Fortinet FortiSIEM is valued for its security notifications, granular monitoring, automation, and integration capabilities. It offers customizable dashboards, advanced analytics, user behavior analysis, and comprehensive event correlation. Users appreciate its ability to handle logs, seamless integration with Fortinet products, and scalability. The platform's flexible reporting, ease of use, and ability to support SOC and NOC operations enhance its appeal. It also features robust anomaly detection, threat intelligence integration, and cost efficiency.
- "These aspects make Fortinet FortiSIEM a valuable choice."
- "Fortinet FortiSIEM is highly scalable. I would rate its scalability nine out of ten."
- "It provides extensive logging and record-keeping for internal networks, cloud applications, and services as well as perimeter physical network security."
Fortinet FortiSIEM requires better licensing options and ease of configuration. The interface needs simplification and dashboards should be more user-friendly. Users find the integration with third-party platforms challenging and desire more robust documentation. There's a need for improved support services and patch management. Performance enhancements in terms of data retrieval speed and stability are essential. Users also seek more advanced AI capabilities and flexibility in report generation and alert customization.
- "Fortinet FortiSIEM should broaden its remediation part to include more features for incident management. Currently, to manage repetitive incidents or for remediation, I need to use a separate software called FortiSOAR."
- "The built-in APIs in Fortinet FortiSIEM are somewhat lacking and could be improved for better integration with external ITSM products."
- "The built-in APIs in Fortinet FortiSIEM are somewhat lacking and could be improved for better integration with external ITSM products."