Fortinet FortiSIEM Reviews

We primarily use the solution for collecting logs and duo correlation on our customer's premises.

Both the collecting logs and duo correlation are valuable features for us.

Fortinet also offers very good pricing. Their pricing is incredible.

The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients.

They also have to improve their import perfection solution.

The solution is very stable, like all Fortinet products.

The solution is scalable.

Technical support is very good. They also provide you with additional materials to study the product by yourself so that you can get a better understanding of the full solution.

The initial setup is complex, mostly because of the security, not because of the product. Most of the security features in the installation process are difficult. They require tuning.  You have to be careful you don't configure something wrong. This is a complexity of the environment and the solution itself. The engineer should understand what the customer is looking for. The product might be very good, but if it is positioned in the wrong way, it can be harmful.

I did not evaluate other options; this solution was the decision of the customer. However, in the past, I have evaluated and worked with Splunk and IBM.

We use the public cloud deployment model.

I like the product, and I would recommend it, but I much prefer Splunk.

The beautiful thing about Fortinet is that they have integrated many, many solutions. Their platform is very powerful. In the case of the customer, if he decides to choose Fortinet, he'll largely be stuck with that one vendor. Fortinet does integrate with a few other vendors, but it's best if you use only their solutions. It's more efficient, you have more manageability and you get more value that way.

I would rate the solution seven out of ten.

We use the on-prem deployment model of this solution. Our primary use case of this solution is for all of our infrastructure monitoring, applications, performance monitoring, and for security, incident, and event analysis. 

Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features. 

Their product support, in general, is not that great. The product support is in the same ecosystem. Their support is improving but it's not that great.

It should also have better integration.

It's a good product. It does what it is supposed to do. 

Scalability required a lot of training. If the training isn't adequate you cannot enjoy the end results.

There are currently around ten users using this solution. They are mostly system and network administrators using this solution. We don't have plans to increase the usage. We are going to switch to another product. 

We require two staff members for the deployment and maintenance. 

When you log a call, you don't get instant replies or if there is a bug they take ages to fix it and they ask you to hold.

We didn't previously use another SIEM solution. 

The installation is straightforward but the configuration is complex because it compromises of several aspects of the network infrastructure, servers, and the databases. You have to know what you want to gain out of this product. 

The deployment took around three months. There are a lot of dashboards to configure. It's not about just the installation. The planning phase and understanding what you want to get out of it, setting up the logs, and working on the correlations take time. 

We used a local integrator for the deployment. They were good. When you consider the other SIEM products, this isn't a popular solution. When we implemented it, we were with the solution before it was acquired by Fortinet. It was a hassle. 

Licensing is a one time cost. If you want to enable different modules then there will be additional costs. 

Properly review this solution and your requirements. See how it will scale up to cloud requirements. Cloud technologies are becoming more prominent and you should see how you will be able to manage it with this tool.

It's a good product but you need to be well trained. If you don't have good training then you won't maximize the benefits of this product. 

I would rate it a seven out of ten. 

It is used as an alerting platform and has an availability manager.

We already have experience with Fortinet products, so dealing with Fortinet FortiSIEM is not complicated.

They should offer better visibility, more correlation tools and a better understanding of the network. Fortinet FortiSIEM already uses simple and standard protocols like SNMP, DuraMI and Syslog. Other solutions like QRadar use sFlow, so I think that they can do better.

In addition, the log collection and configuration management are not great.

We have been using this solution for three years. We deployed Fortinet FortiSIEM at about three customer sites, and it is deployed on-premises.

The product is stable.

It is a scalable solution.

We have expertise with the product, so we don't use technical support often. We only require support for the error mark, and the support is quick and fast for that.

The initial setup was simple, and we deployed Fortinet FortiSIEM in two days. We already had all the information regarding the customers' notes, and it was simple, quick and fast.

It is cheaper than LogPoint or QRadar.

I rate this solution a five out of ten. It is not as good as other solutions like QRadar, but it's cheaper than other products and very simple. In the next release, the visibility should consist of simple and standard protocols.

Regarding advice, if you don't have a dedicated team to handle your logs, don't have a big budget, and want a solution to correlate and collect logs from many vendors, Fortinet FortiSIEM is an excellent choice.

We use Fortinet FortiSIEM for security, a gateway, and for authentication.

The most valuable features of Fortinet FortiSIEM are the SD-WAN, Global LAN, and application controls.

Fortinet FortiSIEM could improve by having a signature update.

I have been using Fortinet FortiSIEM for approximately 16 years.

Fortinet FortiSIEM is stable. However, it was not stable from the beginning.

Fortinet FortiSIEM is the best soltuions here in Thailand. There are many users and partners here.

There are 10 to 3,000 users in my company. Most of the users are specialists in IT. We plan to increase usage in the future.

I have used the technical support and they have been good.

I have used other solutions previously.

The initial setup of Fortinet FortiSIEM was easy. The deployment would take a few days for the middle and large models.

We need some information for the customer, such as policies, before we can implement the solution.

We do the implementation of Fortinet FortiSIEM. We use one IT specialist for the deployment and maintenance of the solution.

I would advise others this solution is easy to use and has a lot of features. They should try it out.

I rate Fortinet FortiSIEM a seven out of ten

Fortinet FortiSIEM can be used to detect unusual user and entity behavior on networks.

We currently are in the process of testing the solution.

The solution is easy to use and user-friendly.

Fortinet FortiSIEM could improve by having better integration and extensions. This would benefit by allowing us to give more rules.

I have been using Fortinet FortiSIEM for a few months.

I have found Fortinet FortiSIEM to be stable.

Fortinet FortiSIEM is scalable.

The installation is straightforward and can be done in one day.

I am able to do the implementation of the solution.

The solution is available for both, perpetual and subscription licenses.

I rate Fortinet FortiSIEM an eight out of ten.

The solution has an all-in-one approach. We buy one product and everything our customer needs is included. He doesn't have to pay any additional licenses to get more functionality, so everything is there and if we have to do any adjustments, it's also done very quickly and easily.

The solution can't be improved, but it can be managed more clearly. The solution just needs minor improvements. I'm quite sure Fortinet is already working on this.

They could work on their documentation. If there's anything about the solution that needs improvement, it's that. For example, documentation already is on a very high level but specifically on the CLI, there are tons of features which can be fine-tuned and thousands of commands are very difficult to document. If they could make this easier, it would improve the overall solution. 

The solution is very stable. It has run for years without the need to do anything except, add new patches when they are available, which are always a good idea to install.

The initial setup is quite easy.

If we do an overall comparison with other products and also count additional licenses, which are necessary for other products, then the prices are comparative.

If we just leave it at base prices, for example, Splunk: Splunk is cheaper, but if you also count the price for licenses, reports, and other things - especially the megabytes and gigabytes of the lock data that you need - then it comes up to a much higher price than you have to pay for FortiSIEM which already includes these things in a base version.

I would rate the solution nine out of ten. Our clients have been very happy with the solution.

This solution is used to detect irregular user and entity behavior using machine learning.

Fortinet FortiSIEM is easy to use.

I would like to see more integration with other platforms.

We have been providing Fortinet FortiSIEM for one year.

This solution can be deployed both on Cloud, and on-premises.

Fortinet FortiSIEM is a stable solution.

It's a scalable product.

Technical support is good enough. They were able to help us.

It is easy to install.

In one day, we were able to install this solution ourselves.

We only need one engineer to maintain this solution.

They have a yearly subscription.

I would rate Fortinet FortiSIEM a ten out of ten.

The CMDB and the device discovery features are most valuable.

I would like to see easier implementation in the future.

I have been using the solution for approximately five months.

Most of our clients are medium-sized businesses.

The technical support has been very good in helping us with issues we have been facing during the implementation of the solution. We are not finished yet but we are close.

The initial setup is not simple.

We are having some issues with the agent installation, it is requiring several reboots. This could be the system environment at the client site because in our lab the agent installation is straightforward and it does not require reboots. We are still working on this issue.

We are doing the implantation of the solution and it has a moderate level of difficulty.

I rate Fortinet FortiSIEM a seven out of ten.