Fortinet FortiSIEM vs Statseeker comparison

"Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features."

"We find the solution to be stable."

"One of the most valuable features is that we can combine SOC and NOC operations in the same tool. We can provide NOC and SOC services in the same tool for two separate teams. There are plenty of third-party solutions that integrate with FortiSIEM. All these solutions already have a ready integration, and we have the possibility to create a custom connector for these solutions. Its reports are also very good."

"The seamless integration with FortiGate is the solution's most valuable aspect."

"Easy alert setup which enables different alerts in different categories."

"We have found the most important features in Fortinet FortiSIEM to be the correlation, file utility check, latest file, and hash changes. These features are important for us."

"Fortinet FortiSIEM provides good detection against advanced threats."

"The most valuable feature of Fortinet FortiSIEM is the user and entity behave as analytics(UEBA). This feature mixes your data and provides useful information based on the behavior of the targeted."

"Statseeker helps to quickly see if you have a spike or something going on. In the future, we need to get NetFlow in the tool so we can see what the IP is."

"This solution has helped us to proactively identify issues and push some of those fixes down to tier one."

"Being able to look back historically at the uptime and downtime is invaluable."

"In terms of network visibility, Statseeker can be very granular. We can tell it exactly where we want it to go and where we want it to check, or it can do an SNMP walk and find out where everything is. It's very detailed."

"If you need a product that's able to monitor all the ports in your environment or all the ports that you want, this is a great product to use. Statseeker is quite flexible in tailoring the product, spending time tailoring the product with you. It's fairly low maintenance. It's quite quick."

"We're able to recover more expensive ports on our access line devices."

"The most valuable feature is alerting."

"Device grouping is very easy, and you can discover thousands of devices in a few minutes."

"Sometimes, if there are changes made by a user on a database server, it can be difficult to get that information on the fly. I would like to see a situation where once I specify a user with the database server I need, and with the changes they have performed on that, I don't need to continue my search pattern to drill down just to get the information."

"The biggest thing that could be better is a quicker response to support cases."

"The dashboards need to be improved. It gives you so much detail, but sometimes too much detail, especially to an executive, it's too much."

"The solution needs to do a better job with third party integration. Right now, that's lacking on the solution. I specifically am talking about the AWS environment. Most of the AWS environment products do not have that capability to integrate."

"There is no proper guide for integration or configuration."

"The graphs on the user interface could be improved as we often experience glitches."

"The interface needs some improvements because it's a bit cumbersome when you're trying to view items. It takes some time to get used to. Additionally, sometimes the scrolling does not work."

"With FortiSIEM, the issue has to do with the ways we can generate a report. It's not as flexible compared to that with other SIEM tools, like Splunk."

"I would like to see a friendlier user interface in the administration tool."

"I would like to have soft alarming. If an inner-base all of a sudden triggers a threshold, we have to rely on a lot of other tools and then we go into Statseeker to verify it. If Statseeker would confirm it preemptively and trigger it into our network panel, that would be nice."

"It may be helpful to have more options in the alerting section."

"It could use more features on Netflow analyser, such as time series graphs and a single network export UDP port and UDP forwarding."

"I would like the ability to update the dashboard. I would also like the ability to access via an API. Then I could produce a dashboard that my C level can understand. This is just so they can go and refresh whenever they want to and see what things look like."

"I'd say the interface could improve a little bit. I find with new users, I tend to have to spend a bit of time walking them through how to use the interface. It could be a little more user friendly."

"The main issue I've seen, in the last six months to a year, is when I upgrade I seem to be hitting bugs. The upgrade won't go smoothly and I have to engage support. These things happen when you upgrade, it's not the end of the world, but from a stability point of view, the only time I've so far, is during upgrades."

"I would like to see the solution incorporate diagnosis of the workstation."

"There are additional features that cost more than the standard licensing fees."

"Fortinet FortiSIEM is not an expensive solution."

"This is probably more on the lower cost end of the spectrum compared to competing products. Fortinet's license model is based on events per second, which makes sense, but that's not typical. It makes it very hard to calculate what your costs are going to be as you scale the platform because some log sources, such as firewall logs, are very noisy, and there are lots and lots of events per second, but some of them are not. So, it becomes a bit of a science experiment trying to guess what your costs are going to be as you scale the solution. This is where other competing products perhaps have a more straightforward license model."

"Fortinet FortiSIEM is very cost-efficient compared to other SIEM solutions."

"We pay for a license for FortiSIEM. We pay for the license and renewal."

"Pricing is determined based on the customer's budget."

"Fortinet's products are not expensive, it is less than the competition."

"There is a need to make yearly payments towards the licensing charges attached to the product. The free version license of the product is available for two months."

"We have permanent licenses so there's really no cost, other than ongoing maintenance. When I think about it, that's running us about $20,000 a year."

"This tool would probably be priced well if it had deeper NetFlow capabilities, but for our use case, in particular, we're only recovering ports after ninety days and looking at circuit congestion, it's pretty pricey."

"Statseeker is pretty cheap."

"We pay somewhere between $5,000 and $8,000 yearly in licensing fees."

"One thing that needs improvement is how it's licensed. I understand historically the company licensed it off a same charge for everyone. I understand the company needs to make money, but how they introduced the tiered licensing model, and then multiple layers of licensing was a bit of an issue. So, on the whole, coming up with a licensing model that isn't confusing and complicated and is easy to understand would be one way to improve the product. They have told me lately that they're changing how they license stuff, but they haven't made that - as I understand it - in their marketing material public knowledge as of yet. I would say that at the moment it's a bit convoluted. It's confusing. Some of their basic licensing model is a bit of a ripoff. If you go over five or ten support calls in the basic licensing model they start charging you for support calls. I think that's a bit rich."

"Pricing is reasonable but licensing should unlimited."

"It's probably $5K a year for the license."

"We paid $5,000 to $10,000 a year in maintenance."