For those interested in using Fortinet FortiSIEM, I'd advise planning your hardware specifications and considering backup and archives to prevent log loss. It's worth the money for what they've developed. It's difficult for beginners to learn, mainly because of Fortinet FortiSIEM's specific queries and the lack of a user-friendly environment. Understanding these queries to find your desired logs can be challenging for newcomers. I'd rate Fortinet FortiSIEM an eight out of ten because it's powerful and simple.
If the protection and monitoring make my network safer by detecting outliers and events, I can report these findings to my manager. They need to be aware of live events affecting the company. Overall, I rate the solution an eight out of ten.
Network Security Consultant at Vertex Techno Solutions (B) Pvt Ltd
Consultant
Top 20
2024-07-30T10:11:34Z
Jul 30, 2024
For threat detection, some AI-based analytics tools are there, and it is one of the latest features in the product. The AI helps mitigate threats. In terms of the tool's ability to streamline customer security workflow, the product normally searches events in real-time, so customers will get alerts of the event in real-time. Compared to other products like Splunk or Oracle, I think Fortinet FortiSIEM is more reliable in real-time. If there is proper support and better technical capabilities, it can become a good solution. I rate the tool an eight out of ten.
Security Technical Manager at a tech services company with 51-200 employees
Real User
Top 5
2024-04-24T07:18:17Z
Apr 24, 2024
The product offers multiple integrations with all vendors. If there is a new or unknown vendor in the market, a custom API can be made to ensure that integration with Fortinet FortiSIEM is possible. I rate the integration capabilities of the tool a nine out of ten. The implementation of the product can improve incident response time according to the arrangement and local relation of built-in rules or custom rules. This will reduce the time of incident response, especially if you use a SOAR solution with it. You can enrich the tool by buying a SOAR solution. It is a good product in general. It is a product that offers stability and scalability with a multiple and wide range of built-in rules. The solution is also easy to use. I rate the tool a nine out of ten.
CISO at a financial services firm with 501-1,000 employees
Real User
Top 20
2024-03-04T15:19:22Z
Mar 4, 2024
It's a good tool if we are small and growing. It is easy to deploy. The support is available. The product is easy to learn. Overall, I rate the solution a nine out of ten.
The solution is deployed on the cloud in our organization. I'll recommend Fortinet FortiSIEM to users because of its functionalities, irrespective of whether they have a hybrid, on-prem, or cloud deployment. If a company has some compliance and regulations, the solution can fulfill their compliance and regulations within their country or industry. Overall, I rate Fortinet FortiSIEM a nine out of ten.
I rate FortiSIEM seven out of 10. I strongly recommend this solution for customers who are using Fortinet products. It offers the same features as other vendors, but it's less expensive. However, some other SIEM solutions are more effective.
Account Manager at Cairo International Airport Co.
Real User
Top 20
2023-01-11T13:54:44Z
Jan 11, 2023
I rate Fortinet FortiSIEM eight out of 10. I would recommend FortiSIEM for corporate users, but I haven't tried any other SIEM solutions, so I have no reference for comparison. In the future, we might try another vendor with a more comprehensive solution.
I rate this solution a five out of ten. It is not as good as other solutions like QRadar, but it's cheaper than other products and very simple. In the next release, the visibility should consist of simple and standard protocols. Regarding advice, if you don't have a dedicated team to handle your logs, don't have a big budget, and want a solution to correlate and collect logs from many vendors, Fortinet FortiSIEM is an excellent choice.
Director, Infrastructure and Operations at a comms service provider with 11-50 employees
Real User
2022-08-10T12:44:38Z
Aug 10, 2022
My overall impression is that this is an SMB product. It is not a large-scale enterprise or multi-tenant product. Even though they tell you it'll do that, it is an SMB tool, and it is pretty good for that purpose. However, most institutions would not have the required in-house expertise for it. You need a dedicated, skilled technical administrator. You need your own DevOps team, which small and medium businesses generally don't have, or you can do what we did and use a partner to do the work for you. I would caution others to fully understand the support model and talk to reference customers about it and have a solid understanding of what their internal resource needs will be to implement and support it. That's because it is complicated. Depending on the product you pick, you would need some in-house technical capabilities. For bigger companies, that's usually not a problem, but for small and medium businesses, that can be a problem. I would rate it a six out of ten. It is suitable for its purpose. It is targeted at the SMB market. The feature function is fine. I would rate it higher if their technical support was better.
We started using Fortinet FortiSIEM because we were recommended to use it by a trusted source. My advice to others would be to carefully look at the cost involved, and look closely at the licensing model. If it's a model that works for you, then great. However, it came as a surprise to us, we were told that we would be giving different licenses for the devices, and for the Windows Agent separately. We were not expecting the additional costs, it caught us off guard. I rate Fortinet FortiSIEM a six out of ten.
Cybersecurity Engineer at a tech services company with 11-50 employees
Real User
2022-02-16T17:38:49Z
Feb 16, 2022
This is a good solution but is fairly new so the support for it is not effective. Their support team does not have the experience to immediately solve issues. I would rate this solution an eight out of ten.
Asst Programmer Data Center at a consultancy with 10,001+ employees
Real User
Top 20
2021-11-18T23:05:06Z
Nov 18, 2021
My advice to others thinking about implementing this solution is if your organizational budget is low, then we go for Fortinet FortiSIEM. Otherwise, if we have enough budget, I would recommend IBM QRadar and or other solutions. I rate Fortinet FortiSIEM a six out of ten.
Cyber Security Analyst at a retailer with 1,001-5,000 employees
Real User
2021-08-26T19:22:16Z
Aug 26, 2021
If you're using it for multi-tenant solutions, it will be pretty good, but it won't support running more than 20 clients on the same platform. It would need more resources. Even if you are implementing it for multi-tenant solutions, you would need implement fewer clients on it so that it has to use less effort. On a scale from one to ten, I would rate it at eight.
Security Engineer L1 at a media company with 11-50 employees
Real User
2021-08-07T10:28:56Z
Aug 7, 2021
I will definitely recommend this solution to others. I am still exploring it, as it is new to us. I need more time to analyze it further. I would rate Fortinet FortSIEM a seven out of ten.
If your use case suits this solution, I would recommend it. If you are a professional operator and you're into pre-investing, and not just paying per use, then FortiSIEM is one of the best options you can have. I rate this product an eight out of 10.
We are actually a reseller service company and we are dealing with the solutions for our customers. We are using the SIEM solutions. We are not a user, we are a reseller. We have many customers. Not all may be using the latest version of the solution. I would recommend the solution. In general, I would rate the solution eight out of ten.
On a scale from one to ten, I would rate the product at an eight. It's been a pretty positive experience overall. I'm still learning the solution and discovering new things about it, however, it has everything I need at the same time.
Asst Programmer Data Center at a consultancy with 10,001+ employees
Real User
Top 20
2020-07-15T07:11:37Z
Jul 15, 2020
We're a public utility, so we just use the solution. We don't have a business relationship with the company. We use the latest version of the solution. We use a variety of Fortinet solutions at our organization. For example, we integrate the complete AWS cloud space into that all FortiSIEM. I'd recommend the solution to other organizations, especially those that are cost-conscious. Compared to there solutions' it's rather easy to implement. I'd rate the solution overall seven out of ten.
My advice would be to know this solution, and study it well to avoid mistakes. The configuration is simple, not complex. It's a very good product. I have not experienced any issues with it. I would rate this solution a nine out of ten.
IT Executive: Operations & Security at Icon Information Systems (Pty) Ltd
Real User
2019-11-13T05:28:00Z
Nov 13, 2019
We use an on-premises deployment model from our perspective and a hybrid model from a customer/user perspective. I will recommend this solution to others out there looking for a SIEM solution. I've already done a few events we were talk about FortiSIEM and its advantages. I do, however, think the main dashboard where you create and design your graphs could do with some improvement improved. On a scale from 1 to 10, I will rate this solution an 8 to ensure there’s continuous improvement.
We use the on-premises deployment model. I'd recommend this solution to companies that have a FortiGate firewall and are on a limited budget. I'd rate the solution six out of ten.
Solutions Consultant at a comms service provider with 51-200 employees
Consultant
2019-09-19T08:39:00Z
Sep 19, 2019
We use the public cloud deployment model. I like the product, and I would recommend it, but I much prefer Splunk. The beautiful thing about Fortinet is that they have integrated many, many solutions. Their platform is very powerful. In the case of the customer, if he decides to choose Fortinet, he'll largely be stuck with that one vendor. Fortinet does integrate with a few other vendors, but it's best if you use only their solutions. It's more efficient, you have more manageability and you get more value that way. I would rate the solution seven out of ten.
Manager, ICT Enterprise Services at a government with 201-500 employees
Real User
2019-08-19T05:47:00Z
Aug 19, 2019
Properly review this solution and your requirements. See how it will scale up to cloud requirements. Cloud technologies are becoming more prominent and you should see how you will be able to manage it with this tool. It's a good product but you need to be well trained. If you don't have good training then you won't maximize the benefits of this product. I would rate it a seven out of ten.
ICT Architect at a insurance company with 51-200 employees
Real User
2019-08-13T10:41:00Z
Aug 13, 2019
I would rate it an eight out of ten. They should implement better behavior monitoring features to make it a perfect ten. It should also have better integration with their own products. They have a lot of interfaces for other products but it's not so easy to integrate their own devices. I would recommend this solution to someone considering it.
Network and Security Administrator at PETRA Engineering Industries Co.
Real User
2019-06-26T05:25:00Z
Jun 26, 2019
The interface is easy to use but initial setup is not . The connector in the core has FortiSIEM support from the vendor. FortiSIEM supports a lot of vendors. It is a good product for us. I rank it as eight on a scale from one to ten. because It doesn't support a lot of vendors and also the FortiSIEM still not common to use with fortinet partner maybe they doesn't give adequate training.
We are very impressed with this product. However, they have to fix their backup and recovery procedure and provide a good DR service without charging for a secondary license. I would rate this solution a seven and a half out of ten.
FortiSIEM (formerly AccelOps 4) provides an actionable security intelligence platform to monitor security, performance and compliance through a single pane of glass.
Companies around the world use FortiSIEM for the following use cases:
Threat management and intelligence that provide situational awareness and anomaly detection
Alleviating compliance mandate concerns for PCI, HIPAA and SOX
Managing “alert overload”
Handling the “too many tools” reporting issue
Addressing the MSPs/MSSPs pain of...
For those interested in using Fortinet FortiSIEM, I'd advise planning your hardware specifications and considering backup and archives to prevent log loss. It's worth the money for what they've developed. It's difficult for beginners to learn, mainly because of Fortinet FortiSIEM's specific queries and the lack of a user-friendly environment. Understanding these queries to find your desired logs can be challenging for newcomers. I'd rate Fortinet FortiSIEM an eight out of ten because it's powerful and simple.
If the protection and monitoring make my network safer by detecting outliers and events, I can report these findings to my manager. They need to be aware of live events affecting the company. Overall, I rate the solution an eight out of ten.
For threat detection, some AI-based analytics tools are there, and it is one of the latest features in the product. The AI helps mitigate threats. In terms of the tool's ability to streamline customer security workflow, the product normally searches events in real-time, so customers will get alerts of the event in real-time. Compared to other products like Splunk or Oracle, I think Fortinet FortiSIEM is more reliable in real-time. If there is proper support and better technical capabilities, it can become a good solution. I rate the tool an eight out of ten.
The product offers multiple integrations with all vendors. If there is a new or unknown vendor in the market, a custom API can be made to ensure that integration with Fortinet FortiSIEM is possible. I rate the integration capabilities of the tool a nine out of ten. The implementation of the product can improve incident response time according to the arrangement and local relation of built-in rules or custom rules. This will reduce the time of incident response, especially if you use a SOAR solution with it. You can enrich the tool by buying a SOAR solution. It is a good product in general. It is a product that offers stability and scalability with a multiple and wide range of built-in rules. The solution is also easy to use. I rate the tool a nine out of ten.
It's a good tool if we are small and growing. It is easy to deploy. The support is available. The product is easy to learn. Overall, I rate the solution a nine out of ten.
The solution is deployed on the cloud in our organization. I'll recommend Fortinet FortiSIEM to users because of its functionalities, irrespective of whether they have a hybrid, on-prem, or cloud deployment. If a company has some compliance and regulations, the solution can fulfill their compliance and regulations within their country or industry. Overall, I rate Fortinet FortiSIEM a nine out of ten.
I would highly recommend it. It's a top-tier solution, receiving a solid ten out of ten rating.
I use the latest version of Fortinet FortiSIEM. We have deployed Fortinet FortiSIEM on VMware. Overall, I rate Fortinet FortiSIEM a seven out of ten.
I rate FortiSIEM seven out of 10. I strongly recommend this solution for customers who are using Fortinet products. It offers the same features as other vendors, but it's less expensive. However, some other SIEM solutions are more effective.
I rate Fortinet FortiSIEM nine out of 10.
I rate Fortinet FortiSIEM eight out of 10. I would recommend FortiSIEM for corporate users, but I haven't tried any other SIEM solutions, so I have no reference for comparison. In the future, we might try another vendor with a more comprehensive solution.
My needs are not getting met with this solution so I would not recommend it to anyone and rate it four out of 10.
I rate this solution a five out of ten. It is not as good as other solutions like QRadar, but it's cheaper than other products and very simple. In the next release, the visibility should consist of simple and standard protocols. Regarding advice, if you don't have a dedicated team to handle your logs, don't have a big budget, and want a solution to correlate and collect logs from many vendors, Fortinet FortiSIEM is an excellent choice.
I would give FortiSIEM a rating of seven out of ten.
My overall impression is that this is an SMB product. It is not a large-scale enterprise or multi-tenant product. Even though they tell you it'll do that, it is an SMB tool, and it is pretty good for that purpose. However, most institutions would not have the required in-house expertise for it. You need a dedicated, skilled technical administrator. You need your own DevOps team, which small and medium businesses generally don't have, or you can do what we did and use a partner to do the work for you. I would caution others to fully understand the support model and talk to reference customers about it and have a solid understanding of what their internal resource needs will be to implement and support it. That's because it is complicated. Depending on the product you pick, you would need some in-house technical capabilities. For bigger companies, that's usually not a problem, but for small and medium businesses, that can be a problem. I would rate it a six out of ten. It is suitable for its purpose. It is targeted at the SMB market. The feature function is fine. I would rate it higher if their technical support was better.
I rate Fortinet FortiSIEM a seven out of ten.
I rate FortiSIEM seven out of 10.
We started using Fortinet FortiSIEM because we were recommended to use it by a trusted source. My advice to others would be to carefully look at the cost involved, and look closely at the licensing model. If it's a model that works for you, then great. However, it came as a surprise to us, we were told that we would be giving different licenses for the devices, and for the Windows Agent separately. We were not expecting the additional costs, it caught us off guard. I rate Fortinet FortiSIEM a six out of ten.
This is a good solution but is fairly new so the support for it is not effective. Their support team does not have the experience to immediately solve issues. I would rate this solution an eight out of ten.
I would give this solution a rating of seven out of ten.
I rate Fortinet FortiSIEM an eight out of ten.
I would rate Fortinet FortiSIEM a ten out of ten.
My advice to others thinking about implementing this solution is if your organizational budget is low, then we go for Fortinet FortiSIEM. Otherwise, if we have enough budget, I would recommend IBM QRadar and or other solutions. I rate Fortinet FortiSIEM a six out of ten.
If you're using it for multi-tenant solutions, it will be pretty good, but it won't support running more than 20 clients on the same platform. It would need more resources. Even if you are implementing it for multi-tenant solutions, you would need implement fewer clients on it so that it has to use less effort. On a scale from one to ten, I would rate it at eight.
I will definitely recommend this solution to others. I am still exploring it, as it is new to us. I need more time to analyze it further. I would rate Fortinet FortSIEM a seven out of ten.
If your use case suits this solution, I would recommend it. If you are a professional operator and you're into pre-investing, and not just paying per use, then FortiSIEM is one of the best options you can have. I rate this product an eight out of 10.
I rate Fortinet FortiSIEM a seven out of ten.
We are actually a reseller service company and we are dealing with the solutions for our customers. We are using the SIEM solutions. We are not a user, we are a reseller. We have many customers. Not all may be using the latest version of the solution. I would recommend the solution. In general, I would rate the solution eight out of ten.
I would advise others to start small and plan for future growth. I would rate Fortinet FortiSIEM an eight out of ten.
On a scale from one to ten, I would rate the product at an eight. It's been a pretty positive experience overall. I'm still learning the solution and discovering new things about it, however, it has everything I need at the same time.
We're a public utility, so we just use the solution. We don't have a business relationship with the company. We use the latest version of the solution. We use a variety of Fortinet solutions at our organization. For example, we integrate the complete AWS cloud space into that all FortiSIEM. I'd recommend the solution to other organizations, especially those that are cost-conscious. Compared to there solutions' it's rather easy to implement. I'd rate the solution overall seven out of ten.
My advice would be to know this solution, and study it well to avoid mistakes. The configuration is simple, not complex. It's a very good product. I have not experienced any issues with it. I would rate this solution a nine out of ten.
We use an on-premises deployment model from our perspective and a hybrid model from a customer/user perspective. I will recommend this solution to others out there looking for a SIEM solution. I've already done a few events we were talk about FortiSIEM and its advantages. I do, however, think the main dashboard where you create and design your graphs could do with some improvement improved. On a scale from 1 to 10, I will rate this solution an 8 to ensure there’s continuous improvement.
We use the on-premises deployment model. I'd recommend this solution to companies that have a FortiGate firewall and are on a limited budget. I'd rate the solution six out of ten.
We use the public cloud deployment model. I like the product, and I would recommend it, but I much prefer Splunk. The beautiful thing about Fortinet is that they have integrated many, many solutions. Their platform is very powerful. In the case of the customer, if he decides to choose Fortinet, he'll largely be stuck with that one vendor. Fortinet does integrate with a few other vendors, but it's best if you use only their solutions. It's more efficient, you have more manageability and you get more value that way. I would rate the solution seven out of ten.
Properly review this solution and your requirements. See how it will scale up to cloud requirements. Cloud technologies are becoming more prominent and you should see how you will be able to manage it with this tool. It's a good product but you need to be well trained. If you don't have good training then you won't maximize the benefits of this product. I would rate it a seven out of ten.
I would rate the solution nine out of ten. Our clients have been very happy with the solution.
I would rate it an eight out of ten. They should implement better behavior monitoring features to make it a perfect ten. It should also have better integration with their own products. They have a lot of interfaces for other products but it's not so easy to integrate their own devices. I would recommend this solution to someone considering it.
The interface is easy to use but initial setup is not . The connector in the core has FortiSIEM support from the vendor. FortiSIEM supports a lot of vendors. It is a good product for us. I rank it as eight on a scale from one to ten. because It doesn't support a lot of vendors and also the FortiSIEM still not common to use with fortinet partner maybe they doesn't give adequate training.
We are very impressed with this product. However, they have to fix their backup and recovery procedure and provide a good DR service without charging for a secondary license. I would rate this solution a seven and a half out of ten.