Try our new research platform with insights from 80,000+ expert users

Elastic Security vs Fortinet FortiSIEM comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 18, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Elastic Security
Ranking in Security Information and Event Management (SIEM)
5th
Average Rating
7.8
Reviews Sentiment
6.8
Number of Reviews
64
Ranking in other categories
Log Management (7th), Endpoint Detection and Response (EDR) (16th), Security Orchestration Automation and Response (SOAR) (6th), Extended Detection and Response (XDR) (8th)
Fortinet FortiSIEM
Ranking in Security Information and Event Management (SIEM)
8th
Average Rating
7.6
Reviews Sentiment
6.7
Number of Reviews
73
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Elastic Security is 6.6%, down from 9.4% compared to the previous year. The mindshare of Fortinet FortiSIEM is 3.1%, up from 3.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

Gajewski Marek - PeerSpot reviewer
Provides good anomaly detection and connectivity reporting
We previously used Splunk but switched to Elastic Security because Splunk was more expensive. Feature-wise, both tools are pretty much the same. They have almost the same functions. Elastic Security has a much better AI assistant that allows you to ask questions like a normal person. With Elastic Security, I can also predict the price and how much it will cost. Splunks's pricing depends on how much data we use and the different add-ons I have to add. The pricing is much better with Elastic Security.
Oliver Jackson - PeerSpot reviewer
Systems monitoring enhanced by firewall and intrusion detection features
My primary use case for Fortinet FortiSIEM is systems monitoring and alerting. I use it for standard functions like log monitoring, incident detection, and notification.  My customers are mostly medium-sized enterprises ranging from engineering companies, mining companies, independent schools, and…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It's not very complicated to install Elastic."
"The most valuable feature is the ability to collect authentication information from service providers."
"The most valuable feature for me is Discover."
"Elastic Security offers advanced features such as machine learning and integration with ChatGPT."
"It's a good platform and the very best in the current market. We looked at the Forester report from December 2022 where it was said to be a leader."
"ELK Logstash is easy and fast, at least for the initial setup with the out of box uses."
"Elastic Security is very easy to adapt."
"The feature that we have found the most valuable is scalability."
"The most valuable feature is auto-discovery. When you send logs from any device to port 514, it helps register those devices automatically."
"It's easy to manage. There's a web interface and a command line, depending on what the user is comfortable with. There's a large knowledge base available, and the support is timely."
"Fortinet FortiSIEM provides good detection against advanced threats."
"It works well with medium to large-scale enterprises."
"Real-time monitoring makes life quite easy for me."
"It's a very nice solution to work with."
"FortiSIEM's best features are the dashboards and customization."
"The tool's most valuable feature stems from the fact that I can see a complete analysis, like all the incidents that have happened, and it detects everything in real-time."
 

Cons

"In terms of what could be improved with Elastic, in some use cases, especially on the advanced level, they are not ready made, so you'll have to write some scripts."
"The training that is offered for Elastic is in need of improvement because there is no depth to it."
"This type of monitoring is not very mature just yet. We need more real-time information in a way that's easier to manage."
"Email notification should be done the same way as Logentries does it."
"The solution's query building is not that intuitive compared to other solutions."
"Technical support could respond faster."
"Better integration with third-party APMs would be really good."
"There is room for improvement in the Kibana dashboard and in the asset management for the program."
"An improvement would be if FortiSIEM's licensing was based on the number of nodes rather than the EPS."
"They should enhance the solution's AI capabilities, including XDR and EDR."
"The reporting feature is not very attractive for the upper management and I am not able to perform complex/nested queries."
"We need to see incident reports about the event log, without events from the administrator or through human interaction."
"The product does not have Security Orchestration and Automation Response, I would recommend adding this feature."
"The stability of the product is an area of concern where improvements are required."
"Areas for improvement would be the ease of use and the integration with Fortinet's own products."
"If there is a configuration on the wrong side of the network or there are changes that result in harm to our IT infrastructure, the solution should immediately fix it."
 

Pricing and Cost Advice

"We use the open-source version, so there is no charge for this solution."
"Elastic Stack is an open-source tool. You don't have to pay anything for the components."
"I find it better than Splunk in terms of cost-effectiveness. For cost-effectiveness, I would rate it a nine out of 10."
"When compared to other products, the price is average or on the low side."
"There is no charge for using the open-source version."
"This is an open-source product, so there are no costs."
"Elastic Security is free to use."
"The tool's pricing is flexible and comes at unit cost. You don't have to pay for everything."
"Fortinet's products are not expensive, it is less than the competition."
"We bought the perpetual license, so we own the product, but there is a three-year support renewal fee for that."
"Manageable, however would be better as pay as you go versus CapEX."
"Fortinet FortiSIEM is cheaper compared to other products."
"This is probably more on the lower cost end of the spectrum compared to competing products. Fortinet's license model is based on events per second, which makes sense, but that's not typical. It makes it very hard to calculate what your costs are going to be as you scale the platform because some log sources, such as firewall logs, are very noisy, and there are lots and lots of events per second, but some of them are not. So, it becomes a bit of a science experiment trying to guess what your costs are going to be as you scale the solution. This is where other competing products perhaps have a more straightforward license model."
"Fortinet FortiSIEM is very cost-efficient compared to other SIEM solutions."
"There are additional features that cost more than the standard licensing fees."
"Pricing is acceptable for more than 90% of our customers, as they normally get discounts."
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
845,040 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Government
10%
Financial Services Firm
9%
University
7%
Computer Software Company
16%
Financial Services Firm
9%
Government
7%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...
What do you like most about Elastic Security?
Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...
What is your experience regarding pricing and costs for Elastic Security?
Elastic Security is considered cost-effective, especially at lower EPS levels. However, a direct comparison was not made due to different pricing structures.
What do you like most about Fortinet FortiSIEM?
Fortinet FortiSIEM needs to provide better API integrations to users.
What is your experience regarding pricing and costs for Fortinet FortiSIEM?
As a service, the cost is reasonable and affordable with scalable pricing based on the number of monitored devices. However, setting it up for oneself as an enterprise-licensed product can be quite...
What needs improvement with Fortinet FortiSIEM?
The built-in APIs in Fortinet FortiSIEM are somewhat lacking and could be improved for better integration with external ITSM products. Improving software stability and reducing bugs will make it a ...
 

Also Known As

Elastic SIEM, ELK Logstash
FortiSIEM, AccelOps
 

Overview

 

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care
FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia.
Find out what your peers are saying about Elastic Security vs. Fortinet FortiSIEM and other solutions. Updated: March 2025.
845,040 professionals have used our research since 2012.