We performed a comparison between Elastic Security and Fortinet FortiAnalyzer based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Elastic Security is commended for its adaptability, extensive customization options, and seamless integration with the ELK Stack. Fortinet FortiAnalyzer features exceptional log collection capabilities and customizable reporting. Elastic Security could improve by reducing resource usage, automating threat response, and simplifying the user experience. FortiAnalyzer enables users to centrally manage and analyze logs in real time. Fortinet FortiAnalyzer could simplify its reporting module and cloud storage capabilities.
Service and Support: Some Elastic Security users found their support helpful, while others experienced difficulties and delays. Some Fortinet customers were dissatisfied with support, but others said it was helpful and responsive.
Ease of Deployment: Elastic Security generally has a straightforward setup but may require trained specialists. FortiAnalyzer's initial setup is uncomplicated and manageable, typically taking approximately 30 minutes to a few hours. Some IT knowledge may be required.
Pricing: Elastic Security is considered affordable and cost-effective, with pricing based on the size of the monitored environment. While FortiAnalyzer isn't the most expensive option, users say the pricing could be more competitive. FortiAnalyzer's cost depends on the storage requirements, and many customers consider it reasonable.
ROI: Elastic Security has shown mixed results in terms of ROI, with some users expressing concerns about the quality of their premium support. FortiAnalyzer helps customers by providing insight into network traffic and speeding up issue resolution.
"Its flexibility is most valuable. We can have a number of scenarios, and we can get logs from anything. If we know how to use Logstash, we can tweak it in many ways. This makes the logging search on Elastic very easy."
"The most valuable feature of Elastic Security is that you can install agents, and they are not separately licensed."
"Elastic has a lot of beats, such as Winlogbeat and Filebeat. Beats are the agents that have to be installed on the terminals to send the data. When we install beats or Elastic agents on every terminal, they don't overload the terminals. In other SIEM solutions such as Splunk or QRadar, when beats or agents are installed on endpoints, they are very heavy for the terminals. They consume a lot of power of the terminals, whereas Elastic agents hardly consume any power and don't overload the terminals."
"The cost is reasonable. It's not overly pricey."
"ELK documentation is very good, so never needed to contact technical support."
"The solution is compatible with the cloud-native environment and they can adapt to it faster."
"The most valuable features of Elastic Security are it is open-source and provides a high level of security."
"The most valuable feature is the search function, which allows me to go directly to the target to see the specific line a customer is searching for."
"The log analysis and reporting are both quite good."
"I have found incident management and also identifying new threats, analyzing the network traffic, and finding out the issues with the network traffic such as any security issues to be valuable. I also like the compliance reports."
"It's a very stable product."
"Separating sections or conditions on Fortinet FortiAnalyzer is quite clear."
"We have the most data visibility."
"The most valuable features of the solution are the reports and the playbooks."
"The user interface is good and it is quite easy to use."
"The initial setup is pretty straightforward."
"This solution is very hard to implement."
"The solution could offer better reporting features."
"There should be a simulation environment to check whether my Elastic implementation is functioning perfectly fine. Other solutions have their own Android and iOS applications that I can install on my mobile so that I am continuously connected to the SIEM."
"Sometimes, the solution isn't the easiest to use."
"With Elastic, you have to build the use cases for the specific requirement. Other products have a simple integration and more use cases to integrate out-of-the-box solutions for SIEM."
"It would be better if Elastic Security had less storage for data. My customers do not like this. Other vendors have local support in different countries, but Elastic Security doesn't. I would like to have Operational Technology (OT) security in the next release."
"The solution could also use better dashboards. They need to be more graphical, more matrix-like."
"I would like the process of retrieving archived data and viewing it in Kibana to be simplified."
"FortiAnalyzer only integrates with Fortinet solutions. That is a limitation because many organizations use multiple vendors. It's often a mixture of Cisco network hardware and equipment from other vendors, such as switches, access points, etc."
"I feel that Fortinet FortiAnalyzer is a little bit heavy, making it an area where improvements are required."
"The only issue that I can see is with the cost. For example, if you buy support for one year, you are messed up next year. It's better to buy another gateway."
"The pricing could be better. They could work to make it more competitive on the market."
"They can include integration with devices, such as firewalls, endpoints, from other vendors. They can include graphic monitoring of everything in the network, not just Fortinet products. It would also be good to include customizable reports and customizable views of the reports."
"We'd like to see more embedded features."
"Though FortiAnalyzer has improved over the last few versions, the user interface still has room for improvement. It's a bit dated-looking."
"The user interface could be a bit more user-friendly."
Elastic Security is ranked 5th in Log Management with 59 reviews while Fortinet FortiAnalyzer is ranked 8th in Log Management with 85 reviews. Elastic Security is rated 7.6, while Fortinet FortiAnalyzer is rated 8.0. The top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". On the other hand, the top reviewer of Fortinet FortiAnalyzer writes "We can automate event-based handling solutions, is stable, and is great for heavy traffic". Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and ArcSight Logger, whereas Fortinet FortiAnalyzer is most compared with Wazuh, Splunk Enterprise Security, Graylog, Grafana Loki and syslog-ng. See our Elastic Security vs. Fortinet FortiAnalyzer report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.