No more typing reviews! Try our Samantha, our new voice AI agent.

Fortinet FortiSIEM vs NetCrunch comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiSIEM
Average Rating
7.6
Reviews Sentiment
6.2
Number of Reviews
75
Ranking in other categories
Security Information and Event Management (SIEM) (12th), AI Observability (13th)
NetCrunch
Average Rating
8.0
Number of Reviews
3
Ranking in other categories
Network Monitoring Software (75th), Server Monitoring (27th), IT Infrastructure Monitoring (60th), Log Management (52nd)
 

Mindshare comparison

Fortinet FortiSIEM and NetCrunch aren’t in the same category and serve different purposes. Fortinet FortiSIEM is designed for Security Information and Event Management (SIEM) and holds a mindshare of 2.3%, down 3.3% compared to last year.
NetCrunch, on the other hand, focuses on Network Monitoring Software, holds 0.7% mindshare, up 0.3% since last year.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Fortinet FortiSIEM2.3%
Splunk Enterprise Security7.3%
IBM Security QRadar5.3%
Other85.1%
Security Information and Event Management (SIEM)
Network Monitoring Software Mindshare Distribution
ProductMindshare (%)
NetCrunch0.7%
Zabbix3.9%
SolarWinds NPM3.7%
Other91.7%
Network Monitoring Software
 

Featured Reviews

SY
Network Engineer at Ogma Consulting
Comprehensive monitoring boosts security, yet incident management features need expansion
Fortinet FortiSIEM should broaden its remediation part to include more features for incident management. Currently, to manage repetitive incidents or for remediation, I need to use a separate software called FortiSOAR. Additionally, the search functionality in FortiAI should be improved to provide more precise results, making it easier for me to understand what actions need to be taken.
it_user1038504 - PeerSpot reviewer
Senior Systems Administrator, Technical Lead at Connectivity Wireless
A network monitoring platform with a useful reporting feature, but permission-based options could be better
The initial setup is fairly easy. Most of it's wizard-based. You don't have to be a rocket scientist to set it up. But if you don't know certain things related to protocols and everything else, it might be difficult. If you know how SNMP works, it'll be fairly simple to set up.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The pricing is very, very affordable; for the value you get, I think it’s about the cheapest solution on the market."
"The advanced agents used to collect logs have been most valuable. We have also made use of the advanced intelligence this solution offers."
"In large-sized medium-sized and a small-sized organizations, it improves the ability to quickly drill down into events that occur, perform analysis, and find root cause."
"It gives us the opportunity to generate notifications based upon rules that get triggered, and the rules could be specific to PCI, HIPAA, GIBA, NIST, and so forth."
"The ability to write my own parsers for the devices that are not supported by Fortinet is the most valuable feature."
"The event correlation is pretty robust. The GUI is pretty good."
"The interface is very easy to use. The connector in the core has FortiSIEM support from the vendor."
"Every feature is good. This is one of the greatest SIEM products on the market."
"Reporting on NetCrunch is pretty good; it's very similar to SolarWinds, just with a different interface, and the majority of everything there was beneficial."
"The setup is very intuitive and quick - it all just took a few minutes we were done."
 

Cons

"The dashboards need to be improved. It gives you so much detail, but sometimes too much detail, especially to an executive, it's too much."
"They need to integrate better with Cisco and Palo Alto."
"It's difficult to integrate unsupported devices with FortiSIEM compared to QRadar. It's easier to integrate and develop processes in QRadar. It's harder to develop a custom process in FortiSIEM."
"Our customers are noticing configuration available in the GUI interface and I think that they should be equal."
"The solution's interface could be modernized and improved."
"They could work on their documentation. If there's anything about the solution that needs improvement, it's that. For example, documentation already is on a very high level but specifically on the CLI there are tons of features which can be fine-tuned and thousands of commands are very difficult to document. If they could make this easier, it would improve the overall solution."
"I would like to see more integration with other platforms."
"The interface needs some improvements because it's a bit cumbersome when you're trying to view items. It takes some time to get used to. Additionally, sometimes the scrolling does not work."
"Our network is made up of a lot of Cisco devices, and it needs improvements."
"I didn't care for the role-based, permission-based options, which were not the best."
 

Pricing and Cost Advice

"Pricing is acceptable for more than 90% of our customers, as they normally get discounts."
"This is probably more on the lower cost end of the spectrum compared to competing products. Fortinet's license model is based on events per second, which makes sense, but that's not typical. It makes it very hard to calculate what your costs are going to be as you scale the platform because some log sources, such as firewall logs, are very noisy, and there are lots and lots of events per second, but some of them are not. So, it becomes a bit of a science experiment trying to guess what your costs are going to be as you scale the solution. This is where other competing products perhaps have a more straightforward license model."
"We pay for a license for FortiSIEM. We pay for the license and renewal."
"Fortinet's products are not expensive, it is less than the competition."
"Its price can be better. We are Fortinet partners, so we can get discounts, but its price can be an issue at the beginning for others. There is a licensing scheme for every case. There are three licensing schemes that we can choose from."
"The price of Fortinet FortiSIEM was reasonable compared to other solutions."
"There are additional features that cost more than the standard licensing fees."
"They have a yearly subscription."
Information not available
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
903,807 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
9%
Comms Service Provider
9%
Construction Company
8%
Manufacturing Company
8%
Construction Company
24%
Comms Service Provider
12%
Manufacturing Company
7%
Agriculture
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business34
Midsize Enterprise22
Large Enterprise24
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Fortinet FortiSIEM?
My experience with pricing, setup cost, and licensing for Fortinet FortiSIEM is wonderful, as it offers an excellent license compared to other vendors.
What needs improvement with Fortinet FortiSIEM?
Fortinet FortiSIEM is great overall. Performance could be enhanced, but I do not wish to elaborate on needed improvements.
What is your primary use case for Fortinet FortiSIEM?
My main use case for Fortinet FortiSIEM is building a SOC and serving as an event management platform for correlating events in my work. I use Fortinet FortiSIEM for event correlation by building a...
Ask a question
Earn 20 points
 

Also Known As

FortiSIEM, AccelOps
No data available
 

Overview

 

Sample Customers

FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia.
manufacturing, banking, utilities, energy, universities, healthcare institutions, school districts, military and police entities, non-profit organizations, 
Find out what your peers are saying about Splunk, IBM, Wazuh and others in Security Information and Event Management (SIEM). Updated: June 2026.
903,807 professionals have used our research since 2012.