Try our new research platform with insights from 80,000+ expert users

Fortinet FortiSIEM vs NetWitness Platform comparison

Fortinet and NetWitness are both solutions in the Security Information and Event Management (SIEM) category. Fortinet is ranked #7 with an average rating of 8.2, while NetWitness is ranked #31 with an average rating of 8.3. Fortinet holds a 2.8% mindshare in SIEM, compared to NetWitness’s 0.8% mindshare. Additionally, 83% of Fortinet users are willing to recommend the solution, compared to 75% of NetWitness users who would recommend it.
Fortinet FortiSIEM
Read 76 Fortinet FortiSIEM reviews
  • 5,718 Views
  • 4,231 Comparison Views
83% willing to recommend
NetWitness Platform
Read 36 NetWitness Platform reviews
  • 1,929 Views
  • 1,196 Comparison Views
75% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

NetWitness Platform and Fortinet FortiSIEM are two leading security information and event management solutions. Fortinet FortiSIEM edges out NetWitness Platform in features and consistent performance, while NetWitness is favored for its customer service and ease of deployment.

Features: NetWitness Platform users appreciate its comprehensive threat detection and network monitoring capabilities. It offers advanced analytics, network visibility, and real-time threat detection. Fortinet FortiSIEM users value its extensive device support, integration options, and threat intelligence features. FortiSIEM slightly edges out in features with its broader integration scope and flexible data collection.

Room for Improvement: Users suggest NetWitness Platform could benefit from more intuitive configuration options and enhanced documentation. They also point to the need for better reporting capabilities. For Fortinet FortiSIEM, users recommend improving its scalability and performance optimization. They also note a need for a more streamlined user interface and better customization options.

Ease of Deployment and Customer Service: NetWitness Platform is highlighted for its relatively straightforward deployment process and responsive customer support. Fortinet FortiSIEM users experience a more complex deployment but satisfactory customer service. NetWitness stands out with easier deployment.

Pricing and ROI: Users find NetWitness Platform’s pricing to be higher, but they feel it delivers good ROI with its robust security features. Fortinet FortiSIEM, although more cost-effective upfront, presents a comparable ROI over time due to its extensive feature set. Pricing is a notable differentiator, with FortiSIEM being more budget-friendly.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Fortinet FortiSIEM vs. NetWitness Platform Report (Updated: December 2025).
Buyer's Guide
Fortinet FortiSIEM vs. NetWitness Platform
December 2025
Download the complete report
Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiSIEM
Ranking in Security Information and Event Management (SIEM)
7th
Average Rating
7.6
Reviews Sentiment
6.2
Number of Reviews
76
Ranking in other categories
AI Observability (5th)
NetWitness Platform
Ranking in Security Information and Event Management (SIEM)
31st
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
36
Ranking in other categories
Log Management (34th)
 

Mindshare comparison

As of January 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Fortinet FortiSIEM is 2.8%, down from 3.0% compared to the previous year. The mindshare of NetWitness Platform is 0.8%, up from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Market Share Distribution
ProductMarket Share (%)
Fortinet FortiSIEM2.8%
NetWitness Platform0.8%
Other96.4%
Security Information and Event Management (SIEM)
 

Featured Reviews

SY
SaurabhYadav5
Network Engineer at Ogma Consulting
Comprehensive monitoring boosts security, yet incident management features need expansion
Fortinet FortiSIEM should broaden its remediation part to include more features for incident management. Currently, to manage repetitive incidents or for remediation, I need to use a separate software called FortiSOAR. Additionally, the search functionality in FortiAI should be improved to provide more precise results, making it easier for me to understand what actions need to be taken.
Read full review
MOTASHIM Al Razi - PeerSpot reviewer
MOTASHIM Al Razi
CISO at One Bank Limited
It is a stable solution, but they should make the user interface easier to understand
The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Technical support is helpful."
"Fortinet FortiSIEM has its own validated and authentic IP database that marks malicious IP attacks against the firewall and generates an alert for the same."
"I like the various options, including the option for CMDB and the easier access to create rules, playbooks, or use cases. It's also easier to use for creating dashboards and reports."
"The most valuable feature of Fortinet FortiSIEM is the correlation of many events."
"Fortinet FortiSIEM is less costly than other products and is available 24/7."
"It gives us the opportunity to generate notifications based upon rules that get triggered, and the rules could be specific to PCI, HIPAA, GIBA, NIST, and so forth."
"The CMDB and the device discovery features are most valuable."
"FortiSIEM provides a single PIN to monitor SOC and NOC. It's a nice tool for integration and monitoring. It provides multiple categories for monitoring based on security designations like low, medium, and high."
More Fortinet FortiSIEM pros
"The most valuable features are its ingestion of logs and raising of alerts based on those logs."
"Offers a good wireless feature."
"What we are mainly using are the RSA concentrator, RSA Decoder, Archiver, Broker, and Log Decoder."
"The most valuable features are the packet inspection and the automated incident response."
"It gives the capability for the incident response team to correlate logs to identify any kind of problem like malware and incidents in a general sense, both for logs and packets."
"The solution is really scalable for the high-end power, enterprise customer."
"I can have enterprise security, email security, next generation firewall security log, HIDS and NIDS logs, etc. all on the same dashboard. It makes it easy to pinpoint or correlate our server to this. I can find out if there is lateral movement. This is the biggest advantage of this solution."
"Incident management is its most valuable feature."
More NetWitness Platform pros
 

Cons

"There is no proper guide for integration or configuration."
"Fortinet FortiSIEM needs to provide better API integrations to users."
"They should enhance the solution's AI capabilities, including XDR and EDR."
"We need to see incident reports about the event log, without events from the administrator or through human interaction."
"Sometimes, if there are changes made by a user on a database server, it can be difficult to get that information on the fly. I would like to see a situation where once I specify a user with the database server I need, and with the changes they have performed on that, I don't need to continue my search pattern to drill down just to get the information."
"They need to integrate better with Cisco and Palo Alto."
"Our customers are noticing configuration available in the GUI interface and I think that they should be equal."
"The product does not have Security Orchestration and Automation Response, I would recommend adding this feature."
More Fortinet FortiSIEM cons
"Nowadays, their support is a little subpar compared to other solutions. I rate RSA support six out of 10."
"The initial setup is very complex and should be simplified."
"The system architecture is complex and sometimes it’s hard to troubleshoot potential problems."
"Sometimes, it gives me static when integrating Windows-based systems. It should produce a precise log of sorts as to where the problem is. For example, a few days ago because of the McAfee application firewall, I couldn't get access to the particular Windows machine. So, my team and I had to figure out by ourselves that there was a virus responsible for the obstacle. This solution should trigger a meaningful log or message indicating the reason the user or implementer can't get into the machine."
"The multi-tenant capabilities are lagging compared to IBM QRadar."
"The user interface is a little bit difficult for new users and it needs to be improved."
"There is no support for this product in this country, so problems have to be resolved through global technical teams."
"Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance."
More NetWitness Platform cons
 

Pricing and Cost Advice

"The price is competitive."
"This is probably more on the lower cost end of the spectrum compared to competing products. Fortinet's license model is based on events per second, which makes sense, but that's not typical. It makes it very hard to calculate what your costs are going to be as you scale the platform because some log sources, such as firewall logs, are very noisy, and there are lots and lots of events per second, but some of them are not. So, it becomes a bit of a science experiment trying to guess what your costs are going to be as you scale the solution. This is where other competing products perhaps have a more straightforward license model."
"Fortinet FortiSIEM is cheaper compared to other products."
"The price of Fortinet FortiSIEM was reasonable compared to other solutions."
"Pricing is acceptable for more than 90% of our customers, as they normally get discounts."
"The tool is really expensive. For what the tool does for our team, the price is fair."
"They have a yearly subscription."
"The price of the solution is expensive. The license is scalable. If there are 10 devices it is simple to license."
More Fortinet FortiSIEM pricing and cost advice
"In comparison to other SIEM solutions such as Splunk, NetWitness is less costly."
"The licenses are good but the cost is very expensive."
"RSA NetWitness Logs and Packets do not have a subscription model, it's a one-time purchase. There is only a perpetual license."
"Our license is for one year."
"We have yearly licensing costs. The license fee can be based on the volume of EPS. Some organizations may have, as a gentlemanly gesture, 10,000 EPS and get a 3,000 EPS license but actually use 5,000 EPS."
"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
"It is cheap."
"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."
More NetWitness Platform pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
881,082 professionals have used our research since 2012.
 

Comparison Review

VS
Vinod Shankar
Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Computer Software Company
11%
Financial Services Firm
9%
Comms Service Provider
8%
Manufacturing Company
6%
Financial Services Firm
13%
Performing Arts
9%
Computer Software Company
8%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business34
Midsize Enterprise22
Large Enterprise24
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise7
Large Enterprise20
 

Questions from the Community

What do you like most about Fortinet FortiSIEM?
Fortinet FortiSIEM needs to provide better API integrations to users.
See all answers
What is your experience regarding pricing and costs for Fortinet FortiSIEM?
My experience with pricing, setup cost, and licensing for Fortinet FortiSIEM is wonderful, as it offers an excellent license compared to other vendors.
See all answers
What needs improvement with Fortinet FortiSIEM?
Fortinet FortiSIEM is great overall. Performance could be enhanced, but I do not wish to elaborate on needed improvements.
See all answers
What do you like most about NetWitness Platform?
The product's initial setup phase was not at all difficult.
See all answers
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
See all answers
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
See all answers
 

Comparisons

IBM Security QRadar vs Fortinet FortiSIEM Logo
IBM Security QRadar vs Fortinet FortiSIEM
Compared 9% of the time
Splunk Enterprise Security vs Fortinet FortiSIEM Logo
Splunk Enterprise Security vs Fortinet FortiSIEM
Compared 9% of the time
Wazuh vs Fortinet FortiSIEM Logo
Wazuh vs Fortinet FortiSIEM
Compared 7% of the time
LogRhythm SIEM vs Fortinet FortiSIEM Logo
LogRhythm SIEM vs Fortinet FortiSIEM
Compared 5% of the time
ManageEngine Log360 vs Fortinet FortiSIEM Logo
ManageEngine Log360 vs Fortinet FortiSIEM
Compared 5% of the time
More Fortinet FortiSIEM Competitors
IBM Security QRadar vs NetWitness Platform Logo
IBM Security QRadar vs NetWitness Platform
Compared 13% of the time
Splunk Enterprise Security vs NetWitness Platform Logo
Splunk Enterprise Security vs NetWitness Platform
Compared 9% of the time
Elastic Security vs NetWitness Platform Logo
Elastic Security vs NetWitness Platform
Compared 7% of the time
Microsoft Sentinel vs NetWitness Platform Logo
Microsoft Sentinel vs NetWitness Platform
Compared 5% of the time
Cisco Secure Network Analytics vs NetWitness Platform Logo
Cisco Secure Network Analytics vs NetWitness Platform
Compared 4% of the time
More NetWitness Platform Competitors
 

Product Reports

Buyer's Guide
Fortinet FortiSIEM
January 2026
Fortinet FortiSIEM reportDownload Fortinet FortiSIEM product report
Buyer's Guide
NetWitness Platform
January 2026
NetWitness Platform reportDownload NetWitness Platform product report
 

Also Known As

FortiSIEM, AccelOps
RSA Security Analytics
 

Overview

FortiSIEM (formerly AccelOps 4) provides an actionable security intelligence platform to monitor security, performance and compliance through a single pane of glass.

Companies around the world use FortiSIEM for the following use cases:

  • Threat management and intelligence that provide situational awareness and anomaly detection
  • Alleviating compliance mandate concerns for PCI, HIPAA and SOX
  • Managing “alert overload”
  • Handling the “too many tools” reporting issue
  • Addressing the MSPs/MSSPs pain of meeting service level agreements
Fortinet

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

NetWitness
 

Sample Customers

FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia.
Los Angeles World Airports, Reply
Buyer's Guide
Fortinet FortiSIEM vs. NetWitness Platform
December 2025
Free Report: Fortinet FortiSIEM vs. NetWitness Platform
Find out what your peers are saying about Fortinet FortiSIEM vs. NetWitness Platform and other solutions. Updated: December 2025.
DOWNLOAD NOW
881,082 professionals have used our research since 2012.
See our Fortinet FortiSIEM vs. NetWitness Platform report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.