Try our new research platform with insights from 80,000+ expert users

Fortinet FortiAnalyzer vs LogRhythm SIEM comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 8, 2024
 

Categories and Ranking

Fortinet FortiAnalyzer
Ranking in Log Management
8th
Average Rating
8.0
Number of Reviews
89
Ranking in other categories
No ranking in other categories
LogRhythm SIEM
Ranking in Log Management
10th
Average Rating
8.4
Reviews Sentiment
6.5
Number of Reviews
172
Ranking in other categories
Security Information and Event Management (SIEM) (6th)
 

Mindshare comparison

As of November 2024, in the Log Management category, the mindshare of Fortinet FortiAnalyzer is 2.4%, down from 3.7% compared to the previous year. The mindshare of LogRhythm SIEM is 2.6%, down from 3.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Kiarash Heydari - PeerSpot reviewer
Jan 26, 2023
We can automate event-based handling solutions, is stable, and is great for heavy traffic
The solution has very heavy features. Similar to when we get an app, usually, it's less than what we want. When we send all our logs over to the analyzer, it almost crashed on the first try. We must first get our logs tuned up and then set up the Fortinet FortiAnalyzer or it will crash. This is very complicated and heavy work for such a simple task, and it's a big issue for that app. The setup of the solution can be improved because it is currently complex. The cost of the solution is high and can be improved.
Joseph W. - PeerSpot reviewer
Oct 18, 2022
Has pre-built pieces for third party vendors and does not take a long time to implement
One of the main features that I like about LogRhythm SIEM is that there are a lot of pre-built pieces. Like with our AV, we didn't have to tell it how to read the logs; they already had it pre-made. So, we essentially just had to follow their guide to get the logs imported in and set up some rules for it. We've only had to manually create the parsing rules for a few of our vendors so that we could interpret the logs correctly. Most of them had already been pre-created for us. We use the Event Log Filtering feature a lot. We use it for simple troubleshooting tasks like when a user is logged out, to more important tasks like trying to investigate a threat. As far as its effect on productivity, we can go and search instead of trying to troubleshoot and guess what is causing an error. We can identify what the program is or where the hiccup is. LogRhythm helped us to identify a lot of blind spots. Originally, we didn't have a SIEM tool. We had auditors say that this is something that we should be doing. My management team asked me to go and find a product, and I researched a bunch of them and found LogRhythm. It really opened our eyes to see how much traffic we have, whether it's other IP addresses that are scanning us or external users trying to hit certain ports that could then get closed. It helped us tighten down some of those firewall rules that may have been left open unintentionally through other changes. It helped us a lot early on to identify who was trying to communicate with us or, essentially, who was trying to attack us. As far as our overall security posture, our SIEM tool was the initial push that really got us going into identifying where all of our threats were. We expanded over the seven years that we've had it, and I implemented at least eight other products that are all security related because the SIEM tool indicated the need to identify other risks. It really helped us as an organization to identify risks and move forward to a more secure environment.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution does what it is supposed to. I want it to do reports for Fortinet and it does it well."
"The most valuable features of the solution are the reports and the playbooks."
"Log View is the most valuable part for us, as we can view logs from different Fortigates on a single GUI."
"The solution is quite easy to deploy."
"Stability-wise, I rate the solution a ten out of ten since, in our company, we have never experienced the solution crashing or having any other issues."
"The user interface is good and it is quite easy to use."
"FortiAnalyzer's best feature is centralized log analysis. It's based on SQL database, so I can fully customize my report, chart-wise and log-wise, and can create as many reports as I want without any limit."
"It is a simple and solution."
"The ability to drill down and pivot from an event is one of the biggest advantage the product has compared to other things that I have seen in the market."
"Automations are very valuable. It provides the ability to automate some of our small use cases. The ability to integrate with other products that use an API is also very useful. LogRhythm has a plugin for it that we can connect and start to move down towards the path of a single pane of glass instead of having multiple or different tools."
"It has allowed us to dive deeper into our network and figure out what is going on by parsing logs properly and being able to reduce the time it takes to work cases down from seven days to approximately two days."
"The user interface is pretty good compared to other SIEM tools."
"It supports most standard log sources."
"NextGen SIEM's best feature is how it presents logs."
"The initial setup is pretty easy."
"I would rate the product a ten out of ten. The solution is very user-friendly and straightforward. The tool's report customization is interesting."
 

Cons

"I believe that its technical support is the only aspect that requires significant improvement."
"The cloud version can be expensive. If the customers could get the resources to store the logs on-premises, it would be much better."
"The integration between specific tenants and FortiAnalyzer can be simplified when utilizing a multi-tenant EMS for our FortiClient."
"The solution could improve by allowing the ability to search logs in integrated solutions."
"The support could be better for Fortinet FortiAnalyzer here in Mexico."
"We would like to do the reporting, logging, and administration of all the public devices and all the IoT devices. We wish to add the switches, and routers from different vendors, so it's not a vendor-specific diagnostic solution."
"It is very important that FAZ can support FortiController as the architecture designed for the network. FortiController should be registered in FAZ at least for event logs."
"Fortinet FortiAnalyzer should come bundled with other Fortinet solutions. Additionally, the performance and updates could improve. They need to test their updates better so there are not as many bugs."
"In the next release, I would certainly like to see more HIPAA compliance. I would also like to see more integration with Palo Alto Networks, particularly their Traps, which is their endpoint solution."
"Move it to Linux. I would like to see it get off the SQL Server."
"The installation was a bit complex because we are running a virtual infrastructure."
"It should be improved for automated setup and auto-configuration. There should be ease of integration and ease of setup."
"LogRhythm SIEM needs improvement in data grouping and manipulation capabilities."
"The console installation is an area with a shortcoming in the solution that needs improvement. If LogRhythm SIEM can offer a web console, it would be great."
"It should have some more message monitoring features. It can also have some free message monitoring tools."
"NextGen SIEM's integration with other software is good but could be improved."
 

Pricing and Cost Advice

"We have several products including Fortinet Wireless, FortiGate Firewalls, and FortiAnalyzer, which are bundled together and cost approximately $50,000 USD annually."
"When you compare with other firewall vendors, FortiAnalyzer is quite competitive in pricing."
"In other countries, the product may seem cheap, but in Vietnam, the costs are high."
"Its worth spending on FortiAnalyzer if you have multiple firewalls in your network."
"When comparing with other solutions such as Checkpoint and Cisco, Fortinet is priced well."
"The hardware has a one-time cost and maintenance is paid by annual subscription."
"The price is quite expensive. Fortinet products are very expensive. That is something which they should also look at, because if you compare Fortinet product to, say, Sophos for example, Fortinet is really high and that's the only thing which is a drawback for most users."
"I won't say the solution is too costly since it is available at a fair price."
"Everything is expensive with LogRhythm, and you don't get anything for free."
"It costs a great amount, but its pricing is competitive with some of the other vendors. For licensing and support, we pay about 20,000. There are no additional costs or anything like that."
"I would rate the tool's pricing around eight out of ten."
"The product is inexpensive than other tools."
"LogRhythm's pricing and licensing is extremely competitive and it's one of the top three reasons we continue to invest in the platform."
"LogRhythm's licensing is based on MPS. There are some add-on features like advanced UEBA, the cloud component for advanced UEBA, and SIEM."
"In comparison to the competition, they are more affordable. This allows us to do more with less."
"On a scale of one to ten, where one is low, and ten is high, I rate the pricing between six and seven."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Government
8%
Financial Services Firm
7%
Manufacturing Company
7%
Educational Organization
43%
Computer Software Company
9%
Government
6%
Financial Services Firm
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Fortinet FortiAnalyzer?
The reporting features, which offer customization, real-time insights, and compliance support, are particularly noteworthy aspects.
What is your experience regarding pricing and costs for Fortinet FortiAnalyzer?
Fortinet FortiAnalyzer is quite an expensive tool. On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing an eight out of ten.
What needs improvement with Fortinet FortiAnalyzer?
Fortinet has a new bug every month, which needs to be improved.
What is the difference between log management and SIEM?
Rony, Daniel's answer is right on the money. There are many solutions for each in the market, a lot depends upon your ability to manage such tools and your budget. A small operation may be best s...
What do you like most about LogRhythm NextGen SIEM?
LogRhythm does a very good job of helping SOCs manage their workflows.
What is your experience regarding pricing and costs for LogRhythm NextGen SIEM?
LogRhythm's pricing and licensing are extremely competitive and it's one of the top three reasons we continue to invest in the platform.
 

Also Known As

No data available
LogRhythm NextGen SIEM, LogRhythm, LogRhythm Threat Lifecycle Management, LogRhythm TLM
 

Overview

 

Sample Customers

General Directorate of Information Technology
Macy's, NASA, Fujitsu, US Air Force, EY, Abbott, HD Supply, SAB Miller, UCLA, Raytheon, Amtrak, Cargill
Find out what your peers are saying about Fortinet FortiAnalyzer vs. LogRhythm SIEM and other solutions. Updated: October 2024.
814,649 professionals have used our research since 2012.