Claroty Platform vs Lacework FortiCNAPP comparison

Claroty and Fortinet are both solutions in the Vulnerability Management category. Claroty is ranked #17 with an average rating of 8.2, while Fortinet is ranked #25 with an average rating of 8.7. Claroty holds a 0.7% mindshare in VM, compared to Fortinet’s 1.3% mindshare. Additionally, 100% of Claroty users are willing to recommend the solution, compared to 90% of Fortinet users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jun 22, 2025

Claroty Platform and Lacework FortiCNAPP compete in the cybersecurity industry, with each providing unique advantages. Claroty is stronger in OT security coverage, whereas Lacework FortiCNAPP offers more advanced cloud-based data analysis capabilities, making it a better choice for cloud-focused strategies.

Features: Claroty focuses on asset management, secure remote access, and vulnerability management, providing comprehensive visibility and threat detection in industrial environments. Lacework FortiCNAPP offers anomaly detection and compliance monitoring, managing security standards and vulnerabilities effectively across cloud platforms, and provides robust insights into compliance.

Room for Improvement: Claroty could improve zero-day attack detection and integration with third-party tools, with better explanations and resolutions for vulnerabilities. Lacework needs enhanced IAM security controls and less complex alert configurations, as well as more seamless integration with third-party tools.

Ease of Deployment and Customer Service: Claroty excels in on-premises and hybrid deployments with positive technical support feedback, though response times can vary. Lacework's strength lies in public cloud deployment, but its user interface may challenge new users. Both provide solid customer service, but Claroty's support consistency is superior.

Pricing and ROI: Claroty is costly, justified by features for critical infrastructure, but may not appeal unless high security is needed. Lacework's pricing is stabilized yet expensive for large deployments. Claroty offers better value in mission-critical environments despite initial costs.

To learn more, read our detailed Claroty Platform vs. Lacework FortiCNAPP Report (Updated: June 2025).

Buyer's Guide

Claroty Platform vs. Lacework FortiCNAPP

June 2025

Download the complete report

Helped 860,592 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Zafran Security

Mindshare comparison

As of July 2025, in the Vulnerability Management category, the mindshare of Zafran Security is 0.8%, up from 0.0% compared to the previous year. The mindshare of Claroty Platform is 0.7%, up from 0.3% compared to the previous year. The mindshare of Lacework FortiCNAPP is 1.3%, down from 1.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Vulnerability Management

Featured Reviews

Israel Cavazos Landini

Associate Director IT Security Operations at a pharma/biotech company with 10,001+ employees

Weekly insights and risk analysis facilitate informed security decisions

I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.

Read full review

Deevanshi Priya

Cyber Security Security at PwC

Achieve certifications with progress tracking and potential for enhanced interactivity

I was using Claroty to complete training assigned by my company. The courses were self-paced and helped me get certified in two additional certifications. I plan to use it further as I have a task list for future courses. It was primarily for certification and study materials The feature I like…

Read full review

Carlos Vitrano

Cloud security director at Medallia

Provides quick visibility and significantly reduces alerts

Its integrations with third-party SIEMs can be better. That is one of the things that we discussed with them. We have integrations, for instance, with Splunk. The data that we are receiving in Splunk is huge, and it is valid because Lacework has a bunch of data that they can provide to you. However, to be able to import the data and create alerts, we needed to do some work, so integration is one of the things that they can improve. For container security, how they scan images and how they provide results is something that they need to continue improving in terms of visibility. We already have visibility to several artifacts, but they can take that to the next level and see what else they can do. There can be better integrations with CI/CD pipelines. There can be improvements in terms of how we can take action or how we can report from the number of inventories they are providing to us.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Overall, we have seen about eighty-seven percent reduction of the number of vulnerabilities that require urgency to remediate, specifically the number of criticals."

"Zafran is an excellent tool."

"We saw benefits from Zafran Security almost immediately after deploying it."

"We are able to see the real risk of a vulnerability on our environment with our security tools."

"Zafran has become an indispensable tool in our cybersecurity arsenal."

"Customer service is number one and the best."

"Claroty assigns a score based on how well you are doing in the course. If you skip a video, your score decreases, making it essential to watch the content attentively."

"I like how the tool does passive and active discovery and threat detection and shows risks, recommendations, and vulnerabilities. It gives risk scores and gathers everything in one place - IP, device name, etc. We can integrate it with other tools for overall network mapping. It's useful for audits, compliance, and monitoring of all devices in the industry. It provides both monitoring and control. We also have SRA for incident response, which lets us search all alerts if we deploy the Claroty Platform."

"Their SRA solution, the Secure Remote Access solution, is very useful for industrial environments."

"The solution's most valuable feature is the map, which shows everything that is connected and communicates with each other."

"I have had a very good experience with the Claroty Platform."

"I believe the two main aspects where Claroty stands out are their ability to provide a complete platform and their OT-specific focus."

"Claroty provides continuous threat protection and identifies pre-empty stuff and false positives."

More Claroty Platform pros

"Polygraph compliance is a valuable feature. In our perspective, it delivers significant benefits. The clarity it offers, along with the ability to identify and address misconfigurations, is invaluable. When such issues arise, we promptly acknowledge and take action, effectively collaborating with our teams and the responsible parties for those assets. This enables us to promptly manage problems as soon as they arise."

"The most valuable aspects are identifying vulnerabilities—things that are out there that we aren't aware of—as well as finding what path of access attackers could use, and being able to see open SSL or S3 buckets and the like."

"I find the cloud configuration compliance scanning mature. It generates a lot of data and supports major frameworks like ISO 27001 or SOC 2, providing reports and datasets. Another feature I appreciate is setting custom alerts for specific events. Additionally, I value the agent-based monitoring and scanning for compute nodes. It gives us deeper insights into our workloads and helps identify vulnerabilities across our deployed assets."

"For the most part, out-of-the-box, it tells you right away about the things you need to work on. I like the fact that it prioritizes alerts based on severity, so that you can focus your efforts on anything that would be critical/high first, moderate second, and work your way down, trying to continue to improve your security posture."

"The compliance reports are definitely most valuable because they save time and are accurate. So, instead of relying on a human going through and checking or providing me with a report, I could just log into Lacework and see for myself."

"The most valuable feature is Lacework's ability to distill all the security and audit logs. I recommend it to my customers. Normally, when I consult for other customers that are getting into the cloud, we use native security tools. It's more of a rule-based engine."

"The best feature, in my opinion, is the ease of use."

"There are many valuable features that I use in my daily work. The first are alerts and the event dossier that it generates, based on the severity. That is very insightful and helps me to have a security cap in our infrastructure. The second thing I like is the agent-based vulnerability management, which is the most accurate information."

More Lacework FortiCNAPP pros

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."

"The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvements."

"I think the ability to have some enhanced reporting capabilities is something they can improve on, as they have good reports but we have asked for some specific reporting enhancements."

"The product could be improved in terms of user interface design."

"There is room for improvement in the user interface to make it more vibrant and interactive, similar to IT tools."

"There are a few protocols that Claroty doesn't currently support."

"If more AI features could be included with the Clarity solution, it would be feasible for everybody."

"I've reported four bugs and three feature requests so far. The main area of focus should be on how attacks are detected. The attack vector information needs to be more detailed. For example, it's not enough to state that an SMB v1 version open can lead to a WannaCry attack. A more detailed explanation should help clients understand the various ways an attack could occur."

"Occasionally, I face a login problem despite entering the correct password."

"The product's integration capabilities are an area of concern where improvements are required."

"The Claroty Platform becomes too noisy when it gives numerous CVEs related to vendor match. Sometimes, these CVEs are not actually related to the device in the firmware at the site."

More Claroty Platform cons

"There are a couple of the difficulties we encounter in the realm of cybersecurity, or security as a whole, that relate to potentially limited clarity. Having the capacity to perceive the configuration aspect and having the ability to contribute to it holds substantial advantages, in my view. It ranks high, primarily due to its role in guaranteeing compliance and the potential to uncover vulnerabilities, which could infiltrate the system and introduce potential risks. I had been exploring a specific feature that captured my interest. However, just yesterday, I participated in a product update session that announced the imminent arrival of this feature. The feature involves real-time alerting. This was something I had been anticipating, and it seems that this capability is now being integrated, possibly as part of threat intelligence. While anomaly events consistently and promptly appear in the console, certain alerts tend to experience delays before being displayed. Yet, with the recent product update, this issue is expected to be resolved. Currently, a comprehensive view of all policies is available within the console. However, I want a more tailored display of my compliance posture, focusing specifically on policies relevant to me. For instance, if I'm not subject to HIPAA regulations, I'd prefer not to see the HIPAA compliance details. It's worth noting that even with this request, there exists a filtering mechanism to control the type of compliance information visible. This flexibility provides a workaround to my preference, which is why it's challenging for me to definitively state my exact request."

"The biggest thing I would like to see improved is for them to pursue and obtain a FedRAMP moderate authorization... I don't believe they have any immediate plans to get FedRAMP moderate authorized, which is a bit of a challenge for us because we can only use Lacework in our commercial environment."

"Lacework has not reduced the number of alerts we get. We've actually had to add resources as a result of using it because the application requires a lot of people to understand it to get the value out of it properly."

"The solution lacks a cohesive data model, making extracting the necessary data from the platform challenging. It uses its own LQL query language, and each database across different layers and modules is structured differently, complicating correlation efforts. Consequently, I had to create extensive custom reports outside Lacework because their default dashboards didn't communicate risk metrics. They're addressing these issues by redesigning their tools, including introducing the dashboard, which is a step closer to actionable insights but still needs refinement."

"I would like to see a remote access assistance feature. And the threat-hunting platform could be better."

"The configuration and setup of alerts should be easier. They should make it easier to integrate with systems like Slack and Datadog. I didn't spend too much time on it, but to me, it wasn't as simple as the alerting that I've seen on other systems."

"Visibility is lacking, and both compliance-related metrics and IAM security control could be improved."

"A feature that I have requested from them is the ability to sort alerts and policies based on a security framework. Right now, when you go into alerts, you have hundreds and hundreds of them that you have to manually pick. It would be useful to have categories for CIS Benchmark or SOC 2 and be able to display all the alerts and policies for one security framework."

More Lacework FortiCNAPP cons

Pricing and Cost Advice

Information not available

"It's a bit expensive compared to other solutions."

"The licensing for physical devices is cheap, but the software version is expensive. The software version costs around 26-28 dollars. I was surprised and even double-checked. It was shocking."

"The tool is quite expensive."

"My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz."

"It is slightly expensive. It depends on how big your environment is, but it is expensive. Right now, we are spending a lot of money. We have covered all of the cloud providers and most of our colocation facilities as well, so we cannot complain, but it is slightly expensive. It is not super expensive."

"The pricing has gotten better. That scenario was somewhat unstable. They have a rather interesting licensing structure. I believe you get 200 resources per "Lacework unit." It was difficult, in the beginning, to figure out exactly what a "resource" was... That was a problem until about a year or so ago. They have improved it and it has stabilized quite a bit."

"The licensing fee was approximately $80,000 USD, per year."

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

860,592 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

11%

Financial Services Firm

11%

Manufacturing Company

Healthcare Company

Manufacturing Company

16%

Computer Software Company

13%

Energy/Utilities Company

Financial Services Firm

Computer Software Company

18%

Financial Services Firm

12%

Manufacturing Company

University

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?

The current pricing of Zafran Security is fair overall. They were good to work with to accommodate our organization w...

See all answers

What needs improvement with Zafran Security?

The dashboarding and reporting functionality of Zafran Security is an area that definitely could use some improvement...

See all answers

What is your primary use case for Zafran Security?

Zafran Security is helping reduce the amount of critical vulnerabilities in our environments that require prompt reme...

See all answers

Which solution do you prefer: Nozomi Networks or Claroty Platform?

Nozomi Networks and Claroty Platform are both leading operational technology (OT) security solutions offering a wide ...

See all answers

What do you like most about Claroty Platform?

The product helps mitigate potential threats, especially if its users have signature rules. The product also provides...

See all answers

What needs improvement with Claroty Platform?

Regarding the cons of the Claroty Platform, it is not about the deployment, but rather the identification. The Clarot...

See all answers

What do you like most about Lacework?

Polygraph compliance is a valuable feature. In our perspective, it delivers significant benefits. The clarity it offe...

See all answers

What is your experience regarding pricing and costs for Lacework?

My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz.

See all answers

What needs improvement with Lacework?

The solution lacks a cohesive data model, making extracting the necessary data from the platform challenging. It uses...

See all answers

Comparisons

Wiz Code vs Zafran Security

Compared 42% of the time

Vulcan Cyber vs Zafran Security

Compared 16% of the time

ServiceNow Security Operations vs Zafran Security

Compared 9% of the time

Tenable Vulnerability Management vs Zafran Security

Compared 9% of the time

Nucleus vs Zafran Security

Compared 7% of the time

More Zafran Security Competitors

Nozomi Networks vs Claroty Platform

Compared 35% of the time

Dragos vs Claroty Platform

Compared 10% of the time

Tenable OT Security vs Claroty Platform

Compared 10% of the time

Armis vs Claroty Platform

Compared 8% of the time

Microsoft Defender for IoT vs Claroty Platform

Compared 5% of the time

More Claroty Platform Competitors

Wiz vs Lacework FortiCNAPP

Compared 21% of the time

Prisma Cloud by Palo Alto Networks vs Lacework FortiCNAPP

Compared 16% of the time

AWS GuardDuty vs Lacework FortiCNAPP

Compared 6% of the time

Tenable Cloud Security vs Lacework FortiCNAPP

Compared 5% of the time

Orca Security vs Lacework FortiCNAPP

Compared 4% of the time

More Lacework FortiCNAPP Competitors

Product Reports

Buyer's Guide

Continuous Threat Exposure Management (CTEM)

June 2025

Download Zafran Security product report

Buyer's Guide

Claroty Platform

June 2025

Download Claroty Platform product report

Buyer's Guide

Lacework FortiCNAPP

June 2025

Download Lacework FortiCNAPP product report

Also Known As

No data available

Polygraph, FortiCNP

Overview

Zafran Security integrates with existing security tools to identify and mitigate vulnerabilities effectively, proving that most critical vulnerabilities are not exploitable, optimizing threat management.

Zafran Security introduces an innovative operating model for managing security threats and vulnerabilities. By leveraging the threat exposure management platform, it pinpoints and prioritizes exploitable vulnerabilities, reducing risk through immediate remediation. This platform enhances your hybrid cloud security by normalizing vulnerability signals and integrating specific IT context data, such as CVE runtime presence and internet asset reachability, into its analysis. No longer reliant on patch windows, Zafran Security allows you to manage risks actively.

What are the key features of Zafran Security?

Threat Exposure Management: Utilizes existing tools to prioritize vulnerabilities and manage threats.
Integrative Analysis: Combines security data with IT context for precise vulnerability management.
Real-time Risk Reduction: Enables immediate risk management without waiting for patches.
Hybrid Cloud Compatibility: Functions across diverse cloud environments for comprehensive security.

What benefits can users expect from Zafran Security?

Improved Security: Enhances protection by efficiently identifying and mitigating risks.
Cost Efficiency: Reduces unnecessary patching expenses by confirming non-exploitable vulnerabilities.
Time Savings: Frees developers to focus on root causes by handling immediate threats.
Comprehensive Insight: Offers a holistic view of security threats and vulnerabilities.

In industries where security is paramount, such as finance and healthcare, Zafran Security provides invaluable protection by ensuring that only exploitable vulnerabilities are addressed. It allows entities to maintain robust security measures while allocating resources efficiently, fitting seamlessly into existing security strategies.

Zafran Security

The Claroty Platform is tailored for monitoring and securing industrial control systems. It offers deep visibility into OT networks, enabling effective anomaly detection and vulnerability assessments. Its user-friendly interface and robust reporting tools facilitate easy management and compliance, enhancing organizational efficiency and cybersecurity posture in industrial environments.

Claroty

Lacework FortiCNAPP provides robust cloud security, combining vulnerability management and multi-cloud insight with user-friendly controls, machine learning detection, and compliance support.

Lacework FortiCNAPP specializes in cloud security by merging machine learning anomaly detection with agent-based vulnerability management to offer detailed alerts and compliance reports. Its comprehensive approach allows continuous monitoring across AWS and Kubernetes, providing insights from an attacker's perspective. The platform offers automation and seamless Slack integration, facilitating collaborative and efficient cloud security management. Users value its ability to handle multi-cloud environments and scan IAC scripts, configurations, and compute nodes across AWS and GCP.

What are the key features?

Machine Learning Detection: Identifies anomalies effectively.
Compliance Reports: Provides precise compliance documentation.
Vulnerability Management: Supports agent-based vulnerability assessments.
Multi-Cloud Support: Manages and secures across multiple cloud providers.
Automation and Collaboration: Enables integration with Slack for streamlined communication.
Custom Alerts: Allows creation of personalized alerts for better focus.

What benefits do users expect?

Reduced Alert Noise: Minimizes distractions with filtered alerts.
Efficient Cloud Security: Automates processes for enhanced security management.
Collaboration Support: Integrates with tools like Slack.
Insightful Perspective: Provides insight from an attacker's viewpoint.

Organizations across sectors leverage Lacework FortiCNAPP for cloud security, focusing on compliance, security posture, and vulnerability management. It is widely used for monitoring AWS and Kubernetes environments, scanning IAC scripts, configurations, and securing compute nodes. It supports multi-cloud security posture management and log ingestion, enabling companies to maintain strong cloud infrastructures without dedicated security layers.

Fortinet

Sample Customers

Information Not Available

Rockwell Automation

J.Crew, AdRoll, Snowflake, VMWare, Iterable, Pure Storage, TrueCar, NerdWallet, and more.

Buyer's Guide

Claroty Platform vs. Lacework FortiCNAPP

June 2025

Free Report: Claroty Platform vs. Lacework FortiCNAPP

Find out what your peers are saying about Claroty Platform vs. Lacework FortiCNAPP and other solutions. Updated: June 2025.

DOWNLOAD NOW

860,592 professionals have used our research since 2012.

See our Claroty Platform vs. Lacework FortiCNAPP report.

See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.