FortiCNAPP is implemented extensively by industries needing reliable cloud security, such as finance, healthcare, and technology sectors. It supports organizations in enhancing cloud infrastructure protection, ensuring compliance, and strengthening vulnerability management. By integrating with platforms like AWS and GCP, businesses can optimize security posture in their cloud deployments.

Fortinet
 

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com
J.Crew, AdRoll, Snowflake, VMWare, Iterable, Pure Storage, TrueCar, NerdWallet, and more.
Buyer's Guide
AWS Security Hub vs. FortiCNAPP
February 2026
Free Report: AWS Security Hub vs. FortiCNAPP
Find out what your peers are saying about AWS Security Hub vs. FortiCNAPP and other solutions. Updated: February 2026.
DOWNLOAD NOW
883,692 professionals have used our research since 2012.
See our AWS Security Hub vs. FortiCNAPP report.
See our list of best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.