Lacework FortiCNAPP vs Sophos Cloud Optix comparison

Fortinet and Sophos are both solutions in the Cloud Security Posture Management (CSPM) category. Fortinet is ranked #20 with an average rating of 8.7, while Sophos is ranked #31 with an average rating of 7.0. Fortinet holds a 2.0% mindshare in CSPM, compared to Sophos’s 0.3% mindshare. Additionally, 90% of Fortinet users are willing to recommend the solution, compared to 100% of Sophos users who would recommend it.

Lacework FortiCNAPP

Read 10 Lacework FortiCNAPP reviews

2,522 Views
194 Comparison Views

90% willing to recommend

Sophos Cloud Optix

Read 4 Sophos Cloud Optix reviews

368 Views
37 Comparison Views

100% willing to recommend

Lacework FortiCNAPP

Sophos Cloud Optix

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jun 22, 2025

Lacework FortiCNAPP and Sophos Cloud Optix compete in the cloud security and compliance space. Sophos Cloud Optix seems to have an edge with features and usability, while Lacework FortiCNAPP offers better pricing and support.

Features: Lacework FortiCNAPP is strong in threat detection, compliance automation, and data analysis, with exceptional integration capabilities. Meanwhile, Sophos Cloud Optix offers advanced reporting, intuitive configuration management, and provides a unified dashboard to monitor cloud assets like AWS and Azure.

Room for Improvement: Lacework FortiCNAPP could improve the initial setup process and streamline user interface complexities. Also, feature expansion in advanced reporting could enhance utility. Sophos Cloud Optix might focus on better integration with third-party tools and address complexities with large-scale deployments. User interface enhancements for more complex tasks would be beneficial as well.

Ease of Deployment and Customer Service: Sophos Cloud Optix facilitates a smooth deployment model and responsive customer service, ensuring quick implementation. Lacework FortiCNAPP requires more extensive initial setup but offers robust ongoing support that users appreciate for long-term use.

Pricing and ROI: Lacework FortiCNAPP presents a competitive pricing structure with promising ROI for budget-conscious users, supported by strong overall support systems. Sophos Cloud Optix, while pricier, is perceived as a worthy investment due to its comprehensive feature set that aligns with user data comparisons.

To learn more, read our detailed Lacework FortiCNAPP vs. Sophos Cloud Optix Report (Updated: June 2025).

Buyer's Guide

Lacework FortiCNAPP vs. Sophos Cloud Optix

June 2025

Download the complete report

Helped 859,129 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Lacework FortiCNAPP

Ranking in Cloud Security Posture Management (CSPM)

20th

Average Rating

8.6

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Vulnerability Management (25th), Container Security (23rd), Cloud Workload Protection Platforms (CWPP) (14th), Cloud-Native Application Protection Platforms (CNAPP) (15th), Compliance Management (8th)

Sophos Cloud Optix

Ranking in Cloud Security Posture Management (CSPM)

31st

Average Rating

7.6

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of June 2025, in the Cloud Security Posture Management (CSPM) category, the mindshare of Lacework FortiCNAPP is 2.0%, down from 3.7% compared to the previous year. The mindshare of Sophos Cloud Optix is 0.3%, down from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Cloud Security Posture Management (CSPM)

Featured Reviews

Carlos Vitrano

Cloud security director at Medallia

Provides quick visibility and significantly reduces alerts

Its integrations with third-party SIEMs can be better. That is one of the things that we discussed with them. We have integrations, for instance, with Splunk. The data that we are receiving in Splunk is huge, and it is valid because Lacework has a bunch of data that they can provide to you. However, to be able to import the data and create alerts, we needed to do some work, so integration is one of the things that they can improve. For container security, how they scan images and how they provide results is something that they need to continue improving in terms of visibility. We already have visibility to several artifacts, but they can take that to the next level and see what else they can do. There can be better integrations with CI/CD pipelines. There can be improvements in terms of how we can take action or how we can report from the number of inventories they are providing to us.

Read full review

Jean Desir

Sr Network Engineer at Raptor Trading

DLP is a valuable feature that we use a lot for info audits.

The dashboard and the process for applying policies could be more intuitive. Cloud Optix isn't that difficult once you get the hang of it, but the IT folks managing this want it to be more user-friendly. Deploying the agents could be more seamless, too. Ideally, Cloud Optix would automate adding agents into your environment by integrating with Active Directory or some policy.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Polygraph compliance is a valuable feature. In our perspective, it delivers significant benefits. The clarity it offers, along with the ability to identify and address misconfigurations, is invaluable. When such issues arise, we promptly acknowledge and take action, effectively collaborating with our teams and the responsible parties for those assets. This enables us to promptly manage problems as soon as they arise."

"The most valuable aspects are identifying vulnerabilities—things that are out there that we aren't aware of—as well as finding what path of access attackers could use, and being able to see open SSL or S3 buckets and the like."

"The compliance reports are definitely most valuable because they save time and are accurate. So, instead of relying on a human going through and checking or providing me with a report, I could just log into Lacework and see for myself."

"For the most part, out-of-the-box, it tells you right away about the things you need to work on. I like the fact that it prioritizes alerts based on severity, so that you can focus your efforts on anything that would be critical/high first, moderate second, and work your way down, trying to continue to improve your security posture."

"The best feature, in my opinion, is the ease of use."

"I find the cloud configuration compliance scanning mature. It generates a lot of data and supports major frameworks like ISO 27001 or SOC 2, providing reports and datasets. Another feature I appreciate is setting custom alerts for specific events. Additionally, I value the agent-based monitoring and scanning for compute nodes. It gives us deeper insights into our workloads and helps identify vulnerabilities across our deployed assets."

"There are many valuable features that I use in my daily work. The first are alerts and the event dossier that it generates, based on the severity. That is very insightful and helps me to have a security cap in our infrastructure. The second thing I like is the agent-based vulnerability management, which is the most accurate information."

"The most valuable feature, from a compliance perspective, is the ability to use Lacework as a platform for multiple compliance standards. We have to meet multiple standards like PCI, SOC 2, CIS, and whatever else is out there. The ability to have reports generated, per security standard, is one of the best features for me."

More Lacework FortiCNAPP pros

"DLP is a valuable feature that we use a lot for info audits."

"I find Cloud Optix to be a valuable solution since it provides a single, unified dashboard to monitor cloud assets, such as AWS and Azure."

"The most valuable feature of Sophos Cloud Optix is the simple way to manage my devices on the network. Additionally, it is easy to navigate and has a user-friendly interface."

"I find Cloud Optix to be a valuable solution since it provides a single, unified dashboard to monitor cloud assets, such as AWS and Azure."

"The most valuable feature for me would be the solution's endpoint protection."

Cons

"There are a couple of the difficulties we encounter in the realm of cybersecurity, or security as a whole, that relate to potentially limited clarity. Having the capacity to perceive the configuration aspect and having the ability to contribute to it holds substantial advantages, in my view. It ranks high, primarily due to its role in guaranteeing compliance and the potential to uncover vulnerabilities, which could infiltrate the system and introduce potential risks. I had been exploring a specific feature that captured my interest. However, just yesterday, I participated in a product update session that announced the imminent arrival of this feature. The feature involves real-time alerting. This was something I had been anticipating, and it seems that this capability is now being integrated, possibly as part of threat intelligence. While anomaly events consistently and promptly appear in the console, certain alerts tend to experience delays before being displayed. Yet, with the recent product update, this issue is expected to be resolved. Currently, a comprehensive view of all policies is available within the console. However, I want a more tailored display of my compliance posture, focusing specifically on policies relevant to me. For instance, if I'm not subject to HIPAA regulations, I'd prefer not to see the HIPAA compliance details. It's worth noting that even with this request, there exists a filtering mechanism to control the type of compliance information visible. This flexibility provides a workaround to my preference, which is why it's challenging for me to definitively state my exact request."

"The biggest thing I would like to see improved is for them to pursue and obtain a FedRAMP moderate authorization... I don't believe they have any immediate plans to get FedRAMP moderate authorized, which is a bit of a challenge for us because we can only use Lacework in our commercial environment."

"I would like to see a remote access assistance feature. And the threat-hunting platform could be better."

"The configuration and setup of alerts should be easier. They should make it easier to integrate with systems like Slack and Datadog. I didn't spend too much time on it, but to me, it wasn't as simple as the alerting that I've seen on other systems."

"The solution lacks a cohesive data model, making extracting the necessary data from the platform challenging. It uses its own LQL query language, and each database across different layers and modules is structured differently, complicating correlation efforts. Consequently, I had to create extensive custom reports outside Lacework because their default dashboards didn't communicate risk metrics. They're addressing these issues by redesigning their tools, including introducing the dashboard, which is a step closer to actionable insights but still needs refinement."

"Its integrations with third-party SIEMs can be better. That is one of the things that we discussed with them."

"A feature that I have requested from them is the ability to sort alerts and policies based on a security framework. Right now, when you go into alerts, you have hundreds and hundreds of them that you have to manually pick. It would be useful to have categories for CIS Benchmark or SOC 2 and be able to display all the alerts and policies for one security framework."

"Lacework has not reduced the number of alerts we get. We've actually had to add resources as a result of using it because the application requires a lot of people to understand it to get the value out of it properly."

More Lacework FortiCNAPP cons

"The dashboard and the process for applying policies could be more intuitive. Cloud Optix isn't that difficult once you get the hang of it, but the IT folks managing this want it to be more user-friendly."

"The setup was a little bit complex."

"Sophos should enhance its AI-driven detection features and anomaly detection."

"There are times when the devices are at maximum capacity, and it takes a while before the device is updated. For example, if the device has a virus, and it's not aligned to connect to the network, even after you've scanned the device, and cleaned out the virus, once the management clears the system to allow it back on the network it takes some time. It can be frustrating when you have your line manager or in management affected trying to access the network."

Pricing and Cost Advice

"My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz."

"The licensing fee was approximately $80,000 USD, per year."

"It is slightly expensive. It depends on how big your environment is, but it is expensive. Right now, we are spending a lot of money. We have covered all of the cloud providers and most of our colocation facilities as well, so we cannot complain, but it is slightly expensive. It is not super expensive."

"The pricing has gotten better. That scenario was somewhat unstable. They have a rather interesting licensing structure. I believe you get 200 resources per "Lacework unit." It was difficult, in the beginning, to figure out exactly what a "resource" was... That was a problem until about a year or so ago. They have improved it and it has stabilized quite a bit."

"Regarding the pricing for Sophos Cloud Optix, I would say that it was a very good price."

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.

See recommendations

859,129 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

18%

Financial Services Firm

12%

Manufacturing Company

University

Computer Software Company

10%

University

Government

Insurance Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Lacework?

Polygraph compliance is a valuable feature. In our perspective, it delivers significant benefits. The clarity it offers, along with the ability to identify and address misconfigurations, is invalua...

See all answers

What is your experience regarding pricing and costs for Lacework?

My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz.

See all answers

What needs improvement with Lacework?

The solution lacks a cohesive data model, making extracting the necessary data from the platform challenging. It uses its own LQL query language, and each database across different layers and modul...

See all answers

What needs improvement with Sophos Cloud Optix?

Sophos should enhance its AI-driven detection features and anomaly detection. The solution focuses on cloud security posture management. Fortinet, having acquired Lacework, seems to be a step ahead...

See all answers

What is your primary use case for Sophos Cloud Optix?

One primary use case for Sophos Cloud Optix is cloud visibility. I use it for compliance requirements and improving end user experience. The solution provides a unified dashboard for multi-cloud en...

See all answers

What advice do you have for others considering Sophos Cloud Optix?

I rate Sophos Cloud Optix seven out of ten overall. I recommend it for any size of company, considering their current ecosystem and workload. It's particularly suited for those in a Sophos ecosyste...

See all answers

Comparisons

Wiz vs Lacework FortiCNAPP

Compared 21% of the time

Prisma Cloud by Palo Alto Networks vs Lacework FortiCNAPP

Compared 16% of the time

AWS GuardDuty vs Lacework FortiCNAPP

Compared 6% of the time

Tenable Cloud Security vs Lacework FortiCNAPP

Compared 5% of the time

Microsoft Defender for Cloud vs Lacework FortiCNAPP

Compared 4% of the time

More Lacework FortiCNAPP Competitors

Microsoft Defender for Cloud vs Sophos Cloud Optix

Compared 33% of the time

Wiz vs Sophos Cloud Optix

Compared 29% of the time

Check Point CloudGuard CNAPP vs Sophos Cloud Optix

Compared 27% of the time

AWS Security Hub vs Sophos Cloud Optix

Compared 11% of the time

More Sophos Cloud Optix Competitors

Product Reports

Buyer's Guide

Lacework FortiCNAPP

June 2025

Download Lacework FortiCNAPP product report

Buyer's Guide

Cloud Security Posture Management (CSPM)

June 2025

Download Sophos Cloud Optix product report

Also Known As

Polygraph, FortiCNP

No data available

Overview

Lacework FortiCNAPP provides robust cloud security, combining vulnerability management and multi-cloud insight with user-friendly controls, machine learning detection, and compliance support.

Lacework FortiCNAPP specializes in cloud security by merging machine learning anomaly detection with agent-based vulnerability management to offer detailed alerts and compliance reports. Its comprehensive approach allows continuous monitoring across AWS and Kubernetes, providing insights from an attacker's perspective. The platform offers automation and seamless Slack integration, facilitating collaborative and efficient cloud security management. Users value its ability to handle multi-cloud environments and scan IAC scripts, configurations, and compute nodes across AWS and GCP.

What are the key features?

Machine Learning Detection: Identifies anomalies effectively.
Compliance Reports: Provides precise compliance documentation.
Vulnerability Management: Supports agent-based vulnerability assessments.
Multi-Cloud Support: Manages and secures across multiple cloud providers.
Automation and Collaboration: Enables integration with Slack for streamlined communication.
Custom Alerts: Allows creation of personalized alerts for better focus.

What benefits do users expect?

Reduced Alert Noise: Minimizes distractions with filtered alerts.
Efficient Cloud Security: Automates processes for enhanced security management.
Collaboration Support: Integrates with tools like Slack.
Insightful Perspective: Provides insight from an attacker's viewpoint.

Organizations across sectors leverage Lacework FortiCNAPP for cloud security, focusing on compliance, security posture, and vulnerability management. It is widely used for monitoring AWS and Kubernetes environments, scanning IAC scripts, configurations, and securing compute nodes. It supports multi-cloud security posture management and log ingestion, enabling companies to maintain strong cloud infrastructures without dedicated security layers.

Fortinet

Easily identify cloud resource vulnerabilities, ensure compliance, and respond to threats faster.

Sophos

Sample Customers

J.Crew, AdRoll, Snowflake, VMWare, Iterable, Pure Storage, TrueCar, NerdWallet, and more.

Information Not Available

Buyer's Guide

Lacework FortiCNAPP vs. Sophos Cloud Optix

June 2025

Free Report: Lacework FortiCNAPP vs. Sophos Cloud Optix

Find out what your peers are saying about Lacework FortiCNAPP vs. Sophos Cloud Optix and other solutions. Updated: June 2025.

DOWNLOAD NOW

859,129 professionals have used our research since 2012.

See our Lacework FortiCNAPP vs. Sophos Cloud Optix report.

See our list of best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.