Fortinet FortiEDR Reviews

We are an incident response team, and we use Fortinet FortiEDR for our cyber protection-related activities.

Fortinet FortiEDR has helped our organization by providing reports that identify network weaknesses.

With the proper training, the solution is easy to use.

In some cases, the solution has freed up around three and a half hours of our staff's time so that they can work on other projects.

The most valuable feature is the analysis, because of the beta structure.

FortiEDR can be improved by providing more detailed reporting.

I have been using Fortinet FortiEDR for seven years.

I give the stability of the solution a seven out of ten.

FortiEDR is a scalable solution because it has a well-structured and manageable report that is easy to understand.

We previously used a different solution, but I cannot recall its name.

I give Fortinet FortiEDR an eight out of ten.

I came here to test ICS points and get some tools for VFDs. API security is becoming increasingly important, as we use a lot of APIs in our government. We need to test APIs to ensure they are secure, especially as ransomware attacks are also on the rise.

This is my fourth time coming to this RSA. I bought a new product here this time. We can see everything in one room, which makes it easy for us to understand and also make new contacts.

Fortinet FortiEDR protects our workstations against ransomware and other malicious applications.

The solution acts like an advanced antivirus with extended features like logging and automated response to detected threats. This automation helps save time, as the system automatically handles malicious detections and responses without much manual configuration.

The tool has saved me time managing workstation protection.

I did face some challenges using Fortinet FortiEDR, especially in the Mac environment. While the detections work well in Windows, Mac has limitations. If I need to configure something in the Mac environment, I have to open a support ticket because I can't do it myself; the support team has to apply the configurations on the backend.

I have two main suggestions for improvement: enhancing the UI and UX to make it more beginner-friendly and giving users more control over configurations in the Mac environment without contacting support.

I contacted Fortinet support, and I would describe it as really helpful. They responded quickly, usually within one or two business days, and the guidelines they provided were simple and easy to understand, even for non-technical engineers.

Positive

The solution's deployment is straightforward, but the dashboard can be confusing due to its less user-friendly design. I had to reach out to Fortinet support a few times, and they were quite helpful, usually responding within one to two business days. Their guidance made the configuration process easier.

The agents' deployment was simple and took about a week to complete across all workstations. However, fine-tuning the rules to manage false positives took longer—around three months.

I chose Fortinet FortiEDR because it's more cost-effective than competitors, potentially saving me up to half the price.

I rate the overall solution an eight out of ten. 

It's a kind of virus defense that is looking to the future and not to the past.

The main thing is that I feel safe. Because the processes that have been used to get a handle on the attackers are much better than other competitors.

The solution is very secure compared to other vendors.

The only minor concern is occasional interference with desired programs, although it's a necessary trade-off. Otherwise, I have no suggestions for improvement.

Another area of improvement is support. It could be faster. 

In future releases, maybe some extra features could be added to make it better, and maybe the events and history could be made a little bit clearer.

We've been using it for four to five years now.

It is a stable solution. 

It is a scalable solution. There are around 6o end users using this solution. It is easy to scale. 

The customer service and support are quite okay. It could be better. 

Positive

I have used ESET. ESET is an old-style defense that has less problems with new programs, but it's not as secure as Fortinet.

We currently use both ESET and Fortinet. We have some places, especially for developers, that can't use FortiEDR because it's too restrictive.

Installation is straightforward.

The initial installation on the server side takes a bit of time, but if we consider the overall process, it could take about a week.

We require two people for deployment. The maintenance is easy. 

The pricing model is okay. It's not cheap, but it's not expensive either. It's a customized price. It's a yearly license. There are no extra costs. 

I would definitely recommend the solution. 

Overall, I would rate the solution a nine out of ten because but the only concerns I have are that it can sometimes have problems with new programs, and the support could be a bit faster.

We are using the AirGap edition. The solution is used for threat hunting. Some things are aligned to update the database to keep up with the vulnerabilities and threats on the internet.

I get alerts when scripts are detected in the environment. I can immediately stop the process. I can see which processes are running and immediately allow, stop, or reverse the damage.

The solution is not user-friendly. It is a bit hard for me. We must have the knowledge needed to find the threats using the product. We must know how to navigate and investigate using the tool. I think the usage is limited for AirGap users. We cannot use AI. Keeping up with the agent updates is a little bit difficult. Fortinet must make agent updates easier.

I run the solution on-premise. One of the VMs needs a lot of memory. It takes a lot of resources off of my VMware. I know I need resources to run threat hunting. The vendor advised me to go to the cloud. However, it's not up to me to go to the cloud. I need my CEO’s approval.

I have been using the solution for three years.

I have directly contacted the engineering staff. When I open a ticket, I can contact support immediately. The team helps me with my problems.

Positive

The solution is not expensive. However, CrowdStrike is more expensive.

CrowdStrike is much more advanced than FortiEDR. CrowdStrike is fully on the cloud and has AI features. I think it has a SOC team, too. The user interface is great. According to the reviewers, CrowdStrike is the number one tool for cybersecurity. I am evaluating CrowdStrike so that we can move to CrowdStrike in the future.

The solution provides online training that we can use to learn how to use the product. My recommendation depends on an organization's budget. However, I will recommend CrowdStrike more than Fortinet. Overall, I rate the product a seven out of ten.

I utilize Fortinet FortiEDR for endpoint protection.

Our security posture improved since implementing Fortinet FortiEDR in terms of our overall setup, as we've experienced significant enhancements. We now have streamlined operations, better dashboards, and improved monitoring capabilities, consolidating multiple functions into a single solution. Previously, we were managing three separate vendors alongside support from our IT arm and outsourced assistance. With FortiEDR, everything is integrated under one dashboard, making our processes more efficient.

Fortinet FortiEDR effectively manages threat detection and response in our daily operations with great robustness. Previously, we had to rely on two separate Palo Alto devices for bandwidth management, both lacking real-time capabilities. Our search engine, detection engine, and database were also disjointed. However, with FortiEDR, we've achieved parity in functionality for both functions. Consequently, our bandwidth performance has seen a significant boost, providing users with a stable stream to work with.

The implementation of automation has had a significant impact on our team's workload. As we operate shared services centers across the APAC region, having this infrastructure in place has provided us with visibility across all three sites. This visibility, facilitated by automation, is particularly beneficial for higher management and decision-makers. It's a notable advancement for our operations.

FortiEDR has played a crucial role in mitigating the impact of breaches within our healthcare IT industry. Given the vast amount of data we handle and the real-time nature of data processing via APIs and centralized databases, FortiEDR has streamlined our operations. It allows us to process data at our own pace without encountering significant obstacles or requiring extensive workarounds. Essentially, it has provided us with a seamless transition between sandbox and production environments, making our workflow smoother and more efficient.

One of the most effective features of FortiEDR for our security requirements is its dashboard accessibility. Having all monitoring, response, tracking, and mitigation tools in one dashboard provides our analysts and SOC team with a comprehensive view at a glance. This has significantly improved our response time, which is crucial given our primary focus on healthcare IT and the stringent regulations such as GDPR. The data we handle is highly sensitive, making robust agent-based active monitoring and protection, along with the mitigation setup, invaluable features that we truly appreciate.

There's room for improvement in the quick response time and technical support for integration issues, especially when dealing with multiple vendors. Delays in resolving integration challenges can impact project timelines and collaboration efforts, as experienced during our partnership with a fintech company. While the EDR's mitigation and tracking capabilities are commendable, there are concerns regarding vulnerability detection and database updates. In comparison to Trend Micro, our EDR solution seems to lag in addressing new vulnerabilities, necessitating workaround strategies to minimize risks. Therefore, enhancing real-time vulnerability detection capabilities is essential to maintain competitiveness and ensure user security.

I have been using it for two years.

We transitioned all sites and infrastructure simultaneously without encountering any drawbacks. I would rate it nine out of ten.

Scalability-wise, we encountered no issues, except for integration challenges with other vendors. I would rate it eight out of ten.

I am extremely dissatisfied with the support and would like to see a faster response time. I would rate it four out of ten.

Neutral

The initial setup was relatively straightforward. I would rate it eight out of ten.

The deployment across the entire APAC region, encompassing two countries and seven field SSEs, with approximately eighty-nine devices per region, involved a team of around two hundred specialists from various domains such as risk assessment, compliance, network, database, and others. In total, about two hundred ten users were working on the deployment, and the process was robust and straightforward.

The pricing is significantly high. The implementation of this solution required us to allocate additional funds beyond our initial budget. However, due to thorough testing and careful solutions, we are confident in its capabilities and scalability for the next three years. While the cost may have been high, we view it as a worthwhile investment due to Fortinet's reliability and long-term performance.

We didn't need to explore alternative products on the market, as we already had a partial setup in place.

The integration of Fortinet products significantly bolstered our security environment. Among the seven layers of integration implemented, two key integrations stand out. Firstly, integrating across several SSCs globally facilitated the aggregation of information into a single BI tool, notably Microsoft BI, streamlining reporting processes. While this integration was relatively straightforward, integrating with external vendors posed challenges due to diverse systems and solutions across the industry chain. However, with the assistance of specialized experts, these challenges were effectively addressed. 

In terms of my recommendation, I would certainly endorse its use. Overall, I would rate it eight out of ten.

We use FortiAI, FortiSIEM, and FortiEDR.

Fortinet helped us scale large-scale deals with clients because of its strong offerings.

Fortinet is very straightforward to use. I have access to a lot of technical resources, and I have been able to use them effectively.

Fortinet has helped free up around 20 percent of our staff's time to help us out.

We saw time to value within two weeks of implementing the solution, which strengthened our use cases.

I would say FortiSIEM, is a good alternative to Splunk.

The focus area for analytics is to tie it into the firewall components within SD-WAN.

ZTNA can improve latency. I believe that a lot of the focus is on SD-WAN.

I have been using Fortinet FortiEDR for four years.

I rate Fortinet's stability a ten out of ten.

I rate Fortinet's scalability a nine out of ten.

Fortinet's technical support is top-notch. They have a partner manager, technical account reps, and a lot of ongoing community activities to ensure that people stay up-to-date on the latest information.

Positive

The initial setup requires a lot of communication with the business to gather and clarify requirements.

We worked with Fortinet to implement the solution, and then our team of technical staff deployed it.

We have seen a return on investment. Teams are being hired and staffed to meet the demand of having Fortinet implemented on our client projects.

The pricing is typical for enterprises and fairly priced. Deals are negotiated with an account manager.

We evaluated Palo Alto Networks. However, we felt that they did not have the entire suite of analytics that I was looking for. Fortinet, on the other hand, seems to have a more diversified offering in this area.

I give Fortinet FortiEDR a nine out of ten.

The RSA conference helps me stay up-to-date on technology. It also helps me think differently about my use cases. Sometimes, a feature is supported, but other times, vendors may not have it. There may be a reason why they're not doing things the way they say they will.

Attending RSA has an impact on our organization's cybersecurity purchases. In fact, some of the vendors I spoke to told me that a group had already scheduled a meeting with us, which I was unaware of.

Clients use the solution for endpoint protection purposes.

It's easy to configure and integrate the solution with the current network because it is used by Fortinet clients.

I have been using Fortinet FortiEDR for two years.

Fortinet FortiEDR is a stable solution.

Fortinet FortiEDR is a scalable solution.

I rate the solution’s scalability ten out of ten.

The solution costs less than 10,000 for 100 users. Users have to pay additional costs to have the solution on the cloud.

Fortinet FortiEDR provides good documentation and training for its partners. I would recommend the solution to other users.

Overall, I rate the solution ten out of ten.

We use Fortinet firewalls for perimeter security at six to seven of our locations.

It provides extreme perimeter security, especially for VPN and application profiles, and seamless security monitoring through FortiAnalyzer.

As a firewall the solution is great, we never had any issues.

We saw time to value within three to four months of the firewall deployment.

Fortinet FortiEDR's firewalling, rule creation, monitoring, and inspection profiles are great.

Integration with Azure and SaaS provisioning tools could improve Fortinet FortiEDR.

I have been using Fortinet FortiEDR for almost five years.

The stability is generally good. We had one problem once, but otherwise, it has been good.

I don't think Fortinet FortiEDR is scalable with other vendors and new cloud provisionings, such as Azure or other cloud providers. I need to evaluate it further.

Technical support is good, but there are sometimes problems with reachability.

Neutral

I used Check Point and Cisco firewalls in my previous companies. At my current company, we use Fortinet, which I find to be a good firewall.

The initial deployment was complex, but that is expected in any firewall environment.

We use a migrator for the implementation and they were good.

We have seen a return on investment over the past four years. We can be assured of the perimeter security system's stability and ability to sustain itself in good conditions.

I'm not familiar with pricing, but it looks a bit costly compared to other vendors.

Fortinet FortiEDR was installed before I joined my organization but it was a good choice.

I give Fortinet FortiEDR an eight out of ten.

We are looking for max solutions from vendors. We may look at VPN solutions as well.

Attending RSA is an opportunity to network and compare products from vendors around the world which are interesting.

Attending RSA gives us the opportunity to compare products and understand the latest technology. This is something that is really valuable.