We performed a comparison between Fortinet FortiSIEM and PRTG Network Monitor based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The querying and the log-retention capabilities are pretty powerful. Those provide some of the biggest value-add for us."
"Devo provides a multi-tenant, cloud-native architecture. This is critical for managed service provider environments or multinational organizations who may have subsidiaries globally. It gives organizations a way to consolidate their data in a single accessible location, yet keep the data separate. This allows for global views and/or isolated views restricted by access controls by company or business unit."
"The most useful feature for us, because of some of the issues we had previously, was the simplicity of log integrations. It's much easier with this platform to integrate log sources that might not have standard logging and things like that."
"Those 400 days of hot data mean that people can look for trends and at what happened in the past. And they can not only do so from a security point of view, but even for operational use cases. In the past, our operational norm was to keep live data for only 30 days. Our users were constantly asking us for at least 90 days, and we really couldn't even do that. That's one reason that having 400 days of live data is pretty huge. As our users start to use it and adopt this system, we expect people to be able to do those long-term analytics."
"The user interface is really modern. As an end-user, there are a lot of possibilities to tailor the platform to your needs, and that can be done without needing much support from Devo. It's really flexible and modular. The UI is very clean."
"In traditional BI solutions, you need to wait a lot of time to have the ability to create visualizations with the data and to do searches. With this kind of platform, you have that information in real-time."
"Devo helps us to unlock the full power of our data because they have more than 450 parsers, which means that we can ingest pretty much any type of log data."
"The thing that Devo does better than other solutions is to give me the ability to write queries that look at multiple data sources and run fast. Most SIEMs don't do that. And I can do that by creating entity-based queries. Let's say I have a table which has Okta, a table which has G Suite, a table which has endpoint telemetry, and I have a table which has DNS telemetry. I can write a query that says, 'Join all these things together on IP, and where the IP matches in all these tables, return to me that subset of data, within these time windows.' I can break it down that way."
"One of the most valuable features is that we can combine SOC and NOC operations in the same tool. We can provide NOC and SOC services in the same tool for two separate teams. There are plenty of third-party solutions that integrate with FortiSIEM. All these solutions already have a ready integration, and we have the possibility to create a custom connector for these solutions. Its reports are also very good."
"FortiSIEM's best features are the dashboards and customization."
"Easy alert setup which enables different alerts in different categories."
"The stability is very reliable. It offers very good performance."
"Technical support is helpful."
"The solution is easy to use and user-friendly."
"The advanced agents used to collect logs have been most valuable. We have also made use of the advanced intelligence this solution offers."
"The most valuable features of Fortinet FortiSIEM are the SD-WAN, Global LAN, and application controls."
"Network Discovery is a feature that our customers like a lot."
"The most valuable feature of this solution is being able to see things graphically."
"It is able to satisfy all our requirements in terms of email notifications and specific errors on the devices."
"It is very flexible, and we can monitor many aspects of IT as well as ERP and CRM services. It has a very powerful interface and APIs for customization."
"It is easy when it comes to dependencies of devices, so if your router goes down, the three or four switches behind it will automatically be paused so that you don't get multiple alerts."
"Ability to create a dashboard inside software monitoring."
"There was only one feature I liked about PRTG Network Monitor a lot, and that was bandwidth monitoring, though, in the newer versions of the tool, that feature is now a bit lacking. Pricing for PRTG Network Monitor is also not as expensive. It's a good tool, even for beginners."
"PRTG gives us true visibility of the downtime of particular circuit functions. So if a circuit is up but not routing traffic, I will know with this tool. I can write a customized script for a sensor to detect specific things."
"We only use the core functionality and one of the reasons for this is that their security operation center needs improvement."
"The overall performance of extraction could be a lot faster, but that's a common problem in this space in general. Also, the stock or default alerting and detecting options could definitely be broader and more all-encompassing. The fact that they're not is why we had to write all our own alerts."
"One major area for improvement for Devo... is to provide more capabilities around pre-built monitoring. They're working on integrations with different types of systems, but that integration needs to go beyond just onboarding to the platform. It needs to include applications, out-of-the-box, that immediately help people to start monitoring their systems. Such applications would include dashboards and alerts, and then people could customize them for their own needs so that they aren't starting from a blank slate."
"Some third-parties don't have specific API connectors built, so we had to work with Devo to get the logs and parse the data using custom parsers, rather than an out-of-the-box solution."
"Where Devo has room for improvement is the data ingestion and parsing. We tend to have to work with the Devo support team to bring on and ingest new sources of data."
"The biggest area with room for improvement in Devo is the Security Operations module that just isn't there yet. That goes back to building out how they're going to do content and larger correlation and aggregation of data across multiple things, as well as natively ingesting CTI to create rule sets."
"From our experience, the Devo agent needs some work. They built it on top of OS Query's open-source framework. It seems like it wasn't tuned properly to handle a large volume of Windows event logs. In our experience, there would definitely be some room for improvement. A lot of SIEMs on the market have their own agent infrastructure. I think Devo's working towards that, but I think that it needs some improvement as far as keeping up with high-volume environments."
"An admin who is trying to audit user activity usually cannot go beyond a day in the UI. I would like to have access to pages and pages of that data, going back as far as the storage we have, so I could look at every command or search or deletion or anything that a user has run. As an admin, that would really help. Going back just a day in the UI is not going to help, and that means I have to find a different way to do that."
"They need to integrate better with Cisco and Palo Alto."
"It would be good if the solution offered even more configuration options, especially in relation to the VPN so that it continues to be a very flexible option."
"I would like to see more integration with other platforms."
"There is no proper guide for integration or configuration."
"The log collection and configuration management are not great."
"The interface needs some improvements because it's a bit cumbersome when you're trying to view items. It takes some time to get used to. Additionally, sometimes the scrolling does not work."
"Areas for improvement would be the ease of use and the integration with Fortinet's own products."
"Not very good on non-API features, lacks that functionality."
"PRTG Network Monitor can improve Layer 2 and Layer 3 network maps and the GUI more user-friendly. Additionally, they should bundle the features so I can monitor everything on one particular device."
"The solution could be better and faster when it comes to performance."
"There is room for improvement in this solution for the performance and third-party monitoring protocols. They need to be updated to the latest ones."
"When using PRTG Network Monitor it is beneficial if you have prior experience with it, the user interface could improve."
"I would like the ability to monitor Cisco IRS devices."
"I would like to see them take their graphing tools and convert them into a collector so that we can point telemetry to them"
"The technical support service should be improved."
"PRTG Network Monitor could improve by having descriptions for the tab usages. The dashboards or interface could be easier to understand."
See how Devo allows you to free yourself from data management, and make machine data and insights accessible.
With PRTG Network Monitor you can identify and solve potential issues before it affects anyone. Download a free 30-day trial today and experience the benefits of 24-hour IT Infrastructure Monitoring.
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 23 reviews while PRTG Network Monitor is ranked 6th in Network Monitoring Software with 43 reviews. Fortinet FortiSIEM is rated 7.4, while PRTG Network Monitor is rated 8.2. The top reviewer of Fortinet FortiSIEM writes "It has robust event correlation and good GUI, but their technical support should be better, and it should support more nonstandard log sources". On the other hand, the top reviewer of PRTG Network Monitor writes "Good even for beginners, and cost-wise, it isn't that expensive, but its sensors and web GUI need improvement". Fortinet FortiSIEM is most compared with Microsoft Sentinel, Splunk, IBM QRadar, Elastic Security and LogRhythm SIEM, whereas PRTG Network Monitor is most compared with Zabbix, Nagios XI, SolarWinds NPM, Centreon and LogicMonitor. See our Fortinet FortiSIEM vs. PRTG Network Monitor report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
