We use the tool for two main purposes: vulnerability management and monitoring. We utilize it to scan all of our IAC scripts and configurations across our AWS and GCP environments. Additionally, we employ its agent to scan our compute nodes. This covers three main areas: cloud configuration, host systems, and IAC code, all essential for vulnerability management. We primarily focus on monitoring AWS CloudTrail to detect anomalous activities and risky behavior.
Fortinet Lacework FortiCNAPP
Fortinet Inc.External reviews
140 reviews
from
External reviews are not included in the AWS star rating for the product.
Kit's Review
What do you like best about the product?
I think that it is intuitive to use, easy to navigate, and has a clean look, design, and feel. The page isn't too scattered or busy, yet it has a lot of good content at the tip of your fingers.
What do you dislike about the product?
The only negative that I have is they syncing with Okta. I can find that to be rather cumbersome and slow at times.
What problems is the product solving and how is that benefiting you?
It's a one stop shop for all things compliance and security related. As a Renewals Manager, I work with a lot of clients to go over legal, security, RFP's, questionairres, etc. The ability to have everything in once place is a big time saver and one less headache to deal with.
SafeBase has been smooth sailing from the start
What do you like best about the product?
I personally like the layout of the dashboard and how straightforward the features are. While you do have to explore a bit to find out where everything is, the dashboard works cohesively to make implementation easy.
What do you dislike about the product?
Having more instruction to show/describe the different features would be excellent.
What problems is the product solving and how is that benefiting you?
SafeBase is allowing us to share documents containing proprietary information with potential/current customers.
great repository for security documents
What do you like best about the product?
All of our security documents are harbored in one easily accessible place that we can easily share with customers.
What do you dislike about the product?
it is a bit of a pain to log into your internal SafeBase with SSO established, but that is a small problem.
What problems is the product solving and how is that benefiting you?
All of our privacy documents can be stored in one location that is easily accessible for customers. We can share links to the SafeBase hub or specific items directly to customers, easily.
SafeBase review
What do you like best about the product?
SafeBase provides a secure and compliant environment for storing and sharing sensitive data. Granular access controls - Admins can set precise permissions on who can access what data, preventing unauthorized access. Audit trails - A full audit log tracks all activity, so there's accountability for how data is accessed and used.
What do you dislike about the product?
It can be somewhat laborious creating new accounts and has limited functionality for sending links to mulitple requestsed documents.
What problems is the product solving and how is that benefiting you?
I can easily share sensitive information making security reviews a more seamless process.
User friendly and great UX!
What do you like best about the product?
It is super helpful to have all of our safety, legal, and secuirty documentation all in one place for both our internal teams to refer to, but also for our customers to utilize. As a Solutions Consultant, I am often helping with the INFOSEC/legal process and it is so helpful to know exactly where I can find all the informatino I need. The UX is also super easy to navigate and looks clean and modern.
What do you dislike about the product?
Nothing comes to mind so far! It's been a huge help for our teams.
What problems is the product solving and how is that benefiting you?
Answer INFOSEC, Security and legal reviews.
SafeBase is a one stop solution.
What do you like best about the product?
I appreciate how user friendly the solution is and how great their support team is, we use it everyday so having support to respond to any of our hurdles is great. That says a lot about how they take care of their customers. They are always looking for feedback and looking for ways to maximize our usage of the solution.
What do you dislike about the product?
As of the moment arent any dislikes so far everything has been positive.
What problems is the product solving and how is that benefiting you?
Safebase has streamline our process on providing customers with our security documentation. Customers can now use the self-service to obtain security documentation themselves. Which prevents us from emailing and not track what is going out. It also helps us put out quick vulnerabilties as well for customers. It will soon help us on answering security questionnaires.
Helps to scan all of IAC scripts and configurations across our AWS and GCP environments
What is our primary use case?
What is most valuable?
I find the cloud configuration compliance scanning mature. It generates a lot of data and supports major frameworks like ISO 27001 or SOC 2, providing reports and datasets. Another feature I appreciate is setting custom alerts for specific events. Additionally, I value the agent-based monitoring and scanning for compute nodes. It gives us deeper insights into our workloads and helps identify vulnerabilities across our deployed assets.
One key aspect of the agent that stands out is its capability to distinguish between active and inactive packages on compute nodes. This feature reduces the number of actionable vulnerabilities by focusing on packages actively running in the environment rather than all installed packages.
I noticed that it was quite noisy, with many alerts about things I wasn't particularly concerned about. However, over time, Lacework's anomaly detection improved by establishing baselines of normal activity. It now alerts us only when there are deviations from these baselines. Integrating with Slack was especially beneficial—I set up a dedicated Slack channel just for Lacework alerts. This allowed me to focus on the alerts that required attention.
What needs improvement?
The solution lacks a cohesive data model, making extracting the necessary data from the platform challenging. It uses its own LQL query language, and each database across different layers and modules is structured differently, complicating correlation efforts. Consequently, I had to create extensive custom reports outside Lacework because their default dashboards didn't communicate risk metrics. They're addressing these issues by redesigning their tools, including introducing the dashboard, which is a step closer to actionable insights but still needs refinement.
Regarding reporting features, the ability to create granular custom alerts remains limited. For instance, I could only filter alerts by source or type rather than selecting alerts based on specific IDs. This lack of granularity in alert management and reporting customization is a notable drawback.
For how long have I used the solution?
I have been using the product for one and a half years.
What do I think about the scalability of the solution?
The solution is scalable. I rate it a nine out of ten.
How are customer service and support?
One thing I appreciated about Lacework was the support I received from their team. I regularly met with them to provide feedback on what worked well and what didn't in their modules. They took my feedback seriously, often implementing it into features, hotfixes, and interface changes. Part of the reason for this was my clear and detailed communication style.
While some customers might say, "This sucks," I made sure to explain exactly why and how I would suggest fixing it. This approach was well-received by their product managers, who valued my input. As a premium customer, I have access to account managers. Its support is very good.
Sometimes, the support process was quite slow. While they acknowledged my tickets promptly, resolving issues could take weeks as they liaised back and forth with engineering to diagnose and determine solutions. However, the support I received from my account management and technical account management teams was very good.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
Lacework's advantage is its ability to differentiate between active and inactive packages through the agent. Most other CNAPP solutions don't offer this capability, and competitors like Wiz don't implement it as effectively.
I've used several other platforms, such as Wiz and Prisma, and they all cover similar functionalities, such as scanning for misconfigurations in the cloud against compliance standards, monitoring IAM configurations for risks, logging and anomaly detection, host-based vulnerability scanning, and IAC code scanning. Wiz offers better reporting and ease of data extraction from datasets.
Lacework, on the other hand, is generally more cost-effective and becomes user-friendly once you're accustomed to its UI conventions. However, extracting specific data from Lacework can sometimes be challenging.
How was the initial setup?
The product is very straightforward to deploy across an entire AWS or GCP organization. They offer automation via Terraform and CloudFormation templates, which allow deployment across all accounts with the appropriate permissions. As for Azure, I'm unsure about its compatibility.
What was our ROI?
You can expect ROI from vulnerability management.
What's my experience with pricing, setup cost, and licensing?
My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz.
What other advice do I have?
I rate the overall product a seven out of ten.
Excellent Software for Documentation
What do you like best about the product?
Ease of use, ease of integration, and simplification.
What do you dislike about the product?
The Knowledge Base could be a lot better
What problems is the product solving and how is that benefiting you?
It is helping us streamline processes and create more efficiencies.
Convenient tool that helps scale a maturing business focused on security and compliance.
What do you like best about the product?
Having everything securely in one place and a process flow to request the information as well. Makes it easy to prioritize what is improtant.
What do you dislike about the product?
Nothing that I can think of at this time
What problems is the product solving and how is that benefiting you?
Puts all important security privacy and compliance info in one place for a quick review process.
All in one place
What do you like best about the product?
I like how all necessary security information and documentation is in a single portal which I as a sales rep can access, my customers/prospects can access or anyone looking for more info on our company's security posture and supporting documentation.
I also like how i can sed 3rd party vendor sec questionnaires for the safebase team to respond to, and their SLA is quick.
I also like how i can sed 3rd party vendor sec questionnaires for the safebase team to respond to, and their SLA is quick.
What do you dislike about the product?
I wish the team would upoaded requested documentation for 3rd part sec questionnaires.
What problems is the product solving and how is that benefiting you?
Organization of documentation and help responding to cutomer/prospect inquires about our company's security.
showing 21 - 30