Listing Thumbnail

    Fortinet FortiCNAPP

     Info
    Deployed on AWS
    FortiCNAPP offers unmatched visibility and context to simplify and strengthen security, empowering teams to make the biggest impact with minimal effort and time.
    4.4

    Overview

    Play video

    FortiCNAPP (formerly Lacework) empowers teams to quickly identify, prioritize, and remediate code vulnerabilities, cloud misconfigurations, and overprivileged identities more efficiently, safeguard business continuity through rapid detection, investigation, and resolution of active threats like compromised credentials, streamline security operations, to do more with less, while maintaining the highest security standards and continuously comply with evolving regulations and industry best practices.

    Our data-driven platform never stops learning. It automatically visualizes complex relationships between entities, events, and vulnerabilities, correlates build and runtime data for deeper insights and uses patented analytics to understand normal behavior within your environment. It notifies you to significant changes and provides highly actionable alerts, all without requiring you to create and maintain static, rigid rules.

    Whether your applications run in a single cloud, across multiple clouds, in a hybrid environment, or use containers and Kubernetes, FortiCNAPP delivers the right alerts to the right people at the right time to protect your applications, data and business.

    FortiCNAPP is a more comprehensive alternative to products from companies like Palo Alto Networks, Wiz, Aqua, Orca, Snyk, Sysdig, and CrowdStrike and offers key features such as:

    CODE SECURITY - FortiCNAPP offers integrated code security with SCA, SAST, and IaC security. It continuously monitors runtime application behavior to identify active, exploitable vulnerable packages versus inactive ones with lower risk.

    CSPM/KSPM - FortiCNAPP provides robust CSPM and KSPM to ensure cloud service usage aligns with regulatory guidelines and best practices like CIS Benchmarks for AWS and AWS FSBP. To help prioritize risks, FortiCNAPP attack path analysis visualizes how attackers could exploit misconfigurations, showing the interconnected risks of a host or container, such as internet exposure, critical vulnerabilities, misconfigurations, exposed secrets, and privileged IAM roles.

    CIEM - FortiCNAPP provides Cloud Infrastructure Entitlement Management (CIEM) for complete visibility into AWS IAM users, groups, roles, policies, entitlements, and machines (EC2). It automatically discovers identities, assesses net-effective permissions, and highlights excessive ones by comparing granted and used permissions.

    BEHAVIOR ANALYTICS - FortiCNAPP continuously monitors AWS workloads for unusual behaviors, like compromises by comparing past and present states to detect anomalies. With over 100 patents, our approach ensures faster detection, quicker responses, and improved security.

    COMPOSITE ALERTS - FortiCNAPP is unique in detecting early signs of active attacks by automatically correlating various alerts into a single, high-confidence composite alert. This alert provides detailed context and evidence of suspected attacks for further investigation. FortiCNAPP uses behavioral analytics, anomaly detection, in-house threat intelligence, and insights from AWS CloudTrail and GuardDuty to identify active attacks, including compromised credentials, ransomware and cryptojacking.

    Contact AWSsales@fortinet.com  for more information, a demo, or to discuss a private offer.

    Are you concerned about the security of your cloud environment? Our expert cloud consulting services can help you implement security best practices, identify vulnerabilities, ensure compliance and protect your data from potential threats.

    https://aws.amazon.com/marketplace/pp/prodview-bnqdxtusyye5q 

    https://aws.amazon.com/marketplace/pp/prodview-ua74gq5f72fcq 

    Highlights

    • Gain comprehensive, continuous visibility into your AWS assets, applications, and users, enabling you to identify, measure, prioritize, and address associated risks faster and more efficiently
    • Ensure business continuity by rapidly detecting, investigating, and resolving active attacks - such as compromised credentials, ransomware, and crypto-jacking to protect critical applications, services, and data
    • Do more with less by streamlining security processes while maintaining high standards. Reduce cloud security costs by consolidating multiple siloed tools into a single platform and improve time-to-value with automated, easy-to-deploy and DevOps-friendly cloud security at scale

    Details

    Delivery method

    Deployed on AWS
    New

    Introducing multi-product solutions

    You can now purchase comprehensive solutions tailored to use cases and industries.

    Multi-product solutions

    Features and programs

    Trust Center

    Trust Center
    Access real-time vendor security and compliance information through their Trust Center powered by Drata or Vanta. Review certifications and security standards before purchase.

    Buyer guide

    Gain valuable insights from real users who purchased this product, powered by PeerSpot.
    Buyer guide

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases

    Pricing

    Fortinet FortiCNAPP

     Info
    Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
    Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator  to estimate your infrastructure costs.

    12-month contract (3)

     Info
    Dimension
    Description
    Cost/12 months
    Lacework Standard starter pack
    Standard starter pack. Up to 500 vCPUs
    $25,000.00
    Lacework Pro starter pack
    Pro starter pack. Up to 334 vCPUs
    $25,000.00
    Lacework Enterprise starter pack
    Enterprise starter pack. Up to 250 vCPUs
    $25,000.00

    Vendor refund policy

    No refunds

    How can we make this page better?

    Tell us how we can improve this page, or report an issue with this product.
    Tell us how we can improve this page, or report an issue with this product.

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    Software as a Service (SaaS)

    SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.

    Support

    Vendor support

    Fortinet FortiCare support offerings provide global support and deliver best-in-class support services. With FortiCare support, customers can be assured that their Fortinet security products are performing optimally and protecting their corporate assets. https://support.fortinet.com 

    Let Fortinet cloud experts help you successfully adopt and operationalize Lacework FortiCNAPP to secure your hybrid and public cloud environments.

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Product comparison

     Info
    Updated weekly
    By Fortinet Inc.
    By Transmit Security

    Accolades

     Info
    Top
    25
    In Cloud Governance
    Top
    100
    In Applications

    Customer reviews

     Info
    Sentiment is AI generated from actual customer reviews on AWS and G2
    Reviews
    Functionality
    Ease of use
    Customer service
    Cost effectiveness
    4 reviews
    Insufficient data
    Insufficient data
    Insufficient data
    Positive reviews
    Mixed reviews
    Negative reviews

    Overview

     Info
    AI generated from product descriptions
    Code Security Analysis
    Integrated code security with Software Composition Analysis (SCA), Static Application Security Testing (SAST), and Infrastructure as Code (IaC) security with runtime application behavior monitoring to identify active, exploitable vulnerable packages.
    Cloud Security Posture Management
    Cloud Security Posture Management (CSPM) and Kubernetes Security Posture Management (KSPM) with attack path analysis visualization and compliance validation against CIS Benchmarks for AWS and AWS Foundational Security Best Practices.
    Cloud Infrastructure Entitlement Management
    Cloud Infrastructure Entitlement Management (CIEM) providing visibility into AWS IAM users, groups, roles, policies, entitlements, and EC2 instances with automatic identity discovery and net-effective permissions assessment.
    Behavioral Analytics and Anomaly Detection
    Continuous monitoring of AWS workloads for unusual behaviors through comparison of past and present states using patented analytics with over 100 patents to detect anomalies and compromises.
    Composite Alert Correlation
    Automatic correlation of multiple alerts into single, high-confidence composite alerts using behavioral analytics, anomaly detection, in-house threat intelligence, AWS CloudTrail and GuardDuty data to identify active attacks including compromised credentials, ransomware, and cryptojacking.
    Single Sign-On (SSO)
    Automatically synchronizes users across multiple directories to enable one-click access to corporate applications on-premises and in the cloud with enforced security policies and self-service password reset capabilities.
    Multi-Factor Authentication (MFA)
    Supports multiple authentication methods including passwordless authentication, passkeys, one-time passcodes, push notifications, biometric data, and security keys with real-time reporting and monitoring of authentication events.
    Adaptive Authentication
    Delivers multi-layer, context-aware and risk-based protection to minimize common attacks and enforce contextual access security policies based on user behavior and risk assessment.
    Identity Lifecycle Management
    Provides role-based user provisioning engine with granular access permissions, least-privileged access controls, and automated user account provisioning across applications and AWS services.
    Directory Integration
    Acts as a secure cloud-based directory with integration capabilities for Active Directory, LDAP, G Suite and other external directories, plus pre-built connectors with thousands of third-party web applications and AWS services including AWS IAM, AWS SSO, Amazon Cognito, and Amazon EventBridge.
    Multifactor Authentication
    Support for biometric authentication, FIDO standards (passkey/WebAuthn), social login, magic links, one-time passwords (OTPs), and single sign-on (SSO) using open protocols such as OIDC and SAML.
    Real-time Fraud Detection
    Contextual policy engine analyzing hundreds of risk signals with machine learning-powered threat detection to prevent account takeover, session hijacking, device spoofing, malicious bots, and phishing attacks.
    Identity Verification
    Facial scan verification with liveness detection and government document proofing for identity assurance and fraud prevention.
    Risk-based Authorization
    Integration with external authorization services to externalize access decisions and conditionally prompt re-authentication or identity verification based on real-time risk assessment across the identity lifecycle.
    Cloud-native Integration
    Modular, plug-and-play CIAM services with pre-built user flows accessible via APIs and SDKs for integration with existing identity environments and omnichannel deployment.

    Contract

     Info
    Standard contract
    No
    No

    Customer reviews

    Ratings and reviews

     Info
    4.4
    393 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    59%
    34%
    5%
    1%
    1%
    8 AWS reviews
    |
    385 external reviews
    External reviews are from G2  and PeerSpot .
    Charl Pinches

    Cloud risk has become visible and security teams prioritize and act on threats efficiently

    Reviewed on Jun 23, 2026
    Review from a verified AWS customer

    What is our primary use case?

    My main use case for FortiCNAPP , from my previous experience distributing it or now as a reseller, is for anyone who's looking for a strong cloud security platform and gaining visibility into risk, malicious configurations, any vulnerabilities, as well as your workload behavior across cloud environments.

    The fact that it is built as a cloud native application protection platform means it is aimed at helping security teams manage their cloud posture, the workload protection, identity risk, and compliance from a central place. When you consider it as a solution that someone can use in their SOC, it is most valuable when you need clearer visibility across multi-cloud environments, which is a challenge in today's environment. If you want to turn your cloud findings into actionable security work, FortiCNAPP  is the way to go.

    What is most valuable?

    FortiCNAPP offers features that stand out to my clients and to me as a reseller. It is not just a reporting tool; it gives you the actual context around cloud risk in a way that helps with prioritization, investigation, and compliance tracking, taking away a lot of your time and saving your resources to focus on what's important. The vulnerability and workload risk detection with severity-based prioritization is a key player, compliance reporting that supports frameworks such as PCI, SOC 2, and CIS is a game changer, and noise reduction by consolidating and prioritizing alerts saves a lot of time.

    I can tell you more about how the compliance reporting helps my clients. I have not had feedback from them regarding how it made it easier, but I have had showcases where I can demonstrate from a PCI perspective as well as a SOC 2 that it is a requirement and how it addresses that compliance framework.

    FortiCNAPP has impacted my clients positively. The strong visibility into the cloud security posture and operational risk is a massive impact for clients. From a compliance reporting perspective, it is valuable when they need evidence for audit and control testing, fitting well into security operations models where cloud findings need to be handled alongside broader SOC activity.

    What needs improvement?

    FortiCNAPP can be improved because the platform can feel complex at the start, especially for teams new to CNAP tooling. Some users mention that they found the interface and data models less intuitive than expected, and I have had situations where reporting and alert configurations might require time.

    Regarding other improvements needed for FortiCNAPP, the majority of the time is that reporting and alert configuration might require time to tune properly. This is the significant issue, combined with the fact that some users find the interface and data model less intuitive than expected.

    Regarding FortiCNAPP's AI capabilities, I think there might be a bit of improvement needed. However, since Fortinet is a security vendor overall, keeping the data safe is not a problem. I know they have invested a lot in getting it to a place where it is a trusted platform.

    What do I think about the stability of the solution?

    FortiCNAPP is stable. I have not experienced any downtime or issues reported by my clients.

    What do I think about the scalability of the solution?

    From a licensing perspective, FortiCNAPP's scalability is good. It can handle growing workloads or expanding environments smoothly.

    How are customer service and support?

    The customer support for FortiCNAPP is pretty good from a South African perspective. Most support runs via the distribution channel, and only once it gets to layer two or tier two does it get pushed through to your Fortinet system engineers, where support is very quick.

    How was the initial setup?

    My experience with pricing, setup cost, and licensing for FortiCNAPP revolves around Fortinet being an enterprise vendor. Pricing is always a discussion point. FortiCNAPP is not a cheap solution, and licensing around it can become very expensive for specific customers. However, if the use case is there and the need is a demand, then pricing is the last thing that will be the focus.

    What was our ROI?

    I have seen a return on investment for my clients. They need fewer employees from a SOC perspective where people are deployed in their SOC, as well as significant time saved. When you save time, you save money.

    What's my experience with pricing, setup cost, and licensing?

    FortiCNAPP is not a cheap solution, and licensing around it can become very expensive for specific customers. However, if the use case is there and the need is a demand, then pricing is the last thing that will be the focus.

    Which other solutions did I evaluate?

    Before choosing FortiCNAPP, I believe my clients did evaluate other options, but I have no insight into what they used prior.

    What other advice do I have?

    I must ensure that you understand the interface and the model that you want to expect from it. I believe it is flexible enough to get the right interface or data that you want to see from a CNAP perspective.

    From a feature perspective, I wish more people knew about the integration potential with the broader Fortinet ecosystem, which is a massive game changer. If you are already invested in a Fortinet ecosystem, it is a no-brainer to go for FortiCNAPP to look after your cloud platform.

    Integration depth can matter a lot for FortiCNAPP. Value can be improved significantly when it is connected into an existing SOC stack. However, if you are not running any form of a Fortinet estate, it can become complex.

    I rate FortiCNAPP an eight because, from my experience, it is best viewed as a platform that helps a SOC make cloud risk visible, understandable, and actionable, which is exactly what I prefer using it for or positioning it to customers. However, as a stand-alone product, if you do not have the experience from an existing cloud or understanding of how to manage cloud security at scale, then there might be a bit of a challenge. FortiCNAPP is a credible solution that adds real value when you properly integrate it with your existing security operations.

    Which deployment model are you using for this solution?

    Private Cloud

    If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

    Amazon Web Services (AWS)
    Pranav Telang

    Centralized visibility has strengthened our cloud security posture and streamlined compliance

    Reviewed on Jun 18, 2026
    Review from a verified AWS customer

    What is our primary use case?

    My main use case for FortiCNAPP  is majorly for AWS , specifically for security posture management and auditing so that the user and whoever is using this can capture what is necessary.

    A specific example of how I use FortiCNAPP  for AWS  security posture management is that we created resources manually, which sometimes led to misconfigurations in the customer requirements, and we have used FortiCNAPP to detect services that are publicly exposed and security groups with wide ranges of open IPs for ingress or egress, along with checking unencrypted databases and tightening IAM  permissions.

    I also have a unique use case of FortiCNAPP for one of Asia's largest growing country government projects where we identified users with excessive permissions not required by them, due to many users being onboarded in the government sector, so we used FortiCNAPP to identify all cloud identities and recommended the right permission sets for them.

    How has it helped my organization?

    FortiCNAPP has positively impacted my organization by providing centralized visibility and consolidating our cloud security posture management, helping us identify misconfigurations and public accessibility issues, which allowed us to enhance IAM  governance and visibility on vulnerabilities.

    Although I don't have specific metrics, I can say it has reduced our operational overhead significantly by providing a centralized view, highlighting critical issues, and helping us tighten configurations that have reduced operational costs and time.

    What is most valuable?

    The best features FortiCNAPP offers, in my opinion, include compliance and audit capabilities, IAM  identity management, and security rectification in configurations, along with vulnerability management, which helped us rectify thousands of overwhelmingly security vulnerabilities. I find myself relying on all of them day-to-day, including threat detection, which is really good.

    What needs improvement?

    Regarding how FortiCNAPP can be improved, I would say there are a few things.

    For improvements, I believe integrating FortiCNAPP with ITSM  tools to reduce manual ticket creation and allowing more customization in reports could be beneficial, as well as providing knowledge-sharing articles for remediation playbooks.

    For how long have I used the solution?

    I have been using FortiCNAPP for almost three years.

    What do I think about the stability of the solution?

    FortiCNAPP is stable.

    What do I think about the scalability of the solution?

    FortiCNAPP's scalability is open, and we can change instances easily as needed.

    How are customer service and support?

    The customer support for FortiCNAPP is fine, though it can take time as we need to engage with AWS first, but I would rate it around 7 or 8 out of 10.

    Which solution did I use previously and why did I switch?

    Previously, we have only used it as an add-on solution.

    What was our ROI?

    While I don't have specific metrics for ROI, I know that we save time on operations and manpower while improving our security posture.

    What's my experience with pricing, setup cost, and licensing?

    Regarding pricing, setup cost, and licensing, since it's a marketplace, I find the pay-as-you-go model convenient and fair.

    Which other solutions did I evaluate?

    We did not evaluate other options before choosing FortiCNAPP, as it completed our use case right away.

    What other advice do I have?

    For others looking into FortiCNAPP, I recommend it for tightening security in public clouds as it has worked well for us compared to other options such as Palo Alto Prisma and CrowdStrike. I would rate this product 8.5 out of 10.

    Which deployment model are you using for this solution?

    Public Cloud

    If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

    Amazon Web Services (AWS)
    José Manuel Viejo

    Continuous compliance has strengthened security monitoring and supported flexible deployments

    Reviewed on Jun 11, 2026
    Review from a verified AWS customer

    What is our primary use case?

    Deploying FortiCNAPP  is easy for us because our technicians know FortiGate, which is the solution, and they are familiar with how to implement it.

    How has it helped my organization?

    I believe continuous compliance and security monitoring in this solution meet our standards.

    What is most valuable?

    Regarding the firewalls, I think it is good to have a comprehensive security software in place, and I believe they provide crucial protection for our network.

    What I personally appreciate about FortiCNAPP  is that I think it is a good product and a good firewall because it usually offers many options for the company. I believe my partners, who are technicians, often prefer this kind of product because it is better for the end-user.

    Automated policy recommendations with this solution do help to improve security.

    What needs improvement?

    When considering improvements for FortiCNAPP, I think there could be enhancements regarding the license, possibly adding more options to it.

    I think that more options in the license would be beneficial.

    What do I think about the stability of the solution?

    At the moment, I am not using the Lacework feature with this product.

    Currently, we are not using machine learning or artificial intelligence with FortiCNAPP.

    How are customer service and support?

    I would rate the technical support of FortiGate an eight.

    How was the initial setup?

    The deployment time for the solution usually depends on the specific requirements. I would estimate it might take one day or two to four hours depending on those requirements.

    What other advice do I have?

    We are a partner of FortiGate, but we have to buy from a distributor to acquire FortiGate products. This is necessary for us, and I think this process is probably the same in England, but I am not certain.

    I think it is easy to integrate FortiCNAPP with other tools, including DevOps tools and products such as Cisco and Palo Alto.

    I would rate this review an eight overall.

    Munjal Bhalgama

    Security has improved and VPN access saves time while support responds quickly

    Reviewed on Mar 06, 2026
    Review provided by PeerSpot

    What is our primary use case?

    FortiCNAPP  is mainly used from a security point of view. Some VPNs charge for their solutions, but Fortinet provides a free-of-cost VPN solution, making it more reliable and cost-effective for clients.

    What is most valuable?

    FortiCNAPP  definitely brings time-saving benefits, and security is the main concern for the company.

    What needs improvement?

    Policy implementation is quite complex, and the stability will take more time for the solutions. There is definitely room for improvement in policy implementation.

    For how long have I used the solution?

    I have been working with Fortinet FortiCNAPP for the last five to ten years.

    How are customer service and support?

    Fortinet's technical support is definitely helpful and responsive. The response time for solutions or support is quick compared to other UTMs, which is beneficial.

    What about the implementation team?

    I do deployment as well for my customers.

    What's my experience with pricing, setup cost, and licensing?

    The pricing is a mediator compared to other products; it is not that much higher and not much lower than other products, making it a very affordable price.

    What other advice do I have?

    Policy implementation is one part of the solution; every customer needs particular policies for groups or department-wise needs, which takes time. I am not currently using FortiCNAPP's integration with DevOps tools; some inquiries are running, but it will take time to close, and I hope it will be done in the future.

    The time for implementation of this product depends on the network and users; it varies based on how many users and networks are involved, as well as what downtimes are allowed. The maximum number of users I have encountered is approximately 300 or 400.

    It took me weeks to deploy, gradually applying the policies and all of that, and it depends on the circumstances. FortiCNAPP's continuous compliance and security monitoring are gradually upgraded, which is why the solutions also get upgraded, and it depends on the UTMs.

    I would rate this product 9 out of 10.

    Mark Freeborough

    Network segmentation has strengthened access control and now streamlines automated threat response

    Reviewed on Feb 19, 2026
    Review from a verified AWS customer

    What is our primary use case?

    FortiCNAPP  is typically used for network access control. The standard use cases for FortiCNAPP  center around reporting and automated responses, particularly in IoT environments and workflow automation. Various environments require these tools, and SOC users may utilize them as well. FortiCNAPP serves as a gateway to numerous other products and services in the Fortinet portfolio.

    What is most valuable?

    The most valuable features in FortiCNAPP include robust network segmentation and restricting access to network assets. It also supports security measures by leveraging security fabrics for better enforcement and policy enforcement. FortiCNAPP integrates with SIEM  solutions, and we offer different SIEM  options that work with Fortinet and AlienVault , among others, providing multiple scenarios.

    FortiCNAPP's automated policy recommendations significantly help improve security measures as part of an overall service wrap. When deploying a Fortinet SD-WAN or network, these tools provide greater visibility to vulnerabilities and enhanced security on the network. It functions as a proactive tool, enabling me to identify threats quickly and automate responses.

    What needs improvement?

    FortiCNAPP performs well in terms of threat notification and response times. However, the solution could be more user-friendly and intuitive. When managing the platform, navigating to certain details can sometimes feel clunky, so the interface needs to be more accessible.

    For how long have I used the solution?

    I have been at MLL for five years, and the organization has been a Fortinet partner for at least that long, probably longer. I have been aware of Fortinet for considerably longer, as I have worked at other organizations that provided Fortinet.

    What do I think about the stability of the solution?

    Fortinet provides very strong technical support. They respond within the service level agreements and are proactive in their approach. We also have a skilled in-house team that is highly knowledgeable about Fortinet and accomplishes tasks that Fortinet has not done, with innovative people on the team. Overall, they are effective at responding and fulfilling their responsibilities.

    What do I think about the scalability of the solution?

    FortiCNAPP deployment timeframes vary depending on customer size and the complexity of requirements. For small to medium customers, deployment does not take an extended period. For complex large customers, global deployments, or large public sector customers, the process can take longer. The duration depends on various factors including compliance requirements and other considerations.

    How are customer service and support?

    I provide deployment services, supplying, installing, and maintaining the entire service.

    Some of my colleagues may utilize FortiCNAPP's integration with DevOps tools, though I am not extensively familiar with this capability. My technical teams do utilize integration with DevOps tools, as it performs significantly with automation regarding sophisticated challenges. We have an in-house development team that works on this, focusing on how it integrates primarily with the security fabric. Fortinet has their own developer networks, and we also explore what they may have accomplished previously. In terms of integration, FortiCNAPP performs substantially with DevOps tools, though this would depend on what our teams choose to implement.

    How was the initial setup?

    Approximately five to ten people from my organization participate in deployment, and their skill levels vary.

    What was our ROI?

    My experience with FortiCNAPP's pricing demonstrates that we conduct extensive work with Fortinet and minimal work elsewhere. We focus on selling the value of the solution, which I find to be highly competitive within the Fortinet world. Overall total cost of ownership is critical; we demonstrate ROI by showing how it saves time and optimizes roles for staff to focus on more important tasks. The pricing is competitive, further supported by special pricing based on our engagement level with Fortinet, which is advantageous. FortiCNAPP is a competitive and robust solution, the only one in the IT sphere that addresses all quadrants in the Gartner Quadrants.

    What other advice do I have?

    Some of my colleagues may utilize FortiCNAPP's integration with DevOps tools, though I am not extensively familiar with this capability. I would rate this review as a nine out of ten.
    View all reviews