Try our new research platform with insights from 80,000+ expert users
Solutionbff1 - PeerSpot reviewer
Solutions Consultant at a comms service provider with 51-200 employees
Consultant
A stable solution with good pricing, but they need to address recent changes to technical support
Pros and Cons
  • "Both the collecting logs and duo correlation are valuable features for us."
  • "The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients."

What is our primary use case?

We primarily use the solution for collecting logs and duo correlation on our customer's premises.

What is most valuable?

Both the collecting logs and duo correlation are valuable features for us.

Fortinet also offers very good pricing. Their pricing is incredible.

What needs improvement?

The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients.

They also have to improve their import perfection solution.

For how long have I used the solution?

I've been using the solution for 1.5 years.
Buyer's Guide
Fortinet FortiSIEM
December 2024
Learn what your peers think about Fortinet FortiSIEM. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,053 professionals have used our research since 2012.

What do I think about the stability of the solution?

The solution is very stable, like all Fortinet products.

What do I think about the scalability of the solution?

The solution is scalable.

How are customer service and support?

Technical support is very good. They also provide you with additional materials to study the product by yourself so that you can get a better understanding of the full solution.

How was the initial setup?

The initial setup is complex, mostly because of the security, not because of the product. Most of the security features in the installation process are difficult. They require tuning.  You have to be careful you don't configure something wrong. This is a complexity of the environment and the solution itself. The engineer should understand what the customer is looking for. The product might be very good, but if it is positioned in the wrong way, it can be harmful.

Which other solutions did I evaluate?

I did not evaluate other options; this solution was the decision of the customer. However, in the past, I have evaluated and worked with Splunk and IBM.

What other advice do I have?

We use the public cloud deployment model.

I like the product, and I would recommend it, but I much prefer Splunk.

The beautiful thing about Fortinet is that they have integrated many, many solutions. Their platform is very powerful. In the case of the customer, if he decides to choose Fortinet, he'll largely be stuck with that one vendor. Fortinet does integrate with a few other vendors, but it's best if you use only their solutions. It's more efficient, you have more manageability and you get more value that way.

I would rate the solution seven out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
PeerSpot user
Manager, ICT Enterprise Services at a government with 201-500 employees
Real User
Has good business service summaries in the dashboards but it should have better integration abilities
Pros and Cons
  • "Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features."
  • "Their product support, in general, is not that great. The product support is in the same ecosystem. Their support is improving but it's not that great.vvv"

What is our primary use case?

We use the on-prem deployment model of this solution. Our primary use case of this solution is for all of our infrastructure monitoring, applications, performance monitoring, and for security, incident, and event analysis. 

What is most valuable?

Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features. 

What needs improvement?

Their product support, in general, is not that great. The product support is in the same ecosystem. Their support is improving but it's not that great.

It should also have better integration.

For how long have I used the solution?

I have been using FortiSIEM for four years.

What do I think about the stability of the solution?

It's a good product. It does what it is supposed to do. 

What do I think about the scalability of the solution?

Scalability required a lot of training. If the training isn't adequate you cannot enjoy the end results.

There are currently around ten users using this solution. They are mostly system and network administrators using this solution. We don't have plans to increase the usage. We are going to switch to another product. 

We require two staff members for the deployment and maintenance. 

How are customer service and technical support?

When you log a call, you don't get instant replies or if there is a bug they take ages to fix it and they ask you to hold.

Which solution did I use previously and why did I switch?

We didn't previously use another SIEM solution. 

How was the initial setup?

The installation is straightforward but the configuration is complex because it compromises of several aspects of the network infrastructure, servers, and the databases. You have to know what you want to gain out of this product. 

The deployment took around three months. There are a lot of dashboards to configure. It's not about just the installation. The planning phase and understanding what you want to get out of it, setting up the logs, and working on the correlations take time. 

What about the implementation team?

We used a local integrator for the deployment. They were good. When you consider the other SIEM products, this isn't a popular solution. When we implemented it, we were with the solution before it was acquired by Fortinet. It was a hassle. 

What's my experience with pricing, setup cost, and licensing?

Licensing is a one time cost. If you want to enable different modules then there will be additional costs. 

What other advice do I have?

Properly review this solution and your requirements. See how it will scale up to cloud requirements. Cloud technologies are becoming more prominent and you should see how you will be able to manage it with this tool.

It's a good product but you need to be well trained. If you don't have good training then you won't maximize the benefits of this product. 

I would rate it a seven out of ten. 

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Fortinet FortiSIEM
December 2024
Learn what your peers think about Fortinet FortiSIEM. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,053 professionals have used our research since 2012.
Network Security Engineer at Technicom Mali
Real User
A simple setup but needs better visibility and more correlation tools
Pros and Cons
  • "It is used as an alerting platform."
  • "The log collection and configuration management are not great."

What is our primary use case?

It is used as an alerting platform and has an availability manager.

What is most valuable?

We already have experience with Fortinet products, so dealing with Fortinet FortiSIEM is not complicated.

What needs improvement?

They should offer better visibility, more correlation tools and a better understanding of the network. Fortinet FortiSIEM already uses simple and standard protocols like SNMP, DuraMI and Syslog. Other solutions like QRadar use sFlow, so I think that they can do better.

In addition, the log collection and configuration management are not great.

For how long have I used the solution?

We have been using this solution for three years. We deployed Fortinet FortiSIEM at about three customer sites, and it is deployed on-premises.

What do I think about the stability of the solution?

The product is stable.

What do I think about the scalability of the solution?

It is a scalable solution.

How are customer service and support?

We have expertise with the product, so we don't use technical support often. We only require support for the error mark, and the support is quick and fast for that.

How was the initial setup?

The initial setup was simple, and we deployed Fortinet FortiSIEM in two days. We already had all the information regarding the customers' notes, and it was simple, quick and fast.

What's my experience with pricing, setup cost, and licensing?

It is cheaper than LogPoint or QRadar.

What other advice do I have?

I rate this solution a five out of ten. It is not as good as other solutions like QRadar, but it's cheaper than other products and very simple. In the next release, the visibility should consist of simple and standard protocols.

Regarding advice, if you don't have a dedicated team to handle your logs, don't have a big budget, and want a solution to correlate and collect logs from many vendors, Fortinet FortiSIEM is an excellent choice.

Disclosure: My company has a business relationship with this vendor other than being a customer: Integrator
PeerSpot user
reviewer1146195 - PeerSpot reviewer
Head - IT & SWIFT at a financial services firm with 1-10 employees
Real User
Good dashboards and customization but issues with licensing
Pros and Cons
  • "FortiSIEM's best features are the dashboards and customization."
  • "An improvement would be if FortiSIEM's licensing was based on the number of nodes rather than the EPS."

What is our primary use case?

I use FortiSIEM for email events and security alarms.

What is most valuable?

FortiSIEM's best features are the dashboards and customization.

What needs improvement?

An improvement would be if FortiSIEM's licensing was based on the number of nodes rather than the EPS. In the next release, FortiSIEM should implement a central repository.

For how long have I used the solution?

I've been working with FortiSIEM for more than three years.

What do I think about the stability of the solution?

FortiSIEM's stability is quite good.

What do I think about the scalability of the solution?

FortiSIEM is scalable, though this is constrained by the licensing model.

How are customer service and support?

FortiSIEM's technical support is satisfactory, but its knowledge base could be better.

How would you rate customer service and support?

Positive

What about the implementation team?

We used an in-house team and the local vendor.

What's my experience with pricing, setup cost, and licensing?

FortiSIEM's licensing is based on EPS, and its pricing is competitive in the market.

Which other solutions did I evaluate?

I also evaluated LogRhythm and McAfee.

What other advice do I have?

I would give FortiSIEM a rating of seven out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Termphong Tana - PeerSpot reviewer
Assistant to Vice President at IT Green Public Company Limited
Reseller
Plenty of features, good support, but lacking signature updates
Pros and Cons
  • "The most valuable features of Fortinet FortiSIEM are the SD-WAN, Global LAN, and application controls."
  • "Fortinet FortiSIEM could improve by having a signature update."

What is our primary use case?

We use Fortinet FortiSIEM for security, a gateway, and for authentication.

What is most valuable?

The most valuable features of Fortinet FortiSIEM are the SD-WAN, Global LAN, and application controls.

What needs improvement?

Fortinet FortiSIEM could improve by having a signature update.

For how long have I used the solution?

I have been using Fortinet FortiSIEM for approximately 16 years.

What do I think about the stability of the solution?

Fortinet FortiSIEM is stable. However, it was not stable from the beginning.

What do I think about the scalability of the solution?

Fortinet FortiSIEM is the best soltuions here in Thailand. There are many users and partners here.

There are 10 to 3,000 users in my company. Most of the users are specialists in IT. We plan to increase usage in the future.

How are customer service and support?

I have used the technical support and they have been good.

Which solution did I use previously and why did I switch?

I have used other solutions previously.

How was the initial setup?

The initial setup of Fortinet FortiSIEM was easy. The deployment would take a few days for the middle and large models.

We need some information for the customer, such as policies, before we can implement the solution.

What about the implementation team?

We do the implementation of Fortinet FortiSIEM. We use one IT specialist for the deployment and maintenance of the solution.

What other advice do I have?

I would advise others this solution is easy to use and has a lot of features. They should try it out.

I rate Fortinet FortiSIEM a seven out of ten

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
PeerSpot user
Assistant Engineer at Harel Mallac Technologies Ltd
Real User
Easy to use, user-friendly, and reliable
Pros and Cons
  • "The solution is easy to use and user-friendly."
  • "Fortinet FortiSIEM could improve by having better integration and extensions. This would benefit by allowing us to give more rules."

What is our primary use case?

Fortinet FortiSIEM can be used to detect unusual user and entity behavior on networks.

We currently are in the process of testing the solution.

What is most valuable?

The solution is easy to use and user-friendly.

What needs improvement?

Fortinet FortiSIEM could improve by having better integration and extensions. This would benefit by allowing us to give more rules.

For how long have I used the solution?

I have been using Fortinet FortiSIEM for a few months.

What do I think about the stability of the solution?

I have found Fortinet FortiSIEM to be stable.

What do I think about the scalability of the solution?

Fortinet FortiSIEM is scalable.

How was the initial setup?

The installation is straightforward and can be done in one day.

What about the implementation team?

I am able to do the implementation of the solution.

What's my experience with pricing, setup cost, and licensing?

The solution is available for both, perpetual and subscription licenses.

What other advice do I have?

I rate Fortinet FortiSIEM an eight out of ten.

Which deployment model are you using for this solution?

Hybrid Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
System Engineer / Network Consultant at a tech services company with 51-200 employees
Consultant
An affordable all-in-one solution that's very stable
Pros and Cons
  • "The solution is very stable. It's run for years without the need to do anything except, add new patches when they are available, which are always a good idea to install."
  • "They could work on their documentation. If there's anything about the solution that needs improvement, it's that. For example, documentation already is on a very high level but specifically on the CLI there are tons of features which can be fine-tuned and thousands of commands are very difficult to document. If they could make this easier, it would improve the overall solution."

What is most valuable?

The solution has an all-in-one approach. We buy one product and everything our customer needs is included. He doesn't have to pay any additional licenses to get more functionality, so everything is there and if we have to do any adjustments, it's also done very quickly and easily.

What needs improvement?

The solution can't be improved, but it can be managed more clearly. The solution just needs minor improvements. I'm quite sure Fortinet is already working on this.

They could work on their documentation. If there's anything about the solution that needs improvement, it's that. For example, documentation already is on a very high level but specifically on the CLI, there are tons of features which can be fine-tuned and thousands of commands are very difficult to document. If they could make this easier, it would improve the overall solution. 

For how long have I used the solution?

I've been using the solution for 1.5 years.

What do I think about the stability of the solution?

The solution is very stable. It has run for years without the need to do anything except, add new patches when they are available, which are always a good idea to install.

How was the initial setup?

The initial setup is quite easy.

What's my experience with pricing, setup cost, and licensing?

If we do an overall comparison with other products and also count additional licenses, which are necessary for other products, then the prices are comparative.

If we just leave it at base prices, for example, Splunk: Splunk is cheaper, but if you also count the price for licenses, reports, and other things - especially the megabytes and gigabytes of the lock data that you need - then it comes up to a much higher price than you have to pay for FortiSIEM which already includes these things in a base version.

What other advice do I have?

I would rate the solution nine out of ten. Our clients have been very happy with the solution.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.
PeerSpot user
reviewer1720563 - PeerSpot reviewer
Technical manager at a tech services company with 11-50 employees
Real User
User-friendly, reliable scales well, and has good technical support
Pros and Cons
  • "Fortinet FortiSIEM is easy to use."
  • "I would like to see more integration with other platforms."

What is our primary use case?

This solution is used to detect irregular user and entity behavior using machine learning.

What is most valuable?

Fortinet FortiSIEM is easy to use.

What needs improvement?

I would like to see more integration with other platforms.

For how long have I used the solution?

We have been providing Fortinet FortiSIEM for one year.

This solution can be deployed both on Cloud, and on-premises.

What do I think about the stability of the solution?

Fortinet FortiSIEM is a stable solution.

What do I think about the scalability of the solution?

It's a scalable product.

How are customer service and support?

Technical support is good enough. They were able to help us.

How was the initial setup?

It is easy to install.

In one day, we were able to install this solution ourselves.

We only need one engineer to maintain this solution.

What's my experience with pricing, setup cost, and licensing?

They have a yearly subscription.

What other advice do I have?

I would rate Fortinet FortiSIEM a ten out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Buyer's Guide
Download our free Fortinet FortiSIEM Report and get advice and tips from experienced pros sharing their opinions.
Updated: December 2024
Buyer's Guide
Download our free Fortinet FortiSIEM Report and get advice and tips from experienced pros sharing their opinions.