Fortinet Lacework FortiCNAPP
Fortinet Inc.External reviews
382 reviews
from
External reviews are not included in the AWS star rating for the product.
It's a good CSPM software
What do you like best about the product?
It is good for tracking resource compliance and anomalies on cloud resources.
What do you dislike about the product?
Support is not that good, and I feel like I am still not using the tool to its full potential.
What problems is the product solving and how is that benefiting you?
Cloud compliance and anomaly detection.
Great for Cloud Posture
What do you like best about the product?
Lacework has been great at analyzing our cloud environments and making us aware of potential compliance issues.
What do you dislike about the product?
The GUI has been a bit rough, in my experience. We have experienced slow responses that seemed to be related to the GUI as well as a few other issues that may have been GUI related.
What problems is the product solving and how is that benefiting you?
Lacework provides in-depth reviews of our cloud posture, and does a great job displaying these items in a friendly, organized manner.
Lacework review
What do you like best about the product?
Lacework gives details about any security vulnerabilities that are caused by the provision of the resources.
Also, Lacework can be added as a plugin to slack which gives instant notifications.
Also, Lacework can be added as a plugin to slack which gives instant notifications.
What do you dislike about the product?
Lacework details how to fix the vulnerabilities, but sometimes they aren't obvious what to fix. We will need more information on all ways we can fix those issues.
What problems is the product solving and how is that benefiting you?
Lacework is helping me to know all the security compliance issues that are present when provisioning AWS resources.
Some great features
What do you like best about the product?
Compliance and Vulnerability management of the product are awesome. Our teams use it throughout to ensure our estate is up to scratch.
What do you dislike about the product?
The IDS is a little frustrating, I don't seem to have much configurability in how much Lacework can and can't detect, and therefore I'm not able to measure it as properly as I'd like to compared to manual IDS systems where I can measure against MITRE etc.
What problems is the product solving and how is that benefiting you?
The security compliance of our estate and information is extremely important to us, so we utilise Lacework to resolve issues around best practice and configuration in our space that we may otherwise overlook, we know it can only take a few misconfigurations to cause huge problems.
Managament Security side for company
What do you like best about the product?
Technically it's very useful tool that contain a lot of useful features in one place.
What do you dislike about the product?
UI could be more intuitive. It's hard to use it in intuitive way without reading documentation because of similar naming tabs and organization of the tabs
What problems is the product solving and how is that benefiting you?
Account cloud compliance
The analytics from Lacework are very hard to track down as the information is very vague.
What do you like best about the product?
The dashboard is very well organized, and drilling down to an event is easy. This includes the current enhancements to the dashboard. The improvements are visually appealing.
What do you dislike about the product?
The events we get from Lacework lack context. We must rely on other solutions and communications with other departments to determine the validity of the alerts and warnings. At that point, they are usually false positives or non-malicious traffic. There is little flexibility to approve or white list traffic deemed non-malicious, and alerts will still be triggered. Our understanding is that this is an architectural constraint.
What problems is the product solving and how is that benefiting you?
The solution was purchased to help us determine legitimate vs. non-legitimate traffic on our network. As this is not working as anticipated it is not truly benefiting us.
Pretty decent threat detection SaaS
What do you like best about the product?
Pretty insightful report/data. Fairly robust in the information that it gives you and pretty easy to parse down to a more specific set of data that you are looking for.
What do you dislike about the product?
They do have a lot of different ways to deploy the agent, but they were fairly involved and a little too granular in the type - e.g. you can't deploy the agent and it intelligently installs the correct "version". Manually installing is incredibly easy, but automating that process leaves something to be desired.
What problems is the product solving and how is that benefiting you?
We were having issues getting reporting on vulnerable systems. Not so much, hey you've been getting attacked via this port or whatever. But if there are vulnerabilities IN the actual VM, we now have good insight into this.
Lacework is good for compliance and docker images vulnerability
What do you like best about the product?
I liked Lacework Compliance and ecr vulnerability check is good.
What do you dislike about the product?
There is improvement required in policies and events for AWS cloudtrail.
What problems is the product solving and how is that benefiting you?
We are using it for cloudtrail and config.
Jira integration requires some love
What do you like best about the product?
GCP integration works rather well, but there's a bit of work to be done regarding autopilot Kubernetes and infrastructure as code provisions (we're using pulumi).
What do you dislike about the product?
As my description points out, we had trouble synchronizing solved issues in our Jira boards, because Lacework does not ensure a two-way integration. This implies that we have to manually close tickets.
What problems is the product solving and how is that benefiting you?
Lacework is helping us discover cloud vulnerabilities as we build our tech stack, which is great. However, some the issues raised, do not necessarily represent a security problem.
Great for first pass compliance reviews. Still very Beta for containers and registry integration.
What do you like best about the product?
It basically is like me hiring 6 DevSecOps team members and allows me to save so much time by instantly giving me visibility into the state of my security posture across all my AWS organizations. Even across my container workloads. I could not manage my accounts from a security standpoint without Lacework, not without hiring an entire team of senior AWS security experts.
What do you dislike about the product?
Consistent errors with the UI, container agent integration in wildly unstable, the documentation needs help and to date, we still can't fully integrate our DTR or Artifactory registries. The UI could be more intuitive. It takes some getting used to but it's worth it once you get over that hurdle.
Documentation on the website needs to be improved but luckily Lacework has made up for this by being super responsive to support tickets.
Documentation on the website needs to be improved but luckily Lacework has made up for this by being super responsive to support tickets.
What problems is the product solving and how is that benefiting you?
I am better prepared for PCI audits, I can vet recent teams cloud migrations, I can ensure that security related items are visualised then actually prioritised because Lacework makes it evident WHERE the problems are and how critical they are. It's really helped our org shift security left.
Recommendations to others considering the product:
Run a PoC and you won't be disappointed.
showing 31 - 40