We performed a comparison between Fortinet FortiGate IPS and Vectra AI based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Integrated management is a very valuable feature."
"The solution provides an easy way to filter information and Fortinet lab is a great place to discover new things."
"My company never had any complaints about the tool in terms of performance or stability."
"FortiGate's SD-WAN capability is the most useful feature for us."
"I have found the decryption of Fortinet FortiGate IPS very good. It's called SSL deep inspection, it's working very well. This is how you decrypt access and traffic, and it is through the IPS antivirus center. Additionally, the UI is user-friendly."
"The solution is easy to use."
"The initial setup is very easy."
"The solution is stable."
"It does a reliable job of parsing out the logs of all the network traffic so that we can ingest them into our SIEM and utilize them for threat hunting and case investigations. It is pretty robust and reliable. The administration time that we spend maintaining it or troubleshooting it is very low. So, the labor hour overhead is probably our largest benefit from it. We spend 99% of our time in Vectra investigating cases, responding to incidents, or hunting, and only around 1% of our time is spent patching, troubleshooting, or doing anything else. That's our largest benefit from Vectra."
"One of the most valuable features of the platform is its ability to provide you with aggregated risk scores based on impact and certainty of threats being detected. This is both applied to individual and host detections. This is important because it enables us to use this platform to prioritize the most likely imminent threats. So, it reduces alert fatigue follow ups for security operation center analysts. It also provides us with an ability to prioritize limited resources."
"Scalability wise, we have many sensors, and Vectra AI seems to handle them all very well."
"It has helped us to organize our security. We get a better overview on what is happening on the network, which has helped us get quicker responses to users. If we see malicious activity, then we can quickly take action on it. Previously, we weren't getting an overview as fast as we are now, so we can now provide a quicker response."
"It has reduced the time it takes to respond to attacks. That comes back to the proactive point. It makes us able to lower down in the kill chain, we can react now, rather than reacting to incidents that happened, we can see an instant, in some cases, as it's being implemented, or as it's being launched."
"The core product provides excellent visibility, but my favorite feature is Vectra Recall."
"The key feature for me for Detect for Office 365 is that it can also concentrate all the information and detection at one point, the same as the network solution does. This is the key feature for me because, while accessing data from Office 365 is possible using Microsoft interfaces, they are not really user-friendly and are quite confusing to use. But Detect for Office 365 is aggregating all the info, and it's only the interesting stuff."
"Vectra AI is the best. It is a major product in our cybersecurity."
"The prevention mechanisms and implementation are not easy."
"Its performance can be better. We have had performance issues in the past, but we sometimes tend to find that it is more related to what we do in our network than anything else. It is quite a good product, and there isn't much to improve."
"Monitoring could be improved."
"They should add a feature for detailed reporting."
"To stay ahead of the competition Fortinet FortiGate IPS needs to think about how to adjust pricing."
"Integration with the antivirus companion Webroot is not seamless on Mac computers."
"FortiGate's logging and reporting could be improved. I would also like to see Fortinet add a guest management portal."
"The solution has limited scalability."
"We are using SMB 3.0, which is an encrypted protocol. When we get some alerts or something, we cannot go deep into the protocol to see what's wrong because it's encrypted. We need to decrypt the protocol in another way, which is quite difficult. We might go back to SMB 2.0 just for this reason, but that's not a good solution."
"We have a lot of system solutions and integrations with system solutions. Vectra is a type of black box. It implements AI-informed detection mechanisms, but we cannot create system detections. I understand that the product is designed this way, but it would be great if we could create our own detections as well."
"I'd like to be able to get granular reports and to be able to output them into formats that are customizable and more useful. The reporting GUI is lacking."
"Some of their integrations with other sources of data, like external threat feeds, took a bit more work than I had hoped to get integrated."
"They use a proprietary logging format that is probably 90% similar to Bro Logs. Their biggest area of improvement is finishing out the remaining 10%. That 10% might not be beneficial to their ML engine, but that's fine. The industry standard is Zeek Logs or Bro Logs, or Bro or Zeek, depending on how old you are. While they have 90% of those fields, they're still missing some fields. In very rare instances, some community rules do not have the fields that they need, and we had to modify community rules for our logs. So, their biggest area of improvement would be to just finish their matching of the Zeek standard."
"The main improvement I can see would be to integrate with more external solutions."
"One of the things I am not so happy about when it comes to Vectra is the scoring board."
"It does a little bit of packet capture on alert so you can look at the packet capture activity going on, but it doesn't collect a whole lot of data. Sometimes it's only one or two frames, sometimes it does collect more. That's why they have the addition of their Recall platform, because that really does help expand the capability."
Fortinet FortiGate IPS is ranked 4th in Intrusion Detection and Prevention Software (IDPS) with 54 reviews while Vectra AI is ranked 2nd in Intrusion Detection and Prevention Software (IDPS) with 40 reviews. Fortinet FortiGate IPS is rated 8.4, while Vectra AI is rated 8.6. The top reviewer of Fortinet FortiGate IPS writes "Very stable with good network protection". On the other hand, the top reviewer of Vectra AI writes "Integrates well with other security solutions and provides good technical support". Fortinet FortiGate IPS is most compared with Palo Alto Networks Advanced Threat Prevention, Trend Micro TippingPoint Threat Protection System, Cisco NGIPS, Check Point IPS and Cisco Sourcefire SNORT, whereas Vectra AI is most compared with Darktrace, ExtraHop Reveal(x), Cisco Secure Network Analytics, Arista NDR and Corelight. See our Fortinet FortiGate IPS vs. Vectra AI report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.