FortiCNAPP Reviews

Name: FortiCNAPP
Brand: Fortinet
Rating: 4.2 (11 reviews)

Vendor: Fortinet

4.2 out of 5

11 reviews
83% willing to recommend

Leave a review

What is FortiCNAPP?

FortiCNAPP is a comprehensive cloud security platform focusing on ease of use and machine learning-driven anomaly detection. It offers robust compliance reporting, seamless integration, and continuous monitoring, making it an essential tool for organizations managing multi-cloud environments and security configurations.

Get the FortiCNAPP Buyer's Guide and find out what your peers are saying about FortiCNAPP, Cloudflare, Wiz and more!

FortiCNAPP is the #10 ranked solution in top Compliance Management solutions, #18 ranked solution in top Cloud-Native Application Protection Platforms (CNAPP) solutions, #20 ranked solution in Cloud Workload Protection Platforms, #27 ranked solution in top Cloud Security Posture Management (CSPM) solutions, #31 ranked solution in Container Security Solutions, and #44 ranked solution in top Vulnerability Management solutions. PeerSpot users give FortiCNAPP an average rating of 8.4 out of 10. FortiCNAPP is most commonly compared to Cloudflare: FortiCNAPP vs Cloudflare. FortiCNAPP is popular among the large enterprise segment, accounting for 59% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 13% of all views.

Helped 879,259 peers since 2012

Featured FortiCNAPP reviews

Sai Tharun Kumar

Software Engineer at a university with 5,001-10,000 employees

The machine learning capability in Lacework FortiCNAPP is used for threat detection. Automated policy recommendation helps to improve my security measures in general. I usually use certain policies in my workspace, like if there are some alerts or something. Continuous compliance and security monitoring are good, but they need more improvement in the vulnerabilities part.

Read full review

Carlos Vitrano

Cloud security director at Medallia

First of all, alert reduction is helping us to be focused on other things that matter. The other thing is in regards to visibility. What we found is that Lacework is super easy to deploy in Kubernetes environments and other environments. You can get super quick visibility into what is going on in your environment. Even though it has a behavioral engine, and it takes a couple of hours to consolidate the information and present that to you, it is pretty quick. We have a huge environment, it is great for us. Lacework saves us a lot of money because in terms of the ingestion of data or in terms of the way AWS, GCP, and other cloud providers are sending logs into Lacework, if we have to ingest the data in our SIEM, for instance, it is going to cost us a lot of money. Having Lacework in the middle, ingesting the data, processing the data, and providing us with the right information is super valuable, at least from a cost perspective. I know every company would like to have all the logs in the SIEM or store them somewhere in their environment, but that is an advantage that I recognize in Lacework. The data is good. We can see the data that we want. It is good for helping us view our environment from an attacker’s perspective. One of the things that they introduced recently is Attack Path. Previously, we needed to go to two or three places to figure out what was going on in our environment. Even though we had alerts from Lacework that gave us a lot of information, we sometimes needed to go to other places to make sure that we fully understood the context of the data alert. Lacework has introduced Attack Path which helps us a lot to identify the activity from the beginning to the end. It has the ability to monitor configurations continuously. This capability is important, but we have complementary tools that monitor the configuration of certain files. We have reduced the alert noise by 60% to 70%. We needed an opportunity to focus on projects and improve our controls elsewhere. We also wanted to focus on improving our detection capabilities because the network is providing a subset of alerts that are helpful, but we also need to think about all those things that we need to do in our environment, such as make a list of some use cases from an attacker's perspective and see if we can catch the event. We have threat intelligence as well. We can see whether we have a particular type of threat in our environment. There is vulnerability management as well. The combination of those factors is what we are currently doing. We can focus on these things. Lacework helped save time by reducing our manual tasks. Lacework is providing us with comprehensive data or some set of data to see what is going on. In the past, we were doing that manually. We had to go to other places to understand what was going on, so Lacework helped us on that front. That was the most important saving of manual tasks. It also has helped us to free up existing resources. The number of people that I had initially on the on-call rotation is less because of it. I could take out those people for other projects. That is the huge value that I saw from Lacework. As long as we reduce alerts, we will have time to focus on other things. In terms of human resources, people are more focused on other things. Lacework has absolutely helped to reduce our organization's breach risk. Our company is super focused on protecting customer data. We are storing data in several cloud providers' object storage. With Lacework, especially with Cloud Security Posture Management, there is a compliance part where we can see how many object storages are exposed to the Internet. Whenever we have any event, we can identify that properly and immediately take action. That is how we reduce the risk in cloud providers. We take customer data super seriously, and we were able to identify all the alerts for the public object storage or for those that we had already but did not know. Lacework has been helpful for spotting critical weaknesses. The most important thing is our customer data. It has helped us a lot, and it is super valuable.

Read full review

Jim Shank

VP of Engineering Security at a tech services company with 201-500 employees

The most valuable features are the anomaly detection and security compliance, both, that the product does pretty well. For anomaly detection, it parses things using a severity scale of low, moderate, and high, and that helps provide context to the urgency and prioritization of the alerts that you get in the tool. And on the compliance side, it supports several benchmarks, including CIS, NIST 800-53, as well as other security standards. It will give you insights into compliance against those standards so you can see how your product is configured and if it complies with the best security practices of those standards. Where it really shines is in helping you detect anomalous activities and known threats, assuming that you have it properly configured. Out-of-the-box, it's not difficult to configure. You do need to do some minor configuration work depending on how you deployed your application. But for the most part, out-of-the-box, it tells you right away about the things you need to work on. I like the fact that it prioritizes alerts based on severity, so that you can focus your efforts on anything that would be critical/high first, moderate second, and work your way down, trying to continue to improve your security posture. That part works very well. Also, to the extent that attackers are trying to take advantage of vulnerabilities that you may have in your system, Lacework is very good at giving you a view of your environment from an attacker's perspective. It provides context to help understand how easy or difficult, and how likely or unlikely, it is for an adversary to exploit the vulnerabilities that you may have. In addition, it's really good at continuously monitoring, 24/7, 365. It's designed to do that. It's constantly working in the background to protect our AWS workloads, and I feel good about that. It's very important because it's one of the things we rely upon the most to give us insights into our security posture at any given point in time. I also like a lot of the dashboards and reports. They're fairly user-friendly and easy to understand.

Read full review

FortiCNAPP mindshare

Product category:

As of December 2025, the mindshare of FortiCNAPP in the Vulnerability Management category stands at 1.3%, down from 1.5% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Vulnerability Management Market Share Distribution
Product	Market Share (%)
FortiCNAPP	1.3%
Wiz	8.6%
Tenable Nessus	5.9%
Other	84.2%

Vulnerability Management

PeerResearch reports based on FortiCNAPP reviews

Type	Title	Date
Category	Vulnerability Management	Dec 29, 2025	Download
Product	Reviews, tips, and advice from real users	Dec 29, 2025	Download
Comparison	FortiCNAPP vs Wiz	Dec 29, 2025	Download
Comparison	FortiCNAPP vs Tenable Nessus	Dec 29, 2025	Download
Comparison	FortiCNAPP vs Qualys VMDR	Dec 29, 2025	Download

Valuable Features

FortiCNAPP's key attributes include its ability to distill security logs, anomaly detection, and compliance support. Users appreciate its automation, continuous monitoring, and insights on vulnerabilities. Machine learning aids efficient threat detection while providing a streamlined view of attacker perspectives. Integration with compliance standards like PCI and SOC 2 is crucial. The system prioritizes alerts based on severity, and its user-friendly dashboards and reports facilitate easy navigation, enhancing security operations significantly.

"The machine learning capability in Lacework FortiCNAPP is used for threat detection, and automated policy recommendation helps to improve my security measures in general."
"I find the cloud configuration compliance scanning mature. It generates a lot of data and supports major frameworks like ISO 27001 or SOC 2, providing reports and datasets. Another feature I appreciate is setting custom alerts for specific events. Additionally, I value the agent-based monitoring and scanning for compute nodes. It gives us deeper insights into our workloads and helps identify vulnerabilities across our deployed assets."
"Lacework is helping a lot in reducing the noise of the alerts. Usually, whenever you have a tool in place, you have a lot of noise in terms of alerts, but the time for an engineer to look into those alerts is limited. Lacework is helping us to consolidate the information that we are getting from the agents and other sources. We are able to focus only on the things that matter, which is the most valuable thing for us. It saves time, and for investigations, we have the right context to take action."

Room for Improvement

FortiCNAPP needs enhanced visibility, improved IAM security controls, and better integration with tools like Slack and Datadog. FedRAMP authorization is missing, and the platform's complexity requires simplification. Integrations with third-party systems need refinement, while alert configuration and custom reporting lack granularity. The vulnerability interface is not user-friendly, and recent changes in user management have reduced automation. The platform's data model and query language complicate data extraction, and scalability limitations hinder performance, especially with integrations like GitHub.

"The vulnerability part is not systematically organized; it is all clumsy in the web UI, and it is not user-friendly."
"The solution lacks a cohesive data model, making extracting the necessary data from the platform challenging. It uses its own LQL query language, and each database across different layers and modules is structured differently, complicating correlation efforts. Consequently, I had to create extensive custom reports outside Lacework because their default dashboards didn't communicate risk metrics. They're addressing these issues by redesigning their tools, including introducing the dashboard, which is a step closer to actionable insights but still needs refinement."
"Its integrations with third-party SIEMs can be better. That is one of the things that we discussed with them."

ROI

Lacework offers significant time savings by automating tasks like ticket creation and assigning actions, reducing the need for a large team. Its integration with tools such as Jira enhances efficiency by automatically handling alerts. While monetary benefits are not easily quantifiable, reduced staff requirements demonstrate a clear benefit. Users report an immediate return from using Lacework, recognizing the value in enhanced security and prevention of potential major incidents, emphasizing its cost-effectiveness over hiring additional staff.

Pricing

FortiCNAPP's pricing is approximately $80,000 annually, with some flexibility and potential discounts available. Enterprise users note the licensing structure has improved, eliminating earlier complexities in defining "resources." Although considered slightly expensive, it is generally affordable compared to competitors. Costs vary based on deployment size and environment scope, with smaller deployments around $200,000 annually. Users appreciate FortiCNAPP's pricing transparency and flexibility, particularly for cloud and colocation facilities.

"My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz."
"It is slightly expensive. It depends on how big your environment is, but it is expensive. Right now, we are spending a lot of money. We have covered all of the cloud providers and most of our colocation facilities as well, so we cannot complain, but it is slightly expensive. It is not super expensive."
"The pricing has gotten better. That scenario was somewhat unstable. They have a rather interesting licensing structure. I believe you get 200 resources per "Lacework unit." It was difficult, in the beginning, to figure out exactly what a "resource" was... That was a problem until about a year or so ago.They have improved it and it has stabilized quite a bit."

Popular Use Cases

Organizations primarily use FortiCNAPP for cloud security, compliance monitoring, and vulnerability management. It provides insights into AWS, GCP, and Kubernetes environments by scanning infrastructure and configurations for compliance and security posture. FortiCNAPP aids in detecting anomalies and risky behaviors, covers various cloud service providers, manages security postures, and offers run-time detection and inventory capabilities. Users deploy agents for monitoring and leverage FortiCNAPP’s capabilities to protect cloud and container environments effectively.

Service and Support

Customer service and support of FortiCNAPP receive high marks. They provide quick responses and ongoing assistance, often via Slack. Issues are addressed promptly, although some may take longer due to complexity. Users appreciate proactive communication, regular check-ins, and helpful insights. Technical support is considered timely and efficient with a high success rate for resolving queries. Most ratings reflect a very positive experience, marking FortiCNAPP's team as responsive and dedicated.

Deployment

Users find FortiCNAPP's initial setup straightforward, whether deploying manually or using automation tools. Deployment times range from 15 minutes to two weeks, with some taking four days. Familiarity with cloud environments and containers aids the process. Most report minimal maintenance, with occasional agent updates required. Some tasks are necessary, like policy upkeep and alert management. Users experience varying challenges, such as setting configurations, but essential functions and automation are typically easy to manage across platforms like AWS and GCP.

Scalability

FortiCNAPP is reported to handle scalability well, accommodating various cloud environments and numerous assets. Users have expressed confidence in its ability to scale with demand, deploying in multiple locations and managing thousands of assets. Some noted minor limitations when handling very large environments, but no significant issues were encountered. Licensing structures were mentioned as a concern, yet FortiCNAPP remains flexible and efficient at increasing capacity with minimal effort required from users.

Stability

FortiCNAPP is generally stable, with most users not encountering issues. Some experience slowness due to internet connection or internal factors, but this doesn't impact stability significantly. False positives and API issues are minimal, indicating improving detection capabilities. Regular webinars help enhance user understanding. No major outages or threats have been reported recently. Users appreciate ongoing improvements, frequent updates, and positive outlook on scalability and growth through new leadership hires.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our FortiCNAPP Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company Size	Count
Small Business	4
Midsize Enterprise	3
Large Enterprise	4

By reviewers

By visitors reading reviews
Company Size	Count
Small Business	111
Midsize Enterprise	61
Large Enterprise	244

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

13%

Manufacturing Company

University

Retailer

Media Company

Comms Service Provider

Educational Organization

Real Estate/Law Firm

Healthcare Company

Government

Construction Company

Insurance Company

Energy/Utilities Company

Outsourcing Company

Hospitality Company

Marketing Services Firm

Non Profit

Wholesaler/Distributor

Performing Arts

Recreational Facilities/Services Company

Legal Firm

Transportation Company

Leisure / Travel Company

Sports Company

Wellness & Fitness Company

Compare FortiCNAPP with alternative products

Learn more about FortiCNAPP

FortiCNAPP provides significant capabilities in cloud security, compliance, and vulnerability management. Designed for organizations needing efficient monitoring, it enables detection of anomalies across cloud infrastructures while optimizing security posture and ensuring compliance with environments like AWS and GCP. The platform offers in-depth insights through scanning of IAC scripts, host systems, and cloud configurations. Recognized for effectively managing security posture, it safeguards Kubernetes and container environments, providing comprehensive threat detection and response. However, some areas like visibility, IAM security controls, and compliance metrics need improvement. Users face challenges with alert setup and lack intuitive design, alongside issues like FedRAMP authorization absence and complexity in the data model.

What are the key features of FortiCNAPP?

Ease of Use: FortiCNAPP simplifies security management for cloud environments.
Machine Learning Anomaly Detection: Automatically identifies and prioritizes threats.
Compliance Reporting: Streamlines compliance procedures and reporting.
Seamless Integration: Ensures smooth operation across multi-cloud environments.
Continuous Monitoring: Provides ongoing oversight of security vulnerabilities.
Multi-Cloud Integration: Enables swift response to misconfigurations and vulnerabilities.

What benefits should users expect when evaluating FortiCNAPP?

Time Efficiency: Reduces time spent on compliance and threat management.
Improved Security Posture: Enhances protection for cloud and container environments.
Valuable Security Insights: Provides in-depth analysis for proactive threat response.
Noise Reduction: Distills security logs to minimize alert fatigue.
Operational Effectiveness: Facilitates seamless multi-cloud security management.

FortiCNAPP is implemented extensively by industries needing reliable cloud security, such as finance, healthcare, and technology sectors. It supports organizations in enhancing cloud infrastructure protection, ensuring compliance, and strengthening vulnerability management. By integrating with platforms like AWS and GCP, businesses can optimize security posture in their cloud deployments.

FortiCNAPP was previously known as Polygraph, FortiCNP, Lacework.

FortiCNAPP customers

J.Crew, AdRoll, Snowflake, VMWare, Iterable, Pure Storage, TrueCar, NerdWallet, and more.

Title	Rating	Mindshare	Recommending
Cloudflare	4.3	N/A	96%	77 interviews Add to research
Wiz	4.5	8.6%	96%	33 interviews Add to research

Author info	Rating	Review Summary
Software Engineer at a university with 5,001-10,000 employees	3.0	I've used Lacework FortiCNAPP for two years mainly for security; while machine learning and policy automation are helpful, the UI, vulnerability management, and integration issues need improvement, and scalability remains a significant limitation.
Cloud security director at Medallia	4.5	We utilize Lacework for cloud security management, appreciating its ability to reduce alert noise and streamline investigations. While integration with third-party SIEMs and further container security enhancements are needed, we've seen a positive ROI over several years.
VP of Engineering Security at a tech services company with 201-500 employees	4.0	I find Lacework valuable for anomaly detection and security compliance, with effective severity prioritization and continuous AWS monitoring. However, the lack of FedRAMP moderate authorization limits its use in government environments, leading to potential challenges requiring multiple tools.
Techology Operations Lead at a computer software company with 11-50 employees	5.0	I primarily use Lacework for compliance and security insights, valuing its multi-standard reporting and continuous monitoring. However, communication around changes needs improvement. Despite this, it offers a significant ROI by reducing manpower requirements.
Director of Security Operations at a insurance company with 51-200 employees	3.5	I use Lacework mainly for vulnerability management and monitoring, appreciating its detailed cloud compliance scanning and agent capabilities. However, data extraction is challenging due to its complex data model and limited custom alert granularity.
Director of Enablement at Avesha	5.0	I use Lacework as a cloud security platform for managing multiple providers. Its most valuable feature is distilling security logs, greatly reducing alerts. While it lacks remediation features, it's improving compliance and vulnerability scanning, offering a good return on investment.
Infosec Engineer - Lead at a tech vendor with 1,001-5,000 employees	4.5	We mainly use Lacework for detection and response and as a vulnerability management tool for our cloud infrastructure. Its valuable features include insightful alerts, an agent-based scanner, and clear explanations, though it could improve in remote access assistance and threat-hunting.
Senior Manager at a educational organization with 10,001+ employees	2.5	We use Lacework for monitoring security vulnerabilities in the cloud, particularly AWS. While it effectively identifies vulnerabilities and monitors configurations, it's complex and not intuitive. We've seen no ROI and are considering switching due to slow scanning and high alert volume.

FortiCNAPP Reviews

What is FortiCNAPP?

Featured FortiCNAPP reviews

FortiCNAPP mindshare

PeerResearch reports based on FortiCNAPP reviews

Valuable Features

Room for Improvement

ROI

Pricing

Popular Use Cases

Service and Support

Deployment

Scalability

Stability

Review data by company size

Top industries

Compare FortiCNAPP with alternative products

Learn more about FortiCNAPP

FortiCNAPP customers

Related questions

Product Categories

Popular Comparisons