The event correlation is pretty robust. The GUI is pretty good.
Fortinet FortiSIEM offers real-time monitoring with advanced log correlation and threat detection, integrating with Fortinet and third-party solutions like Cisco. It allows anomaly notifications via SMS or email, supporting incident response with its UEBA features. While highly customizable, it faces challenges such as cumbersome parser creation, slow technical support, and costly licensing. Limited third-party integration and underdeveloped AI capabilities require attention for improved adaptability and efficiency.