We performed a comparison between Fortinet FortiSIEM and Statseeker based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Free ingestion for Azure logs (with E5 licence)"
"The AI and ML of Azure Sentinel are valuable. We can use machine learning models at the tenant level and within Office 365 and Microsoft stack. We don't need to depend upon any other connectors. It automatically provisions the native Microsoft products."
"The main benefit is the ease of integration."
"It's pretty powerful and its performance is pretty good."
"The part that was very unexpected was Sentinel's ability to integrate with Azure Lighthouse, which, as a managed services solution provider, gives us the ability to also manage our customers' Sentinel environments or Sentinel workspaces. It is a big plus for us. With its integration with Lighthouse, we get the ability to monitor multiple workspaces from one portal. A lot of the Microsoft Sentinel workbooks already integrate with that capability, and we save countless amounts of money by simply being able to almost immediately realize multitenant capabilities. That alone is a big plus for us."
"It is able to connect to an ever-growing number of platforms and systems within the Microsoft ecosystem, such as Azure Active Directory and Microsoft 365 or Office 365, as well as to external services and systems that can be brought in and managed. We can manage on-premises infrastructure. We can manage not just the things that are running in Azure in the public cloud, but through Azure Arc and the hybrid capabilities, we can monitor on-premises servers and endpoints. We can monitor VMware infrastructure, for instance, running as part of a hybrid environment."
"Sentinel pricing is good"
"The connectivity and analytics are great."
"Some of our customers who use this solution have seen improvement in their connection with load balancing on both connections."
"FortiSIEM's best features are the dashboards and customization."
"We find the solution to be stable."
"Fortinet FortiSIEM provides good detection against advanced threats."
"I like FortiSIEM because it integrates natively with our other Fortinet solutions and the Fortinet Fabric, but it also integrates with Cisco, Palo Alto and other security fabrics."
"Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features."
"The most valuable feature of Fortinet FortiSIEM is the user and entity behave as analytics(UEBA). This feature mixes your data and provides useful information based on the behavior of the targeted."
"FortiSIEM's log correlation is good."
"Grouping, Threshold/alerts, Netflow analyser, Private MIB object support are most valuable as they can provide more visibility into network performance, and for network troubleshooting."
"The most valuable feature of this solution is the simplicity of adding new devices into it."
"The product simplifies monitoring by providing real-time alerts through a GUI dashboard, email and texts."
"Being able to look back historically at the uptime and downtime is invaluable."
"The most important for us is how fast this solution is, as well as the granularity that you can get to, such as per-minute statistics."
"Summary Reports provide a quick way to identify where potential issues are. Drill-downs provide more granular details very quickly."
"This solution provides us with a quicker response in troubleshooting."
"This solution has helped us to proactively identify issues and push some of those fixes down to tier one."
"Its implementation could be simpler. It is not really simple or straightforward. It is in the middle. Sometimes, connectors are a little bit complex."
"They can work on the EDR side of things... Every time we need to onboard these kinds of machines into the EDR, we need to do it with the help of Intune, to sync up the devices, and do the configuration. I'm looking for something on the EDR side that will reduce this kind of work."
"Multi-tenancy, in my opinion, needs to be improved. I believe it can do better as a managed service provider."
"Add more out-of-the-box connectors with other SaaS platforms/applications."
"Not all information shows up in Sentinel. Sometimes there are items provided in 365 and if you looked in Sentinel you would not see them and therefore think they do not exist. There can be discrepancies between Microsoft tools."
"The solution should allow for a streamlined CI/CD procedure."
"The product can be improved by reducing the cost to use AI machine learning."
"They should integrate it with many other software-as-a-service providers and make connectors available so that you don't have to do any sort of log normalization."
"There is no proper guide for integration or configuration."
"Sometimes, if there are changes made by a user on a database server, it can be difficult to get that information on the fly. I would like to see a situation where once I specify a user with the database server I need, and with the changes they have performed on that, I don't need to continue my search pattern to drill down just to get the information."
"The backup and recovery process for this solution needs improvement."
"The solution's interface could be modernized and improved."
"Our customers are noticing configuration available in the GUI interface and I think that they should be equal."
"The policy editing should be easier. Right now, it's too hard."
"Fortinet FortiSIEM could improve to extend to several locations or sites."
"It lacks a "wizard" that shows a particular user's activity or particular circumstance. I think the interface is intimidating because there's so much information there."
"It would be nice if they had twenty-four-hour technical support because we contact Australia and we have to wait for them to open."
"Detailed data can be hard to extract in CSV form. Sometimes, being able to dump down raw data would be good so various time periods across a longer period could be analysed. At present, data can be presented within Statseeker, but there is lots of "white space" between data points."
"Technical support for this solution is bad, as is everything with Cisco support."
"With Statseeker I'd like to see some flow, i.e. what's tuning-up the network. The trend I like is managing the traffic load by going to the cloud."
"It could use more features on Netflow analyser, such as time series graphs and a single network export UDP port and UDP forwarding."
"It would be nice if I could easily select individual interfaces."
"It may be helpful to have more options in the alerting section."
"The interface could be more user-friendly and it would be nice if there were enhanced options for reporting."
Fortinet FortiSIEM is ranked 8th in Security Information and Event Management (SIEM) with 63 reviews while Statseeker is ranked 64th in Network Monitoring Software with 38 reviews. Fortinet FortiSIEM is rated 7.6, while Statseeker is rated 8.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of Statseeker writes "Simplifies monitoring and provides real-time alerts for issues we might not immediately be aware of otherwise". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ThousandEyes, whereas Statseeker is most compared with . See our Fortinet FortiSIEM vs. Statseeker report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.