Sumo Logic Security and Fortinet FortiAnalyzer compete in the security intelligence market. Fortinet FortiAnalyzer often has the upper hand due to its robust features and perceived value for cost.
Features: Sumo Logic Security is recognized for effective real-time analytics, ease of use, and accessibility. Fortinet FortiAnalyzer stands out for comprehensive threat intelligence, extensive reporting capabilities, and a robust feature set.
Room for Improvement: Sumo Logic Security could enhance its data integration options, expand third-party integrations, and refine its ROI experience. Fortinet FortiAnalyzer could improve its updates process, focus on patch management, and broaden third-party integrations.
Ease of Deployment and Customer Service: Sumo Logic Security is noted for simplicity in deployment and strong customer support. Fortinet FortiAnalyzer might involve more complex setup processes but has reliable customer service.
Pricing and ROI: Sumo Logic Security offers competitive pricing and flexible cost structures, though ROI feedback varies. Fortinet FortiAnalyzer presents higher initial setup costs but users find its capabilities provide a better ROI.
The impact of the tool is low when the functionalities are inaccessible due to resource consumption.
Fortinet is highly efficient for moderate deployments and provides a secure platform for medium-sized networks and data centers.
I have seen a return on investment with Fortinet FortiAnalyzer due to its competitive pricing and straightforward licensing model based on the amount of log data processed per day.
We have saved 64 hours of our time overall.
The return on investment I have seen with Sumo Logic Security in the past year and a half is tough to quantify, but I would estimate it has hit the milestones we set internally for return on investment.
Customer service and support for Fortinet FortiAnalyzer are quite helpful and responsive.
Technical support is good, and I rate it ten out of ten.
The support service is very slow and incompetent.
They have a response time of forty-eight hours, which is not instant support.
In general, they usually provide continuous support post-implementation, being in touch and trying to help, which makes their after-sale process better than Splunk.
Sumo Logic Security has really good customer support.
Fortinet FortiAnalyzer is scalable, especially for the VM versions, as additional space can be provisioned from the servers as needed.
FortiAnalyzer is a scalable product.
It typically handles three to five years of expansion effectively.
Sumo Logic Security scales up automatically because it is a cloud-native SIEM, and I do not need to worry about hardware clusters or capacity planning.
The tool has high scalability because everything is based in the cloud.
I did not face any significant issues with Sumo Logic Security, but the pricing may be a concern as they try to upsell and raise the prices very quickly.
We faced some CPU consumption issues, which caused the machine to slow down and required a restart of FortiAnalyzer.
It remains stable during implementation for one or two years.
It provides a reliable solution for managing network-wide data.
If there are many records, the system may stop or the UI may become unresponsive.
The query language is pretty straightforward and easy, and it is very powerful for building different searches and dashboards that will serve for later exploration of the same interests I have.
It operates very well as a cloud-native SaaS platform with high availability, and there is no downtime that I have experienced.
When licensing, each device is licensed separately, such as the firewall, which can become expensive.
This would help in analyzing various security incidents and events more effectively by delivering a handful of relevant logs instead of thousands.
Enhanced deep inspection features would make troubleshooting easier.
This can lead to alerts that are collections of disjointed signals that sometimes make no sense and lack real context; this simplistic approach makes it hard to find coherent stories during investigations.
I would also appreciate the AWS automation integrations to be more secure because currently, they are using access keys, which involves a user rather than roles, which is the security best practice recommended by AWS.
The correlation rules and log mapping are not as mature compared to other SIM tools like Splunk.
Its licensing model is based on the amount of log data processed per day, making it more cost-effective compared to QRadar, which is EPS and device-based.
In terms of pricing, FortiAnalyzer is not expensive.
In the Indian market, Fortinet's pricing is very competitive, allowing us to win most of our deals.
This makes it more cost-effective because other solutions often include a third element in their pricing.
From one to ten, where one is cheap and ten is expensive, I would put Sumo Logic Security at a seven.
If you go to the well-known vendors such as Azure Sentinel or other tools like Splunk, you are going to find them costly since they are well-known and they have much more integration compared to Sumo Logic Security.
The advanced analytics capabilities aid in threat detection by providing visibility into indicators of compromise.
The most valuable feature of Fortinet FortiAnalyzer is its ability to simplify and display logs clearly, providing details like which IPs are accessing the system, the destination, and the policies applied.
The log management is useful as we have connected around two hundred eighty-five walls and around fifteen to twenty plus firewalls with Fortinet FortiAnalyzer, making it highly beneficial compared to logging into each individual firewall.
The features I find most useful in Sumo Logic Security are the ease of implementation and connectors; they have a very easy connection and many connectors to important systems, making it very easy to implement and fast to start running in production.
They are able to save time on fewer alerts because we are able to perform tuning on the logs to be able to only get relevant or security relevant incidents.
My SOC analysts were crushed under Splunk, but Sumo has actually eased the workload and made it tolerable for three people.
| Product | Mindshare (%) |
|---|---|
| Fortinet FortiAnalyzer | 1.5% |
| Sumo Logic Security | 1.3% |
| Other | 97.2% |
| Company Size | Count |
|---|---|
| Small Business | 57 |
| Midsize Enterprise | 22 |
| Large Enterprise | 31 |
| Company Size | Count |
|---|---|
| Small Business | 7 |
| Midsize Enterprise | 5 |
| Large Enterprise | 14 |
Fortinet FortiAnalyzer offers comprehensive report generation and log management to enhance threat analysis and user activity insights. It integrates with Fortinet products for centralized management, featuring robust security and real-time data capabilities.
FortiAnalyzer enables detailed threat analysis and in-depth insights into user activities, integrating seamlessly with Fortinet's suite for centralized network management. Its robust security features, real-time data processing, and customizable dashboards make it efficient for IT environments. Users benefit from predictive analytics, enhancing network visibility and cybersecurity operations. It is known for ease of deployment and a scalable, user-friendly interface. However, there are desires for better third-party integration, enhanced AI capabilities, and improved technical support. Users seek more intuitive documentation and improved cost-efficiency.
What are FortiAnalyzer's Most Important Features?FortiAnalyzer is utilized in diverse industries such as banking, medical organizations, and service providers. It is employed for security diagnostics, network traffic analysis, and incident management. Organizations utilize its capabilities for enhanced visibility, threat detection, and performance monitoring across cloud-based and on-premises setups.
Sumo Logic Security offers efficient event monitoring with customizable alerts, centralized log search, and real-time threat detection. It supports multi-cloud environments and integrates with threat intelligence, reducing workload with AI-driven analytics.
Sumo Logic Security empowers organizations with advanced logging and monitoring solutions, facilitating comprehensive security event management. Its robust log search and comparison features, combined with user-friendly dashboards, enable quick event analysis. The platform's multi-cloud support and real-time threat detection are notable features, seamlessly integrating automated log correlation and AI analytics to optimize user experience. Despite needing enhancements in querying and dashboard functionalities, Sumo Logic Security remains a reliable choice for application log management, IT asset visibility, and incident alerting. Organizations utilize it for threat detection, posture monitoring, and compliance audits, in platforms like AWS, focusing on security insights and performance monitoring.
What are the key features of Sumo Logic Security?Organizations in industries like finance and technology implement Sumo Logic Security to maintain security and compliance, leveraging its advanced monitoring and alerting capabilities. Teams focus on application troubleshooting and forensic analysis, ensuring robust security posture and effective incident response across cloud-based environments.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
