Fortinet Lacework FortiCNAPP
Fortinet Inc.External reviews
382 reviews
from
External reviews are not included in the AWS star rating for the product.
Powerful Tool to Manage Cloud Security
What do you like best about the product?
AI/ML data aggregation to anyalyse huge amount of data to derive actionable insights, helps detect advanced cyber attacks quickly with a lot of context to proceed. Helps manage host and containers vulnerability management, CIEM is a powerfull feature to get started with priciple of least privileges, their flexibility with integratoin to various alert systems is good.
What do you dislike about the product?
Lacework tools lacks to provide opion orianted insights based on the industry trend, the tool should start prompting orgarnisations with opion orianted dashboards, reports on the areas where the focus is required.
They collect a lot of info, but lack in presenting all of it with dahsboards and graphs.
They collect a lot of info, but lack in presenting all of it with dahsboards and graphs.
What problems is the product solving and how is that benefiting you?
Cloud security monitoring across hundrends AWS accounts with minimum human resource involvement.
Container and Hosts vulnerability management with shift left focus.
Cloud IAM management
Container and Hosts vulnerability management with shift left focus.
Cloud IAM management
Great CSPM tool
What do you like best about the product?
- Great customer support
- Intuitive product interface
- Simple to install the agent on Linux
- IaC code scan result on the main UI
- Amazon GuardDuty integration available
- Intuitive product interface
- Simple to install the agent on Linux
- IaC code scan result on the main UI
- Amazon GuardDuty integration available
What do you dislike about the product?
- Great to see OOTB integration with JIRA however would be great if same integration is also available with azure board
What problems is the product solving and how is that benefiting you?
Single pane of glass view of security for all cloud platforms (Azure, AWS, GCP)
Does what it says in the tin, and does it very well.
What do you like best about the product?
The compliance reporting that Lacework provides is a fantastic capability to measure current level of compliance both at AWS and K8S levels. The interface of the product is very intuitive, easy to use and has benn getting frequent updates on UX and new capabilities such as the attack path capability which gives great insights to top risks.
What do you dislike about the product?
Experiences some interface issues but these were relatively minor and mostly linked with rolling out of new features and capabilities. Detecting and reporting the use of open source libraries with questionable licencing in container images is not yet supported.
What problems is the product solving and how is that benefiting you?
At macro level Lacework helps solving governance and compliance auditing and reporting, at more day-to-day level Lacework is instrumental in proactively raising smart alerts for the DevOps team to investigate for possible security violations and incidents, without overwhelming them with a tsunami of alerts.
Great insights into multi-cloud platforms
What do you like best about the product?
Lacework goes deep into details and makes it very easy to investigate and analyze all cloud platforms
What do you dislike about the product?
Havent had any bad experiences yet! Does what it says
What problems is the product solving and how is that benefiting you?
Provides deeper and more granular analysis and holistic view of the cloud environment
Impactful tool
What do you like best about the product?
Lacework'd dashboard is really cogent and therefore helps in quick analysis of vulnerabilities!
What do you dislike about the product?
Lacework could work on more visualizations
What problems is the product solving and how is that benefiting you?
It is helping me generate identifiers and vulnerabilities!
Good tool with AI/ML capabilities
What do you like best about the product?
The best thing about lacework is the AI/ML algorithm which complements the polygraphs giving a very good attack vector pattern to analyze how the traffic flows in your infrastructure.
This gives a better understanding about the flow as well as helps to easily identify how deep an attacker penetrated/point of attack.
This gives a better understanding about the flow as well as helps to easily identify how deep an attacker penetrated/point of attack.
What do you dislike about the product?
Lacework should try to improve on how they provide near-real time alerting for the incidents and how fast they can analyze the data and generate the dashboard .
What problems is the product solving and how is that benefiting you?
We are able to monitor our cloud security posture for all the cloud accounts at a single centralized place. With the help of AI/ML, we are also able to analyze the attack vectors and take necesarry security measures.
Comprehensive platform for cloud security and compliance
What do you like best about the product?
Lacework is really easy to integrate, with various different deployment strategies (i.e. Terraform, CloudFormation), and covers all aspects of cloud security monitoring. For our AWS deployment, Lacework analyses CloudTrail logs and alerts on anomalous behaviour. The compliance management function has a large number of pre-defined policies which are aligned to standards such as SOC 2, NIST CSF and others.
Data is accessible in an easy to use portal as well as via CLI, API, and integrations with tools including Jira, Slack and PagerDuty. Container images are scanned for vulnerabilities - again, with a few different options for integration. Lacework's agent also gives great visibility into the runtime behaviour on hosts and within containers, facilitating deep-dive investigations. Overall, Lacework offers a comprehensive set of features, making it a great choice for a cloud security platform.
Data is accessible in an easy to use portal as well as via CLI, API, and integrations with tools including Jira, Slack and PagerDuty. Container images are scanned for vulnerabilities - again, with a few different options for integration. Lacework's agent also gives great visibility into the runtime behaviour on hosts and within containers, facilitating deep-dive investigations. Overall, Lacework offers a comprehensive set of features, making it a great choice for a cloud security platform.
What do you dislike about the product?
There is a bit of a learning curve with LQL (the query language that Lacework runs on for policy definition), although it's now possible to view queries defined as part of default policies, so there are a number of examples to refer to.
Alerts can sometimes be a little noisy with false positives.
Alerts can sometimes be a little noisy with false positives.
What problems is the product solving and how is that benefiting you?
Lacework provides a single location for us to monitor our cloud security posture and perform investigations when required. The compliance features identify any resources that deviate from the standards we expect, which allows us to follow up and remediate. Runtime/workload capabilities provide insight into application/host/container behaviour and identifies anomalies. To summarise, the benefit for us of using Lacework is holistic visibility and threat detection across our cloud environment.
Seamless and impactful CSPM, saving us time & money
What do you like best about the product?
Excellent documentation & support for automating the deployment of Lacework via Terraform, which made it extremely easy to get up & running. The value was almost instant - Lacework drastically improved our signal to noise ratio & gave us insights into areas that we hadn't considered, enhancing our awareness & information clarity.
What do you dislike about the product?
I'd really like to have a Compliance section for Hosts (like we do for Cloud & Kubernetes), where we can use the Lacework Agent to run compliance scans. I'd also like the ability to export SBOMs, in SPDX/CycloneDX format.
What problems is the product solving and how is that benefiting you?
Greately reducing the complexity & cost of managing security event monitoring, vulnerability management and compliance of our cloud environment. Without Lacework this would have taken years & a lot of headaches.
Lacework review for IT threat and vulnerability management
What do you like best about the product?
Easy categorization of vulnerabilities for prioritizing evaluation of the threats
What do you dislike about the product?
For Third Party Cloud resources (Azure and AWS) grouping of threats for different resources makes it harder to resolve
What problems is the product solving and how is that benefiting you?
Lacework helps our team keep up with best practices for threat and vulnerability management in Cloud Systems
Lacework Review on Security
What do you like best about the product?
It's very simple to install the agent on Linux and containers; Detect Vulnerabilities at containers level and node level on AWS/GCP Environment. Remediate and validate the Vulnerabilities; we do build containers only with necessary packages to cut down the vulnerabilities. Its helpful for us in reducing Infra cost as well as we do build our ami with only necessary packages.
What do you dislike about the product?
Lacework agent for windows environment is not working as expected; also its in very preliminary stage for windows env. We do have around 20% environment on windows compared to sccm reviews lacework is not working as expected for windows environment.
What problems is the product solving and how is that benefiting you?
Make sure the container was built only with necessary packages and choose image with very minimal size to overcome vulnerabilities. Do provide access for limited user to over come security issue, and run application with limited access for users.
Node level security and cost of the infra has come down after we start utilizing Lacework as we noticed lot of unnecessary packages installed and running multiple unwanted services.
Main benefits are Size of containers/Node instance type we have choosen/ Cut down the Infra cost.
Node level security and cost of the infra has come down after we start utilizing Lacework as we noticed lot of unnecessary packages installed and running multiple unwanted services.
Main benefits are Size of containers/Node instance type we have choosen/ Cut down the Infra cost.
showing 61 - 70