We performed a comparison between Fortinet FortiSIEM and WhatsUp Gold based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The in-built SOAR of Sentinel is valuable. Kusto Query Language is also valuable for the ease of writing queries and ease of getting insights from the logs. Schedule-based queries within Sentinel are also valuable. I found these three features most useful for my projects."
"The solution has features that helped improve the security posture of our clients. It provides the ability to correlate a large variety of log sources very cost-effectively, especially for Microsoft sources."
"Microsoft Sentinel enables you to ingest data from the entire ecosystem and that connection of data helps you to monitor critical resources and to know what's happening in the environment."
"It is always correlating to IOCs for normal attacks, using Azure-related resources. For example, if any illegitimate IP starts unusual activity on our Azure firewall, then it automatically generates an alarm for us."
"It's pretty powerful and its performance is pretty good."
"I believe one of the main advantages is Microsoft Sentinel's seamless integration with other Microsoft products."
"The most valuable features in my experience are the UEBA, LDAP, the threat scheduler, and integration with third-party straight perform like the MISP."
"Sentinel enables us to ingest data from our entire ecosystem. In addition to integrating our Cisco ASA Firewall logs, we get our Palo Alto proxy logs and some on-premises data coming from our hardware devices... That is very important and is one way Sentinel is playing a wider role in our environment."
"The product is quite well-organized. The GUI makes it easy to navigate."
"FortiSIEM provides a single PIN to monitor SOC and NOC. It's a nice tool for integration and monitoring. It provides multiple categories for monitoring based on security designations like low, medium, and high."
"The CMDB and the device discovery features are most valuable."
"This solution offers extensive customization options, making it possible to adapt it precisely to their requirements."
"The seamless integration with FortiGate is the solution's most valuable aspect."
"One of the most valuable features is that we can combine SOC and NOC operations in the same tool. We can provide NOC and SOC services in the same tool for two separate teams. There are plenty of third-party solutions that integrate with FortiSIEM. All these solutions already have a ready integration, and we have the possibility to create a custom connector for these solutions. Its reports are also very good."
"We find the solution to be stable."
"It's a very nice solution to work with."
"NetFlow monitoring, real-time monitoring, and surveys have been the most valuable features for our business."
"It handles the basics of monitoring."
"The interface in the last few years it has been a lot greater, they are much more user-friendly. I like the interface."
"It is stable."
"This is a good, stable network monitoring solution for devices."
"The most valuable feature is the monitoring of resources."
"The most valuable feature of WhatsUp Gold is NetFlow and the virtualized maps."
"It is easy to access and discover devices, as well as monitor them automatically. The topology discover is also a useful feature."
"I would like to see more AI used in processes."
"The playbook is a bit difficult and could be improved."
"When we pass KPIs to the governance department, there's no option to provide rights to the data or dashboard to colleagues. We can use Power BI for this, but it isn't easy or convenient. They should just come up with a way to provide limited role-based access to auditing personnel"
"The solution should allow for a streamlined CI/CD procedure."
"They only classify alerts into three categories: high, medium, and low. So, from the user's point of view, having another critical category would be awesome."
"The following would be a challenge for any product in the market, but we have some in-house apps in our environment... our apps were built with different parameters and the APIs for them are not present in Sentinel. We are working with Microsoft to build those custom APIs that we require. That is currently in progress."
"They're giving us the queries so we can plug them right into Sentinel. They need to have a streamlined process for updating them in the tool and knowing when things are updated and knowing when there are new detections available from Microsoft."
"If you're looking to use canned queries, the interface could be a little more straightforward. It's not immediately intuitive regarding how you use it. You have to take a canned query and paste it into an operational box and then you hit a button... They could improve the ease of deploying these queries."
"Fortinet FortiSIEM could improve by having better integration and extensions. This would benefit by allowing us to give more rules."
"FortiSIEM needs to expand its integration with third-party vendors. I don't know if Forcepoint has been added, but there were limited resources for integrating Forcepoint solutions when we implemented FortiSIEM. It integrates well with other Fortinet products and solutions from established cybersecurity companies like Palo Alto but doesn't integrate with some of the newer vendors."
"I would like to see easier implementation in the future."
"It lacks a "wizard" that shows a particular user's activity or particular circumstance. I think the interface is intimidating because there's so much information there."
"Not very good on non-API features, lacks that functionality."
"Network detection and response is a separate product."
"We expect the latest patch from Fortinet FortiSIEM to give the ability to work with signature files."
"The dashboard needs to improve."
"The technical support does not bother to respond."
"Importing the maps and being able to customize them could be easier."
"Integrations with other devices. I want to have a product that has full integration with my active directory so I can track user activity. I want to track my complete user activity, so I'm looking for a product to implement in the near future, which will have full integration with my network and active directory users. It became very difficult to track user activity."
"I think there are a few bugs now. Although they give some resolution for this, we cannot share the network remotely because of our company policy."
"Users want SMS available via Whatsapp Gold. They don't want to go through third party SMS servers. The solution should work to make this possible."
"I would like to see them do an enhancement to the application monitoring. A lot of other products do better application monitoring so they should do some improvements to the application monitoring."
"Regional product team support is not very good."
"The interface needs some work."
Fortinet FortiSIEM is ranked 8th in Security Information and Event Management (SIEM) with 63 reviews while WhatsUp Gold is ranked 36th in Application Performance Monitoring (APM) and Observability with 22 reviews. Fortinet FortiSIEM is rated 7.6, while WhatsUp Gold is rated 7.8. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of WhatsUp Gold writes "If CPU, memory, or disk space is over-utilized, it alerts us immediately via text or email if there is an issue". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ThousandEyes, whereas WhatsUp Gold is most compared with SolarWinds NPM, Zabbix, Grafana, PRTG Network Monitor and Nagios XI. See our Fortinet FortiSIEM vs. WhatsUp Gold report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
