Fortinet Lacework FortiCNAPP
Fortinet Inc.External reviews
382 reviews
from
External reviews are not included in the AWS star rating for the product.
I can’t imagine managing infrastructure security and compliance without Lacework
What do you like best about the product?
I can’t pick just one thing.
The team at Lacework is incredible – they are easy to work with, proactive, and always ready to help.
Installing their agents on all of our servers and connect services like AWS CloudTrail was a breeze and shortly after we did we were able to get valuable insights almost immediately.
The team at Lacework is incredible – they are easy to work with, proactive, and always ready to help.
Installing their agents on all of our servers and connect services like AWS CloudTrail was a breeze and shortly after we did we were able to get valuable insights almost immediately.
What do you dislike about the product?
Sometimes I wish there was more details available.
An example of this would be that we receive alerts for outbound HTTP connections to an IP address but can’t tell what process in our container made the call. It would be nice to get even more insights like the verb, path, etc.
An example of this would be that we receive alerts for outbound HTTP connections to an IP address but can’t tell what process in our container made the call. It would be nice to get even more insights like the verb, path, etc.
What problems is the product solving and how is that benefiting you?
Security and compliance is important to us but manually monitoring and audits are incredibly time consuming.
Lacework takes care of all of this for us and all we need to do is review alerts every now and then saving us a ton of time. Generating audits is as easy as clicking a button.
Lacework takes care of all of this for us and all we need to do is review alerts every now and then saving us a ton of time. Generating audits is as easy as clicking a button.
Recommendations to others considering the product:
I was able to get everything setup and see value during the sales process with no commitment – I highly recommend you do that too.
Lacework enables Reltio to focus on what matters.
What do you like best about the product?
Lacework provides a robust and ubiquitous view of security across all systems in AWS, GCP, and our microservices architectures. There is very little noise to signal which helps Security Analysts get alerted to and investigate potential issues. Vulnerability management runs continuously as do compliance checks which helps focus efforts to reduce risk. Having agents deployed as code means that the security team focuses less time on building security infrastructure and more time consuming information about current state of security. API and UI capabilities are used heavily by security engineering and operations teams. As a CISO, I don't need a special decoder ring or PhD in Lacework to benefit from the platform. Rollup summaries from the platform are now part of monthly reporting to all employees and quarterly reporting to the executive committee, security steering committee, and Board of Directors.
What do you dislike about the product?
I would not use the term dislike. Rather, there are a few areas of innovation where Lacework could focus such as with IAM (Identity and Access Management) permissions checks or other IAM policies.
What problems is the product solving and how is that benefiting you?
My goal was to gain a ubiquitous view of security across all systems regardless of deployment type or cloud service provider. Lacework was not only a significant part of achieving that goal, it also displaced several other lesser performing technologies.
A second set of eyes when it comes to security
What do you like best about the product?
With the growth of instances and containers, it is difficult to monitor and review every log or activity. By using Lacework, we've been able to use the Lacework AI to net down patterns, violations, and compliance activity all in a single dashboard saving time and resources.
More importantly, historical charts and reports are extremely helpful for audits to demonstrate alerting, notification and review.
More importantly, historical charts and reports are extremely helpful for audits to demonstrate alerting, notification and review.
What do you dislike about the product?
In my opinion, I think the natural progression for Lacework is to tie into or build its own SIEM. They have a great AI algorithm that can be expanded into security logs overall.
What problems is the product solving and how is that benefiting you?
* Leveraging compute to monitor and secure our environment
* Saving time and resources by avoiding manual review
* Reporting for audits
* Defining custom patterns to detect and alert
* Saving time and resources by avoiding manual review
* Reporting for audits
* Defining custom patterns to detect and alert
Recommendations to others considering the product:
The value of Lacework shines when you start seeing alerts that you weren't aware of. It is very thorough and keeps our attention on a day to day, hour by hour basis.
The product is excellent, the people are even better
What do you like best about the product?
The entire team I've met from Lacework are incredible. Anjali Hedge and Andrew Dang I have worked with for a year and find them to be the easiest, most pleasant customer liaisons I have worked with. The product is very plug and play, and gives us excellent insights into our cloud environment. They integrate with a lot of tools so we can action on items we find.
What do you dislike about the product?
I wish the logging was better - they give you the option for alerts, but I'd love all logs to be ingested into our Splunk environment for better threat hunting.
What problems is the product solving and how is that benefiting you?
Understanding our cloud architecture better - the compliance piece gives us configurations to change in our AWS environment while the events give us alerts into our environment.
Recommendations to others considering the product:
Be prepared to make changes to your cloud! Haha
Well designed, multi-cloud, consumer-grade UI and easy setup. Plus excellent support.
What do you like best about the product?
The fact that you can get ongoing value without having to invest a lot of time into the tool. It is relatively "set and forget" although additional configuration and attention can add to your visibility. Lacework continues to update the signatures to keep you automatically current with today's threat landscape. Any rule-based monitoring tool, in which you the customer have to maintain the rules, is going to be inherently limited. This gives your security team time back to do other things. It also has a very intelligent implementation of accounts / organizations enabling you to configure fine-grained SSO permissions across your different cloud accounts.
What do you dislike about the product?
I don't specifically dislike anything about the tool today. It can be a little disconcerting how much of the signal gets filtered out before hitting the alerting threshold, but the raw data is easily browsable and you can configure almost anything.
What problems is the product solving and how is that benefiting you?
We are addressing the problem we had in getting meaningful signal from such a huge amount of security data sources. Realistically once you are "monitoring" all of the different security data sources, you become limited by human cognition. Having machines help sort through all the noise is essential.
Lacework is awesome
What do you like best about the product?
The ease of implementation and the support!
What do you dislike about the product?
Nothing really stands out as horrible. But if they could improve the reporting that would be awesome.
What problems is the product solving and how is that benefiting you?
Insight and control over our public cloud infrastructure.
Full disclosure security posture assessment
What do you like best about the product?
I can see a live representation of my security posture, with instructions for addressing each security violation identified.
What do you dislike about the product?
All the things I dislike are for selfish reasons - I now have a ton of work because I have visibility to all things that are in-secure.
What problems is the product solving and how is that benefiting you?
Suspicious network activity and back-tracking admin actions where traditional logging and monitoring solutions are insufficient in providing relevant information
Recommendations to others considering the product:
Knowing is half the battle - be prepared to put in the work to hit the targets that lacework will give you.
An Excellent User experience
What do you like best about the product?
The tool is amazing on itself, is easy to use, clear on the information it provides, but what I like more is the openness and helpful disposition of the customer team. They have been really helpful all the way and provide us with all the detailed information we requested, what's more, they have been very attentive to our requests for improvements and our needs of new features.
What do you dislike about the product?
There isn't much I dislike, mostly tag handling.
What problems is the product solving and how is that benefiting you?
Improving visibility on our infrastructure.
Recommendations to others considering the product:
Test the user interface, ask for features you would need to find and are not actually in the product, we discover that many were in their roadmap.
Lacework helps us not only monitor the security of our system, it keeps us in compliance as well.
What do you like best about the product?
Basically all that I stated above is great, as our team takes on the role of not just security but risk and compliance as well. Lacework is a great tool to helping us with all aspects of those roles.
What do you dislike about the product?
We've had a few hiccups and false positives (i.e. the alert was incorrect, not that it flagged something irrelevant to our organization) but overall the team has been great working with us to resolve these issues.
What problems is the product solving and how is that benefiting you?
We worked with Lacework to get a Jira integration which has been great. Lacework was a also a cornerstone for our SOC 2 Type 2 process and provided us a lot of the evidence we needed for monitoring.
Simplicity is the key to its power
What do you like best about the product?
Lacework harmonizes and normalizes events data from multiple IaaS and PaaS and hosts data points to provide actionable alerts. For security practitioners, the signal-to-noise ratio is of the utmost importance; Lacework's intelligence reduces the noise to provides visibility into the signals that we need to address.
What do you dislike about the product?
Inability to adjust some of the alerts or the non-relevant CIS benchmark events, the UI could use a little more love to make it a bit more user-friendly and quicker to navigate. The lack of API/Webhooks makes it slightly more difficult to customize.
What problems is the product solving and how is that benefiting you?
From a regulatory and compliance perspective, Lacework addresses the Host-Based Intrusion Detection (HIDs) and File Integrity Monitoring (FIM) vectors. Not only that, it allows us to quickly drill down on outliers that are considered to be Indicators of Compromise.
showing 121 - 130