Likelihood to Recommend Most organization with medium & maturity SOC struggle with alert fatigue & false positives with addressing alert volume is result in increasing risk of critical alerts being masked by trivial one , in this situation FortiSOAR help in case management : rapidly response in case of crises also. FortiSOAR is designed very well where Fortinet have other stack of security component also like Fortinet NGFW & Forti SIEM etc.. Fortinet NGFW can and generate the FortiSOAR instance through FortiCloud for Customer . However In absence of FortiFabric it require lot of connectors to work well the solution.
Read full review Trellix (FireEye + McAfee)
The UI displays wells the deviations and anomalies using advanced threat intelligence so you have full control of your security ecosystem. We've used it for two years to secure our servers and we easily customize threat detections to reduce the stressful false positives. We fill the XDR AI with data and it correlates with incident data to deliver unmatched frontline security intelligence.
Read full review Pros User-friendly interface and easy to read data on the panels. Perfect for vulnerability management. Great integration with different security operations center platforms. Customized panels. Setting User Permissions. Scheduled asset scans with reports. Read full review Trellix (FireEye + McAfee)
Detection of advanced threats. Easy integration with cloud resources and our existing security tools thus enhancing performance. Easy deployment with great threats intelligence capabilities. Read full review Cons Training Services- Fortinet offers courses geared towards administration and designed and development of FortiSOAR , Which required multiples access , we need all training services with self pace basis , I think here Fortinet need to improve. Licensing Model- Being as a new technology Licensing model should be crystal & Clear, be it Concurrent Users or The number of FortiSOAR nodes there should be no ambiguity . Read full review Trellix (FireEye + McAfee)
Overly complex platform Multiple logins needed for various tools--leads to confusion Costs can add up Read full review Support Rating Trellix (FireEye + McAfee)
We've been fairly happy with FireEye Helix support overall. Most issues are resolved the same day the case is opened.
Read full review Alternatives Considered Done prove of concept (POC) thoroughly , where we judged the solution on every aspect & We came to know FortiSOAR will work well in our environment as it is blended with features like Case managements , Product Flexibility * Scalable Architecture . These features were much required to optimum use of our SOC solution. Since we have all the Fortinet security stack in our environment it helped us a lot in selection (POC) and also commercially.
Read full review Trellix (FireEye + McAfee)
I find Helix to be super-efficient and able to cut through the noise. Previous installations of LogRhythm and
Splunk resulting in an overwhelming amount of noise (out of the gate), and we had to constantly tune out false positives. Helix is different. Out of the gate, Helix provided higher fidelity hits, and our teams don't spend half their day turning out the noise.
Read full review Return on Investment Improved compliance control and risk management. Improved the business process. Improved incident visibility. Read full review Trellix (FireEye + McAfee)
Optimization of your security investments. Operations are seamless and better with easy integrations that enhance performance. Efficiency in running of incidences with enhanced case management for all its alerts. Read full review ScreenShots Trellix Helix Screenshots