We performed a comparison between Fortinet FortiSIEM and PRTG Network Monitor based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The features that stand out are the detection engine and its integration with multiple data sources."
"The AI capability is one of the main features of the solution because I believe that in the market, there are few solutions that are providing security solutions based on AI and machine learning."
"Sentinel enables us to ingest data from our entire ecosystem. In addition to integrating our Cisco ASA Firewall logs, we get our Palo Alto proxy logs and some on-premises data coming from our hardware devices... That is very important and is one way Sentinel is playing a wider role in our environment."
"The pricing of the product is excellent."
"The initial setup is very simple and straightforward."
"One of the most valuable features is that it creates a kind of a single pane of glass for organizations that already use Microsoft software. So, when they have things like Microsoft 365, it is very easy for them to kind of plug in or enroll those endpoints into the Azure Sentinel service."
"Free ingestion for Azure logs (with E5 licence)"
"The most valuable features are its threat handling and detection. It's a powerful tool because it's based on machine learning and on the behavior of malware."
"It's easy to manage. There's a web interface and a command line, depending on what the user is comfortable with. There's a large knowledge base available, and the support is timely."
"I like FortiSIEM because it integrates natively with our other Fortinet solutions and the Fortinet Fabric, but it also integrates with Cisco, Palo Alto and other security fabrics."
"The primary valuable feature is that it has replaced a whole lot of other products with one platform."
"Analytics is the most valuable feature. The business service summaries in the dashboards and the correlations for the SIEM are also valuable features."
"Fortinet FortiSIEM is less costly than other products and is available 24/7."
"We have found the most important features in Fortinet FortiSIEM to be the correlation, file utility check, latest file, and hash changes. These features are important for us."
"There are things like dashboards and reports (pre-configured and custom) that let me know that things are operating the way they should be, and when they are not."
"The Threat Hunting feature provides complete traffic analysis."
"The scalability is good. You can improve a remote host or the clustering. This gives it the flexibility to monitor another infrastructure remotely."
"The solution provides us with needed feedback on our IT infrastructure. It gives us really good quality of service when it comes to monitoring of available space and available resources. It allows us to preempt issues before they become a problem for the business."
"The real-time monitoring feature in PRTG is invaluable to me"
"The most valuable feature of PRTG Network Monitor is its ease of use."
"It is nice to have one place where all the information is right there in front of us."
"The email notifications are helpful, and the dashboards are user-friendly for people with little network monitoring knowledge."
"The most valuable feature of PRTG Network Monitor is real-time monitoring."
"Nice product with an easy interface to use and a large variety of sensors."
"Microsoft Defender has a built-in threat expert option that enables you to contact an expert. That feature isn't available in Sentinel because it's a huge product that integrates all the technologies. I would like Microsoft to add the threat expert option so we can contact them. There are a few other features, like threat assessment that the PG team is working on. I expect them to release this feature in the next quarter."
"Sentinel's reporting is complex and can be more user-friendly."
"There is room for improvement in entity behavior and the integration site."
"There are certain delays. For example, if an alert has been rated on Microsoft Defender for Endpoint, it might take up to an hour for that alert to reach Sentinel. This should ideally take no more than one or two seconds."
"In terms of features I would like to see in future releases, I'm interested in a few more use cases around automation. I do believe a lot of automation is available, and more is in progress, but that would be my area of interest."
"When we pass KPIs to the governance department, there's no option to provide rights to the data or dashboard to colleagues. We can use Power BI for this, but it isn't easy or convenient. They should just come up with a way to provide limited role-based access to auditing personnel"
"The following would be a challenge for any product in the market, but we have some in-house apps in our environment... our apps were built with different parameters and the APIs for them are not present in Sentinel. We are working with Microsoft to build those custom APIs that we require. That is currently in progress."
"The solution could be more user-friendly; some query languages are required to operate it."
"Network detection and response is a separate product."
"The nodes on our network did not comply with the SIEM solution. They use a different format parking log."
"It lacks a "wizard" that shows a particular user's activity or particular circumstance. I think the interface is intimidating because there's so much information there."
"Fortinet FortiSIEM could improve to extend to several locations or sites."
"The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients."
"Does not have load-sharing or high-availability, and these are important things to implement. I can do the same things in another way, but not naturally having these features makes it complicated."
"We need to see incident reports about the event log, without events from the administrator or through human interaction."
"Fortinet FortiSIEM is a little out of sight and needs more marketing efforts to be popular in the market."
"Once you start going above 5000 sensors, things do start to get a bit shaky. There are some best practice out there that you will need to adopt and be aware of."
"Their penetration within the market could be much better. If their pricing was lower, even though it's reasonable now, it might help them achieve this."
"There seems to be a big jump from the basic scan to the really thorough scan. There is a big jump in the quantity of sensors it uses for certain things. One minute you might get ten and then the next you get 200. There seems to be a big jump between the two at times."
"The thing that we do struggle with a bit is in the historic data. If I want look over 30 days, because it averages out onto one graph, you can't zoom in and drill down information."
"The clustering aspect needs improvement, as there is a bit of confusion about you do when hit that 5000 probe mark."
"I would like to see them take their graphing tools and convert them into a collector so that we can point telemetry to them"
"It would be good if there were better graphical interfaces when you have it on multiple monitors... Because we have so many servers, things can get lost in the fog a little bit. Maybe having a better way of showing different geographies, Flash, etc., would help."
"There is room for improvement in this solution for the performance and third-party monitoring protocols. They need to be updated to the latest ones."
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 64 reviews while PRTG Network Monitor is ranked 5th in Network Monitoring Software with 96 reviews. Fortinet FortiSIEM is rated 7.6, while PRTG Network Monitor is rated 8.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of PRTG Network Monitor writes "It's an all-in-one solution, and net flow is included in the licensing ". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and ManageEngine Log360, whereas PRTG Network Monitor is most compared with Zabbix, Centreon, Nagios XI, SolarWinds NPM and Auvik Network Management (ANM). See our Fortinet FortiSIEM vs. PRTG Network Monitor report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.