Elastic Security vs Fortinet FortiSIEM comparison

Elastic and Fortinet are both solutions in the Security Information and Event Management (SIEM) category. Elastic is ranked #5 with an average rating of 7.7, while Fortinet is ranked #8 with an average rating of 7.8. Elastic holds a 7.3% mindshare in SIEM, compared to Fortinet’s 2.9% mindshare. Additionally, 85% of Elastic users are willing to recommend the solution, compared to 82% of Fortinet users who would recommend it.

Elastic Security

Read 61 Elastic Security reviews

11,545 Views
9,631 Comparison Views

85% willing to recommend

Fortinet FortiSIEM

Read 71 Fortinet FortiSIEM reviews

5,396 Views
3,462 Comparison Views

82% willing to recommend

Elastic Security

Fortinet FortiSIEM

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

Fortinet FortiSIEM and Elastic Security compete in cybersecurity and information event management. Elastic Security has the upper hand due to its advanced feature set.

Features: Users value Fortinet FortiSIEM's integrated security approach, ease in managing compliance requirements, and comprehensive security coverage. Elastic Security is praised for its powerful search functions, flexibility in data ingestion, and advanced analytics capabilities.

Room for Improvement: Users mention Fortinet FortiSIEM needs enhancements in scaling and integration with third-party tools, and better scalability. Elastic Security could improve in resource consumption, documentation quality, and addressing performance impact.

Ease of Deployment and Customer Service: Fortinet FortiSIEM users highlight straightforward deployment and responsive customer support. Elastic Security users find the deployment process to be more complex but appreciate the detailed community support.

Pricing and ROI: Fortinet FortiSIEM is noted for reasonable pricing and visible ROI in enhanced security posture. Elastic Security users find the tool cost-effective due to its open-source nature, although some premium features might increase costs.

To learn more, read our detailed Elastic Security vs. Fortinet FortiSIEM Report (Updated: October 2024).

Buyer's Guide

Elastic Security vs. Fortinet FortiSIEM

October 2024

Download the complete report

Helped 814,649 peers since 2012

Categories and Ranking

Elastic Security

Ranking in Security Information and Event Management (SIEM)

5th

Average Rating

7.6

Number of Reviews

Ranking in other categories

Log Management (5th), Endpoint Detection and Response (EDR) (16th), Security Orchestration Automation and Response (SOAR) (6th), Extended Detection and Response (XDR) (8th)

Fortinet FortiSIEM

Ranking in Security Information and Event Management (SIEM)

8th

Average Rating

7.6

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of November 2024, in the Security Information and Event Management (SIEM) category, the mindshare of Elastic Security is 7.3%, down from 9.1% compared to the previous year. The mindshare of Fortinet FortiSIEM is 2.9%, up from 2.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Gajewski Marek

Chief Technology Officer & Co-founder at CS2

Aug 13, 2024

Provides good anomaly detection and connectivity reporting

I use Elastic Security to aggregate all logs from different devices in one place. It works pretty well and provides one overview of everything The solution's most valuable features are anomaly detection and connectivity reporting. Elastic Security also has many automation capabilities, which can…

Read full review

HamedWasel

Senior Network Security Engineer at Orange

Apr 3, 2023

It's cheaper than other solutions with the same features but lacks integration with many third-party vendors

I am part of the team that implements the solution, and we hand it over to the operations team. We use FortiSIEM to ingest logs. The customer provides us with the IPs for the log sources, and we add them to the FortiSIEM dashboard. We can check the logs for signs of malicious access from outside…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The cost is reasonable. It's not overly pricey."

"The most valuable features of the solution are the prevention methods and the incident alerts."

"The intelligence of the system has been very impressive. It's not quite AI, but the technical bit where it correlates information, based on the seen attacks within an organization is good."

"It is the best open-source product for people working in SO, managing and analyzing logs."

"It's a good platform and the very best in the current market. We looked at the Forester report from December 2022 where it was said to be a leader."

"The solution is compatible with the cloud-native environment and they can adapt to it faster."

"Elastic has a lot of beats, such as Winlogbeat and Filebeat. Beats are the agents that have to be installed on the terminals to send the data. When we install beats or Elastic agents on every terminal, they don't overload the terminals. In other SIEM solutions such as Splunk or QRadar, when beats or agents are installed on endpoints, they are very heavy for the terminals. They consume a lot of power of the terminals, whereas Elastic agents hardly consume any power and don't overload the terminals."

"The scalability is good. It can be scaled easily in the production environment."

More Elastic Security pros

"The tool's most valuable feature stems from the fact that I can see a complete analysis, like all the incidents that have happened, and it detects everything in real-time."

"Both the collecting logs and duo correlation are valuable features for us."

"Fortinet FortiSIEM is less costly than other products and is available 24/7."

"Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features."

"The CMDB and the device discovery features are most valuable."

"Fortinet FortiSIEM's most valuable feature is the simplicity in handling multi-tenancy and the ability to switch between different clients at the same time. That was handled flawlessly."

"It's very easy for anyone to work with."

"The most valuable features of Fortinet FortiSIEM are the SD-WAN, Global LAN, and application controls."

More Fortinet FortiSIEM pros

Cons

"We set up a cron job to delete old logs so that we wouldn't hit a disk space issue. Such a feature should be available in the UI, where old logs can be deleted automatically. (Don’t know if this feature is already there)."

"Its documentation should be a bit better. I have to spend at least a couple of hours to find the solution for a simple thing. When we buy Elastic, training is not included for free with Elastic. We have to pay extra for the training. They should include training in the price."

"We'd like to see some more artificial intelligence capabilities."

"Elastic Security can be a bit difficult to use if a person only has experience in SMBs with tools like Zoho. The product can also be difficult for those who have never dealt with query language."

"They don't provide user authentication and authorisation features (Shield) as a part of their open-source version."

"This solution cannot do predictive maintenance, so we have to build our own modules for doing it."

"The solution needs to be more reactive to investigations. We need to be able to detect and prevent any attacks before it can damage our infrastructure. Currently, this solution doesn't offer that."

"The setup process is complex. You need a solid working knowledge of networking, operating systems, and a little programming."

More Elastic Security cons

"Fortinet FortiSIEM is a little out of sight and needs more marketing efforts to be popular in the market."

"Areas for improvement would be the ease of use and the integration with Fortinet's own products."

"Improvements include making it easier for users to create their normalizers. Fortinet FortiSIEM uses XML for normalizing and parsing, which can be tedious and time-consuming. A simpler way of using regex could be helpful."

"I would like to see easier implementation in the future."

"The biggest thing that could be better is a quicker response to support cases."

"The performance can be improved. Sometimes it takes a long time to fetch data."

"The interface needs some improvements because it's a bit cumbersome when you're trying to view items. It takes some time to get used to. Additionally, sometimes the scrolling does not work."

"The UI could improve in Fortinet FortiSIEM. Humans view the UI frequently for data and if it was more visually pleasing it would be beneficial."

More Fortinet FortiSIEM cons

Pricing and Cost Advice

"There is no charge for using the open-source version."

"The base product is open-source but if you need advanced security features then you need to pay for the subscription. Elastic Security's price is reasonable in some cases and in other cases it's not."

"The product offers an amazing pricing structure. Price-wise, the product is very competitive."

"The solution is not expensive and costs around ten dollars a month."

"We are using the free, open-source version of this solution."

"Elastic Security is free to use."

"I find it better than Splunk in terms of cost-effectiveness. For cost-effectiveness, I would rate it a nine out of 10."

"The solution is free."

More Elastic Security pricing and cost advice

"We pay for a license for FortiSIEM. We pay for the license and renewal."

"Pricing is determined based on the customer's budget."

"Fortinet's products are not expensive, it is less than the competition."

"They have a yearly subscription."

"Manageable, however would be better as pay as you go versus CapEX."

"The solution is available for both, perpetual and subscription licenses."

"There is a need to make yearly payments towards the licensing charges attached to the product. The free version license of the product is available for two months."

"There are additional features that cost more than the standard licensing fees."

More Fortinet FortiSIEM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

814,649 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

10%

Government

10%

University

Computer Software Company

17%

Government

Financial Services Firm

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?

With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...

See all answers

What do you like most about Elastic Security?

Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...

See all answers

What is your experience regarding pricing and costs for Elastic Security?

Compared to other tools, Elastic Security is a cheaper solution.

See all answers

What do you like most about Fortinet FortiSIEM?

Fortinet FortiSIEM needs to provide better API integrations to users.

See all answers

What is your experience regarding pricing and costs for Fortinet FortiSIEM?

If one is cheap and ten is expensive. I rate the tool's price as an eight out of ten. Compared with Splunk or Oracle, Fortinet is cheap.

See all answers

What needs improvement with Fortinet FortiSIEM?

With Fortinet's current integrations with endpoints and with the integration capabilities of EDR and XDR solutions from Fortinet itself, when we are trying to integrate them with other technologies...

See all answers

Comparisons

Wazuh vs Elastic Security

Compared 33% of the time

CrowdStrike Falcon vs Elastic Security

Compared 8% of the time

IBM Security QRadar vs Elastic Security

Compared 7% of the time

Microsoft Sentinel vs Elastic Security

Compared 7% of the time

Splunk Enterprise Security vs Elastic Security

Compared 6% of the time

More Elastic Security Competitors

IBM Security QRadar vs Fortinet FortiSIEM

Compared 13% of the time

Wazuh vs Fortinet FortiSIEM

Compared 12% of the time

Splunk Enterprise Security vs Fortinet FortiSIEM

Compared 9% of the time

Microsoft Sentinel vs Fortinet FortiSIEM

Compared 8% of the time

SolarWinds NetFlow Traffic Analyzer vs Fortinet FortiSIEM

Compared 2% of the time

More Fortinet FortiSIEM Competitors

Product Reports

Buyer's Guide

Elastic Security

November 2024

Download Elastic Security product report

Buyer's Guide

Fortinet FortiSIEM

November 2024

Download Fortinet FortiSIEM product report

Also Known As

Elastic SIEM, ELK Logstash

FortiSIEM, AccelOps

Learn More

Elastic

Fortinet

Overview

Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.

Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Additional offerings and benefits:

The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

FortiSIEM (formerly AccelOps 4) provides an actionable security intelligence platform to monitor security, performance and compliance through a single pane of glass.

Companies around the world use FortiSIEM for the following use cases:

Threat management and intelligence that provide situational awareness and anomaly detection
Alleviating compliance mandate concerns for PCI, HIPAA and SOX
Managing “alert overload”
Handling the “too many tools” reporting issue
Addressing the MSPs/MSSPs pain of meeting service level agreements

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care

FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia.

Buyer's Guide

Elastic Security vs. Fortinet FortiSIEM

October 2024

Free Report: Elastic Security vs. Fortinet FortiSIEM

Find out what your peers are saying about Elastic Security vs. Fortinet FortiSIEM and other solutions. Updated: October 2024.

DOWNLOAD NOW

814,649 professionals have used our research since 2012.

See our Elastic Security vs. Fortinet FortiSIEM report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.