Cortex XSIAM vs Fortinet FortiSIEM comparison

Palo Alto Networks and Fortinet are both solutions in the Security Information and Event Management (SIEM) category. Palo Alto Networks is ranked #17 with an average rating of 8.5, while Fortinet is ranked #8 with an average rating of 7.9. Palo Alto Networks holds a 2.8% mindshare in SIEM, compared to Fortinet’s 3.1% mindshare. Additionally, 100% of Palo Alto Networks users are willing to recommend the solution, compared to 82% of Fortinet users who would recommend it.

Cortex XSIAM

Read 11 Cortex XSIAM reviews

2,201 Views
1,564 Comparison Views

100% willing to recommend

Fortinet FortiSIEM

Read 73 Fortinet FortiSIEM reviews

4,452 Views
3,087 Comparison Views

82% willing to recommend

Cortex XSIAM

Fortinet FortiSIEM

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cortex XSIAM and Fortinet FortiSIEM based on real PeerSpot user reviews.

Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Cortex XSIAM vs. Fortinet FortiSIEM Report (Updated: March 2025).

Buyer's Guide

Cortex XSIAM vs. Fortinet FortiSIEM

March 2025

Download the complete report

Helped 845,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cortex XSIAM

Ranking in Security Information and Event Management (SIEM)

17th

Average Rating

8.6

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Identity Threat Detection and Response (ITDR) (6th), AI-Powered Cybersecurity Platforms (7th)

Fortinet FortiSIEM

Ranking in Security Information and Event Management (SIEM)

8th

Average Rating

7.6

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of April 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Cortex XSIAM is 2.8%, up from 0.6% compared to the previous year. The mindshare of Fortinet FortiSIEM is 3.1%, up from 3.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Forrest Stevens

Senior Manager - Security Operations at First Advantage Corporation

A robust security operation that ensures achieving automation, stability, and scalability

There is room for improvement in some areas, and I would highlight three key aspects. Firstly, the Attack Surface Management (ASM) module could benefit from more contextual depth. Currently, it tends to provide a broad overview without enriched context, and there's room for enhancement in this regard. Secondly, further integration capabilities with various other software products that can seamlessly tie into Cortex XSIAM would be advantageous. This would enhance its versatility and interoperability within a broader ecosystem. Regarding performance, there's potential for optimization. When multiple tabs are open in Cortex XSIAM, it can experience slowdowns, leading to longer load times for web pages. It's worth noting that this isn't a severe issue, and it doesn't entail waiting for extended periods, but there is room for improvement in terms of performance optimization.

Read full review

Oliver Jackson

Network Engineer at Laminar Communications Pty Ltd

Systems monitoring enhanced by firewall and intrusion detection features

My primary use case for Fortinet FortiSIEM is systems monitoring and alerting. I use it for standard functions like log monitoring, incident detection, and notification. My customers are mostly medium-sized enterprises ranging from engineering companies, mining companies, independent schools, and…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The flexibility for creating manual workflows stands out."

"The most valuable features of Cortex XSIAM are the machine learning used to identify threats, the complexity of the environment of products, and efficiency."

"One of the valued aspects of the product is its use of artificial intelligence to detect security vulnerabilities."

"It operates on a single, extensive database which enables it to excel in detecting threats and anomalies across the network and endpoints, delivering a highly effective and comprehensive security solution."

"It does a better job of identifying anomalies that are more likely to be incidents of compromise without as many false positives or false negatives."

"One of the valued aspects of the product is its use of artificial intelligence to detect security vulnerabilities."

"I would give Cortex XSIAM a rating of ten out of ten."

"The automation capabilities significantly improve response times by allowing us to respond to incidents from a single dashboard rather than navigating multiple dashboards."

More Cortex XSIAM pros

"FortiSIEM provides a single PIN to monitor SOC and NOC. It's a nice tool for integration and monitoring. It provides multiple categories for monitoring based on security designations like low, medium, and high."

"The solution is easy to use and user-friendly."

"The ability to write my own parsers for the devices that are not supported by Fortinet is the most valuable feature."

"The seamless integration with FortiGate is the solution's most valuable aspect."

"The event correlation is pretty robust. The GUI is pretty good."

"Technical support is helpful."

"The product is quite well-organized. The GUI makes it easy to navigate."

"I like the various options, including the option for CMDB and the easier access to create rules, playbooks, or use cases. It's also easier to use for creating dashboards and reports."

More Fortinet FortiSIEM pros

Cons

"The standard integrations are very limited, and the integrations available are not listed in the marketplace. Obtaining validation for integrations from Palo Alto takes around eight months, which is quite long."

"I would rate the overall stability a six or seven, as we have only used it for a few months and need a year of experience to provide a full assessment."

"There is room for improvement in expanding integrations to include more cybersecurity solutions."

"Further integration capabilities with various other software products that can seamlessly tie into Cortex XSIAM would be advantageous."

"The platform isn't very developer-friendly and it should provide more flexibility and ease."

"The standard integrations are very limited, and the integrations available are not listed in the marketplace."

"The support could be a bit faster."

"The first impression is that XSIAM would be more expensive than others we tried."

More Cortex XSIAM cons

"Improvements include making it easier for users to create their normalizers. Fortinet FortiSIEM uses XML for normalizing and parsing, which can be tedious and time-consuming. A simpler way of using regex could be helpful."

"Does not have load-sharing or high-availability, and these are important things to implement. I can do the same things in another way, but not naturally having these features makes it complicated."

"Fortinet FortiSIEM is a little out of sight and needs more marketing efforts to be popular in the market."

"The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients."

"I would like to see easier implementation in the future."

"The only drawback is the licensing model. It can get expensive if you want to integrate more solutions."

"The deployment of the platform took some time to set up and configure."

"The stability of the product is an area of concern where improvements are required."

More Fortinet FortiSIEM cons

Pricing and Cost Advice

"In terms of pricing, we found Cortex XSIAM to offer a very reasonable and competitive rate."

"The product cost could be considered value for money compared to other solutions in the market, though it is quite high."

"The solution comes at a significant cost."

"Since Palo Alto is trying to get as many new customers as possible, they're offering very competitive pricing."

"The solution is expensive compared to its competitors."

"The solution is available for both, perpetual and subscription licenses."

"Manageable, however would be better as pay as you go versus CapEX."

"The price of Fortinet FortiSIEM was reasonable compared to other solutions."

"FortiSIEM's licensing is based on EPS, and its pricing is competitive in the market."

"Fortinet FortiSIEM is cheaper compared to other products."

"The tool is really expensive. For what the tool does for our team, the price is fair."

"The price of Fortinet FortiSIEM is a lot less when compared to other solutions."

"The price of the solution is expensive. The license is scalable. If there are 10 devices it is simple to license."

More Fortinet FortiSIEM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

845,406 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

14%

Financial Services Firm

10%

Manufacturing Company

Government

Computer Software Company

16%

Financial Services Firm

Government

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Cortex XSIAM?

It is an effective solution in terms of performance and functionalities.

See all answers

What is your experience regarding pricing and costs for Cortex XSIAM?

The product is very expensive. Additional integration and support are not provided by Cortex and must be purchased from partners. This adds to the cost and delays projects due to resource dependency.

See all answers

What needs improvement with Cortex XSIAM?

The standard integrations are very limited, and the integrations available are not listed in the marketplace. Obtaining validation for integrations from Palo Alto takes around eight months, which i...

See all answers

What do you like most about Fortinet FortiSIEM?

Fortinet FortiSIEM needs to provide better API integrations to users.

See all answers

What is your experience regarding pricing and costs for Fortinet FortiSIEM?

As a service, the cost is reasonable and affordable with scalable pricing based on the number of monitored devices. However, setting it up for oneself as an enterprise-licensed product can be quite...

See all answers

What needs improvement with Fortinet FortiSIEM?

The built-in APIs in Fortinet FortiSIEM are somewhat lacking and could be improved for better integration with external ITSM products. Improving software stability and reducing bugs will make it a ...

See all answers

Comparisons

Palo Alto Networks Cortex XSOAR vs Cortex XSIAM

Compared 39% of the time

Microsoft Sentinel vs Cortex XSIAM

Compared 15% of the time

Splunk SOAR vs Cortex XSIAM

Compared 10% of the time

IBM Security QRadar vs Cortex XSIAM

Compared 10% of the time

CrowdStrike Falcon vs Cortex XSIAM

Compared 6% of the time

More Cortex XSIAM Competitors

Wazuh vs Fortinet FortiSIEM

Compared 13% of the time

IBM Security QRadar vs Fortinet FortiSIEM

Compared 13% of the time

Splunk Enterprise Security vs Fortinet FortiSIEM

Compared 10% of the time

Microsoft Sentinel vs Fortinet FortiSIEM

Compared 8% of the time

LogRhythm SIEM vs Fortinet FortiSIEM

Compared 7% of the time

More Fortinet FortiSIEM Competitors

Product Reports

Buyer's Guide

Security Information and Event Management (SIEM)

March 2025

Download Cortex XSIAM product report

Buyer's Guide

Fortinet FortiSIEM

March 2025

Download Fortinet FortiSIEM product report

Also Known As

No data available

FortiSIEM, AccelOps

Overview

Cortex XSIAM acts as a critical element for SOC foundations, integrating SIEM and EDR capabilities, valued for threat detection and seamless security orchestration with Palo Alto Networks products.

Organizations find Cortex XSIAM beneficial for SOC foundations due to its capability to integrate SIEM and EDR tools, facilitating data collection, detection, and response. It connects with third-party data sources while reducing management effort and offering cost-effective alternatives to competitors like CrowdStrike and Trend Micro. Featuring automation and integration with Palo Alto Networks products, Cortex XSIAM enhances threat detection. Unified architecture allows a comprehensive view of attacks, further supported by machine learning and integration with existing vendor solutions, ensuring that users gain insights without significant manual log analysis.

What are Cortex XSIAM's key features?

Security Orchestration: Streamlines processes across security operations.
Automation and Response: Efficient incident response management.
Detection Enrichment: Enhances identification of threats.
Centralized Endpoint Security: Comprehensive protection and monitoring of endpoints.
Forensic Investigation: Automated investigation to expedite threat analysis.

What benefits are evident in Cortex XSIAM reviews?

Cost-Effectiveness: Provides economical options compared to other market players.
Comprehensive Integration: Seamlessly integrates with multiple data sources and vendors.
Reduced Management Effort: Simplifies the administration of security operations.
Enhanced Threat Detection: Strengthens identification and remediation processes.

Industries implement Cortex XSIAM mainly in technology-driven sectors where centralized endpoint protection and automation of forensic investigation are paramount. By integrating several third-party systems for incident response, companies in competitive markets leverage its attributes for heightened operational security efficiency. However, users note areas for improvement, such as Attack Surface Management and integration enhancements, to better suit tech-heavy industries needing extensive connectivity with cybersecurity solutions.

Palo Alto Networks

FortiSIEM (formerly AccelOps 4) provides an actionable security intelligence platform to monitor security, performance and compliance through a single pane of glass.

Companies around the world use FortiSIEM for the following use cases:

Threat management and intelligence that provide situational awareness and anomaly detection
Alleviating compliance mandate concerns for PCI, HIPAA and SOX
Managing “alert overload”
Handling the “too many tools” reporting issue
Addressing the MSPs/MSSPs pain of meeting service level agreements

Fortinet

Sample Customers

Information Not Available

FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia.

Buyer's Guide

Cortex XSIAM vs. Fortinet FortiSIEM

March 2025

Free Report: Cortex XSIAM vs. Fortinet FortiSIEM

Find out what your peers are saying about Cortex XSIAM vs. Fortinet FortiSIEM and other solutions. Updated: March 2025.

DOWNLOAD NOW

845,406 professionals have used our research since 2012.

See our Cortex XSIAM vs. Fortinet FortiSIEM report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.