No more typing reviews! Try our Samantha, our new voice AI agent.
Fortinet FortiSIEM Logo

Fortinet FortiSIEM Reviews

Vendor: Fortinet
3.8 out of 5
Leave a review

What is Fortinet FortiSIEM?

Fortinet FortiSIEM offers robust features like automation, real-time monitoring, and scalable log correlation. It integrates SOC and NOC, enhancing security by seamlessly managing data. A preferred choice for threat management, its comprehensive reports and competitive pricing add value.

Get the Fortinet FortiSIEM Buyer's Guide and find out what your peers are saying about Fortinet FortiSIEM, CrowdStrike Falcon, SentinelOne Singularity Cloud Security and more!
Fortinet FortiSIEM is the #9 ranked solution in top Security Information and Event Management (SIEM) solutions and #10 ranked solution in top AI Observability solutions. PeerSpot users give Fortinet FortiSIEM an average rating of 7.6 out of 10. Fortinet FortiSIEM is most commonly compared to CrowdStrike Falcon: Fortinet FortiSIEM vs CrowdStrike Falcon. Fortinet FortiSIEM is popular among the small business segment, accounting for 41% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 10% of all views.
Buyer's Guide
Fortinet FortiSIEM
April 2026
Get the report
Helped 891,869 peers since 2012

Featured Fortinet FortiSIEM reviews

Read more reviews

Fortinet FortiSIEM mindshare

As of April 2026, the mindshare of Fortinet FortiSIEM in the Security Information and Event Management (SIEM) category stands at 2.5%, down from 3.0% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Fortinet FortiSIEM2.5%
Splunk Enterprise Security7.0%
IBM Security QRadar5.2%
Other85.3%
Security Information and Event Management (SIEM)

PeerResearch reports based on Fortinet FortiSIEM reviews

TypeTitleDate
CategorySecurity Information and Event Management (SIEM)Apr 28, 2026Download
ProductReviews, tips, and advice from real usersApr 28, 2026Download
ComparisonFortinet FortiSIEM vs Splunk Enterprise SecurityApr 28, 2026Download
ComparisonFortinet FortiSIEM vs WazuhApr 28, 2026Download
ComparisonFortinet FortiSIEM vs IBM Security QRadarApr 28, 2026Download
Suggested products
TitleRatingMindshareRecommending
CrowdStrike Falcon4.33.3%97%141 interviewsAdd to research
SentinelOne Singularity Cloud Security4.4N/A99%123 interviewsAdd to research
 
 
Key learnings from peers

Valuable Features

Fortinet FortiSIEM offers advanced monitoring, robust analytics, and seamless integration with multiple systems. Users appreciate its user-friendly interface, strong event correlation, and capability for dynamic discovery. It excels in automation, real-time alerts, and detailed dashboard views. The SOC and NOC operations are unified, enabling efficient threat detection and management. Its comprehensive reports, flexible rule creation, and cost-effectiveness make it highly valuable to many organizations. Security teams find the anomaly reporting and user behavior analytics exceptionally beneficial.
  • "All in all, the product is a well rounded performer when it comes to combined infrastructure and security monitoring, however in traditional SIEM bake-offs, they need a lot more flavour to make it exciting."
  • "The best features are the dashboard and the integration between the Fortinet products, and if you use them together with FortiSOAR and FortiAnalyzer, it's better than Splunk."
  • "Fortinet FortiSIEM's most valuable feature is the simplicity in handling multi-tenancy and the ability to switch between different clients at the same time."

Room for Improvement

Fortinet FortiSIEM requires improvements in licensing options, enhanced dashboards, and integrated support for non-standard log sources. Users find configuration challenging, desire better integration across third-party platforms, and aim for streamlined reporting and faster support. Enhanced documentation and advanced AI features are requested. Performance issues during upgrades and resource-heavy operations need addressing alongside more intuitive user interfaces for simplified event parsing and correlation management. Fortinet should focus on better API support and broader remediation capabilities.
  • "While AccelOps tries to be a “Jack of All”, it unfortunately is a master of none. This means that the product has poor support for some third-party security technologies, such as data loss prevention (DLP), application security testing, network forensics and deep packet inspection (DPI)."
  • "There are some connectivity issues with FortiAnalyzer and FortiGate."
  • "The interface needs some improvements because it's a bit cumbersome when you're trying to view items."

ROI

Organizations report positive financial outcomes from Fortinet FortiSIEM, indicating a return on their investments. Several clients express satisfaction, noting effective security enhancements. While some acknowledge not closely tracking their return metrics, they still recognize it as a beneficial expense for their business operations. Clients frequently renew services, illustrating perceived value in their investment.

Pricing

Fortinet FortiSIEM offers competitive pricing, generally perceived as reasonable and affordable, with both perpetual and subscription licenses available. Costs depend on various factors such as additional features, usage, and virtual environment needs. Though cheaper than many competitors like Splunk and LogPoint, there are extra costs for modules and support. Its pay-as-you-grow model adds flexibility, making it attractive to enterprise buyers. However, some still find it expensive, especially when scaling.
  • "If one is cheap and ten is expensive. I rate the tool's price as an eight out of ten. Compared with Splunk or Oracle, Fortinet is cheap."
  • "The tool is really expensive. For what the tool does for our team, the price is fair."
  • "Fortinet FortiSIEM is not an expensive solution."

Popular Use Cases

Organizations utilize Fortinet FortiSIEM for comprehensive network security and performance monitoring. They integrate logs from diverse sources, detecting threats and monitoring user behavior. It's used for handling incidents, conducting malware detection, and providing real-time alerts. FortiSIEM helps in integrating various security and infrastructure devices, ensuring data integrity and regulatory compliance. As a critical analyst tool, it supports event analysis, user behavior analysis, and centralizes security information to identify risks effectively.

Service and Support

Customer service for Fortinet FortiSIEM is generally positive, with some noting responsive support and knowledgeable staff. Experiences vary regarding technical support; some encounter delays or complexity in reaching the right expertise, while others find it efficient and effective. Certain users highlight a need for improvement in responsiveness and support structure, but many appreciate the support team's competence and quick problem resolution, expressing satisfaction with the assistance provided.

Deployment

Users experienced complexity with Fortinet FortiSIEM's initial setup due to lack of initial knowledge, although familiarity made it easier. Deployments were generally straightforward, but some faced performance issues or configuration challenges. Various complexities stemmed from network configurations, log integrations, and licensing. Despite this, many found the setup relatively easy, aided by documentation and external support. Deployment times varied based on network size and customer requirements, typically ranging from a few days to several months.

Scalability

Fortinet FortiSIEM is known for its scalability, highly rated by users. Many appreciate its adaptability across various enterprise sizes and easy expansion, although some reported challenges due to architecture and cost considerations. It effectively supports medium to large-size businesses and various industries. However, scaling can be constrained by licensing models and hardware requirements. Despite some issues, users recognize its capability to handle significant client loads, emphasizing its flexibility and ease of deployment.

Stability

Fortinet FortiSIEM is mostly stable with users experiencing few bugs and occasional parser crashes that recover quickly. Workshop or professional configuration often results in stability, but some updates introduce issues. Most find it reliable, though ratings vary from 7 to 10 out of 10. The product handles data well but might need adjustments for specific needs. Technical support from Fortinet assists with any persistent concerns, maintaining high uptime and reliability.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Fortinet FortiSIEM Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company SizeCount
Small Business30
Midsize Enterprise21
Large Enterprise14
By reviewers
By visitors reading reviews
Company SizeCount
Small Business303
Midsize Enterprise179
Large Enterprise261
By visitors reading reviews

Top industries

By visitors reading reviews
Financial Services Firm
10%
Comms Service Provider
9%
Computer Software Company
9%
Manufacturing Company
6%
Construction Company
6%
Outsourcing Company
6%
Educational Organization
5%
University
5%
Marketing Services Firm
4%
Healthcare Company
4%
Performing Arts
4%
Government
4%
Energy/Utilities Company
4%
Real Estate/Law Firm
3%
Media Company
3%
Retailer
3%
Hospitality Company
2%
Wholesaler/Distributor
1%
Non Profit
1%
Legal Firm
1%
Insurance Company
1%
Pharma/Biotech Company
1%
Transportation Company
1%
Aerospace/Defense Firm
1%
Non Tech Company
1%
Consumer Goods Company
1%
Recreational Facilities/Services Company
1%
Logistics Company
1%
Mining And Metals Company
1%

Compare Fortinet FortiSIEM with alternative products

Go!

Learn more about Fortinet FortiSIEM

Fortinet FortiSIEM serves as a comprehensive platform for security monitoring, threat detection, and incident management. It streamlines operations by integrating seamlessly with Fortinet and third-party tools, offering dynamic service discovery and user-friendly analytics. Leveraging its stable infrastructure, organizations conduct log analysis and behavioral monitoring across networks and applications. It supports compliance reporting and enhances security environments through integration with firewalls and security devices. Its cloud and on-premise options cater to regulatory and operational needs, while multitenant capabilities enable managed security service providers to extend robust security services. Users have highlighted areas for improvement in API integration, data retrieval speed, resource consumption, automation, and reporting flexibility.

What are the key features of Fortinet FortiSIEM?
  • Automation: Streamlines processes for efficient threat management.
  • Dynamic Service Discovery: Automatically discovers services, enhancing operational efficiency.
  • Real-Time Monitoring: Provides immediate threat identification to bolster security.
  • Log Correlation: Offers robust analysis for comprehensive threat detection.
  • Integration Capabilities: Seamlessly integrates with Fortinet and third-party tools.
  • Multitenant Support: Enables service providers to manage multiple clients smoothly.
What are the benefits or ROI of Fortinet FortiSIEM?
  • Enhanced Security: Delivers real-time threat detection and improved incident management.
  • Operational Efficiency: Streamlines SOC and NOC integration for better performance.
  • Scalability: Supports extensive data management with exceptional stability.
  • Cost-Effectiveness: Recognized for competitive pricing and comprehensive features.
  • User-Friendly Interface: Simplifies interaction and optimizes user experience.

In healthcare, Fortinet FortiSIEM ensures compliance and secure health data management. Financial institutions utilize it for real-time monitoring and fraud detection, while educational sectors deploy for network security and data integrity. Service providers leverage its multitenant features for expansive client management.

Fortinet FortiSIEM was previously known as FortiSIEM, AccelOps.

Fortinet FortiSIEM customers

FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia.

Related questions

  • 175
What Solution for SIEM is Best To Be NIST 800-171 Compliant?
  • 150
When evaluating Security Information and Event Management (SIEM), what aspect do you think is the most important feature to look for?
  • 129
What are the main differences between Nessus and Arcsight?
  • 147
What's The Best Way to Trial SIEM Solutions?
  • 152
Which is the best SIEM solution for a government organization?
  • 477
What is the difference between IT event correlation and aggregation?
  • 121
What Is SIEM Used For?
  • 108
RSA-EMC vs. other SIEM products?
  • 225
What Questions Should I Ask Before Buying SIEM?
  • 131
What are the pros and cons of internal SOC vs SOC-as-a-Service?

Product Categories

Product Categories
Security Information and Event Management (SIEM)
AI Observability
Fortinet Security Operations (SecOps) Platform

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Fortinet FortiSIEM Logo
CrowdStrike Falcon vs Fortinet FortiSIEM
SentinelOne Singularity Cloud Security vs Fortinet FortiSIEM Logo
SentinelOne Singularity Cloud Security vs Fortinet FortiSIEM
Wazuh vs Fortinet FortiSIEM Logo
Wazuh vs Fortinet FortiSIEM
Splunk Enterprise Security vs Fortinet FortiSIEM Logo
Splunk Enterprise Security vs Fortinet FortiSIEM
SentinelOne Singularity Endpoint vs Fortinet FortiSIEM Logo
SentinelOne Singularity Endpoint vs Fortinet FortiSIEM
IBM Security QRadar vs Fortinet FortiSIEM Logo
IBM Security QRadar vs Fortinet FortiSIEM
Microsoft Sentinel vs Fortinet FortiSIEM Logo
Microsoft Sentinel vs Fortinet FortiSIEM
Elastic Security vs Fortinet FortiSIEM Logo
Elastic Security vs Fortinet FortiSIEM
Cribl vs Fortinet FortiSIEM Logo
Cribl vs Fortinet FortiSIEM
LogRhythm SIEM vs Fortinet FortiSIEM Logo
LogRhythm SIEM vs Fortinet FortiSIEM
Cortex XSIAM vs Fortinet FortiSIEM Logo
Cortex XSIAM vs Fortinet FortiSIEM
Rapid7 InsightIDR vs Fortinet FortiSIEM Logo
Rapid7 InsightIDR vs Fortinet FortiSIEM
Gigamon Deep Observability Pipeline vs Fortinet FortiSIEM Logo
Gigamon Deep Observability Pipeline vs Fortinet FortiSIEM
Exabeam vs Fortinet FortiSIEM Logo
Exabeam vs Fortinet FortiSIEM
Anomali vs Fortinet FortiSIEM Logo
Anomali vs Fortinet FortiSIEM
See all alternatives
 
Fortinet FortiSIEM Reviews Summary
Author infoRatingReview Summary
Network Engineer at Ogma Consulting3.5I primarily use Fortinet FortiSIEM for security monitoring in government offices. It effectively handles compliance with over three thousand pre-built rules, although its incident management and FortiAI search functionality could be improved for better results and ease of use.
IT Solutions Product Manager at a computer software company with 11-50 employees4.0<p>We utilize FortiSIEM to detect cyber threats, benefiting from its MITRE ATT&amp;CK integration for effective threat mapping. Improvements are needed in resource consumption and alert latency. While its licensing model is evolving, LogRhythm and QRadar are notable competitors.</p>
Network Engineer at Laminar Communications Pty Ltd4.0I primarily use Fortinet FortiSIEM for systems monitoring and alerting in medium-sized enterprises. Its valuable features include firewall monitoring and intrusion detection, but its APIs need improvement for better integration. Customers find value in their investment.
SIEM MANAGER at a comms service provider with 1,001-5,000 employees3.5I use Fortinet FortiSIEM for configuring rules and threat hunting. Its analytics and integration capabilities are valuable, though the alert customization could improve. Compared to ArcSight, it supports broader technologies and offers powerful, consistent analytics.
senior technical administrator at Ogma Consulting4.0I primarily use FortiSIEM for network monitoring, as it allows me to view all incidents and events on a single pane. I find its event-management feature valuable, though integrating solutions directly could eliminate the need for additional tools.
System Engineer - Security at a educational organization with 1,001-5,000 employees2.5As a university with an on-premises setup, I use Fortinet FortiSIEM due to cost concerns with Azure Sentinel. While Fortinet FortiSIEM allows system monitoring, its support and training resources need improvement. I prefer Azure Sentinel for its documentation.
Senior Network Associate at AMCON, Inc.4.5I use FortiSIEM to manage network devices, receiving real-time incident reports and detailed user action insights. Although reporting could be more intuitive, it’s a cost-effective alternative to Check Point, addressing both support and budget concerns.
Security Manager at Banco Lopez de Haro4.0I use Fortinet FortiSIEM to audit my servers and communications, effectively detecting vulnerabilities and correlating logs to identify security issues and anomalies. It also helps in spotting new technologies and threats. Deployment was time-consuming compared to SolarWinds tools.