Fortinet FortiSOAR vs ThreatQ comparison

Sponsored
Microsoft Sentinel
Read 86 Microsoft Sentinel reviews
  • 17,297 Views
  • 9,622 Comparison Views
92% willing to recommend
Fortinet FortiSOAR
Read 12 Fortinet FortiSOAR reviews
  • 2,481 Views
  • 1,532 Comparison Views
70% willing to recommend
ThreatQ
Read 2 ThreatQ reviews
  • 510 Views
  • 374 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Fortinet FortiSOAR and ThreatQ based on real PeerSpot user reviews.

Find out in this report how the two Security Orchestration Automation and Response (SOAR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Fortinet FortiSOAR vs. ThreatQ Report (Updated: May 2024).
Buyer's Guide
Fortinet FortiSOAR vs. ThreatQ
May 2024
Download the complete report
Helped 787,061 peers since 2012
 

Categories and Ranking

Microsoft Sentinel
Sponsored
Ranking in Security Orchestration Automation and Response (SOAR)
1st
Average Rating
8.2
Number of Reviews
86
Ranking in other categories
Security Information and Event Management (SIEM) (2nd), Microsoft Security Suite (5th)
Fortinet FortiSOAR
Ranking in Security Orchestration Automation and Response (SOAR)
10th
Average Rating
7.4
Number of Reviews
12
Ranking in other categories
No ranking in other categories
ThreatQ
Ranking in Security Orchestration Automation and Response (SOAR)
24th
Average Rating
7.0
Number of Reviews
2
Ranking in other categories
Threat Intelligence Platforms (12th)
 

Market share comparison

As of June 2024, in the Security Orchestration Automation and Response (SOAR) category, the market share of Microsoft Sentinel is 20.3% and it increased by 15.1% compared to the previous year. The market share of Fortinet FortiSOAR is 6.7% and it increased by 134.1% compared to the previous year. The market share of ThreatQ is 1.0% and it decreased by 1.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Orchestration Automation and Response (SOAR)
Unique Categories:
Security Information and Event Management (SIEM)
13.7%
Microsoft Security Suite
5.3%
No other categories found
Threat Intelligence Platforms
4.1%
 

Featured Reviews

HS
Nov 10, 2023
It's a plug-and-play solution, so you can start seeing benefits quickly using the out-of-the-box analytics rules and use cases
The SOAR playbooks are Sentinel's most valuable feature. It gives you a unified toolset for detecting, investigating, and responding to incidents. That's what clearly differentiates Sentinels from its competitors. It's cloud-native, offering end-to-end coverage with more than 120 connectors. All types of data logs can be poured into the system so analysis can happen. That end-to-end visibility gives it the advantage. Sentinel's AI and automation capabilities make our SOC team's job easy. When logs come into Sentinel, the AI engine analyzes, contextualizes, and correlates them. The AI is correlating the data from multiple log sources and giving us alerts. We depend on that. We also perform automated remediation based on our SOAR playbooks.
Read full review
AB
Jul 4, 2023
A stable solution that has a number of available connectors and is simple to automate
Fortinet FortiSOAR is a platform that allows you to orchestrate a lot of different solutions to automate response and follow all the incidents you are tracking between all your devices and the data collected The most valuable feature of Fortinet FortiSOAR is the number of available connectors and…
Read full review
JR
Mar 28, 2024
Improves the threat intelligence gathering process, but it is not user-friendly
We used the solution for threat mapping and managing IoCs ThreatQ is a very good tool. We can create playbooks. The solution’s data aggregation and correlation capabilities are good. The product has connectors for the majority of the security controls. Integrating the solution with our existing…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It is always correlating to IOCs for normal attacks, using Azure-related resources. For example, if any illegitimate IP starts unusual activity on our Azure firewall, then it automatically generates an alarm for us."
"The analytics has a lot of advantages because there are 300 default use cases for rules and we can modify them per our environment. We can create other rules as well. Analytics is a useful feature."
"It is quite efficient. It helps our clients in identifying their security issues and respond quickly. Our clients want to automate incident response and all those things."
"I like the unified security console. You can close incidents using Sentinel in all other Microsoft Security portals, when it comes to incident response."
"Its inbuilt Kusto Query Language is a valuable feature. It provides the flexibility needed to leverage advanced data analytics rules and policies and enables us to easily navigate all our security events in a single view. It helps any user easily understand the data or any security lags in their data and applications."
"I like the ability to run custom KQL queries. I don't know if that feature is specific to Sentinel. As far as I know, they are using technology built into Azure's Log Analytics app. Sentinel integrates with that, and we use this functionality heavily."
"Sentinel is a Microsoft product, so they provide very robust use cases and analytic groups, which are very beneficial for the security team. I also like the ability to integrate data sources into the software for on-premise and cloud-based solutions."
"The initial setup is very simple and straightforward."
More Microsoft Sentinel pros
"The most valuable feature of Fortinet FortiSOAR is the playbook, which has to be defined to apply the policies."
"The reputation of the brand is very good."
"We use the product for security."
"It is a scalable solution...The implementation phase of the product was not tough or difficult."
"The most valuable feature of Fortinet FortiSOAR is the number of available connectors and the simplicity to start to automate."
"The good news is that FortiSOAR is not hard to maintain. If you prepared well and deployed strong initially, then maintenance will take half an hour every other week, not more than that. A single person can do it."
"The product can be automated for network security purposes. The solution offers a great security automation response."
"The initial setup is straightforward."
More Fortinet FortiSOAR pros
"The reporting services are great. With reporting services, if you have customers that just visit a URL you can see the result - including why it's blocked and how and how the URL was first recognized as malicious."
"Integrating the solution with our existing security tools and workflows was easy."
 

Cons

"Sometimes, we are observing large ingestion delays. We expect logs within 5 minutes, but it takes about 10 to 15 minutes."
"We'd like to see more connectors."
"It has been a challenge with Azure Sentinel to onboard the Syslog server from FortiGate. Azure Sentinel can work better on that shift between the Syslog server and a firewall."
"I would like Microsoft Sentinel to enhance its SOAR capabilities."
"The only thing is sometimes you can have a false positive."
"Microsoft Sentinel should provide an alternative query language to KQL for users who lack KQL expertise."
"They should just add more and more out-of-the-box connectors. It is quite a new product, and it has a lot of connectors, and even more would be good."
"The troubleshooting has room for improvement."
More Microsoft Sentinel cons
"I don't currently see where the solution is lacking features. For us and for our clients it works very well and we're pleased with it."
"Fortinet FortiSOAR should add more documentation for some use cases."
"The technology and integrations are important so should continue to be enhanced."
"Fortinet's tech support overall is not great when they are at their best."
"I have found that Fortinet FortiSOAR needs a lot of improvement. The Orchestration needs to be improved."
"Fortinet FortiSOAR's dashboard is not easy to understand."
"The solution’s pricing could be improved."
"The solution doesn't connect well with the network devices."
More Fortinet FortiSOAR cons
"The tool is not user-friendly."
"The solution should be simpler for the end-user in terms of reporting and navigating the product."
 

Pricing and Cost Advice

"From a cost perspective, Microsoft Sentinel is quite costly."
"Good monthly operational cost model for the detection and response outcomes delivered, M365 logs don't count toward the limits which is a good benefit."
"For us, it is not expensive at this time, but if we start to collect all logs from our on-premise SIEM solutions, it will cost more than QRadar. If we calculate its cost over the next five or ten years, it will cost more than what we paid for QRadar."
"From a cost perspective, there are some additional charges in addition to the licensing."
"Sentinel is costly compared to other solutions, but it's fair. SIEM solutions like CrowdStrike charge based on daily log volume. They generally process a set number of logs for free before they start charging. Microsoft's pricing is clearer. It's free under five gigabytes. Some of these logs we ingest have a cost, so they don't hide it. I believe the tenant pays the price, and Microsoft helps create awareness of the cost."
"It is priced fairly given the value that you get from the use of the product. The biggest mistake people make with Microsoft Sentinel is not understanding the pricing model and the amount of data that they are going to be running through the tool because you are paying based on the flow. You are paying based on the amount of data that is moving through the tool. People do not plan, and therefore, they get surprised by the cost associated with using the tool. They connect everything because they want to know everything, but connecting everything is very expensive."
"Microsoft Sentinel can be costly, particularly for data management."
"Sentinel can be expensive. When you ingest data from sources that are outside of the cloud, you're paying a fair amount for that data ingestion. When you're ingesting data sources from within the cloud, depending on what your retention periods are, it's not that expensive."
More Microsoft Sentinel pricing and cost advice
"The price of the product should be lower. The brand value that Fortinet has, it has the reputation of being a reasonably priced product, and they have an enormous customer base in India. Most of the SME market is covered by FortiGate firewalls. It becomes an easy way for consultants, such as us, or even system integrators, to open the door with the Fortinet product lines."
"Pricing is fine compared to other solutions."
"The solution offers both licensing and subscription models that are similar in price to other products."
"Considering all the features of Fortinet FortiSOAR, I think it has a good price."
"Fortinet FortiSOAR is expensive."
"Since Africa is struggling with foreign exchange, the solution is pretty expensive there."
"Fortinet FortiSOAR is an expensive solution."
"If you compare Fortinet FortiSOAR's price with the prices of the market leader, Palo Alto, then it can be considered a cheaper product."
Information not available
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
See recommendations
787,061 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
10%
Government
9%
Manufacturing Company
7%
Computer Software Company
16%
Financial Services Firm
10%
Government
9%
Educational Organization
6%
Financial Services Firm
20%
Computer Software Company
14%
Manufacturing Company
10%
Government
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

Is there a common threat intelligence tool that aggregates multiple threat intelligence sources?
Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel an...
See all answers
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingest...
See all answers
Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel...
See all answers
What do you like most about Fortinet FortiSOAR?
Fortinet FortiSOAR is a very interactive and user-friendly solution.
See all answers
What is your experience regarding pricing and costs for Fortinet FortiSOAR?
Users have to pay a yearly subscription fee for the solution. Fortinet FortiSOAR's pricing is fair compared to other ...
See all answers
What needs improvement with Fortinet FortiSOAR?
The solution’s pricing could be improved. I know that Fortinet already has an ROI calculator inside FortiSOAR. I also...
See all answers
What do you like most about ThreatQ?
Integrating the solution with our existing security tools and workflows was easy.
See all answers
What needs improvement with ThreatQ?
The tool is not user-friendly. It is not beginner-friendly. It would be very difficult for a beginner to learn the to...
See all answers
What is your primary use case for ThreatQ?
We used the solution for threat mapping and managing IoCs.
See all answers
 

Comparisons

AWS Security Hub vs Microsoft Sentinel Logo
AWS Security Hub vs Microsoft Sentinel
Compared 17% of the time
IBM Security QRadar vs Microsoft Sentinel Logo
IBM Security QRadar vs Microsoft Sentinel
Compared 12% of the time
Wazuh vs Microsoft Sentinel Logo
Wazuh vs Microsoft Sentinel
Compared 6% of the time
Elastic Security vs Microsoft Sentinel Logo
Elastic Security vs Microsoft Sentinel
Compared 5% of the time
Microsoft Defender for Cloud vs Microsoft Sentinel Logo
Microsoft Defender for Cloud vs Microsoft Sentinel
Compared 5% of the time
More Microsoft Sentinel Competitors
Palo Alto Networks Cortex XSOAR vs Fortinet FortiSOAR Logo
Palo Alto Networks Cortex XSOAR vs Fortinet FortiSOAR
Compared 44% of the time
Splunk SOAR vs Fortinet FortiSOAR Logo
Splunk SOAR vs Fortinet FortiSOAR
Compared 14% of the time
Swimlane vs Fortinet FortiSOAR Logo
Swimlane vs Fortinet FortiSOAR
Compared 9% of the time
ServiceNow Security Operations vs Fortinet FortiSOAR Logo
ServiceNow Security Operations vs Fortinet FortiSOAR
Compared 6% of the time
Cisco SecureX vs Fortinet FortiSOAR Logo
Cisco SecureX vs Fortinet FortiSOAR
Compared 5% of the time
More Fortinet FortiSOAR Competitors
ThreatConnect Threat Intelligence Platform (TIP) vs ThreatQ Logo
ThreatConnect Threat Intelligence Platform (TIP) vs ThreatQ
Compared 38% of the time
Anomali ThreatStream vs ThreatQ Logo
Anomali ThreatStream vs ThreatQ
Compared 35% of the time
Recorded Future vs ThreatQ Logo
Recorded Future vs ThreatQ
Compared 22% of the time
Palo Alto Networks Cortex XSOAR vs ThreatQ Logo
Palo Alto Networks Cortex XSOAR vs ThreatQ
Compared 6% of the time
More ThreatQ Competitors
 

Product Reports

Buyer's Guide
Microsoft Sentinel
May 2024
Microsoft Sentinel reportDownload Microsoft Sentinel product report
Buyer's Guide
Security Orchestration Automation and Response (SOAR)
May 2024
Fortinet FortiSOAR reportDownload Fortinet FortiSOAR product report
Buyer's Guide
Threat Intelligence Platforms
May 2024
ThreatQ reportDownload ThreatQ product report
 

Also Known As

Azure Sentinel
CyberSponse, FortiSOAR
No data available
 

Learn More

Microsoft
Fortinet
Video not available
ThreatQuotient
 

Overview

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Fortinet FortiSOAR (Security Orchestration, Automation, and Response) is a comprehensive security operations platform created to help SOC teams effectively respond to the growing volume of alarms, repetitive manual tasks, and resource shortage. This patented and customizable security operations workbench provides companies with automated playbooks, incident triaging, and real-time remediation to identify, defend, and counter threats. FortiSOAR effortlessly integrates with more than 350 security products and performs more than 3,000 actions to increase SOC team productivity. With this solution, response times are accelerated, containment is simplified, and mitigation times are cut from hours to seconds.

Fortinet FortiSOAR Features

Fortinet FortiSOAR has many valuable key features. Some of the most useful ones include:

  • Streamlined, role-based incident management: With the help of FortiSOAR's Enterprise Role-Based Incident Management solution, businesses can handle sensitive data in accordance with SOC rules and guidelines while maintaining strong field level role-based access control.
  • Visual Playbook Builder: FortiSOAR's Visual Playbook Designer enables SOC teams to efficiently create, build, debug, control, and deploy playbooks.
  • Truly multi-tenant: FortiSOAR is a truly distributed multi-tenant solution with a scalable, resilient, secure, and distributed architecture that enables MSSPs to offer MDR-like services while supporting operations in regional and global SOC environments.

Fortinet FortiSOAR Benefits

There are many benefits to implementing Fortinet FortiSOAR. Some of the biggest advantages the solution offers include:

  • Manage security alerts, incidents, indicators, assets, and tasks using a streamlined, user-friendly GUI.
  • By eliminating false positives and concentrating solely on the important alerts, the SOC team can work more productively.
  • Track ROI, MTTD, and MTTR with configurable reports and dashboards.
  • Automate using the Visual Playbook Designer's 3,000+ actions for automated workflows and connections and 350+ security platform integrations.
  • Reduce human error by using concise, auditable playbooks and custom modules to handle constantly changing investigative requirements.
  • From a single, collaborative console, scale your network security solution with a multi-tenant distributed architecture.
  • Detect real threats with automatic false positive filtering and forecast similar threats and campaigns with FortiSOAR's ML-powered recommendation engine.
  • Reduce repetitive activities by using automation, incident correlation, threat intelligence, and vulnerability data.
  • Utilize the built-in Incident War Room to streamline crisis management and collaborative P1 incident investigations.
  • Reduce the time it takes to find security incidents from hours to seconds.
  • Use the FortiSOAR mobile app to keep informed and make important decisions while you're on the go.
  • Utilizing the Connector Builder Wizard, you can quickly create and edit connectors within the product's user interface.
  • Flexible deployment options: VM, hosted, or cloud. Available on FortiCloud, AWS, Azure, and as management extensions on FAZ/FMG.

Reviews from Real Users

Another PeerSpot reviewer, a Vice President of Global Technology Infrastructure Automation at a financial services firm, notes of the product, “The most valuable feature is its centralization as you don't want to be going to different locations to correlate items or to piece anything together to derive meaningful insights.”

Zaidoon A., sales product manager at Nourneti, writes, “I like that the solution is integrated with FortiAnalyzer. The solution is scalable. The solution is stable.”

ThreatQ is a Threat Intelligence Platform (TIP) designed to enable threat operations and management. ThreatQ is the only solution with an integrated Threat Library, Adaptive Workbench and Open Exchange that help you to act upon the most relevant threats facing your organization and to get more out of your existing security infrastructure.

 

Sample Customers

Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.
Information Not Available
Radar, Bitdefender, Crowdstrike, FireEye, IBM Security
Buyer's Guide
Fortinet FortiSOAR vs. ThreatQ
May 2024
Free Report: Fortinet FortiSOAR vs. ThreatQ
Find out what your peers are saying about Fortinet FortiSOAR vs. ThreatQ and other solutions. Updated: May 2024.
DOWNLOAD NOW
787,061 professionals have used our research since 2012.
See our Fortinet FortiSOAR vs. ThreatQ report.

We monitor all Security Orchestration Automation and Response (SOAR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.