FortiSOAR vs. Trellix Helix

Most organization with medium & maturity SOC struggle with alert fatigue & false positives with addressing alert volume is result in increasing risk of critical alerts being masked by trivial one , in this situation FortiSOAR help in case management : rapidly response in case of crises also. FortiSOAR is designed very well where Fortinet have other stack of security component also like Fortinet NGFW & Forti SIEM etc.. Fortinet NGFW can and generate the FortiSOAR instance through FortiCloud for Customer . However In absence of FortiFabric it require lot of connectors to work well the solution.

Incentivized

The UI displays wells the deviations and anomalies using advanced threat intelligence so you have full control of your security ecosystem. We've used it for two years to secure our servers and we easily customize threat detections to reduce the stressful false positives. We fill the XDR AI with data and it correlates with incident data to deliver unmatched frontline security intelligence.

Incentivized

• User-friendly interface and easy to read data on the panels.
• Perfect for vulnerability management.
• Great integration with different security operations center platforms.
• Customized panels.
• Setting User Permissions.
• Scheduled asset scans with reports.

Incentivized

• Detection of advanced threats.
• Easy integration with cloud resources and our existing security tools thus enhancing performance.
• Easy deployment with great threats intelligence capabilities.

• Training Services- Fortinet offers courses geared towards administration and designed and development of FortiSOAR , Which required multiples access , we need all training services with self pace basis , I think here Fortinet need to improve.
• Licensing Model- Being as a new technology Licensing model should be crystal & Clear, be it Concurrent Users or The number of FortiSOAR nodes there should be no ambiguity .

Incentivized

• Overly complex platform
• Multiple logins needed for various tools--leads to confusion
• Costs can add up

Incentivized

We've been fairly happy with FireEye Helix support overall. Most issues are resolved the same day the case is opened.

Incentivized

Done prove of concept (POC) thoroughly , where we judged the solution on every aspect & We came to know FortiSOAR will work well in our environment as it is blended with features like Case managements , Product Flexibility * Scalable Architecture . These features were much required to optimum use of our SOC solution. Since we have all the Fortinet security stack in our environment it helped us a lot in selection (POC) and also commercially.

Incentivized

I find Helix to be super-efficient and able to cut through the noise. Previous installations of LogRhythm and Splunk resulting in an overwhelming amount of noise (out of the gate), and we had to constantly tune out false positives. Helix is different. Out of the gate, Helix provided higher fidelity hits, and our teams don't spend half their day turning out the noise.

Incentivized

• Improved compliance control and risk management.
• Improved the business process.
• Improved incident visibility.

Incentivized

• Optimization of your security investments.
• Operations are seamless and better with easy integrations that enhance performance.
• Efficiency in running of incidences with enhanced case management for all its alerts.