Fortinet FortiCNAPP
Fortinet Inc.External reviews
385 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Best tool to get detailed container vulnerability report
What do you like best about the product?
A detailed description of the vulnerabilities in criticality, introduced layer, and fixed versions. Helps to mitigate the security risks with ease based on the generated report
What do you dislike about the product?
Nothing much to dislike. UI could have been improved. Always it's hard to set the required filters among the results, and configuring the filter was too overwhelming.
What problems is the product solving and how is that benefiting you?
Lacework helps in mitigating security risks with the help of periodic scans and generating the scan report. This allows us to deliver images with free of potential CVEs
Great cloud monitoring
What do you like best about the product?
- accurate monitoring of our AWS cloud environment
What do you dislike about the product?
- many follow-up tasks that need to be taken care of
What problems is the product solving and how is that benefiting you?
For ISO27001 and other IT Security related certifications we need a proper monitoring
All in 1 product for security and vulnerability scan.
What do you like best about the product?
Detailed insight about each event/trigger and remediation to it
What do you dislike about the product?
It is over all a good product. There isn't anything to dislike
What problems is the product solving and how is that benefiting you?
Gives us a full insight into our AWS account, EC2 instances and dockers running on it.
Lacework is a great product
What do you like best about the product?
Lacework provide indepth asset invetory of cloud resource. You can protect only if you know what you have.
What do you dislike about the product?
K8s detection needs more improvement. I think lacework team is working on it to improve it
What problems is the product solving and how is that benefiting you?
cloud posture management, vulnerability management
Great cloud compliance tool
What do you like best about the product?
It has many different frameworks which you can assess your cloud environment against. Being able to flip off certain checks also enables the user to tailor it to their needs.
What do you dislike about the product?
The UI can be somewhat cumbersome to navigate. There tends to be a lot of clicks to get to where you need and the filtering is almost too complicated. But Once you learn the system it's not hard.
What problems is the product solving and how is that benefiting you?
Securing ECS Fargate containers with their deployable agent. This feature has allowed us visibility into what is going on inside the container, as you cannot get that information from AWS.
Customer Support
What do you like best about the product?
Urgent response to support related issues
What do you dislike about the product?
Ensure timely responses to questions with support.
What problems is the product solving and how is that benefiting you?
SOC 2 compliance and CIS benchmark
Lacework is mix of both positives and negatives.Positives are with the seamless integration with tf
What do you like best about the product?
Lacework terraform provider was very helpful.
What do you dislike about the product?
Lacework always looked like a unfinished product with lot of potential. We had lacework for an year and we didn't see some major improvements(apart from agent less monitoring) in terms of onboarding accounts into lacework. Onboarding was cumbersome all thru the year.
What problems is the product solving and how is that benefiting you?
security compliance and monitoring
Great security with easy installation
What do you like best about the product?
Lacework more than other tool has reliable and not false positive alerting giving easy way understanding where you need to improve your security posture.
What do you dislike about the product?
I think some of the dashboards and metrics are not self explanatory but it improves over time
What problems is the product solving and how is that benefiting you?
First, compliance ,and network security, security inside our contains and I think they have more capabilities that we are not even using. This helps on prénsales calls and for compliance calls
A useful tool for security alerts
What do you like best about the product?
I really like how it can give you a bird's eye view of potential intrusions in the systems.
What do you dislike about the product?
I found the UI a bit much in the beginning, when I got thrown a link to a specific alert; there's a lot of stuff to pay attention to.
What problems is the product solving and how is that benefiting you?
I need to know when people are trying to do bad things to our network endpoints
Lacework is a cyber security Swiss army knife
What do you like best about the product?
Threat intelligence and machine learning have improved significantly in our environment over the past 2 years and now we only receive around 5 alerts a week from the IR side. False positives have dropped down as well from external network connection alerts, which have been vastly improved as well. The who, what, why, when dossiers are instrumental for a security analyst to quickly gauge what is happening in the environment. The compliance and alert rules are vast and provide much better detection capabilities than something like Guard Duty.
What do you dislike about the product?
The new UI in my opinion is a step back and I prefer a full-screen view of events instead of the left 1/4 of the screen real estate not being used. Compared to some competitors, Lacework is somewhat of a black box and lacks further visibility that other tools provide. The individual dossiers are very slow to load at times and do not provide any data at all in some cases. Detection is not real-time and instantaneous compared to other tools. We are still seeing 0byte network connections in dossiers which we have reported on for years and this has still not been fixed.
What problems is the product solving and how is that benefiting you?
Lacework has helped us clean up our container vulnerability remediation process. It makes it easy to know what our highest-risk containers that need to be remediated as soon as possible. It has also been instrumental in detecting reconnaissance and is a great high-level tool for viewing IOCs and IOAs. It is a critical part of our IR process and has really helped us solve the classic security issue of alert fatigue.
showing 221 - 230