In the past, we were using that technology, but we had a problem with some wireless guns and found a solution with Aruba Networks. We are using Microsoft 365 with some version E5 license. Regarding the network, we are mainly using Cisco systems. My colleague is working on the SIEM and SOC system with some external companies that support us after the ransomware attack. I am referring to hardware boxes and also virtual machines. I expect that generally logs can improve our security because currently we don't have someone who works through these firewall logs, so we don't have information about potential security problems. We are expecting that it will be better after these logs will be connected to the SIEM system. These firewalls are very easy to set up or manage. It is easy to set up each box individually, but currently, I don't have experience or training for central management of these Fortinet FortiGate-VM firewalls. I have been working as an IT specialist for about 30 years. I use it only for the backup of the firewall configuration. It is helpful because I have a backup of each firewall configuration every day, and I can return back several days. However, it is another difficulty because if the configuration of Fortinet FortiGate-VM changes, many other items will change. Generally, all passwords are regenerated, so it is not easy to find changes when comparing two configurations of one firewall. I can see this feature, but it is not so important because everything is working adequately. I start to focus on the logs only when I have problems or if I need to set up new applications or allow new traffic. I only look at how much percentage of connections are used, and if it is below some limits, it is acceptable. This solution has received a rating of 31 out of 100.
