We performed a comparison between Fortinet FortiSIEM and PRTG Network Monitor based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Another area where it is helping us is in creating a single dashboard for our environment. We can collect all the logs into a log analytics workset and run queries on top of it. We get all the results in the dashboard. Even a layman can understand this stuff. The way Microsoft presents it is really incredible."
"I like the ability to run custom KQL queries. I don't know if that feature is specific to Sentinel. As far as I know, they are using technology built into Azure's Log Analytics app. Sentinel integrates with that, and we use this functionality heavily."
"The automation feature is valuable."
"The features that stand out are the detection engine and its integration with multiple data sources."
"Sentinel pricing is good"
"Microsoft Sentinel provides the capability to integrate different log sources. On top of having several data connectors in place, you can also do integration with a threat intelligence platform to enhance and enrich the data that's available. You can collect as many logs and build all the use cases."
"The most valuable feature is the onboarding of the workloads. You can see all that has been onboarded in your account on the dashboards."
"The solution offers a lot of data on events. It helps us create specific detection strategies."
"The seamless integration with FortiGate is the solution's most valuable aspect."
"Its automated response feature has benefited our customer communication. Analysts feel more confident in providing timely responses."
"The interface is very easy to use. The connector in the core has FortiSIEM support from the vendor."
"Fortinet FortiSIEM needs to provide better API integrations to users."
"There are things like dashboards and reports (pre-configured and custom) that let me know that things are operating the way they should be, and when they are not."
"We find the solution to be stable."
"The most valuable features for us are the built-in reports and alerts, along with the extreme flexibility in reporting and rule generation."
"Fortinet FortiSIEM is less costly than other products and is available 24/7."
"The sensors and remote probes are phenomenal. We use them for all of our global sites. The problem with our global sites are that they are all VPNs. If the link goes down, you can't monitor other solutions, as it just goes off the grid. Having remote probes allows them to still carry on and get the information that we need when it comes back up, sending the information to us."
"It is a central solution in terms of how to actually use it. It has a very easy dashboard. Everything is concise. We are able to create custom sensors. For different parts of the business, we have many products across many environments, and it works for everything."
"The most valuable feature of this solution is being able to see things graphically."
"It is easy to use and intuitive, which is really important. It does what it says on the box by giving you a visual of the state of what is going on at any one time."
"The scalability is good. You can improve a remote host or the clustering. This gives it the flexibility to monitor another infrastructure remotely."
"Nice product with an easy interface to use and a large variety of sensors."
"The solution provides us with needed feedback on our IT infrastructure. It gives us really good quality of service when it comes to monitoring of available space and available resources. It allows us to preempt issues before they become a problem for the business."
"Technical support is helpful."
"Some of the data connectors are outdated, at least the ones that utilize Linux machines for log forwarding. I believe that Microsoft is already working on improving this."
"There are certain delays. For example, if an alert has been rated on Microsoft Defender for Endpoint, it might take up to an hour for that alert to reach Sentinel. This should ideally take no more than one or two seconds."
"Sentinel can be used in two ways. With other tools like QRadar, I don't need to run queries. Using Sentinel requires users to learn KQL to run technical queries and check things. If they don't know KQL, they can't fully utilize the solution."
"When it comes to ingesting Azure native log sources, some of the log sources are specific to the subscription, and it is not always very clear."
"Everyone has their favorites. There is always room for improvement, and everybody will say, "I wish you could do this for me or that for me." It is a personal thing based on how you use the tool. I do not necessarily have those thoughts, and they are probably not really valuable because they are unique to the context of the user, but broadly, where it can continue to improve is by adding more connectors to more systems."
"We do have in-built or out-of-the-box metrics that are shown on the dashboard, but it doesn't give the kind of metrics that we need from our environment whereby we need to check the meantime to detect and meantime to resolve an incident. I have to do it manually. I have to pull all the logs or all the alerts that are fed into Sentinel over a certain period. We do this on a monthly basis, so I go into Microsoft Sentinel and pull all the alerts or incidents we closed over a period of thirty days."
"The on-prem log sources still require a lot of development."
"The interface could be more user-friendly. It''s a small improvement that they could make if they wanted to."
"The biggest thing that could be better is a quicker response to support cases."
"Our customers are noticing configuration available in the GUI interface and I think that they should be equal."
"With FortiSIEM, the issue has to do with the ways we can generate a report. It's not as flexible compared to that with other SIEM tools, like Splunk."
"Patching is not great - we're not getting the support we'd expect."
"The only drawback is the licensing model. It can get expensive if you want to integrate more solutions."
"It lacks a "wizard" that shows a particular user's activity or particular circumstance. I think the interface is intimidating because there's so much information there."
"Its training can be improved. Its price also needs to be improved."
"Their product support, in general, is not that great. The product support is in the same ecosystem. Their support is improving but it's not that great.vvv"
"Users need to buy the more expensive licenses if they expect to be able to scale."
"We've had some issues previously with the performance of the sensors. We tend to deploy quite a bit of WMI, which is quite processor-intensive, and we've found that that impacts the sensors quite a bit."
"If PRTG could help me see the bandwidth for each host I have on my network, either for a wireless or a wired network, that would be very helpful."
"PRTG Network Monitor can improve the reports. In the reports, you have to give an alert for that SMS and email, the emergency calls and downtimes have to be reported accordingly. You have to enable email services or an SMS gateway service to receive more alerts at the proper time."
"The desktop app is the one area where it do with some improvement. From a user's perspective, I would like to be able to get more out of the desktop app as opposed to where we are now with it."
"The technical support could respond a little bit quicker."
"It would be good if there were better graphical interfaces when you have it on multiple monitors... Because we have so many servers, things can get lost in the fog a little bit. Maybe having a better way of showing different geographies, Flash, etc., would help."
"While the desktop app is good, they could slightly improve it. We would like it to be a single pane of glass. At the moment, you can only see certain portions of information. You have to scroll through to make it more granular. We want them to develop the desktop app to be more user-friendly."
Fortinet FortiSIEM is ranked 9th in Security Information and Event Management (SIEM) with 64 reviews while PRTG Network Monitor is ranked 5th in Network Monitoring Software with 96 reviews. Fortinet FortiSIEM is rated 7.6, while PRTG Network Monitor is rated 8.2. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of PRTG Network Monitor writes "It's an all-in-one solution, and net flow is included in the licensing ". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and ManageEngine Log360, whereas PRTG Network Monitor is most compared with Zabbix, Centreon, Nagios XI, SolarWinds NPM and Auvik Network Management (ANM). See our Fortinet FortiSIEM vs. PRTG Network Monitor report.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
