Try our new research platform with insights from 80,000+ expert users

FortiCNAPP vs XM Cyber comparison

Fortinet and XM Cyber are both solutions in the Vulnerability Management category. Fortinet is ranked #41 with an average rating of 6.5, while XM Cyber is ranked #27 with an average rating of 8.2. Fortinet holds a 1.7% mindshare in VM, compared to XM Cyber’s 1.0% mindshare. Additionally, 83% of Fortinet users are willing to recommend the solution, compared to 100% of XM Cyber users who would recommend it.
FortiCNAPP
Read 11 FortiCNAPP reviews
  • 4,672 Views
  • 2,102 Comparison Views
83% willing to recommend
XM Cyber
Read 6 XM Cyber reviews
  • 3,237 Views
  • 1,392 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Nov 18, 2025

FortiCNAPP and XM Cyber compete in the cybersecurity software market. FortiCNAPP is favored for its comprehensive security features, while XM Cyber is recognized for its robust predictive analytics. FortiCNAPP holds an edge with its superior support and pricing, but XM Cyber remains a compelling option for its advanced predictive capabilities.

Features: FortiCNAPP provides advanced threat protection, robust network security, and automated policy compliance. XM Cyber offers continuous security validation, advanced analytics to predict future threats, and attack simulation functionalities.

Room for Improvement: FortiCNAPP could enhance its predictive threat detection, improve scalability in diverse environments, and expand the depth of its analytics capabilities. XM Cyber might consider simplifying deployment processes, enhancing user interface intuitiveness, and reducing the complexity of its feature configurations.

Ease of Deployment and Customer Service: FortiCNAPP is known for straightforward deployment and extensive customer support options. XM Cyber involves a more complex setup but offers precise setup guidance and expert technical support to align with unique security needs.

Pricing and ROI: FortiCNAPP offers a competitive pricing structure that leads to rapid ROI with scalable security solutions. XM Cyber has higher initial costs but delivers significant ROI through effective threat mitigation from its predictive capabilities, making it an attractive choice for those valuing advanced analytics despite the cost.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed FortiCNAPP vs. XM Cyber Report (Updated: January 2026).
Buyer's Guide
FortiCNAPP vs. XM Cyber
January 2026
Download the complete report
Helped 881,733 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.1
FortiCNAPP enhances security, saves time and costs by automating alerts and reducing manual efforts, justifying its investment.
Sentiment score
6.0
XM Cyber improves efficiency, cutting vulnerability management labor, saving money, and enhancing risk management with superior risk tracking capabilities.
No quotes available
For more quotes and insights, download the FortiCNAPP report
There was a specific issue that our other security tooling did not pick up, but XM Cyber did.
Stephen Owen
Group CISO at a insurance company with 51-200 employees
It's reduced the timescale to remediate vulnerabilities that are identified as representing a high risk.
John Meakin
Chief Information Security Officer at a financial services firm with 5,001-10,000 employees
For more quotes and insights, download the XM Cyber report
 

Customer Service

Sentiment score
7.9
FortiCNAPP’s customer service is praised for responsiveness, proactive communication, and efficient issue resolution via Slack and email.
Sentiment score
6.2
XM Cyber's customer service is highly rated for responsiveness and effectiveness, with some minor improvement suggested by a user.
Technical support from Fortinet is good; I get feedback and responses quickly.
Sai Tharun Kumar
Software Engineer at a university with 5,001-10,000 employees
For more quotes and insights, download the FortiCNAPP report
The customer support is fantastic; it's probably some of the best we've received across all our security vendors.
Stephen Owen
Group CISO at a insurance company with 51-200 employees
Customer support for XM Cyber is good, responsive, and it follows up on issues.
John Meakin
Chief Information Security Officer at a financial services firm with 5,001-10,000 employees
For more quotes and insights, download the XM Cyber report
SK
Stephen Owen - PeerSpot reviewer
JM
 

Scalability Issues

Sentiment score
7.5
FortiCNAPP is praised for scalability and adaptability, with positive integration across environments, but challenges include high-traffic scenarios.
Sentiment score
7.3
XM Cyber provides scalable, reliable solutions with easy licensing and deployment, receiving high ratings and responsive partner support.
No quotes available
For more quotes and insights, download the FortiCNAPP report
Its scalability is great; it's easy to deploy and fully scalable.
Jerome Monot
IT Security manager at a tech services company with 10,001+ employees
We have not experienced any issues with scalability or reached its limits.
Stephen Owen
Group CISO at a insurance company with 51-200 employees
For more quotes and insights, download the XM Cyber report
 

Stability Issues

Sentiment score
7.4
FortiCNAPP is stable, with occasional minor detection issues and lags, yet frequent updates maintain steady performance.
Sentiment score
8.0
XM Cyber is highly stable, quickly addressing minor issues, ensuring reliable and consistent performance in complex environments.
No quotes available
For more quotes and insights, download the FortiCNAPP report
We have quite a complex and large IT estate, and we've certainly experienced no limitations or problems arising from the ability of XM Cyber's product to scale across that estate.
John Meakin
Chief Information Security Officer at a financial services firm with 5,001-10,000 employees
For more quotes and insights, download the XM Cyber report
 

Room For Improvement

FortiCNAPP requires improvements in integration, security features, user interface, alert management, and data visibility for enhanced user experience.
XM Cyber should enhance mobile access, AI integration, support, visualization, tool compatibility, vulnerability detection, pricing, and advanced analytics.
The vulnerability part is not systematically organized; it is all clumsy in the web UI, and it is not user-friendly.
Sai Tharun Kumar
Software Engineer at a university with 5,001-10,000 employees
For more quotes and insights, download the FortiCNAPP report
We push the boundaries with digital twins; I understand XM Cyber uses a similar concept of graph databases to map environments.
Stephen Owen
Group CISO at a insurance company with 51-200 employees
They could improve support because when we need to create a super case and escalate to resolve with technical support, they resolve our ticket in approximately two weeks.
Amelia Torres Medrano
Chief Information Security Officer at Prezero
We intend to develop closer integration between XM Cyber and the other tools that help us tackle the issue of threats and vulnerabilities across our IT estate.
John Meakin
Chief Information Security Officer at a financial services firm with 5,001-10,000 employees
For more quotes and insights, download the XM Cyber report
SK
Stephen Owen - PeerSpot reviewerAmelia Torres Medrano - PeerSpot reviewer
JM
 

Setup Cost

FortiCNAPP pricing is flexible and stable, with costs ranging from $80,000 to $200,000 annually, not seen as prohibitive.
No quotes available
For more quotes and insights, download the FortiCNAPP report
We have a large, complicated estate, and in the licensing discussions, we were keen not to have the cost balloon because of the complication, the number of PCs and servers that we have.
John Meakin
Chief Information Security Officer at a financial services firm with 5,001-10,000 employees
For more quotes and insights, download the XM Cyber report
 

Valuable Features

FortiCNAPP excels in compliance, threat detection, integration, and automation, enhancing security and efficiency in multi-cloud environments.
XM Cyber enhances security by simulating attacks, assessing risks, identifying vulnerabilities, and optimizing asset protection with metrics and cost savings.
The machine learning capability in Lacework FortiCNAPP is used for threat detection.
Sai Tharun Kumar
Software Engineer at a university with 5,001-10,000 employees
For more quotes and insights, download the FortiCNAPP report
By far, the best feature of XM Cyber is being able to map out the way vulnerabilities can be exploited based on what they call the choke points in the network where the path that a bad actor would take comes closest to assets within our environment that are most vulnerable but also most valuable.
John Meakin
Chief Information Security Officer at a financial services firm with 5,001-10,000 employees
Our loss exposure amount has reduced significantly, leading to two big wins: our loss exposure amount has gone down, and we have direct savings from focusing our team's time on what's important, allowing them to work on other business benefits and generate value for the company.
Stephen Owen
Group CISO at a insurance company with 51-200 employees
XM Cyber allows us to quantify the risk, and we are able to track remediation, so we can quantify the risk at an executive level and also to a technical IT team.
Jerome Monot
IT Security manager at a tech services company with 10,001+ employees
For more quotes and insights, download the XM Cyber report
SK
JM
Stephen Owen - PeerSpot reviewer
JM
 

Categories and Ranking

FortiCNAPP
Ranking in Vulnerability Management
41st
Ranking in Cloud Security Posture Management (CSPM)
26th
Average Rating
8.4
Reviews Sentiment
6.9
Number of Reviews
11
Ranking in other categories
Container Security (30th), Cloud Workload Protection Platforms (CWPP) (18th), Cloud-Native Application Protection Platforms (CNAPP) (16th), Compliance Management (10th)
XM Cyber
Ranking in Vulnerability Management
27th
Ranking in Cloud Security Posture Management (CSPM)
19th
Average Rating
8.2
Reviews Sentiment
6.9
Number of Reviews
6
Ranking in other categories
Continuous Controls Monitoring (2nd), Continuous Threat Exposure Management (CTEM) (4th)
 

Mindshare comparison

As of February 2026, in the Vulnerability Management category, the mindshare of FortiCNAPP is 1.7%, up from 1.3% compared to the previous year. The mindshare of XM Cyber is 1.0%, up from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management Market Share Distribution
ProductMarket Share (%)
XM Cyber1.0%
FortiCNAPP1.7%
Other97.3%
Vulnerability Management
 

Featured Reviews

SK
Sai Tharun Kumar
Software Engineer at a university with 5,001-10,000 employees
Improving security insights has been helpful but inconsistent vulnerability tracking needs attention
The vulnerability part is not systematically organized; it is all clumsy in the web UI, and it is not user-friendly. Regarding improvements, the vulnerability part, recent changes with user management, and Fortinet IM coming into place, which is not helpful at all because it cuts out the automation part, are the most important things. Lacework FortiCNAPP should have a new clean UI and ease of access for the users as that should be the main concern. There are limitations regarding the scalability of Lacework FortiCNAPP. There are also more limitations with integrations like GitHub or any other pipeline, CI/CD, or ISD. It is glitchy and works well only sometimes, and most of the time, the reports or other things are not properly calculated or circulated with the teams.
Read full review
Stephen Owen - PeerSpot reviewer
Stephen Owen
Group CISO at a insurance company with 51-200 employees
Has significantly improved risk visibility and optimized remediation efforts across dynamic environments
We tightly integrate with APIs, consuming feeds and open source data. We have integrated with XM Cyber, and we are elevating ourselves with AI and MCP tools as we view this as a forerunner to reducing the workload for our agents and IT staff. We're pushing all our security partners to provide AI and MCP tools. Our vision is for them to offer a chat interface where a junior IT or an experienced infrastructure engineer can ask for what needs to be patched next without using an interface. Their current interface is very usable and professional, ranking in the top tier of applications. Their reporting is good, offering custom reports, and their API integration is a new capability that serves us well. We have high expectations for the next generation, such as a chat interface to ask questions. However, everything has been very good. We push the boundaries with digital twins; I understand XM Cyber uses a similar concept of graph databases to map environments. I would like access to that and querying languages, enabling more informed business decisions. XM Cyber sees much of our estate, which is beneficial for making informed decisions, and we can harness those insights and data for business analytics. For instance, it could help us gain insights into change management—if a particular server impacts another and that server is supported by yet another server, we could glean significant insights for change management meetings.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
See recommendations
881,733 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
12%
Computer Software Company
12%
Manufacturing Company
7%
University
6%
Computer Software Company
11%
Financial Services Firm
10%
Manufacturing Company
9%
Retailer
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise4
Large Enterprise4
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Lacework?
My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz.
See all answers
What needs improvement with Lacework?
The vulnerability part is not systematically organized; it is all clumsy in the web UI, and it is not user-friendly. Regarding improvements, the vulnerability part, recent changes with user managem...
See all answers
What is your primary use case for Lacework?
The major use case for Lacework FortiCNAPP is for security. I'm using it for security internally for my company.
See all answers
What do you like most about XM Cyber?
The platform's most valuable feature is attack simulation.
See all answers
What is your experience regarding pricing and costs for XM Cyber?
My experience with pricing, setup cost, and licensing was that we have a large, complicated estate, and in the licensing discussions, we were keen not to have the cost balloon because of the compli...
See all answers
What needs improvement with XM Cyber?
There are many interesting things about XM Cyber, but the part that can be improved is the mobile exposure and the IBM i specific equipment.
See all answers
 

Comparisons

Wiz vs FortiCNAPP Logo
Wiz vs FortiCNAPP
Compared 7% of the time
SentinelOne Singularity Cloud Security vs FortiCNAPP Logo
SentinelOne Singularity Cloud Security vs FortiCNAPP
Compared 4% of the time
Prisma Cloud by Palo Alto Networks vs FortiCNAPP Logo
Prisma Cloud by Palo Alto Networks vs FortiCNAPP
Compared 4% of the time
Tenable Cloud Security vs FortiCNAPP Logo
Tenable Cloud Security vs FortiCNAPP
Compared 4% of the time
Sysdig Secure vs FortiCNAPP Logo
Sysdig Secure vs FortiCNAPP
Compared 3% of the time
More FortiCNAPP Competitors
Cymulate vs XM Cyber Logo
Cymulate vs XM Cyber
Compared 12% of the time
Pentera vs XM Cyber Logo
Pentera vs XM Cyber
Compared 11% of the time
Wiz vs XM Cyber Logo
Wiz vs XM Cyber
Compared 9% of the time
Microsoft Security Exposure Management vs XM Cyber Logo
Microsoft Security Exposure Management vs XM Cyber
Compared 5% of the time
Tenable One Exposure Management Platform vs XM Cyber Logo
Tenable One Exposure Management Platform vs XM Cyber
Compared 5% of the time
More XM Cyber Competitors
 

Product Reports

Buyer's Guide
FortiCNAPP
February 2026
FortiCNAPP reportDownload FortiCNAPP product report
Buyer's Guide
XM Cyber
January 2026
XM Cyber reportDownload XM Cyber product report
 

Also Known As

Polygraph, FortiCNP, Lacework
No data available
 

Overview

FortiCNAPP is a comprehensive cloud security platform focusing on ease of use and machine learning-driven anomaly detection. It offers robust compliance reporting, seamless integration, and continuous monitoring, making it an essential tool for organizations managing multi-cloud environments and security configurations.

FortiCNAPP provides significant capabilities in cloud security, compliance, and vulnerability management. Designed for organizations needing efficient monitoring, it enables detection of anomalies across cloud infrastructures while optimizing security posture and ensuring compliance with environments like AWS and GCP. The platform offers in-depth insights through scanning of IAC scripts, host systems, and cloud configurations. Recognized for effectively managing security posture, it safeguards Kubernetes and container environments, providing comprehensive threat detection and response. However, some areas like visibility, IAM security controls, and compliance metrics need improvement. Users face challenges with alert setup and lack intuitive design, alongside issues like FedRAMP authorization absence and complexity in the data model.

What are the key features of FortiCNAPP?
  • Ease of Use: FortiCNAPP simplifies security management for cloud environments.
  • Machine Learning Anomaly Detection: Automatically identifies and prioritizes threats.
  • Compliance Reporting: Streamlines compliance procedures and reporting.
  • Seamless Integration: Ensures smooth operation across multi-cloud environments.
  • Continuous Monitoring: Provides ongoing oversight of security vulnerabilities.
  • Multi-Cloud Integration: Enables swift response to misconfigurations and vulnerabilities.
What benefits should users expect when evaluating FortiCNAPP?
  • Time Efficiency: Reduces time spent on compliance and threat management.
  • Improved Security Posture: Enhances protection for cloud and container environments.
  • Valuable Security Insights: Provides in-depth analysis for proactive threat response.
  • Noise Reduction: Distills security logs to minimize alert fatigue.
  • Operational Effectiveness: Facilitates seamless multi-cloud security management.

FortiCNAPP is implemented extensively by industries needing reliable cloud security, such as finance, healthcare, and technology sectors. It supports organizations in enhancing cloud infrastructure protection, ensuring compliance, and strengthening vulnerability management. By integrating with platforms like AWS and GCP, businesses can optimize security posture in their cloud deployments.

Fortinet

XM Cyber is a leading hybrid cloud security company that’s changing the way innovative organizations approach cyber risk. Our attack path management platform continuously uncovers hidden attack paths to your critical assets across cloud and on-prem environments, so you can cut them off at key junctures and eradicate risk with a fraction of the effort. This overcomes the big disconnect that security teams experience when they’re presented with endless alerts, yet can’t see which exposures impact risk the most, how they come together to be exploited by an attacker, or how to efficiently eliminate them. This approach is a complete game-changer, which is why some of the world’s largest, most complex organizations choose XM Cyber to help eradicate risk. Founded by top executives from the Israeli cyber intelligence community, XM Cyber has offices in North America, Europe, and Israel.

XM Cyber
 

Sample Customers

J.Crew, AdRoll, Snowflake, VMWare, Iterable, Pure Storage, TrueCar, NerdWallet, and more.
Hamburg Port Authority, Plymouth Rock Corporation
Buyer's Guide
FortiCNAPP vs. XM Cyber
January 2026
Free Report: FortiCNAPP vs. XM Cyber
Find out what your peers are saying about FortiCNAPP vs. XM Cyber and other solutions. Updated: January 2026.
DOWNLOAD NOW
881,733 professionals have used our research since 2012.
See our FortiCNAPP vs. XM Cyber report.
See our list of best Vulnerability Management vendors and best Cloud Security Posture Management (CSPM) vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.