TrustRadius: an HG Insights company

FortiSOAR

Score8.9 out of 10

5 Reviews and Ratings

Get a Demo

What is FortiSOAR?

CyberSponse was a security orchestration, automation and response (SOAR) solution, now known as FortiSOAR. Fortinet acquired and now supports the solution (December 2019).

Categories & Use Cases

Reviews

What users are saying about FortiSOAR.
View all reviews

Fortinet- FortiSOAR - Add value to SOC

Incentivized
Bhuwan ChandraView profile
Business Development Manager in Sales at ConnectUp IT Solutions (11-50 employees employees)

Use Cases and Deployment Scope

FortiSOAR is only Security Orchestration Automation & Response tool that has extensive product capability & flexibility, tied to case management & leverage the power of Forti Security Fabric reducing the Burdon of Security operation center (SOC) team ultimately working as force multiplier for teams to response faster- vital to reducing the threat landscape for organizations .

FortiSOAR remedies alert fatigue & false positives by centralizing & aggregating alerts enriching them with add context while corelating them across a security stack to rapidly investigate . This includes custom playbook for triage process. Accelerating incident response & optimizing security operations.

Pros

  • FortiSOAR address complexity by providing 160 +ply books & 300 Connectors to easily integrate with deployed security controls to ingest information & provide single point of control.
  • FortiSOAR resolves collaboration complexities by providing teams with a comprehensive war room, module builder, granular RBAC, Segmenting Teams , duties and process . Seamless connecting all an organization s team together .

Cons

  • Training Services- Fortinet offers courses geared towards administration and designed and development of FortiSOAR , Which required multiples access , we need all training services with self pace basis , I think here Fortinet need to improve.
  • Licensing Model- Being as a new technology Licensing model should be crystal & Clear, be it Concurrent Users or The number of FortiSOAR nodes there should be no ambiguity .

Most Important Features

  • Scalable Enterprise Architecture-FortiSOAR multitenant capabilities do not required further architectural development during configuration.
  • Product Flexibility - FortiSOAR is only that can be easy build or edit custom modules and automation for more than just investigation purposes.

Return on Investment

  • FortiSOAR help the purpose of SOC operation where it can add value which is need of time due to increasing threat landscape
  • FortiSOAR unified our response management , while further Orchestration and automation capabilities , complementing to the our legacy tools .

Alternatives Considered

Rapid7 InsightConnect and Securonix SOAR

Other Software Used

Broadcom CloudSOC CASB (formerly from Symantec)

Excellent SOAR platform with exceptional support.

Incentivized
Verified User
Analyst in Information Technology (51-200 employees employees)

Use Cases and Deployment Scope

The FortiSOAR solution had a great impact on our security operations center because it allowed us to unify and integrate different security systems/platforms and create a personalized center for viewing alerts and notifications. We use it to manage assets and especially network vulnerabilities that are the most critical. We set up the dashboards to make it easy to see everything in general and also the mini-panels specified for each platform. I found the interface very user-friendly and intuitive to configure, customize and read data through dashboards and reports. Technical support is a differential because the manufacturer's engineers are very helpful, and intelligent and help to clear up configuration doubts and unknown alerts.

Pros

  • User-friendly interface and easy to read data on the panels.
  • Perfect for vulnerability management.
  • Great integration with different security operations center platforms.
  • Customized panels.
  • Setting User Permissions.
  • Scheduled asset scans with reports.

Cons

  • The documentation is quite extensive and complex, but tech support can help with this.
  • Instabilities in the tool sometimes.

Most Important Features

  • Vulnerability and incident management.
  • Alarm system and notifications.
  • Customized panels.
  • Reports.
  • Queue management.
  • Excellent integration with other platforms.

Return on Investment

  • Improved compliance control and risk management.
  • Improved the business process.
  • Improved incident visibility.

Other Software Used

AnyDesk, Forcepoint Data Loss Prevention, WatchGuard Network Security, Cisco Aironet and Catalyst 9100 Access Points, Cisco Catalyst 2960-X/XR Series Switches, TeamViewer, LogMeIn Pro, Aruba Networks Wireless WAN, Cisco IP Phone 7800 Series

Safer operations with FortiSOAR.

Incentivized
Verified User
Director in Marketing (51-200 employees employees)

Use Cases and Deployment Scope

From ticketing to reporting and automation to orchestration we have met 99 percent of our highly customized requirements. More than 200 security products can be integrated into the platform, allowing organizations to build playbooks for various security operations. As a result, MTTR for security incidents can be reduced and ROI maximized.

Pros

  • Setup is a breeze once you get started.
  • Contextual information is provided by integrating various security products and services.
  • Effective scaling of FortiSOAR is achieved.

Cons

  • Automating a wide range of routine tasks necessitates the services of an expert.
  • Support for technical issues could be enhanced.
  • Third-party vendor integration is an area that can be improved.

Most Important Features

  • A support that is constantly changing that makes us learn.
  • The advantages of competitive tools.
  • Ease and time savings in integration.

Return on Investment

  • 12% in daily loads that we did not see in the team before.
  • The context in which the soft moves is impressive at the time of starting.
  • Consolidation of company operations.