What users are saying about
8 Ratings
8 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 8.8 out of 100
342 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 8.9 out of 100

Likelihood to Recommend

FortiSIEM

If budget is an issue then Fortisiem fits well, as it's more than a typical SIEM solution. It can integrate with environmental monitoring systems, UPS HVAC etc. It can be used as the CMDB solution etc. If fine-tuned and looked after it can actually bring a lot of value for less.
Eric V. Zarghami | TrustRadius Reviewer

Splunk Enterprise

Splunk [Enterprise] is suitable for log mining. It can combine logs from multiple sources into a single piece of glass. APM monitoring is possible, but it is primarily a tool for log analysis. Debugging and fraud investigation are the best uses of this tool. It is advisable to invest in an APM tool for monitoring purposes. It's also an excellent fit for organizations that need to access data from multiple engineering teams. Using Splunk [Enterprise], we can search through our log data, create reports, and give other units access to their requirements.
Milton Hassan | TrustRadius Reviewer

Feature Rating Comparison

Security Information and Event Management (SIEM)

FortiSIEM
5.3
Splunk Enterprise
8.8
Centralized event and log data collection
FortiSIEM
6.0
Splunk Enterprise
9.3
Correlation
FortiSIEM
7.0
Splunk Enterprise
9.4
Event and log normalization/management
FortiSIEM
6.0
Splunk Enterprise
9.3
Deployment flexibility
FortiSIEM
3.0
Splunk Enterprise
8.9
Custom dashboards and workspaces
FortiSIEM
4.0
Splunk Enterprise
9.5
Host and network-based intrusion detection
FortiSIEM
6.0
Splunk Enterprise
8.2
Integration with Identity and Access Management Tools
FortiSIEM
Splunk Enterprise
8.7
Data integration/API management
FortiSIEM
Splunk Enterprise
9.0
Behavioral analytics and baselining
FortiSIEM
Splunk Enterprise
7.7
Rules-based and algorithmic detection thresholds
FortiSIEM
Splunk Enterprise
9.0
Response orchestration and automation
FortiSIEM
Splunk Enterprise
7.3
Reporting and compliance management
FortiSIEM
Splunk Enterprise
9.0
Incident indexing/searching
FortiSIEM
Splunk Enterprise
8.7

Pros

FortiSIEM

  • Log aggregation and analytics
  • CMDB
  • Device inventory and remote management .
  • It can be used by Managed Security Providers who have multiple customers as it offers multi organization support .
Eric V. Zarghami | TrustRadius Reviewer

Splunk Enterprise

  • It is very useful in creating custom rules for analyzing system logs and display relevant information. The query language is very easy to learn.
  • We can create custom UI to visualize the output of our data. The interface is very flexible. It also allows the sharing of rules among users.
  • There is an open online community to help others. Stackoverflow also has a splunk community. These resources make it more convenient to learn.
Kuntal Das | TrustRadius Reviewer

Cons

FortiSIEM

  • Non-intuitive/unattractive user interface
  • Too many features that will usually remain unused
  • Very crowded (too many icons) portal
  • The reporting feature is confusing, e.g. you have to click on the "refresh" button to get the result of your inquiry. The report generation process can be much easier, as the user interaction is not pleasant.
Eric V. Zarghami | TrustRadius Reviewer

Splunk Enterprise

  • Splunk light limits number of users to 5. Wish there was a flexible license, where one could add more users.
  • Splunk light does not let you add > few realtime alerts. Wish there was a flexible license, where one could add as many realtime alerts as wanted.
  • Better insight into daily ingestion values
Pooja Gada | TrustRadius Reviewer

Likelihood to Renew

FortiSIEM

No score
No answers yet
No answers on this topic

Splunk Enterprise

Splunk Enterprise 10.0
Based on 17 answers
We are using Splunk extensively in our projects and we have recently upgraded to Splunk version 6.0 which is quite efficient and giving expected results. We keep track of updates and new features Splunk introduces periodically and try to introduce those features in our day to day activities for improvement in our reporting system and other tasks.
Anonymous | TrustRadius Reviewer

Usability

FortiSIEM

No score
No answers yet
No answers on this topic

Splunk Enterprise

Splunk Enterprise 9.0
Based on 3 answers
You can literally throw in a single word into Splunk and it will pull back all instances of that word across all of your logs for the time span you select (provided you have permission to see that data). We have several users who have taken a few of the free courses from Splunk that are able to pull data out of it everyday with little help at all.
Kenneth Taitingfong | TrustRadius Reviewer

Reliability and Availability

FortiSIEM

No score
No answers yet
No answers on this topic

Splunk Enterprise

Splunk Enterprise 10.0
Based on 2 answers
When properly setup and configured, Splunk is extremely reliable.
Anonymous | TrustRadius Reviewer

Support Rating

FortiSIEM

No score
No answers yet
No answers on this topic

Splunk Enterprise

Splunk Enterprise 8.4
Based on 33 answers
Splunk maintains a well resourced support system that has been consistent since we purchased the product. They help out in a timely manner and provide expert level information as needed. We typically open cases online and communicate when possible via e-mail and are able to resolve most issues with that method.
Anonymous | TrustRadius Reviewer

Implementation Rating

FortiSIEM

No score
No answers yet
No answers on this topic

Splunk Enterprise

Splunk Enterprise 9.0
Based on 4 answers
Smooth without too many major issues.
Anonymous | TrustRadius Reviewer

Alternatives Considered

FortiSIEM

No answers on this topic

Splunk Enterprise

I didn't get to fully evaluate Logstash as our corporation was already using Logstash, but both seemed like viable solutions to the problem that we were having. I wanted to evaluate Logstash some more, both did seem like they would work for the business needs that we had, we went with splunk as many teams were already using it.
Anonymous | TrustRadius Reviewer

Scalability

FortiSIEM

No score
No answers yet
No answers on this topic

Splunk Enterprise

Splunk Enterprise 9.1
Based on 1 answer
Splunk can scale in to the petabyte per day range which of course is awesome
Rick Yetter | TrustRadius Reviewer

Return on Investment

FortiSIEM

  • Other SIEM solutions were cost prohibitive at the time of purchase (2016).
  • Just like any other SIEM, it helped draw a better picture of our current security posture.
Eric V. Zarghami | TrustRadius Reviewer

Splunk Enterprise

  • I don't have any numbers to share but Splunk has positively served as a 24/7 monitoring tool that has saved hours of work by self-detecting, saving statistics and alerting problems in the system or from external interfaces as soon as they happen.
  • Splunk dashboards does a solid job in collecting, analyzing data and creating reports that contain an entire day's activity and then automatically sent out to the business.
  • Splunk is very easy to learn and very useful to any program or business application.
Anonymous | TrustRadius Reviewer

Pricing Details

FortiSIEM

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Splunk Enterprise

General

Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Entry-level set up fee?
No

Rating Summary

Likelihood to Recommend

FortiSIEM
6.0
Splunk Enterprise
9.2

Likelihood to Renew

FortiSIEM
Splunk Enterprise
10.0

Usability

FortiSIEM
Splunk Enterprise
9.0

Reliability and Availability

FortiSIEM
Splunk Enterprise
10.0

Support Rating

FortiSIEM
Splunk Enterprise
8.4

Implementation Rating

FortiSIEM
Splunk Enterprise
9.0

Scalability

FortiSIEM
Splunk Enterprise
9.1

Add comparison