Try our new research platform with insights from 80,000+ expert users

AWS Security Hub vs FortiCNAPP comparison

Amazon Web Services (AWS) and Fortinet are both solutions in the Cloud Security Posture Management (CSPM) category. Amazon Web Services (AWS) is ranked #13 with an average rating of 7.9, while Fortinet is ranked #22 with an average rating of 7.3. Amazon Web Services (AWS) holds a 3.5% mindshare in CSPM, compared to Fortinet’s 3.4% mindshare. Additionally, 89% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 85% of Fortinet users who would recommend it.
AWS Security Hub
Read 26 AWS Security Hub reviews
  • 7,636 Views
  • 3,283 Comparison Views
89% willing to recommend
FortiCNAPP
Read 13 FortiCNAPP reviews
  • 5,179 Views
  • 2,693 Comparison Views
85% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Feb 22, 2026

FortiCNAPP and AWS Security Hub are competitors in the realm of security solutions. FortiCNAPP appears more robust due to its comprehensive network segmentation and multi-cloud capability.

Features: FortiCNAPP offers strong network segmentation, supports automated policy recommendations, and integrates with multiple SIEM solutions to enhance security. Its machine learning features provide accurate anomaly detection and compliance reports. AWS Security Hub provides seamless integration with AWS services and offers detailed alerts and compliance checks. Its native cloud features are comprehensive but lack flexibility in third-party and multi-cloud integrations.

Room for Improvement: FortiCNAPP could improve user-friendliness, increase visibility on compliance metrics, and enhance IAM security controls and third-party integration. AWS Security Hub needs better non-native service integration, real-time scanning abilities, and more user-friendly dashboards. It also requires greater adaptability for hybrid or multi-cloud deployments.

Ease of Deployment and Customer Service: FortiCNAPP is well-suited for both public and private cloud environments with strong DevOps tool integration and proactive support. AWS Security Hub performs well in public cloud settings, particularly AWS, but lacks adaptability in private clouds. AWS customer service is extensive but notedly less proactive compared to FortiCNAPP's feedback-oriented approach.

Pricing and ROI: FortiCNAPP offers competitive pricing within the Fortinet ecosystem, yielding high ROI by enhancing security efficiency and reducing staffing needs. AWS Security Hub presents a cost-effective model within AWS with options like PAYG. It offers savings through AWS service integration, although limited multi-cloud capabilities may diminish its perceived value.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AWS Security Hub vs. FortiCNAPP Report (Updated: February 2026).
Buyer's Guide
AWS Security Hub vs. FortiCNAPP
February 2026
Download the complete report
Helped 884,976 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Security Hub
Ranking in Cloud Security Posture Management (CSPM)
13th
Average Rating
7.6
Reviews Sentiment
6.5
Number of Reviews
26
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (6th)
FortiCNAPP
Ranking in Cloud Security Posture Management (CSPM)
22nd
Average Rating
8.4
Reviews Sentiment
6.7
Number of Reviews
13
Ranking in other categories
Vulnerability Management (35th), Container Security (28th), Cloud Workload Protection Platforms (CWPP) (17th), Cloud-Native Application Protection Platforms (CNAPP) (16th), Compliance Management (10th)
 

Mindshare comparison

As of March 2026, in the Cloud Security Posture Management (CSPM) category, the mindshare of AWS Security Hub is 3.5%, down from 4.5% compared to the previous year. The mindshare of FortiCNAPP is 3.4%, up from 2.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Posture Management (CSPM) Mindshare Distribution
ProductMindshare (%)
AWS Security Hub3.5%
FortiCNAPP3.4%
Other93.1%
Cloud Security Posture Management (CSPM)
 

Featured Reviews

Karthik Ekambaram - PeerSpot reviewer
Karthik Ekambaram
Director at Scybers
Has helped identify misconfigurations and prioritize risks but lacks multi-cloud support and deeper integration features
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfigurations, even Microsoft for that matter. Regarding the integration of AWS Security Hub with third-party tools, I am not certain whether we can integrate them, but there is no need to do so. However, AWS Security Hub cannot integrate with other cloud providers, so it only supports the AWS environment. The compliance checks within AWS Security Hub are good, but we don't use them much. We utilize compliance frameworks such as CIS compliance frameworks and ISO 27017 framework, which are beneficial, but it can improve in other areas too, such as including NIST and other frameworks beyond just ISO and CIS. Improvements can be applicable for scalability, particularly on integration with multi-cloud environments, and compliance frameworks can be added for more variety as well. The unified dashboard in AWS Security Hub is adequate; I cannot say it is exceptional, but the content available in the dashboards is satisfactory for now.
Read full review
Mark Freeborough - PeerSpot reviewer
Mark Freeborough
Client Manager at MLL Telecom Ltd
Network segmentation has strengthened access control and now streamlines automated threat response
The most valuable features in FortiCNAPP include robust network segmentation and restricting access to network assets. It also supports security measures by leveraging security fabrics for better enforcement and policy enforcement. FortiCNAPP integrates with SIEM solutions, and we offer different SIEM options that work with Fortinet and AlienVault, among others, providing multiple scenarios.FortiCNAPP's automated policy recommendations significantly help improve security measures as part of an overall service wrap. When deploying a Fortinet SD-WAN or network, these tools provide greater visibility to vulnerabilities and enhanced security on the network. It functions as a proactive tool, enabling me to identify threats quickly and automate responses.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Easily integrates with third-party tools"
"The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud."
"I like that AWS Security Hub currently has several good features, around four or five. The technical support for AWS Security Hub is also responsive."
"Cloudposse is a valuable feature as it guarantees my security."
"This solution is for security posture management for the cloud, showing the security posture of your cloud infrastructure and giving you good insight into whether your infrastructure is secure or not."
"The most beneficial aspect of Security Hub is its proactive capability, allowing us to identify potential security issues before they escalate."
"The solution shows us our compliance score."
"Within AWS Security Hub, there is a feature for aggregating and prioritizing security findings which allows for better risk prioritization based on misconfiguration, as they know AWS thoroughly."
More AWS Security Hub pros
"The best feature, in my opinion, is the ease of use, as well as some levels of machine learning anomaly detection that they have that can detect pivotal anomalies faster."
"The best feature, in my opinion, is the ease of use."
"Lacework is helping a lot in reducing the noise of the alerts. Usually, whenever you have a tool in place, you have a lot of noise in terms of alerts, but the time for an engineer to look into those alerts is limited. Lacework is helping us to consolidate the information that we are getting from the agents and other sources. We are able to focus only on the things that matter, which is the most valuable thing for us. It saves time, and for investigations, we have the right context to take action."
"Polygraph compliance is a valuable feature. In our perspective, it delivers significant benefits. The clarity it offers, along with the ability to identify and address misconfigurations, is invaluable. When such issues arise, we promptly acknowledge and take action, effectively collaborating with our teams and the responsible parties for those assets. This enables us to promptly manage problems as soon as they arise."
"FortiCNAPP definitely brings time-saving benefits, and security is the main concern for the company."
"The compliance reports are definitely most valuable because they save time and are accurate. So, instead of relying on a human going through and checking or providing me with a report, I could just log into Lacework and see for myself."
"I find the cloud configuration compliance scanning mature. It generates a lot of data and supports major frameworks like ISO 27001 or SOC 2, providing reports and datasets. Another feature I appreciate is setting custom alerts for specific events. Additionally, I value the agent-based monitoring and scanning for compute nodes. It gives us deeper insights into our workloads and helps identify vulnerabilities across our deployed assets."
"The most valuable aspects are identifying vulnerabilities—things that are out there that we aren't aware of—as well as finding what path of access attackers could use, and being able to see open SSL or S3 buckets and the like."
More FortiCNAPP pros
 

Cons

"The solution will only give you insight if you have configure rule enabled. It should work more like Prisma Cloud and Dome9 which have a better approach."
"One aspect that could be improved in the solution is its adaptability to different markets and geopolitical restrictions. In certain regions like Thailand, specific services from certain countries or providers, such as AWS or Azure, might be limited or blocked. It also needs improvement in would require configuring the solution more adaptable to AWS infrastructure and function."
"AWS Security Hub's configuration and integration are areas where it lacks and needs to improve."
"Shortening the response time for support tickets, particularly in production issues, could make the service more efficient."
"The telemetry doesn't always go into the control center. When you have multiple instances running in AWS, you need a control tower to take feeds from Security Hub and analyze your results. Sometimes exemptions aren't passed between the control tower and Security Hub. The configuration gets mixed up or you don't get the desired results."
"The solution lacks self-sufficiency."
"The user interface, graphs, and dashboards of the solution could improve in the future. They are not very sophisticated and could use an update."
"The user interface, graphs, and dashboards of the solution could improve in the future. They are not very sophisticated and could use an update."
More AWS Security Hub cons
"I would like to see a remote access assistance feature. And the threat-hunting platform could be better."
"The configuration and setup of alerts should be easier. They should make it easier to integrate with systems like Slack and Datadog. I didn't spend too much time on it, but to me, it wasn't as simple as the alerting that I've seen on other systems."
"However, the solution could be more user-friendly and intuitive."
"Lacework has not reduced the number of alerts we get. We've actually had to add resources as a result of using it because the application requires a lot of people to understand it to get the value out of it properly."
"Lacework lacks remediation features, but I believe they're working on that. They're focused on the reporting aspect, but other features need to improve. They're also adding some compliance features, so it's not worth saying they need to get better at it."
"The vulnerability part is not systematically organized; it is all clumsy in the web UI, and it is not user-friendly."
"Its integrations with third-party SIEMs can be better. That is one of the things that we discussed with them."
"In general, I would not recommend Lacework right now. There are more mature solutions that would be a better fit."
More FortiCNAPP cons
 

Pricing and Cost Advice

"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."
"The pricing is fine. It is not an expensive tool."
"The price of the solution is not very competitive but it is reasonable."
"There are multiple subscription models, like yearly, monthly, and packaged."
"The price of AWS Security Hub is average compared to other solutions."
"AWS Security Hub's pricing is pretty reasonable."
"Security Hub is not an expensive solution."
"The licensing fee was approximately $80,000 USD, per year."
"It is slightly expensive. It depends on how big your environment is, but it is expensive. Right now, we are spending a lot of money. We have covered all of the cloud providers and most of our colocation facilities as well, so we cannot complain, but it is slightly expensive. It is not super expensive."
"My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz."
"The pricing has gotten better. That scenario was somewhat unstable. They have a rather interesting licensing structure. I believe you get 200 resources per "Lacework unit." It was difficult, in the beginning, to figure out exactly what a "resource" was... That was a problem until about a year or so ago. They have improved it and it has stabilized quite a bit."
report
See which vendors are best for you
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
See recommendations
884,976 professionals have used our research since 2012.
 

Comparison Review

it_user186927 - PeerSpot reviewer
it_user186927
Director of Operations at a comms service provider with 10,001+ employees
Feb 16, 2015
Cybereason vs. Interset vs. SQRRL
Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
12%
Computer Software Company
10%
Manufacturing Company
10%
Comms Service Provider
7%
Computer Software Company
10%
Financial Services Firm
10%
Manufacturing Company
7%
University
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise5
Large Enterprise12
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise4
Large Enterprise4
 

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
What do you like most about AWS Security Hub?
The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.
See all answers
What needs improvement with AWS Security Hub?
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfig...
See all answers
What is your experience regarding pricing and costs for Lacework?
The pricing is a mediator compared to other products; it is not that much higher and not much lower than other products, making it a very affordable price.
See all answers
What needs improvement with Lacework?
Policy implementation is quite complex, and the stability will take more time for the solutions. There is definitely room for improvement in policy implementation.
See all answers
What is your primary use case for Lacework?
FortiCNAPP is mainly used from a security point of view. Some VPNs charge for their solutions, but Fortinet provides a free-of-cost VPN solution, making it more reliable and cost-effective for clie...
See all answers
 

Comparisons

Microsoft Sentinel vs AWS Security Hub Logo
Microsoft Sentinel vs AWS Security Hub
Compared 34% of the time
Prisma Cloud by Palo Alto Networks vs AWS Security Hub Logo
Prisma Cloud by Palo Alto Networks vs AWS Security Hub
Compared 8% of the time
Wiz vs AWS Security Hub Logo
Wiz vs AWS Security Hub
Compared 5% of the time
Microsoft Defender for Cloud vs AWS Security Hub Logo
Microsoft Defender for Cloud vs AWS Security Hub
Compared 4% of the time
Qualys TotalCloud vs AWS Security Hub Logo
Qualys TotalCloud vs AWS Security Hub
Compared 1% of the time
More AWS Security Hub Competitors
SentinelOne Singularity Cloud Security vs FortiCNAPP Logo
SentinelOne Singularity Cloud Security vs FortiCNAPP
Compared 6% of the time
Wiz vs FortiCNAPP Logo
Wiz vs FortiCNAPP
Compared 5% of the time
Prisma Cloud by Palo Alto Networks vs FortiCNAPP Logo
Prisma Cloud by Palo Alto Networks vs FortiCNAPP
Compared 5% of the time
Tenable Cloud Security vs FortiCNAPP Logo
Tenable Cloud Security vs FortiCNAPP
Compared 3% of the time
Amazon Inspector vs FortiCNAPP Logo
Amazon Inspector vs FortiCNAPP
Compared 2% of the time
More FortiCNAPP Competitors
 

Product Reports

Buyer's Guide
AWS Security Hub
March 2026
AWS Security Hub reportDownload AWS Security Hub product report
Buyer's Guide
FortiCNAPP
March 2026
FortiCNAPP reportDownload FortiCNAPP product report
 

Also Known As

SQRRL
Polygraph, FortiCNP, Lacework
 

Overview

AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts. 

The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments. 

With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

Amazon Web Services (AWS)

FortiCNAPP is a comprehensive cloud security platform focusing on ease of use and machine learning-driven anomaly detection. It offers robust compliance reporting, seamless integration, and continuous monitoring, making it an essential tool for organizations managing multi-cloud environments and security configurations.

FortiCNAPP provides significant capabilities in cloud security, compliance, and vulnerability management. Designed for organizations needing efficient monitoring, it enables detection of anomalies across cloud infrastructures while optimizing security posture and ensuring compliance with environments like AWS and GCP. The platform offers in-depth insights through scanning of IAC scripts, host systems, and cloud configurations. Recognized for effectively managing security posture, it safeguards Kubernetes and container environments, providing comprehensive threat detection and response. However, some areas like visibility, IAM security controls, and compliance metrics need improvement. Users face challenges with alert setup and lack intuitive design, alongside issues like FedRAMP authorization absence and complexity in the data model.

What are the key features of FortiCNAPP?
  • Ease of Use: FortiCNAPP simplifies security management for cloud environments.
  • Machine Learning Anomaly Detection: Automatically identifies and prioritizes threats.
  • Compliance Reporting: Streamlines compliance procedures and reporting.
  • Seamless Integration: Ensures smooth operation across multi-cloud environments.
  • Continuous Monitoring: Provides ongoing oversight of security vulnerabilities.
  • Multi-Cloud Integration: Enables swift response to misconfigurations and vulnerabilities.
What benefits should users expect when evaluating FortiCNAPP?
  • Time Efficiency: Reduces time spent on compliance and threat management.
  • Improved Security Posture: Enhances protection for cloud and container environments.
  • Valuable Security Insights: Provides in-depth analysis for proactive threat response.
  • Noise Reduction: Distills security logs to minimize alert fatigue.
  • Operational Effectiveness: Facilitates seamless multi-cloud security management.

FortiCNAPP is implemented extensively by industries needing reliable cloud security, such as finance, healthcare, and technology sectors. It supports organizations in enhancing cloud infrastructure protection, ensuring compliance, and strengthening vulnerability management. By integrating with platforms like AWS and GCP, businesses can optimize security posture in their cloud deployments.

Fortinet
 

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com
J.Crew, AdRoll, Snowflake, VMWare, Iterable, Pure Storage, TrueCar, NerdWallet, and more.
Buyer's Guide
AWS Security Hub vs. FortiCNAPP
February 2026
Free Report: AWS Security Hub vs. FortiCNAPP
Find out what your peers are saying about AWS Security Hub vs. FortiCNAPP and other solutions. Updated: February 2026.
DOWNLOAD NOW
884,976 professionals have used our research since 2012.
See our AWS Security Hub vs. FortiCNAPP report.
See our list of best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.