No more typing reviews! Try our Samantha, our new voice AI agent.

Fortinet FortiSIEM vs Wazuh comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 1, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
5.1
Fortinet FortiSIEM delivers security improvements and customer satisfaction, leading to positive financial outcomes despite no explicit ROI measurement.
Sentiment score
3.3
Wazuh offers rapid threat response and cost-effective security, benefiting small businesses with significant savings and no proprietary costs.
I have seen value in security cost savings with Wazuh, as using proprietary EDR versions could save us substantial money.
Security Consultant at ebenezer.okoh@agorasecurity.it
 

Customer Service

Sentiment score
7.7
Fortinet FortiSIEM's customer service is seen as professional but has mixed reviews on response times and support accessibility.
Sentiment score
3.0
Wazuh offers valuable community forums and support, with a preference for cloud services despite occasional response time delays.
Local tech support is available, however, for more critical or technical issues, we depend on the OEM directly, especially when it comes to on-prem solutions.
IT Solutions Product Manager at a computer software company with 11-50 employees
There is a knowledgeable, though small, team of support engineers around the world.
Network Engineer at Laminar Communications Pty Ltd
They take some time to respond because they need logs and investigations, which delays the response time.
Network Engineer at Ogma Consulting
They responded quickly, which was crucial as I was on a time constraint.
Cyber Security Software Engineer at a tech services company with 11-50 employees
We use the open-source version of Wazuh, which does not provide paid support.
Tech Lead at a tech vendor with 201-500 employees
The documentation is good and provides clear instructions, though it's targeted at those with technical backgrounds.
Student at Dakota State University
 

Scalability Issues

Sentiment score
7.6
Fortinet FortiSIEM scales well, accommodating different business sizes but faces challenges with licensing, architecture, and configuration complexities.
Sentiment score
6.4
Wazuh is seen as scalable, fitting small to medium businesses, with potential challenges in larger data and sectors.
At any point in time, when network devices increase or there is a change in the infrastructure, we can add more workers and collectors to expand our infrastructure setup.
IT Solutions Product Manager at a computer software company with 11-50 employees
Fortinet FortiSIEM is highly scalable.
Network Engineer at Laminar Communications Pty Ltd
Fortinet FortiSIEM is easy to scale.
Network Engineer at Ogma Consulting
It can accommodate thousands of endpoints on one instance, and multiple instances can run for different clients.
Security Operations Center Analyst at mailbox.org
Currently, I don't see any limitations in terms of scalability as Wazuh can still connect many endpoints.
Security Consultant at ebenezer.okoh@agorasecurity.it
This is because of the backend work the agent is collecting and processing, causing the laptop to slow down and the bandwidth to decrease.
Security Consultant at Payatu
 

Stability Issues

Sentiment score
6.2
Fortinet FortiSIEM is reliable and stable, handling updates well, with users rating its performance highly despite occasional bugs.
Sentiment score
6.3
Wazuh is reliable for small to mid-level businesses, despite occasional bugs and maintenance challenges affecting stability.
It stabilizes itself in an appropriate time, so its uptime is good.
IT Solutions Product Manager at a computer software company with 11-50 employees
These issues may cause unusual errors and user interface issues.
Network Engineer at Laminar Communications Pty Ltd
Some stability issues occur, but Fortinet's technical support team provides assistance.
Network Engineer at Ogma Consulting
The stability of Wazuh is strong, with no issues stemming from the solution itself.
Tech Lead at a tech vendor with 201-500 employees
The stability of Wazuh is largely dependent on maintenance.
Security Operations Center Analyst at mailbox.org
The indexer frequently times out, requiring system restarts.
Cyber Security Software Engineer at a tech services company with 11-50 employees
 

Room For Improvement

Fortinet FortiSIEM needs improvements in integration, user interface, support, cost, and features like AI and automated responses.
Wazuh faces scalability and integration issues, needing enhanced security, AI features, and better support for large enterprises.
Recently, they revised it to a subscription-based, all-inclusive license.
IT Solutions Product Manager at a computer software company with 11-50 employees
The built-in APIs in Fortinet FortiSIEM are somewhat lacking and could be improved for better integration with external ITSM products.
Network Engineer at Laminar Communications Pty Ltd
Fortinet FortiSIEM should broaden its remediation part to include more features for incident management.
Network Engineer at Ogma Consulting
Machine learning is needed along with understanding user behavior and behavioral patterns.
Engineer Information Security at N-Able (Pvt) Ltd
If we had a correlation of logs where I could just search one unique ID and then the unique ID pulls every system in a time-wise manner, that would be a great improvement I would suggest.
Security Consultant at Payatu
The integration modules are insufficiently developed, necessitating the creation of custom integration solutions using tools like Logstash and PubSub.
Tech Lead at a tech vendor with 201-500 employees
 

Setup Cost

Fortinet FortiSIEM provides flexible pricing that can be cost-effective, but costs may increase with additional modules and scalability.
Wazuh's open-source solution is cost-effective for enterprises, with cloud costs and scalability as key considerations.
Setting it up for oneself as an enterprise-licensed product can be quite expensive.
Network Engineer at Laminar Communications Pty Ltd
Windows agent licenses cost around 3,000 Rupees per device per year.
Network Engineer at Ogma Consulting
The revised model is subscription-based and more flexible.
IT Solutions Product Manager at a computer software company with 11-50 employees
Wazuh is completely free of charge.
Security Consultant at ebenezer.okoh@agorasecurity.it
I would definitely recommend Wazuh, especially considering Fortinet's licensing model which is confusing and overpriced in my opinion.
Engineer Information Security at N-Able (Pvt) Ltd
Totaling around two lakh Indian rupees per month.
Tech Lead at a tech vendor with 201-500 employees
 

Valuable Features

Fortinet FortiSIEM provides automation, analytics, and integration with a user-friendly interface for efficient threat detection and network monitoring.
Wazuh offers open-source security solutions with cloud integration, exceptional logging, scalability, and compatibility with platforms like Azure and AWS.
It provides extensive logging and record-keeping for internal networks, cloud applications, and services as well as perimeter physical network security.
Network Engineer at Laminar Communications Pty Ltd
I find the real-time monitoring and correlation capabilities effective for security alerts.
Network Engineer at Ogma Consulting
Wazuh is a SIEM tool that is highly customizable and versatile.
Security Operations Center Analyst at mailbox.org
The system allows us to monitor endpoints effectively and collect security data that can be utilized across other platforms such as SOAR.
Security Consultant at ebenezer.okoh@agorasecurity.it
With this open source tool, organizations can establish their own customized setup.
Cyber Security Software Engineer at a tech services company with 11-50 employees
 

Categories and Ranking

Fortinet FortiSIEM
Ranking in Security Information and Event Management (SIEM)
12th
Average Rating
7.6
Reviews Sentiment
6.2
Number of Reviews
75
Ranking in other categories
AI Observability (13th)
Wazuh
Ranking in Security Information and Event Management (SIEM)
3rd
Average Rating
7.4
Reviews Sentiment
5.9
Number of Reviews
51
Ranking in other categories
Log Management (2nd), Extended Detection and Response (XDR) (6th)
 

Mindshare comparison

As of July 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Fortinet FortiSIEM is 2.3%, down from 3.3% compared to the previous year. The mindshare of Wazuh is 4.2%, down from 12.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Wazuh4.2%
Fortinet FortiSIEM2.3%
Other93.5%
Security Information and Event Management (SIEM)
 

Featured Reviews

SY
Network Engineer at Ogma Consulting
Comprehensive monitoring boosts security, yet incident management features need expansion
Fortinet FortiSIEM should broaden its remediation part to include more features for incident management. Currently, to manage repetitive incidents or for remediation, I need to use a separate software called FortiSOAR. Additionally, the search functionality in FortiAI should be improved to provide more precise results, making it easier for me to understand what actions need to be taken.
RS
Engineer Information Security at N-Able (Pvt) Ltd
Has faced limitations in AI capabilities and pricing flexibility
Pricing-wise, Wazuh stands out, along with deployment flexibility and its documentation which is extremely good in comparison to Forti. The community support is also incredible. They have helped quite a bit because previously, we had a separate tool and management dashboard to do our compliance. With Wazuh, we receive that information without having to do anything extra. We just set up the SIEM and all of that information was automatically populated. The dashboards are very easy to understand and very quick with no lag or delay. I have experienced delays on Forti's dashboards, but not with Wazuh. Wazuh is quite good. In comparison to Forti, they are quite similar. They are very good at detection.
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
903,147 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
9%
Comms Service Provider
9%
Construction Company
8%
Manufacturing Company
8%
Comms Service Provider
11%
Computer Software Company
11%
University
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business34
Midsize Enterprise22
Large Enterprise24
By reviewers
Company SizeCount
Small Business27
Midsize Enterprise15
Large Enterprise9
 

Questions from the Community

What is your experience regarding pricing and costs for Fortinet FortiSIEM?
My experience with pricing, setup cost, and licensing for Fortinet FortiSIEM is wonderful, as it offers an excellent license compared to other vendors.
What needs improvement with Fortinet FortiSIEM?
Fortinet FortiSIEM is great overall. Performance could be enhanced, but I do not wish to elaborate on needed improvements.
What is your primary use case for Fortinet FortiSIEM?
My main use case for Fortinet FortiSIEM is building a SOC and serving as an event management platform for correlating events in my work. I use Fortinet FortiSIEM for event correlation by building a...
What do you like most about Wazuh?
Wazuh is its flexibility and open-source nature, which allows us to tailor threat detection and response across diverse client environments. Its integration capabilities with SOAR, cloud platforms,...
What needs improvement with Wazuh?
Regarding compliance, I find it not stable. I do not recommend it for that purpose. It can comply with Wazuh NCA, which we have here in Saudi Arabia. Wazuh NCA has many frameworks starting with ECC...
What is your primary use case for Wazuh?
I have been working with Wazuh for two years, and I can explain how I use Wazuh. I did not use Wazuh as a SIEM solution. I use Wazuh as a tool for services we provide. This service is called compro...
 

Also Known As

FortiSIEM, AccelOps
Wazuh All-In-One Deployment
 

Overview

 

Sample Customers

FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia.
Information Not Available
Find out what your peers are saying about Fortinet FortiSIEM vs. Wazuh and other solutions. Updated: June 2026.
903,147 professionals have used our research since 2012.