Fortinet FortiSIEM Reviews

If a customer is looking to establish a centralized monitoring and security solution, Fortinet FortiSIEM can be tailored to meet their specific needs effectively. This solution offers extensive customization options, making it possible to adapt it precisely to their requirements.

It works exceptionally well when combined with a vulnerability management solution.

Customer support service could be better.

It provides great stability features.

Scalability is excellent, especially for our enterprise-level clients.

I have moderate satisfaction with customer support, and we've learned to manage it adequately. I would rate it three out of ten.

Negative

I previously worked with LogPoint, which had rigid pricing structures. In contrast, we value flexibility and aim to provide more adaptable support, so we switched to Fortinet FortiSIEM.

The initial setup is quite swift.

The deployment process usually takes just one to two days to have the basics up and running. This involves connecting the collectors and configuring the systems.

Pricing is determined based on the customer's budget. We discuss how to tailor the pricing to fit the specific needs and financial considerations of the customer.

I would highly recommend it. It's a top-tier solution, receiving a solid ten out of ten rating.

It is used as an alerting platform and has an availability manager.

We already have experience with Fortinet products, so dealing with Fortinet FortiSIEM is not complicated.

They should offer better visibility, more correlation tools and a better understanding of the network. Fortinet FortiSIEM already uses simple and standard protocols like SNMP, DuraMI and Syslog. Other solutions like QRadar use sFlow, so I think that they can do better.

In addition, the log collection and configuration management are not great.

We have been using this solution for three years. We deployed Fortinet FortiSIEM at about three customer sites, and it is deployed on-premises.

The product is stable.

It is a scalable solution.

We have expertise with the product, so we don't use technical support often. We only require support for the error mark, and the support is quick and fast for that.

The initial setup was simple, and we deployed Fortinet FortiSIEM in two days. We already had all the information regarding the customers' notes, and it was simple, quick and fast.

It is cheaper than LogPoint or QRadar.

I rate this solution a five out of ten. It is not as good as other solutions like QRadar, but it's cheaper than other products and very simple. In the next release, the visibility should consist of simple and standard protocols.

Regarding advice, if you don't have a dedicated team to handle your logs, don't have a big budget, and want a solution to correlate and collect logs from many vendors, Fortinet FortiSIEM is an excellent choice.

We use Fortinet FortiSIEM for security, a gateway, and for authentication.

The most valuable features of Fortinet FortiSIEM are the SD-WAN, Global LAN, and application controls.

Fortinet FortiSIEM could improve by having a signature update.

I have been using Fortinet FortiSIEM for approximately 16 years.

Fortinet FortiSIEM is stable. However, it was not stable from the beginning.

Fortinet FortiSIEM is the best soltuions here in Thailand. There are many users and partners here.

There are 10 to 3,000 users in my company. Most of the users are specialists in IT. We plan to increase usage in the future.

I have used the technical support and they have been good.

I have used other solutions previously.

The initial setup of Fortinet FortiSIEM was easy. The deployment would take a few days for the middle and large models.

We need some information for the customer, such as policies, before we can implement the solution.

We do the implementation of Fortinet FortiSIEM. We use one IT specialist for the deployment and maintenance of the solution.

I would advise others this solution is easy to use and has a lot of features. They should try it out.

I rate Fortinet FortiSIEM a seven out of ten

We use this solution to collect logs. 

The advanced agents used to collect logs have been most valuable. We have also made use of the advanced intelligence this solution offers.

The graphs on the user interface could be improved as we often experience glitches. 

This is a stable solution. 

The customer service team needs additional experience and knowledge of the solution so the answers they provide are more accurate and helpful.

Neutral

We use this solution together with McAfee ESM which is a simple and robust solution. Its interface is better than SIEM. 

The initial setup was straightforward. The time it takes to complete the setup and deployment depends on the size of the environment and the number of EPS events per second.

This is a good solution but is fairly new so the support for it is not effective. Their support team does not have the experience to immediately solve issues. 

I would rate this solution an eight out of ten. 

This solution is used to detect irregular user and entity behavior using machine learning.

Fortinet FortiSIEM is easy to use.

I would like to see more integration with other platforms.

We have been providing Fortinet FortiSIEM for one year.

This solution can be deployed both on Cloud, and on-premises.

Fortinet FortiSIEM is a stable solution.

It's a scalable product.

Technical support is good enough. They were able to help us.

It is easy to install.

In one day, we were able to install this solution ourselves.

We only need one engineer to maintain this solution.

They have a yearly subscription.

I would rate Fortinet FortiSIEM a ten out of ten.

Fortinet FortiSIEM can be used to detect unusual user and entity behavior on networks.

We currently are in the process of testing the solution.

The solution is easy to use and user-friendly.

Fortinet FortiSIEM could improve by having better integration and extensions. This would benefit by allowing us to give more rules.

I have been using Fortinet FortiSIEM for a few months.

I have found Fortinet FortiSIEM to be stable.

Fortinet FortiSIEM is scalable.

The installation is straightforward and can be done in one day.

I am able to do the implementation of the solution.

The solution is available for both, perpetual and subscription licenses.

I rate Fortinet FortiSIEM an eight out of ten.

The CMDB and the device discovery features are most valuable.

I would like to see easier implementation in the future.

I have been using the solution for approximately five months.

Most of our clients are medium-sized businesses.

The technical support has been very good in helping us with issues we have been facing during the implementation of the solution. We are not finished yet but we are close.

The initial setup is not simple.

We are having some issues with the agent installation, it is requiring several reboots. This could be the system environment at the client site because in our lab the agent installation is straightforward and it does not require reboots. We are still working on this issue.

We are doing the implantation of the solution and it has a moderate level of difficulty.

I rate Fortinet FortiSIEM a seven out of ten.

We primarily use the solution for network and security monitoring.

Most of those CM functions and the correlation alerts are very helpful to our clients. 

The network monitoring is one of the most valuable aspects of the solution.

You can scale the solution with ease if you need to expand.

The stability is very reliable. It offers very good performance.

The initial setup is complex. They need to make it easier in terms of implementation. That said, all CM implementations are quite difficult. It may not be a fault of this particular product.

The policy editing should be easier. Right now, it's too hard. 

Some of the parts of the mapping tool should be in the product itself. It would make our efforts easier.

The product is quite expensive. It's something clients always comment on.

We have been using the solution for many years - including before Fortinet acquired the original organization.

The solution is quite stable. We find it very reliable. It doesn't crash or freeze. There aren't bugs and glitches.

The scalability of the solution is excellent. It's one of the main reasons we chose to go with this option. If a company needs to expand, it can do so easily. There aren't constraints.

We have about five to ten customers on the solution currently.

I'm not using the vendor's technical support. Mostly we have our own in-house resources. I cannot tell if are they good or bad. I have never dealt directly with them. Therefore, it would be difficult to review their services.

In terms of the initial setup, the process is not straightforward. It's complex and difficult. Making it easier would help a lot.

All CM installations and implementations are complicated. You have to tailor the product. It's not really something you can just implement out-of-the-box. 

That said, a basic installation is simple. It takes a few days. After you've done the implementation stage, then it takes time. Of course, it depends on the projects. I cannot say how much time it's taken exactly. I just know it takes quite a while.

For deployment, we use two people in a project. One of them is for the beginning of the project - for the implementation and the installation process. The other is the administration which we are generally pas off to our customers. I tend to handle the daily operations.

All of our customers find the solution expensive. It's not a cheap option.

I don't know the exact cost of the solution as I don't directly handle the licensing.

We are actually a reseller service company and we are dealing with the solutions for our customers. We are using the SIEM solutions. We are not a user, we are a reseller.

We have many customers. Not all may be using the latest version of the solution.

I would recommend the solution.

In general, I would rate the solution eight out of ten.