• HOME
  • CATEGORIES

    • CATEGORIES

    • Browse All Categories
  • FOR VENDORS

    • FOR VENDORS

    • Log In to Vendor Portal
    • Get Started
  • REVIEWS

    • REVIEWS

    • Write a Review
    • Product Reviews
    • Vendor Directory
    • Product Comparisons
  • GARTNER PEER COMMUNITY™
  • GARTNER.COM
  • Community GuidelinesListing GuidelinesBrowse VendorsRules of EngagementFAQPrivacyTerms of Service
    ©2026 Gartner, Inc. and/or its affiliates.
    All rights reserved.
  • Categories

    • No categories available

      Browse All Categories

      Select a category to view markets

  • For Vendors

    • Log In to Vendor Portal 

    • Get Started 

  • Write a Review

Join / Sign In
  1. Home
  2. /
  3. FortiSIEM
Logo of FortiSIEM

FortiSIEM

byFortinet
in
4.4
Market Presence: Security Information and Event Management, Cybersecurity Incident Response Management

Overview

Overall experience with FortiSIEM

Operations Associate
250M - 500M USD, Banking
FAVORABLE

“Customizable dashboards and automated case escalation improve real-time visibility and case management capabilities valuable for banking incident response and compliance. But it main weaknesses lie flawed case assignment logic that unevenly overloads individual SOC analyst. ”

4.0
Jun 18, 2026
This text serves as a placeholder and does not reflect the user’s review responses or opinions. This text serves as a placeholder and does not reflect the user’s review responses or opinions. This text serves as a placeholder and does not reflect the user’s review responses or opinions.
Senior Network Engineer
250M - 500M USD, Healthcare and Biotech
CRITICAL

“Powerful log correlation balanced by complex initial setup challenges”

3.0
Jun 25, 2026
This text serves as a placeholder and does not reflect the user’s review responses or opinions. This text serves as a placeholder and does not reflect the user’s review responses or opinions. This text serves as a placeholder and does not reflect the user’s review responses or opinions.

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Top FortiSIEM Alternatives

Logo of CrowdStrike Incident Response
1. CrowdStrike Incident Response
4.5
(35 Ratings)
Logo of Cortex XDR
2. Cortex XDR
4.3
(24 Ratings)
Logo of TheHive
3. TheHive
4.5
(22 Ratings)
View All Alternatives

About Company

Company Description

Updated 1st November 2023

Founded more than 20 years ago in Sunnyvale, California, Fortinet continues to be a driving force in the evolution of cybersecurity and the convergence of networking and security. Securing people, devices, and data everywhere is our mission. To that end, our portfolio of over 50 enterprise-grade products is the largest integrated offering available, delivering proven cybersecurity everywhere you need it. More than 680,000 customers trust Fortinet solutions, which are among the most deployed, most patented, and most validated in the industry.

Company Details

Updated 1st November 2023
Company type
Public
Year Founded
2000
Head office location
Sunnyvale, United States
Number of employees
10001+
Website
https://www.fortinet.com

Do You Manage Peer Insights at Fortinet?

Access Vendor Portal to update and manage your profile.

Peer Discussions

FortiSIEM Reviews and Ratings

4.4

(20 Ratings)

Rating Distribution

5 Star
40%
4 Star
55%
3 Star
5%
2 Star
0%
1 Star
0%
Why ratings and reviews count differ?
  • Operations Associate
    50M-1B USD
    Banking
    Review Source

    Customizable dashboards and automated case escalation improve real-time visibility and case management capabilities valuable for banking incident response and compliance. But it main weaknesses lie flawed case assignment logic that unevenly overloads individual SOC analyst.

    4.0
    Jun 18, 2026
    Because as a Senior Cybersecurity expert with over 3 years of experience using FortiSIEM in a large bank that is my reason behind my rating. Also the Dashboard is every attractive displays based on the alert risks and so on. For the case management it has good lifecycle management like New case, Assigned, High Priority, Overdue and MTTRI KPI, and escalation policies. It also associate the incidents to the cases automatically but if a SOC analyst is closes more cases it will assign more new cases more than it is expected to assign. About the Incident Response it gives automated responses, mitigation scripts and playbooks but false positive alert or alert fatigue are observed in the product. On the incident management side the dashboard is customizable with real time visibility, risk scoring, impacted assets view effectively. In the workflow tracking it has good support for automated policies, task management and playbooks with in cases and audit trails.
  • Operations Associate
    50M-1B USD
    Banking
    Review Source

    Customizable dashboards and automated case escalation improve real-time visibility and case management capabilities valuable for banking incident response and compliance. But it main weaknesses lie flawed case assignment logic that unevenly overloads individual SOC analyst.

    4.0
    Jun 18, 2026
    Because as a Senior Cybersecurity expert with over 3 years of experience using FortiSIEM in a large bank that is my reason behind my rating. Also the Dashboard is every attractive displays based on the alert risks and so on. For the case management it has good lifecycle management like New case, Assigned, High Priority, Overdue and MTTRI KPI, and escalation policies. It also associate the incidents to the cases automatically but if a SOC analyst is closes more cases it will assign more new cases more than it is expected to assign. About the Incident Response it gives automated responses, mitigation scripts and playbooks but false positive alert or alert fatigue are observed in the product. On the incident management side the dashboard is customizable with real time visibility, risk scoring, impacted assets view effectively. In the workflow tracking it has good support for automated policies, task management and playbooks with in cases and audit trails.
  • Read All 22 Reviews

    Get unlimited access to verified peer reviews and insights

    Read unlimited Gartner-vetted product reviews
    View and share valuable product insights
    Download full product profiles
    Review products you use today

Recommended Gartner Insights

Powered by Google TranslateThis service may contain translations provided by Google. Google disclaims all warranties related to the translations, express or implied, including any warranties of accuracy, reliability, and any implied warranties of merchantability, fitness for a particular purpose and noninfringement. Gartner's use of this provider is for operational purposes and does not constitute an endorsement of its products or services.

Gartner Peer Insights content consists of the opinions of individual end users based on their own experiences, and should not be construed as statements of fact, nor do they represent the views of Gartner or its affiliates. Gartner does not endorse any vendor, product or service depicted in this content nor makes any warranties, expressed or implied, with respect to this content, about its accuracy or completeness, including any warranties of merchantability or fitness for a particular purpose.

This site is protected by hCaptcha and its Privacy Policy and Terms of Use apply.


Software reviews and ratings for EMMS, BI, CRM, MDM, analytics, security and other platforms - Peer Insights by Gartner
Community GuidelinesListing GuidelinesBrowse VendorsRules of EngagementFAQsPrivacyTerms of Use

©2026 Gartner, Inc. and/or its affiliates.

All rights reserved.

FortiSIEM Likes & Dislikes

Like

The one of the most standout features are the Asset Discovery in the CMDB tab builds and maintain real-time devices context configurations, software version, patches, and services. Where in the banking industry I am working we have a lot of assets across on prem, ATMs, SWIFT infrastructure and legacy systems this provides immediate operational context when you are investigating incidents. The SOC analyst no longer search for the assets or servers connected to it automatically analysis and risk assessment for incidents affecting the bank critical assets. What I like the most is that: 1. It escalate incidents into cases with good automation 2. It has customizable dashboard for real time top incidents, risk rating, and compliance reporting 3. It supports case stages, assignments giving label L1 and L2 SOC analyst, and audit trails For overall review it has a good for visibility, and correlation and integration.

Like

The one of the most standout features are the Asset Discovery in the CMDB tab builds and maintain real-time devices context configurations, software version, patches, and services. Where in the banking industry I am working we have a lot of assets across on prem, ATMs, SWIFT infrastructure and legacy systems this provides immediate operational context when you are investigating incidents. The SOC analyst no longer search for the assets or servers connected to it automatically analysis and risk assessment for incidents affecting the bank critical assets. What I like the most is that: 1. It escalate incidents into cases with good automation 2. It has customizable dashboard for real time top incidents, risk rating, and compliance reporting 3. It supports case stages, assignments giving label L1 and L2 SOC analyst, and audit trails For overall review it has a good for visibility, and correlation and integration.

Like

The one of the most standout features are the Asset Discovery in the CMDB tab builds and maintain real-time devices context configurations, software version, patches, and services. Where in the banking industry I am working we have a lot of assets across on prem, ATMs, SWIFT infrastructure and legacy systems this provides immediate operational context when you are investigating incidents. The SOC analyst no longer search for the assets or servers connected to it automatically analysis and risk assessment for incidents affecting the bank critical assets. What I like the most is that: 1. It escalate incidents into cases with good automation 2. It has customizable dashboard for real time top incidents, risk rating, and compliance reporting 3. It supports case stages, assignments giving label L1 and L2 SOC analyst, and audit trails For overall review it has a good for visibility, and correlation and integration.

Dislike

Initial setup and customization complex, which is challenging learning curve for advanced functionalities

Dislike

Initial setup and customization complex, which is challenging learning curve for advanced functionalities

Dislike

Initial setup and customization complex, which is challenging learning curve for advanced functionalities

User Sentiment About FortiSIEM
Reviewer Insights for: FortiSIEM