Cisco Secure Network Analytics vs Fortinet FortiSIEM comparison

The compared Cisco and Fortinet solutions aren't in the same category. Cisco is ranked #33 in NMS , with an average rating of 8.5, and holds a 1.2% mindshare in the category. Fortinet is ranked #7 in SIEM , with an average rating of 8.1, and holds a 3.3% mindshare. Additionally, 88% of Cisco users are willing to recommend the solution, compared to 82% of Fortinet users who would recommend it.

Cisco Secure Network Analytics

Read 61 Cisco Secure Network Analytics reviews

1,854 Views
1,122 Comparison Views

88% willing to recommend

Fortinet FortiSIEM

Read 74 Fortinet FortiSIEM reviews

4,203 Views
2,495 Comparison Views

82% willing to recommend

Cisco Secure Network Analytics

Fortinet FortiSIEM

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cisco Secure Network Analytics and Fortinet FortiSIEM based on real PeerSpot user reviews.

Find out in this report how the two Network Monitoring Software solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Cisco Secure Network Analytics vs. Fortinet FortiSIEM Report (Updated: March 2019).

Buyer's Guide

Cisco Secure Network Analytics vs. Fortinet FortiSIEM

March 2019

Download the complete report

Helped 860,168 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cisco Secure Network Analytics

Average Rating

8.2

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Network Monitoring Software (33rd), Network Traffic Analysis (NTA) (4th), Network Detection and Response (NDR) (9th), Cisco Security Portfolio (8th)

Fortinet FortiSIEM

Average Rating

7.6

Reviews Sentiment

6.5

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (7th)

Mindshare comparison

Cisco Secure Network Analytics and Fortinet FortiSIEM aren’t in the same category and serve different purposes. Cisco Secure Network Analytics is designed for Network Monitoring Software and holds a mindshare of 1.2%, down 1.5% compared to last year.
Fortinet FortiSIEM, on the other hand, focuses on Security Information and Event Management (SIEM), holds 3.3% mindshare, up 3.0% since last year.

Network Monitoring Software

Security Information and Event Management (SIEM)

Featured Reviews

Muhammad Harun-Owr-Roshid

CEO at BRIGHT-i SYSTEMS LIMITED

Have streamlined network visibility and troubleshooting while seeing benefits from AI integration

In terms of improvements for Cisco Secure Network Analytics, from the implementation point of view, now that AI is in use, some other features need to be upgraded considering AI solutions. Proper management of the database is also important; it should be centralized for easier data collection from a single database. When precise manual analysis is needed, it's sometimes difficult, so having a centralized database will allow network admins to find actual scenarios more effectively, especially since some information may not be visible on the GUI. Cisco should upgrade their hardware part to run the database, because sometimes it cannot handle the load while all features are running in the network. The database management should indeed be centralized because while AI runs behind the systems, central management is essential. For example, in a network with 100 Cisco switches, a few routers, firewalls, and access points, all data generated should be preserved in a central database. This approach simplifies management and analysis for troubleshooting, as GUI interfaces may not always provide visible information. Centralizing the database will allow for better understanding of which information is preserved for each specific device.

Read full review

Oliver Jackson

Network Engineer at Laminar Communications Pty Ltd

Systems monitoring enhanced by firewall and intrusion detection features

My primary use case for Fortinet FortiSIEM is systems monitoring and alerting. I use it for standard functions like log monitoring, incident detection, and notification. My customers are mostly medium-sized enterprises ranging from engineering companies, mining companies, independent schools, and…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature is NetFlow. The beginning of any security investigation starts with NetFlow data."

"I value the feature which enables me to detect devices talking to suspect IPs."

"Ease of deployment, once you get your ducks in a row."

"Another notable feature of Cisco Secure Network Analytics is its Layer 7 visibility, which allows us to monitor and analyze network communications at the application layer."

"The most valuable feature of this solution is the way the net flow is being merged together in a single pane. That's been extremely useful for us, because can see what's going on with traffic in one single place."

"The most valuable features of this solution are the logging, keeping threats under control, and keeping our data and environment secure."

"It is a good application, providing for real-time monitoring of the organization of data. It can basically identify points of peak traffic where possible issues are being caused."

"If you are using Darktrace or NAC solutions you can integrate Stealthwatch."

More Cisco Secure Network Analytics pros

"We have many application systems, and I can set up Fortinet FortiSIEM for users to monitor their systems."

"It detects new technologies, vulnerabilities, and emerging threats on the internet."

"The most valuable feature is the dashboard. CMDB database collects data from a lot of pre-configured devices."

"The tool's most valuable feature stems from the fact that I can see a complete analysis, like all the incidents that have happened, and it detects everything in real-time."

"The stability is very reliable. It offers very good performance."

"The most valuable feature of Fortinet FortiSIEM is the correlation of many events."

"The most valuable feature of Fortinet FortiSIEM is the user and entity behave as analytics(UEBA). This feature mixes your data and provides useful information based on the behavior of the targeted."

"The event correlation is pretty robust. The GUI is pretty good."

More Fortinet FortiSIEM pros

Cons

"Many of these tools require extensive on-premises hardware to run."

"Reliance on Java. Get away from that."

"Complexity on integration is not so straightforward and you really need an expert to help build it out."

"I would like to see more and cleaner reporting. For example, if I pull up Steven and I want to look and maybe compare him to what you've done in the past week, and compare that to the past six months, the point would be to see what the difference in activity looks like over this time. I don't see that capability in reporting to date. You see that trend but you don't really see a straightforward comparison. That right there is key to what we want to see about the normal activity."

"It would be better to let people know, up front, that is doesn't give you nice, clear information, as seen in the demos, without Cisco ISE installed."

"The expensive nature of the tool is an area of concern where improvements are required."

"Initially, I felt Cisco Secure Network Analytics lacked integration with Splunk."

"We are continuing down the road of ACI and ISE with Cisco, so we would like to see the continuation of Stealthwatch integrating into ISE for exchange of information, and also, more into the ACI environment too."

More Cisco Secure Network Analytics cons

"It lacks a "wizard" that shows a particular user's activity or particular circumstance. I think the interface is intimidating because there's so much information there."

"The process of installing Fortinet FortiSIEM and the customization of the alerts take too long."

"FortiSIEM is a bit resource-hungry, so work should be done on hardware resource utilization to consume less hardware."

"They should enhance the solution's AI capabilities, including XDR and EDR."

"The built-in APIs in Fortinet FortiSIEM are somewhat lacking and could be improved for better integration with external ITSM products."

"They could work on their documentation. If there's anything about the solution that needs improvement, it's that. For example, documentation already is on a very high level but specifically on the CLI there are tons of features which can be fine-tuned and thousands of commands are very difficult to document. If they could make this easier, it would improve the overall solution."

"The only drawback is the licensing model. It can get expensive if you want to integrate more solutions."

"If there is a configuration on the wrong side of the network or there are changes that result in harm to our IT infrastructure, the solution should immediately fix it."

More Fortinet FortiSIEM cons

Pricing and Cost Advice

"Licensing is done by flows per second, not including outside (in traffic)."

"The yearly licensing cost is about $50,000."

"The pricing for this solution is good."

"Licensing is on a yearly basis."

"It is worth the cost."

"The licensing costs are outrageous."

"There are additional licenses needed for the number of so-called network flows. It's hard to plan the number of flows you need in the network, this is a problem. The price of the Cisco Stealthwatch is relatively inexpensive"

"On a yearly basis, licensing is somewhere around $30,000."

More Cisco Secure Network Analytics pricing and cost advice

"The solution is available for both, perpetual and subscription licenses."

"Fortinet's products are not expensive, it is less than the competition."

"Manageable, however would be better as pay as you go versus CapEX."

"FortiSIEM's licensing is based on EPS, and its pricing is competitive in the market."

"Pricing is determined based on the customer's budget."

"We bought the perpetual license, so we own the product, but there is a three-year support renewal fee for that."

"Fortinet FortiSIEM is very cost-efficient compared to other SIEM solutions."

"The price of Fortinet FortiSIEM was reasonable compared to other solutions."

More Fortinet FortiSIEM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Network Monitoring Software solutions are best for your needs.

See recommendations

860,168 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

26%

Financial Services Firm

10%

Government

Manufacturing Company

Computer Software Company

15%

Financial Services Firm

10%

Comms Service Provider

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Cisco Stealthwatch?

The most valuable feature of Cisco Secure Network Analytics is the Threat Intelligence integration.

See all answers

What is your experience regarding pricing and costs for Cisco Stealthwatch?

Regarding cost, for the Bangladesh context, Cisco Secure Network Analytics is a little bit high-priced because we are a developing country, making it tough to manage affordable solutions. However, ...

See all answers

What needs improvement with Cisco Stealthwatch?

See all answers

What do you like most about Fortinet FortiSIEM?

Fortinet FortiSIEM needs to provide better API integrations to users.

See all answers

What is your experience regarding pricing and costs for Fortinet FortiSIEM?

The pricing is reasonable, which is why it is preferred by government customers. Windows agent licenses cost around 3,000 Rupees per device per year.

See all answers

What needs improvement with Fortinet FortiSIEM?

Fortinet FortiSIEM should broaden its remediation part to include more features for incident management. Currently, to manage repetitive incidents or for remediation, I need to use a separate softw...

See all answers

Comparisons

Darktrace vs Cisco Secure Network Analytics

Compared 17% of the time

ThousandEyes vs Cisco Secure Network Analytics

Compared 9% of the time

Vectra AI vs Cisco Secure Network Analytics

Compared 8% of the time

ExtraHop Reveal(x) vs Cisco Secure Network Analytics

Compared 6% of the time

Arista NDR vs Cisco Secure Network Analytics

Compared 4% of the time

More Cisco Secure Network Analytics Competitors

Wazuh vs Fortinet FortiSIEM

Compared 13% of the time

IBM Security QRadar vs Fortinet FortiSIEM

Compared 12% of the time

Splunk Enterprise Security vs Fortinet FortiSIEM

Compared 9% of the time

LogRhythm SIEM vs Fortinet FortiSIEM

Compared 7% of the time

Microsoft Sentinel vs Fortinet FortiSIEM

Compared 6% of the time

More Fortinet FortiSIEM Competitors

Product Reports

Buyer's Guide

Cisco Secure Network Analytics

June 2025

Download Cisco Secure Network Analytics product report

Buyer's Guide

Fortinet FortiSIEM

June 2025

Download Fortinet FortiSIEM product report

Also Known As

Cisco Stealthwatch, Cisco Stealthwatch Enterprise, Lancope StealthWatch

FortiSIEM, AccelOps

Overview

Cisco Secure Network Analytics is a highly effective network traffic analysis (NTA) solution that enables users to find threats in their network traffic even if those threats are encrypted. It turns an organization’s network telemetry into a tool that creates a complete field of vision for the organization’s administrators. Users can find threats that may have infiltrated their systems and stop them before they can do irreparable harm.

Cisco Secure Network Analytics Benefits

A few ways that organizations can benefit by choosing to deploy Cisco Secure Network Analytics include:

Security scaling. Secure Network Analytics makes it easy for organizations to scale up their level of network protection to match the growth that their business is experiencing. It can be deployed on whatever type of system is necessary. Users will have their growth needs met at every stage of their business journey because the solution offers users the ability to use it on-premises or in the cloud and it can be consumed as a SaaS-based or license-based solution. Whenever any kind of device is added, Secure Network Analytics can automatically classify that device so that it is seamlessly integrated into its network protection system.

Detects threats as they appear. Users gain the ability to scan their network traffic for even the most advanced threats at all times. Secure Network Analytics easily identifies the early warning signs that are typically initiated before attacks are conducted by bad actors. Once these signs are found, users are warned so that they can take steps to prevent those threats from escalating. This also enables users to determine the source of the threat and whether it might have spread further than initially thought.

Eliminate blind spots. Organizations that use Secure Network Analytics can view their network traffic across both private networks and public cloud environments. The scanning power of the solution allows users to gain complete visibility with a fewer number of sensors than their competitors require to achieve a similar level of protection.

Cisco Secure Network Analytics Features

Some of the many features that Cisco Secure Network Analytics offers include:

Centralized security management. Secure Network Analytics’ Identity Services Engine feature enables users to control their network from a single graphical user interface. Administrators can simplify their jobs by controlling profiler, posture, guest, authentication, and authorization services from a single pane of glass.

Machine learning tools. Secure Network Analytics uses machine learning to generate alerts when malicious or suspicious activity is detected. It also analyzes the threat so that users gain insight into the nature of the dangers that confront them. Additionally, it examines the threats to determine whether they are actual threats or false alarms. This significantly reduces the number of false alarms that administrators have to spend time attempting to resolve.

Automation. Users can automate routine tasks that users would otherwise have to handle manually. This automation feature frees administrators and employees to handle other more critical tasks.

Reviews from Real Users

Cisco Secure Network Analytics is a solution that stands out even when compared to many other comparable products. Two major advantages that it offers are the way that it enables users to define the threshold at which the solution will issue a warning to administrators and the predefined alerts that it offers straight out of the box.

Gerald J., the information technology operations supervisor at Aboitiz Equity Ventures, Inc., writes, “StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk.”

A senior security engineer at a tech services company, says, “Cisco Stealthwatch has predefined alerts for different types of security issues that might happen in the network. Whether it's PCs or servers that are used for botnets or Bitcoin mining we receive the alerts automatically. This functionality is what we receive from the solution out of the box.”

Cisco

FortiSIEM (formerly AccelOps 4) provides an actionable security intelligence platform to monitor security, performance and compliance through a single pane of glass.

Companies around the world use FortiSIEM for the following use cases:

Threat management and intelligence that provide situational awareness and anomaly detection
Alleviating compliance mandate concerns for PCI, HIPAA and SOX
Managing “alert overload”
Handling the “too many tools” reporting issue
Addressing the MSPs/MSSPs pain of meeting service level agreements

Fortinet

Sample Customers

Edge Web Hosting, Telenor Norway, Ivy Tech Community College of Indiana, Webster Financial Corporation, Westinghouse Electric, VMware, TIAA-CREF

FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia.

Buyer's Guide

Cisco Secure Network Analytics vs. Fortinet FortiSIEM

March 2019

Free Report: Cisco Secure Network Analytics vs. Fortinet FortiSIEM

Find out what your peers are saying about Cisco Secure Network Analytics vs. Fortinet FortiSIEM and other solutions. Updated: March 2019.

DOWNLOAD NOW

860,168 professionals have used our research since 2012.

See our Cisco Secure Network Analytics vs. Fortinet FortiSIEM report.

We monitor all Network Monitoring Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.