Fortinet FortiCNAPP
Fortinet Inc.External reviews
385 reviews
from
and
External reviews are not included in the AWS star rating for the product.
1 stop Cloud native SOC solution
What do you like best about the product?
That it's running 24*7 and I don't need to run explicit scans.
We're deploying lacework agents as and when we spin up new servers and saves a lot of time and effort in managing huge infrastructure.
We're deploying lacework agents as and when we spin up new servers and saves a lot of time and effort in managing huge infrastructure.
What do you dislike about the product?
Can't think of anything at this moment. We've been fixing most vulnerabilities using lacework .
What problems is the product solving and how is that benefiting you?
Let's me know the most critical vulnerabilities which needs to be tackled immediately and something which is of a lesser priority.
We're tracking our vulnerability nos going down after every maintenance window.
We're tracking our vulnerability nos going down after every maintenance window.
A good tool for monitoring organizational security
What do you like best about the product?
I find lacework does a good job about letting us know about the different vulnenrabilites that we may have in our production environment
What do you dislike about the product?
Sometimes we get so may different alerts that it becomes hard to follow which are real and which may be false positives/not worth fixing.
What problems is the product solving and how is that benefiting you?
Primarily lacework has been used to help us scan our containers for security vulnerabilities. It has been a.much better tool than oother options such as snyk
The observability partner you always wanted
What do you like best about the product?
The representatives we have with Lacework are knowledgable and able to assist whenever called upon. Their product is solid and has provided my organization solid telemtry we have used in real-world investigations.
What do you dislike about the product?
I would like to see that their product is able to connect more dots between identity and event, without these links we have to reveiw more events during the time window to discover associated events.
What problems is the product solving and how is that benefiting you?
Real time event monitoring of our container applications, virtual machines and for CSPM.
Powerful Tool to Manage Cloud Security
What do you like best about the product?
AI/ML data aggregation to anyalyse huge amount of data to derive actionable insights, helps detect advanced cyber attacks quickly with a lot of context to proceed. Helps manage host and containers vulnerability management, CIEM is a powerfull feature to get started with priciple of least privileges, their flexibility with integratoin to various alert systems is good.
What do you dislike about the product?
Lacework tools lacks to provide opion orianted insights based on the industry trend, the tool should start prompting orgarnisations with opion orianted dashboards, reports on the areas where the focus is required.
They collect a lot of info, but lack in presenting all of it with dahsboards and graphs.
They collect a lot of info, but lack in presenting all of it with dahsboards and graphs.
What problems is the product solving and how is that benefiting you?
Cloud security monitoring across hundrends AWS accounts with minimum human resource involvement.
Container and Hosts vulnerability management with shift left focus.
Cloud IAM management
Container and Hosts vulnerability management with shift left focus.
Cloud IAM management
Great CSPM tool
What do you like best about the product?
- Great customer support
- Intuitive product interface
- Simple to install the agent on Linux
- IaC code scan result on the main UI
- Amazon GuardDuty integration available
- Intuitive product interface
- Simple to install the agent on Linux
- IaC code scan result on the main UI
- Amazon GuardDuty integration available
What do you dislike about the product?
- Great to see OOTB integration with JIRA however would be great if same integration is also available with azure board
What problems is the product solving and how is that benefiting you?
Single pane of glass view of security for all cloud platforms (Azure, AWS, GCP)
Does what it says in the tin, and does it very well.
What do you like best about the product?
The compliance reporting that Lacework provides is a fantastic capability to measure current level of compliance both at AWS and K8S levels. The interface of the product is very intuitive, easy to use and has benn getting frequent updates on UX and new capabilities such as the attack path capability which gives great insights to top risks.
What do you dislike about the product?
Experiences some interface issues but these were relatively minor and mostly linked with rolling out of new features and capabilities. Detecting and reporting the use of open source libraries with questionable licencing in container images is not yet supported.
What problems is the product solving and how is that benefiting you?
At macro level Lacework helps solving governance and compliance auditing and reporting, at more day-to-day level Lacework is instrumental in proactively raising smart alerts for the DevOps team to investigate for possible security violations and incidents, without overwhelming them with a tsunami of alerts.
Great insights into multi-cloud platforms
What do you like best about the product?
Lacework goes deep into details and makes it very easy to investigate and analyze all cloud platforms
What do you dislike about the product?
Havent had any bad experiences yet! Does what it says
What problems is the product solving and how is that benefiting you?
Provides deeper and more granular analysis and holistic view of the cloud environment
Impactful tool
What do you like best about the product?
Lacework'd dashboard is really cogent and therefore helps in quick analysis of vulnerabilities!
What do you dislike about the product?
Lacework could work on more visualizations
What problems is the product solving and how is that benefiting you?
It is helping me generate identifiers and vulnerabilities!
Good tool with AI/ML capabilities
What do you like best about the product?
The best thing about lacework is the AI/ML algorithm which complements the polygraphs giving a very good attack vector pattern to analyze how the traffic flows in your infrastructure.
This gives a better understanding about the flow as well as helps to easily identify how deep an attacker penetrated/point of attack.
This gives a better understanding about the flow as well as helps to easily identify how deep an attacker penetrated/point of attack.
What do you dislike about the product?
Lacework should try to improve on how they provide near-real time alerting for the incidents and how fast they can analyze the data and generate the dashboard .
What problems is the product solving and how is that benefiting you?
We are able to monitor our cloud security posture for all the cloud accounts at a single centralized place. With the help of AI/ML, we are also able to analyze the attack vectors and take necesarry security measures.
Comprehensive platform for cloud security and compliance
What do you like best about the product?
Lacework is really easy to integrate, with various different deployment strategies (i.e. Terraform, CloudFormation), and covers all aspects of cloud security monitoring. For our AWS deployment, Lacework analyses CloudTrail logs and alerts on anomalous behaviour. The compliance management function has a large number of pre-defined policies which are aligned to standards such as SOC 2, NIST CSF and others.
Data is accessible in an easy to use portal as well as via CLI, API, and integrations with tools including Jira, Slack and PagerDuty. Container images are scanned for vulnerabilities - again, with a few different options for integration. Lacework's agent also gives great visibility into the runtime behaviour on hosts and within containers, facilitating deep-dive investigations. Overall, Lacework offers a comprehensive set of features, making it a great choice for a cloud security platform.
Data is accessible in an easy to use portal as well as via CLI, API, and integrations with tools including Jira, Slack and PagerDuty. Container images are scanned for vulnerabilities - again, with a few different options for integration. Lacework's agent also gives great visibility into the runtime behaviour on hosts and within containers, facilitating deep-dive investigations. Overall, Lacework offers a comprehensive set of features, making it a great choice for a cloud security platform.
What do you dislike about the product?
There is a bit of a learning curve with LQL (the query language that Lacework runs on for policy definition), although it's now possible to view queries defined as part of default policies, so there are a number of examples to refer to.
Alerts can sometimes be a little noisy with false positives.
Alerts can sometimes be a little noisy with false positives.
What problems is the product solving and how is that benefiting you?
Lacework provides a single location for us to monitor our cloud security posture and perform investigations when required. The compliance features identify any resources that deviate from the standards we expect, which allows us to follow up and remediate. Runtime/workload capabilities provide insight into application/host/container behaviour and identifies anomalies. To summarise, the benefit for us of using Lacework is holistic visibility and threat detection across our cloud environment.
showing 61 - 70