To FortiSIEM or Not
As the name implies it's a SIEM solution which aggregates all the system generated logs into a single pane of view combined with some analytics resulting in actionable intelligence. By nature, it'll make it easier for the security team to stay on top of the important incidents that are reported by the information systems that support an organization. This can be viewed as a good investment for any company who has to work with fewer human resources due to financial constraints.
- Log aggregation and analytics
- CMDB
- Device inventory and remote management .
- It can be used by Managed Security Providers who have multiple customers as it offers multi organization support .
- Other SIEM solutions were cost prohibitive at the time of purchase (2016).
- Just like any other SIEM, it helped draw a better picture of our current security posture.