# FortiCNAPP Reviews **Vendor:** Fortinet **Category:** [Cloud-Native Application Protection Platform (CNAPP)](https://www.g2.com/categories/cloud-native-application-protection-platform-cnapp) **Average Rating:** 4.4/5.0 **Total Reviews:** 386 ## About FortiCNAPP FortiCNAPP (formerly Lacework) is an AI-powered Cloud-Native Application Protection Platform that delivers unified security across your multi-cloud and hybrid environments. Built to protect the entire application lifecycle—from development to runtime—it combines posture management, workload protection, identity security, and threat detection into one integrated platform. By leveraging machine learning and behavioral analytics, FortiCNAPP helps security teams detect unknown threats, reduce noise, and accelerate response. Integrated with the Fortinet Security Fabric, it provides full-stack visibility across cloud, network, and endpoint environments—empowering teams to operate with confidence, reduce complexity, and scale securely. ## FortiCNAPP Pros & Cons **What users like:** - Users value the **enhanced security monitoring** of FortiCNAPP, appreciating its comprehensive visibility across multi-cloud environments. (8 reviews) - Users appreciate the **vulnerability management capabilities** of FortiCNAPP, enhancing security visibility and prioritization effectively. (7 reviews) - Users value the **excellent alerting for misconfigurations** within FortiCNAPP, enhancing security and compliance management. (6 reviews) - Users appreciate the **good visibility across cloud resources** with FortiCNAPP, enhancing their overall security management experience. (6 reviews) - Users highlight the **ease of use** of FortiCNAPP, appreciating its smooth setup and intuitive integration features. (6 reviews) - Monitoring (6 reviews) - Vulnerability Management (6 reviews) - Cloud Management (5 reviews) - Compliance (5 reviews) - Compliance Management (5 reviews) **What users dislike:** - Users find the **difficult setup** of FortiCNAPP challenging, requiring time and expertise for effective configuration and onboarding. (5 reviews) - Users find the **poor documentation** frustrating, making setup and configuration difficult for new users. (5 reviews) - Users find the **complex setup** of FortiCNAPP challenging, particularly for newcomers lacking cloud security expertise. (4 reviews) - Users find the **setup difficulty** challenging due to unclear processes and insufficient documentation for new users. (4 reviews) - Users find the **complex configuration** challenging, particularly for newcomers lacking cloud security experience and adequate documentation. (3 reviews) - Users find the **insufficient information** during initial setup and overwhelming data presentation challenging for new users. (3 reviews) - Alert Overload (2 reviews) - Users find Lacework FortiCNAPP's setup to be **complicated and overwhelming** , impacting initial productivity and efficiency. (2 reviews) - Dashboard Issues (2 reviews) - Difficult Configuration (2 reviews) ## FortiCNAPP Reviews ### 1. Unified Cloud Security Visibility with Smart Risk Prioritization **Rating:** 4.0/5.0 stars **Reviewed by:** Ashenafi M. | Vulnerability Assessment and Penetration Tester, Enterprise (> 1000 emp.) **Reviewed Date:** February 18, 2026 **What do you like best about FortiCNAPP?** What I like best about FortiCNAPP is its unified visibility across cloud infrastructure, workloads, and identities in a single platform. Instead of using separate tools for CSPM, CIEM, and vulnerability management, everything is integrated, which makes monitoring and remediation much more efficient. I also appreciate the real-time risk prioritization. It doesn’t just show vulnerabilities, but helps correlate misconfigurations, exposed workloads, and identity risks to highlight what actually matters. The automation capabilities for compliance checks and policy enforcement are another strong point, especially in dynamic cloud environments. **What do you dislike about FortiCNAPP?** One area that could be improved is the user interface, especially for new users. While the platform is powerful, the number of features and dashboards can feel overwhelming at first, and it takes some time to fully understand how everything connects. The initial configuration and policy tuning also require a solid understanding of cloud security concepts, which may be challenging for smaller teams without dedicated cloud security expertise. Additionally, more detailed documentation and practical implementation examples would make onboarding smoother. **What problems is FortiCNAPP solving and how is that benefiting you?** FortiCNAPP helps solve the challenge of fragmented cloud security visibility. In modern cloud environments, risks often come from multiple areas such as misconfigurations, excessive identity permissions, vulnerable workloads, and exposed containers. Managing these risks across different tools can create blind spots and slow down response times. By consolidating CSPM, CIEM, vulnerability management, and runtime protection into a single platform, FortiCNAPP reduces complexity and improves risk prioritization. Instead of reacting to hundreds of low-impact alerts, it correlates findings to highlight the most critical attack paths. This has benefited me by improving efficiency in identifying high-risk issues, reducing manual investigation time, and strengthening overall cloud security posture. It also supports compliance monitoring, which makes reporting and audits much more manageable. ### 2. Effortless Setup with Stellar Features **Rating:** 5.0/5.0 stars **Reviewed by:** Karan B. | Full-stack Developer **Reviewed Date:** October 29, 2025 **What do you like best about FortiCNAPP?** I found Lacework FortiCNAPP incredibly smooth to set up, which was neither tricky nor difficult at all. This ease of installation was something I deeply appreciated. During my hackathon experience, it effectively helped me in publishing my app and mimicking a production-level scenario for my project. This showed me its potential to be a great tool for application development and project presentation. I also loved the peer review feature, which provided authentic previews that were immensely helpful in decision-making. The platform’s associations with reputed partners like G2, HubSpot, and Salesforce highlighted its well-established and trustworthy nature. Additionally, I remember the features like vulnerability management and the alerting and prioritizing capabilities as excellent facets of Lacework FortiCNAPP. The single entity dashboard offering comprehensive visibility across multi-cloud environments, including AWS, Azure, and Kubernetes, was remarkable, helping greatly in monitoring the security posture. These aspects were impressive and beneficial, making it easy to use and efficient for its purposes. **What do you dislike about FortiCNAPP?** {"I find that the integration experience with Lacework FortiCNAPP could be enhanced. The process of linking it up with specific software tools like Terraform, remediation code, or a normal CI/CD system could feel more comprehensive and streamlined. Improving this aspect could make these integrations more efficient and less cumbersome."} **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework FortiCNAPP helped me with app deployment and mimicking production scenarios during a hackathon, facilitating authentic peer reviews and decision-making. ### 3. Diverse Apps, Trustworthy Security, and a Simple, Easy-to-Use Interface **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Internet | Small-Business (50 or fewer emp.) **Reviewed Date:** February 05, 2026 **What do you like best about FortiCNAPP?** the diversity of applications and softwares is very helpfull, also the platform security is very trustworthy, the website interface is also very simple and easy to use. **What do you dislike about FortiCNAPP?** the setup qnd configuration process is hard to understand, the lavk of documentation is also an issue specially for new users of the platform, also it would be a great change if the prices were a bit lower **What problems is FortiCNAPP solving and how is that benefiting you?** It provides a single dashboard for viewing and managing our security posture across all cloud service providers. It’s been a big help in spotting misconfigurations early, and it saves a lot of time overall. ### 4. Neutral Cloud Visibility and Compliance, but Setup and Alert Tuning Take Time **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Food Production | Mid-Market (51-1000 emp.) **Reviewed Date:** February 17, 2026 **What do you like best about FortiCNAPP?** Good visibility across cloud resources Helpful posture management and compliance reporting Easy-to-understand dashboards Integrates well with other Fortinet security products Good alerting for misconfigurations and risky cloud permissions **What do you dislike about FortiCNAPP?** Initial setup and onboarding can take time Some reports and dashboards could be more customizable Occasionally too many alerts without proper tuning.. **What problems is FortiCNAPP solving and how is that benefiting you?** FortiCNAPP helps detect cloud misconfigurations, weak security controls, and risky permissions. It improves cloud security posture and reduces the risk of breaches by continuously monitoring cloud environments and providing actionable remediation recommendations. ### 5. Useful Data and Easy Navigation, but Setup Can Be Tedious **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Enterprise (> 1000 emp.) **Reviewed Date:** October 14, 2025 **What do you like best about FortiCNAPP?** The provided data is very useful, and the GUI is easy to navigate. Another great feature is the monitoring system, which enables quick detection of issues. **What do you dislike about FortiCNAPP?** The initial setup process requires some time and effort which can be tedious. Additionally l, the large volume of data presented at the start might seem overwhelming for new users. **What problems is FortiCNAPP solving and how is that benefiting you?** It really helped in maintaining the alerts for security issues and provides a secured platform. ### 6. Excellent security solution for the cloud **Rating:** 3.0/5.0 stars **Reviewed by:** omar s. | Ingénieur sécurité SRE, Small-Business (50 or fewer emp.) **Reviewed Date:** March 10, 2025 **What do you like best about FortiCNAPP?** Lacework offers complete visibility over our entire cloud infrastructure, thus facilitating threat detection and compliance with security standards. **What do you dislike about FortiCNAPP?** The initial setup can be a bit complex for new users, but once in place, the platform works perfectly. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework helps us solve visibility and compliance issues in our cloud and container environments. Thanks to its automated threat detection, we can quickly identify vulnerabilities and ensure that our infrastructure is always secure, allowing us to reduce the risk of cyberattacks while adhering to compliance standards. ### 7. Product was initially great, but major decline pre and post acquisition. **Rating:** 0.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** January 27, 2021 **What do you like best about FortiCNAPP?** The setup was very easy for teams to navigate. There were a variety of up to date templates depending on your orchestration. Very easy to deploy the agent regardless of your setup. The network diagrams (polygraphs) are really helpful when responding to an alert or just doing Threat modeling, Its nice to be able to very quickly visualize communications between your services. Integrating into the container registry was really easy and provides us Vuln visibility prior to deployments. The mapping of containers in the registry to containers at runtime is very intuitive, helps you prioritize which items to look at first. **What do you dislike about FortiCNAPP?** They have not released any meaninful features in the last 12 months and are really falling behind everyone else in this space. Every call we seem to have with them, our prior counterparts have been fired or left so you need to restart the conversation. Getting support has gone from OK to a nightmare. The vulnerability management at runtime only updates once per day and a vuln must be cleared for at-least 24 hours before it will no longer show in the platform. This makes closing out issues after a code change or dependency update a more drawn out process. Would be nice if it could be done on demand. Lacework has nice documentation on how to remediate findings in AWS, however they only provide details on how to do it in the AWS console, it would be helpful if they could also provide terraform samples, as that could greatly increase the speed of remediation. **What problems is FortiCNAPP solving and how is that benefiting you?** Vulnerability Management - Host and Containers AWS Cloud Compliance Threat Hunting The lacework setup allows us to easily run a Vulnerability Management program on our AWS images, Instances, and our Container fleet both at run and build-time. The Automatic network diagrams allow us to look at all network connections between our systems and compare them to our baselines. ### 8. The systems are easy to use and understand, and setup is simple **Rating:** 5.0/5.0 stars **Reviewed by:** Ian T. | Assistant, Small-Business (50 or fewer emp.) **Reviewed Date:** July 10, 2024 **What do you like best about FortiCNAPP?** I like implementing Lacework as it's very easy and the continuous development means you stay ahead of the curve. It can also help you gain complete visibility of your workloads in almost all security tasks that will be assigned to you. **What do you dislike about FortiCNAPP?** I think it would be great to be able to easily control what permissions the agent has on the endpoints. And to get the most value, you need to be able to write queries instead of human-readable questions. And in cases columns are unnecessarily truncated. **What problems is FortiCNAPP solving and how is that benefiting you?** The data analytics used in the platform allows for a single plane of glass at the endpoints. Furthermore, the response to the final points is excellent. With this tool we have the possibility of otaining a large amount of information from Windows endpoints and we also reduced costs. ### 9. A lot to improve considering enterprise tools like SonarQube and Snyk, way below Prowler. **Rating:** 3.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Small-Business (50 or fewer emp.) **Reviewed Date:** January 26, 2025 **What do you like best about FortiCNAPP?** I like the multi cloud feature of Lacework including its high reporting standards. **What do you dislike about FortiCNAPP?** If I am a business owner, I wouldn't only think of cloud security, and then there are many other respects to look into for proper security posture management or vulnerability management. So spending on such a new tool which is yet to make a mark would be a tough choice. **What problems is FortiCNAPP solving and how is that benefiting you?** Currently it helps in compliance reporting/integrations wherever required. ### 10. Lacework is a versatile product that has proven invaluable in various use cases **Rating:** 4.5/5.0 stars **Reviewed by:** Marie D. | Platform Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** July 16, 2024 **What do you like best about FortiCNAPP?** Its functions have been essential to detec anomalies, but do not cause fatigue in the control panel or tools. Additionally, I love that it gives us a single dashboard to view all of our workloads, and the daily alerts help our incident response team prioritize and address urgent issues. **What do you dislike about FortiCNAPP?** Starting to use this platform was one of the best decisions our organization has made. We were looking for an easy-to-use solution that covered all our assets in the cloud. Lacework has worked perfectly. I have nothing negative to say here about this tool. **What problems is FortiCNAPP solving and how is that benefiting you?** We use Lacework primarily for user and entity behavior analysis. Provides protection guarantee against the latest vulnerabilities and different types of threats. Additionally, they our company significantly improve its security posture in the cloud environment. ### 11. Dig into the details to discover inaccurate configurations and vulnerabilities **Rating:** 4.5/5.0 stars **Reviewed by:** Karina S. | Analyst, Small-Business (50 or fewer emp.) **Reviewed Date:** July 11, 2024 **What do you like best about FortiCNAPP?** I love that the team actively listens to user feedback and releases new features and improvements frequently. The platform is exceptionally easy to use, making it easy to set up and integrates for teams of all size. And I love that it offers buil-in protection for cloud infrastructure, workloads, data, APIs, containers, and access management. **What do you dislike about FortiCNAPP?** I would like it to be able to integrate with a great variety of applications. Also, it would be nice if they could include timely security monitoring. Plus there is room to improve the board. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework makes cloud security management easy with all-in one platform. It also offers a three-sided view of our cloud environment: code scanning, resources monitoring and hacker view. Advanced reporting also makes it a great option for team meetings. ### 12. True visibility for security operations **Rating:** 4.5/5.0 stars **Reviewed by:** Tim F. | Engineering Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** May 28, 2024 **What do you like best about FortiCNAPP?** Lacework narrows down the flood of information about our tech estate (in the cloud) to just the information that I need to know. When you're running DevOps teams with a large surface area of technology, this is critical. The proactive monitoring has identified enough anomalous activity that I have comfort that if we ever suffer a real breach, Lacework will let me know about it. It's also generally easy to get exactly to the root cause. The team have been excellent in supporting us - not just with onboarding, but with the continued embedment and getting as much value as possible out of the tool. I recommend this product. **What do you dislike about FortiCNAPP?** As relatively early adopters some of the features that allow us effectively segregate information were not there when we onboarded. Feels like it was initially targeted at security operations teams that sit across the whole organisation, rather than specific areas of the organisation. However, the maturity is rapidly growing and the team have always been good at letting us know exactly what's on the roadmap and when it's coming. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework has given us a single view of our tech posture across cloud accounts and on-premise. The ability to identify attack paths through reading server vulnerabilities and network configurations is incredible, and helps us focus our security investment on the true threats. The proactive monitoring lets me sleep well at night, knowing we'll be alerted in the event of any suspicious behaviour within our infrastructure. Being able to quickly generate reports on our true security footing has allowed me to give me stakeholders an accurate and quantifiable view of where we're at from a security perspective, which is invaluable for any engineering leader. ### 13. Director of Client Technologies **Rating:** 5.0/5.0 stars **Reviewed by:** Chems A. | Client Technologies Technical Lead, Mid-Market (51-1000 emp.) **Reviewed Date:** March 14, 2023 **What do you like best about FortiCNAPP?** How you can trace the issue all the way to the exectutable. it was 2 alerts that recived indicating that there were external attempts from servers to external IPs and upon checking the details of the alert and looking at the source and destination and traffic details; I was able to easily trace it to be legitimate attempts as one systems was trying to connect to O365 and the other to SpecOps. **What do you dislike about FortiCNAPP?** None at the moment. I am happy with the product so far and the support is also great. I trust the company as well as they are doing great job developing the product even more **What problems is FortiCNAPP solving and how is that benefiting you?** it was 2 alerts that recived indicating that there are external attempts from servers to external IPs and upon checking the details of the alert and looking at the source and destination and traffic details; I was able to easily trace it to be legitimate attempts as one systems was trying to connect to O365 and the other to SpecOps. **Official Response from Christine Medina:** > Hi Chems! Thanks for leaving us a a review with a specific example of how we've helped you. We have definitely been hard at work and will continue to innovate and deliver more value to you with new product features and enhancements. ### 14. A good expérience **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Security and Investigations | Mid-Market (51-1000 emp.) **Reviewed Date:** April 07, 2023 **What do you like best about FortiCNAPP?** The solution is complete and helps the teams to have good insight for risk and vulnérabilities ( Host, containers...) It's responding to most of the problems we can face **What do you dislike about FortiCNAPP?** Not a dislike, but they have to improve the filtres on dashboards . **What problems is FortiCNAPP solving and how is that benefiting you?** Aws vulnerabilities and also some analysis for security escalations . It saves time by pointing the problems and also giving advice for solution ### 15. Amazing solution with great comprehensive security features **Rating:** 5.0/5.0 stars **Reviewed by:** Helene M. | Assistant Manager, Small-Business (50 or fewer emp.) **Reviewed Date:** July 18, 2024 **What do you like best about FortiCNAPP?** I like the detailed information that is collected, the visibility that the tool gives us about our infrastructure is surprising. I like the amount of information that is collected in each scan. It gives us valuable information about our workloads. **What do you dislike about FortiCNAPP?** I consider it a personal taste that the design of its infrastructure could be somewhat more striking. Queries may also take some time to understand. I don't like that you have very few options when it comes to customizing the reports. **What problems is FortiCNAPP solving and how is that benefiting you?** The platform gives our security team the context they need, providing visibility and control over every aspect. The information obtained is excellent, complete coverage of the entire infrastructure. It has also helped us to be decisive in prioritizing our efforts. ### 16. Perfect solution to protect your cloud environment **Rating:** 5.0/5.0 stars **Reviewed by:** Eulalia T. | Data Analyst, Small-Business (50 or fewer emp.) **Reviewed Date:** July 08, 2024 **What do you like best about FortiCNAPP?** The tool is used daily to monitor vulnerabilities and threats in our environment. Lacework provides the functionality our team needs to protect the systems and data our business depends on every day. It is a wonderful solution for assets located in public cloud hosting environments. **What do you dislike about FortiCNAPP?** The truth is that there is nothing I don't like about Lacework, our team was looking for an easy-to-use solution that covered all our assets in the cloud and we are very happy with the results obtained thanks to this platform. **What problems is FortiCNAPP solving and how is that benefiting you?** We use Lacework primarily for user and entity behavior analysis. It allows us to be awere of any anomalies in our systems, whether it is a process, a user or a connection coming from an unusual location, etc. ### 17. Enhance security in your company with this real time threat detection and reporting software **Rating:** 4.0/5.0 stars **Reviewed by:** Anna G. | Senior Cybersecurity Analyst, Management Consulting, Mid-Market (51-1000 emp.) **Reviewed Date:** July 18, 2024 **What do you like best about FortiCNAPP?** Some of the best features that I have enjoyed using Lacework are security information and intelligent threat isolation of Lacework. It offers a high level of security since it offers insight of physical security in the cloud infrastructure to offer prompt response. Integrational with other systems like AWS and Azure has been realized to be easy and this implies that one can monitor his or her environments without having to change systems. The many reports and the dashboard allows us to be always in touch with security compliance and be ready to make sound decisions. **What do you dislike about FortiCNAPP?** The one weakness that is worth mentioning about Lacework is that it may be difficult to set up and it occupy a considerable amount of time. This has however brought some inconveniences in the assimilation process of the software into our system since it has been staged in sections. Furthermore, its potential is high as to some functions it might take some time to master them so we would need training for our team. All of these have slightly impacted on our on boarding process by causing a slight lag and also the need to direct more resources in as regards to making sure everyone is on to it. **What problems is FortiCNAPP solving and how is that benefiting you?** Regarding the problems of cloud security management, Lacework provides maximum monitoring and performs automatic threat related analysis and identification. It makes it easier for us to timely identify weaknesses as well as tackle events thus boosting our security level. The software also enhances our compliance prowess through provision of detailed reports and auditors that ease on regulation compliance. Therefore, the team is more effective and assured in the secure cloud environment that enhances our general business processes. ### 18. It is a one stop security solution for my cloud environment **Rating:** 3.5/5.0 stars **Reviewed by:** Mohd Saif A. | Business Development Representative, Enterprise (> 1000 emp.) **Reviewed Date:** January 23, 2025 **What do you like best about FortiCNAPP?** Its threat detection is the best feature I saw, which is one of the most important thing these days for the oraganisations. Specially when you are handelling a very critical data of your clients. **What do you dislike about FortiCNAPP?** It is a bit tricky to cconfigure Lacework with tools **What problems is FortiCNAPP solving and how is that benefiting you?** It made us think freely and concentrate on other important tasks. ### 19. Coverage, security, data and compliance in a single portal automatically **Rating:** 5.0/5.0 stars **Reviewed by:** Uberto L. | Marketing And Advertising, Small-Business (50 or fewer emp.) **Reviewed Date:** July 13, 2024 **What do you like best about FortiCNAPP?** I like their Speed of innovation and continuous improvement of the solution. In addition, beign able to put the whole puzzle together helps diagnose the risk of attacks on security layers and the impact of data. The Lacework app is very intuitive and has better features than the competition. **What do you dislike about FortiCNAPP?** I would like to see Lacework delve more into real-time suspicious or malicious threat analysis for virtual machines. Additioanlly, they sometimes have difficulties with historical metrics. **What problems is FortiCNAPP solving and how is that benefiting you?** I love that it is agent-free and that when new resources are added, Lacework detects them in the scan. This tool offers me a wide range of cloud security capabilities spanning all major cloud service providers. ### 20. We especially value the ability to quickly detect anomalies **Rating:** 4.5/5.0 stars **Reviewed by:** Basso C. | IT Specialist, Small-Business (50 or fewer emp.) **Reviewed Date:** July 12, 2024 **What do you like best about FortiCNAPP?** I love that it's really easy to create a panel of widgets that you think are most important and use that to display on a dedicated monitor. We were pleasantly surprised at how easy it was to implement and integrated Lacework into our environment. **What do you dislike about FortiCNAPP?** It is neccessary to spend many hours becoming familiar with the tool to exploit its full potential. And in complex situations, it's sometimes difficult to determine why an alert is high or critical. **What problems is FortiCNAPP solving and how is that benefiting you?** Attack path mapping creates a contextual view beyond that of cloud-native security services. Plus the comprehensive user interface and extensive security features are really what sets it apart from other tools. ### 21. Lacework enforces policies and monitors containers at runtime to prevent vulnerabilities **Rating:** 5.0/5.0 stars **Reviewed by:** Raza A. | Analyst, Small-Business (50 or fewer emp.) **Reviewed Date:** July 10, 2024 **What do you like best about FortiCNAPP?** I love its capabilities like centralized administration, control groups, role-based access, and auditing. Additionally, the graphical user interface is easy to understand and clearly breaks down which resources are failing or passing which policies. **What do you dislike about FortiCNAPP?** I thought the initial setup process was a bit long, but we managed to do it with the help of the Lacework team. And I think some areas of the user interface require improvement. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework helps us with its ease of implementation, nice user interface, available CI/CD integration options and more! It also offers clear and practical recommendations to solve vulnerabilities and, at the same time, helps us make our CSPs more secure. ### 22. Good tool for the job it does **Rating:** 4.0/5.0 stars **Reviewed by:** Aleksandr K. | Mid-Market (51-1000 emp.) **Reviewed Date:** February 14, 2023 **What do you like best about FortiCNAPP?** It provides excellent documentation to integrate the tool within the workspace easily. I believe this is great when it comes down to containers specifically, as it looks in the skeleton of the image and a runtime scan. **What do you dislike about FortiCNAPP?** I believe the downside of the Lacework comes from its offering of infrastructure as code scanning. It is not context aware thus when you use your IaC code with imported modules, it won't understand what you are importing from those modules thus won't give you a concrete dataflow. **What problems is FortiCNAPP solving and how is that benefiting you?** Container security is the most significant help here. It's helping me to understand how vulnerabilities come in from the image itself and the container in the runtime. **Official Response from Emily Chin:** > Thank you for the detailed update of your review, Aleskandr. We're thrilled to hear that Lacework has enhanced your observability and incident response capabilities. It's fantastic to know that our solution is simplifying forensic investigations and improving your container traffic flows. We appreciate you sharing about the IaC challenges you’re experiencing; our team suggests scanning the code in your CI/CD pipeline (instead of in the code repos) with a "terraform plan" file. This file resolves the nested set of files (these are places where one IaC file calls another) and generates a single file to analyze. I hope this suggestion is helpful, or if I can connect you directly with the team to chat more, please send me a note at emily.chin@lacework.net and I would be happy to facilitate. ### 23. We enhanced security and compliance **Rating:** 4.0/5.0 stars **Reviewed by:** Noufissa A. | Cloud security engineer, Education Management, Small-Business (50 or fewer emp.) **Reviewed Date:** May 30, 2024 **What do you like best about FortiCNAPP?** I like Lacework because its interface is very intuitive and can plug directly into the tools we are already using, such as AWS and Azure. Many features that have proven to be a great benefit to our company include the real time threat detection, which gives alert and comprehensive report. Another thing that needs a mention is the customer support, the service is always willing to help with various problems. Lacework has more than likely helped save time in our security aspects. **What do you dislike about FortiCNAPP?** A disadvantage of Lacework is that it can be somewhat complicated to set up at the beginning. This consumed more time and resources that could have been used in our work thus affecting it. Also the number of features available can be quite confusing and may take time to get used to, thus reducing the initial productivity rates. However, after some time, it was possible to notice the features that made the software useful. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework has been helpful in improving the cloud security since it has helped in the identification of threats and other inconsistencies. It aids in the management of security in various clouds in order to enhance on the performance that we do in our task. The frequent alerts and the comprehensive reports are more helpful in detecting and correcting the problem before the breach can be made. This has assisted in this aspect of security and also created some space for other things as well. ### 24. Good product but dont like the UI experience much **Rating:** 3.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** May 23, 2024 **What do you like best about FortiCNAPP?** Mainly like the different set of standards it provides like SOC2, PCIDSS, HIPAA etc. where we can generate reports directly against each compliance framework which is very helpful during an audit. I really like the findings it provides using agents with our kubernetes platform where lacework can give us more granular findings on the container behavior in the platform where we struggled to find what was happening within the kubernetes infrastructure. **What do you dislike about FortiCNAPP?** The dashboard is difficult to navigate, making it challenging to quickly find specific information or insights. Also creating custom dashboards for our requirement is not straightforward. Automation with the AWS control tower is not working time to time where they have not considered large scale setups where the architecture does not scale for hundreds of accounts migration. **What problems is FortiCNAPP solving and how is that benefiting you?** We are very concerned about our compliance and governance in our platform and lacework provide us the tools to stay compliant and find any deviations Also since we are currently migrating to kubernetes platform it provide necessary information on any issues inside the platform including the images it runs ### 25. Platform is good **Rating:** 4.0/5.0 stars **Reviewed by:** Md F. | Salesforce Developer, Enterprise (> 1000 emp.) **Reviewed Date:** January 23, 2025 **What do you like best about FortiCNAPP?** Security container and Integration with 3rd party applications **What do you dislike about FortiCNAPP?** Integration documentation not available widely **What problems is FortiCNAPP solving and how is that benefiting you?** Security related problems are managed very well , thus I would recommend it. ### 26. Our cloud data is strongly protected by this modern software **Rating:** 4.0/5.0 stars **Reviewed by:** Francesca D. | Cloud security analyst, Small-Business (50 or fewer emp.) **Reviewed Date:** May 15, 2024 **What do you like best about FortiCNAPP?** The main feature of Lacework is its strong cloud security compared with others. The way it perfectly harmonizes with our cloud headings has made a tremendous impact in our cyber security. It enables us to uncover any activities instantly and conduct in-depth threat analysis, making us to be always in front of the possible threats. The AI-driven analytics are the source of good insights allowing early identification of the risk issues. Also the simplicity of its interface makes security management quick thus it boosts our team effectiveness. **What do you dislike about FortiCNAPP?** Of course Lacework, without a doubt, also has some aspects where it could improve. Although it provides a great range of features, it is not as capable as certain other similar softwares. Although it is perfect on its main functions related to reporting, notifying anomalies, and impact scanning, sometimes we need such extra features that Lacework doesn't deliver. This restriction makes it necessary to find the circular solutions or integrate our system with other tools to meet all our needs, which increases the complexity of our process. **What problems is FortiCNAPP solving and how is that benefiting you?** For us, the principal issue Lacework solves is the cloud infrastructure security vulnerabilities which increases business capacity remarkably. Before we had Lacework, we were dealing with the visibility problem of our cloud assets and also the control problem which exposed us to the risk of security breaches and compliance issues. We can now actively monitor and protect our cloud environment with Lacework, and prevent security incidents from happening while also meeting the requirements of regulatory compliance. **Official Response from Emily Chin:** > We love the detailed feedback and are thrilled to hear that our features have positively impacted your cybersecurity efforts. Please reach out to me directly at emily.chin@lacework.net with any additional questions or details to share back with the team. Thank you so much. ### 27. The best Cloud Security Assessment Tool **Rating:** 4.0/5.0 stars **Reviewed by:** Veeresh P. | Cloud Security Consultant, Enterprise (> 1000 emp.) **Reviewed Date:** February 21, 2024 **What do you like best about FortiCNAPP?** We are the security consultants and we provide Lacework Tool as the Cloud Security Assessment Tool as a Service to the Customers. Lacework has helped to find all the cloud misconfigurations as well as vulnerabilities in the azure,aws and gcp clouds. This tool also helps a lot as the security administrators as the tool is very easy to use and also generates very high level reports according the the CISO requirements. The security administrators can easily find the vulnerabilities, and threats very easily by the lacework's best feature i.e Polygraph feature(also known as graphical/ flowchart view of the threats) which also helps in preventing the issue before happening. We have already helped the customers in providing Lacework cloud Security Assessment service and they are pretty much satisfied. The Customer Support is also very decent. The one thing which I personally like is that Lacework always tries to expand new features in their tool. **What do you dislike about FortiCNAPP?** 1] The implementation as well as the Cloud Onboarding into Lacework Platform is very complex and it requires very high level of effort. 2] the Integration of the other security products such as SIEM, Tcketing Tools are also very complex process. 3] to generate cloud security alerts lacework requires some of the prerequisites of the cloud services. example :- the get AWS Cloud Security Alerts in Lacework, the AWS Config Service must be enabled in the AWS Cloud. **What problems is FortiCNAPP solving and how is that benefiting you?** 1] We are using lacework as the Cloud Security Assessment Tool for the customers because they wants their Cloud to be assessed by the potential misconfigurations and vulnerabilities. 2] THe customers also wanted to assess their cloud containers and cloud kubernetes so we have used lacework and integrated their containers and kubernetes envirenment with lacework and lacework has totally nailed it in that. 3] one customer wanted their entire organization to be complied with the specific PCI-DSS and luckily their entire data is in the cloud. We have used lacework and it had helped that organizations to assess full PCI-DSS Compliance. **Official Response from Emily Chin:** > We appreciate your detailed feedback on how Lacework has helped you.We’re pleased to hear that Lacework has effectively helped you manage cloud misconfigurations, vulnerabilities, compliance, and integrations with containers and Kubernetes environments.. We appreciate your insights on your implementation and integration, and would be happy to connect you directly with the team if we can further streamline your experience, please reach out any time! emily.chin@lacework.net ### 28. Good product with high fidelity alerting **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Legal Services | Enterprise (> 1000 emp.) **Reviewed Date:** May 30, 2024 **What do you like best about FortiCNAPP?** Good UX and provides great visibility into cloud environments with intuitive and actionable insights. Also provides good contextual benefits for detections (events) that might amount to incidents, which is helpful if you need to triage and respond quickly. I also find the ability to easily deploy and integrate with various cloud services incredibly helpful for me and my team, especially when we're under tight time constraints to provide assurance back to the business on levels of visibility. **What do you dislike about FortiCNAPP?** I think the ability to build out automation workflows for more granular types of alerting could be helpful for organisations that have Lacework but don't yet have a SIEM and/or SOAR platform. **What problems is FortiCNAPP solving and how is that benefiting you?** Provides us with good visibility and security control over our multi-cloud estate as well as helps us satisfy a number of compliance related requirements. ### 29. It used to best but not anymore! **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** January 16, 2025 **What do you like best about FortiCNAPP?** easy to implement. Good with alert handling. Vulnerability & compliance scanning **What do you dislike about FortiCNAPP?** UI can be more user-friendly. No free trails to educate new customers. Can improve alert handling. **What problems is FortiCNAPP solving and how is that benefiting you?** we use Lacework container security for visibility of Docker container images and simplifies vulnerability assessments and malware detection. ### 30. Lacework CNAPP tool **Rating:** 4.0/5.0 stars **Reviewed by:** Sergey M. | Security Engineering (Tools & Automations; Threat and Vulnerability Management), Enterprise (> 1000 emp.) **Reviewed Date:** May 28, 2024 **What do you like best about FortiCNAPP?** Easy to deploy and navigate. Clear CIS and SOC2 reoports. Deployment ahents to EC2 is simple with agent intregration into goldem AMI. Customer support ppl are always on time and helpfull. We are using Lacewirk daily on real time bu multile teams, starting with IR, CSPM, Vulnerabilities ... **What do you dislike about FortiCNAPP?** We need to use third party tool to push auto remediation **What problems is FortiCNAPP solving and how is that benefiting you?** Lacewotk filtering AWS CT by using policy engine and triggere IR. Also, we are using Lacework for Vulbnerabilities on AWS and EKS ### 31. Great to get up and running quickly; Difficult for advanced security teams to get details **Rating:** 2.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** May 24, 2024 **What do you like best about FortiCNAPP?** How fast it is to deploy, integrate and implement and start protecting the cloud. Contact with Customer support has been limited but positive to date. **What do you dislike about FortiCNAPP?** How difficult it is to search, often involves just going to other products to find the logs and details for alerts. Has never produced a true positive, which is fine, but for AI it never seems to learn from it's mistakes. It feels just like I have outsourced my rules writing **What problems is FortiCNAPP solving and how is that benefiting you?** It is our cloud monitoring platform. It has gaps that would require other tools. This is a great tool to have if you do not have a security team or just devs that don't want to spend time tuning or investigating incidents. ### 32. Great Tool To Find Out Unusual Activity **Rating:** 5.0/5.0 stars **Reviewed by:** Mahir A. | SecOps Analyst, Mid-Market (51-1000 emp.) **Reviewed Date:** June 03, 2024 **What do you like best about FortiCNAPP?** Saves so much time to analyze something & we found a lot alerts on the environment which was unlnown to us. Don't think manucally this is something can be found **What do you dislike about FortiCNAPP?** Reporting might be sometimes confusing & lack of Azure integration but they are getting better **What problems is FortiCNAPP solving and how is that benefiting you?** Biggest challenge we have is visibity on the cloud environment so its hard to keep track of everything as our cloud environmnet is growing. Lacework really helped us with this ### 33. Amazing Product To Find Out Hidden Vulnerability on Cloud **Rating:** 5.0/5.0 stars **Reviewed by:** Mohim A. | Security Specialist, Mid-Market (51-1000 emp.) **Reviewed Date:** June 11, 2024 **What do you like best about FortiCNAPP?** Saves a lot of time to find out something unusual which is not possible with manual finding on cloud **What do you dislike about FortiCNAPP?** Less integration on Azure I would say but recently they made good progress on it **What problems is FortiCNAPP solving and how is that benefiting you?** We are using it to detect violation on our cloud environment. We are aws & azure based & we have small team so its great to save time ### 34. Everyone needs Lacework! **Rating:** 5.0/5.0 stars **Reviewed by:** Martyn T. | Security Operations Team Lead, Mid-Market (51-1000 emp.) **Reviewed Date:** January 24, 2023 **What do you like best about FortiCNAPP?** Central, multi-purpose but single pane of glass technoogy, covering esstentail and deep dive information about cloud based technologies such AWS, delivering comprechensive security insights, best practices and actionable itesms supported by risk based approach. The communocation with support teams acc mamangers etc are flowless and immediate enhancoing the entire experience. **What do you dislike about FortiCNAPP?** Some of the elements about the product documentation are still a bit lacking and could have been improved **What problems is FortiCNAPP solving and how is that benefiting you?** Cloud security observability and consolidation of technologies into one reliable technology. Reduction in waiting times for support responses and continiuots expansion of capabilites. Allow for instant assesment of cloud posture and immediate actioning with well defined and structed data at glance. ### 35. Great Product and outstanding customer experience! **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** May 23, 2024 **What do you like best about FortiCNAPP?** The customer experience is outstanding, whenever a question comes up the team is always quick to get back with a response. The tooling works as expected and provides what the data in a way that is easy to manage. **What do you dislike about FortiCNAPP?** The interface can be a little bit overwhelming at first, this is normal for most new tools though. It does also feel cluttered if you are sure exactly where to look. API bottlenecking does occur every so often. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework provides an exceptional level of scanning when it comes to continer security. The team is able to gather the information needed faster and more accurate with such a great product. ### 36. Lacework provides us insight in a systematic way **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** March 01, 2024 **What do you like best about FortiCNAPP?** My team utilised Lacework to achieve our SOC2 compliance goals. It provides insight into our security posture and automates some of our SOC 2 control testing. I rely on Lacework for quarterly KPI report generation and regular control testing evidence. From a users perspective it is easy to use, and provides quick overviews of the different environments that are in scope. **What do you dislike about FortiCNAPP?** I think the reporting for audit purposes could be improved. It would be useful if the report for SOC2 would be more visual, for regular KPI reporting, if they would include management friendly charts and an executive summary. It would also be useful if I could generate reports for a bundle of environments - for example, bundle up multiple in-scope AWS enronments and see the overall status for SOC2 compliance. **What problems is FortiCNAPP solving and how is that benefiting you?** SOC2 compliance and overall insight into our security posture. **Official Response from Emily Chin:** > We appreciate you taking the time to leave us a review and for your feedback on the reporting capabilities. The team will be introducing a new set of visuals and graph trends to the expanded dashboards releasing soon. We hope to migrate many of these visuals to our overview pages and report templates. Should you wish to speak further about your experience with reporting, the team welcomes the opportunity to discuss. You can email me anytime at emily.chin@lacework.net. ### 37. Good product, UX needs polishing **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Small-Business (50 or fewer emp.) **Reviewed Date:** May 22, 2024 **What do you like best about FortiCNAPP?** It's great to have insights about network connectivity, TCP connections, being able to search for applications and domains that are being used/contacted accross the environment. I like how we can create custom detections and how alerts correlate. **What do you dislike about FortiCNAPP?** User experience is not the most intuitive, some things appear to be clickable while they're not, the table view doesn't allow sorting and pagination makes the information harder to read. The fact that Lacework captures the internal hostname of a machine makes it hard to find by asset name (for example, not being able to catch the name assigned in AWS) so it makes the search function harder to use. The polygraph makes sense but it can get crowded hence making the view useless. **What problems is FortiCNAPP solving and how is that benefiting you?** CSPM reports and alerting allows our business to proactively detect configuration issues and emerging threats. ### 38. I think it is a good tool to maintain security **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Transportation/Trucking/Railroad | Enterprise (> 1000 emp.) **Reviewed Date:** May 29, 2024 **What do you like best about FortiCNAPP?** I really like the way the tool manages alerts so that every time a security alert arrives I can manage it and maintain a secure environment. **What do you dislike about FortiCNAPP?** I use the tools to maintain security on AWS and from my use I have not found anything really wrong with it. The interface is very well thought out and is easy and intuitive. As a possible improvement we could consider adding more closing cases when closing an alert. **What problems is FortiCNAPP solving and how is that benefiting you?** The tool helps me to improve the security of my infrastructure and to have a better control of it. ### 39. Lacework provides excellent insights into our infrastructure configuration and compliance **Rating:** 5.0/5.0 stars **Reviewed by:** Ilan B. | CTO, Mid-Market (51-1000 emp.) **Reviewed Date:** May 22, 2024 **What do you like best about FortiCNAPP?** I like the monitoring aspects, the integration with ticket systems such as JIRA and the ease by which we can access information about how to resolve out of compliance issues. **What do you dislike about FortiCNAPP?** I think that as the platform is evolving its challenging to keep up with the changes and updates unless you are working with it all the time. **What problems is FortiCNAPP solving and how is that benefiting you?** Compliance monitoring. **Official Response from Emily Chin:** > Thanks for sharing your thoughts on our platform, IIan. Hearing that you find our monitoring capability and Jira integration helpful is awesome. I'd love to hear more about the features you're looking for and the integrations your team needs. Please reach out to me directly at emily.chin@lacework.net. ### 40. Using Lacework as a single pane of glass for CNAPP, Container vulnerabilities and infracode **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** November 01, 2023 **What do you like best about FortiCNAPP?** - Easy to implement and add new clusters / resources - Ease of use on the UI to find issues or items - integration with other tools and adding to workflows - new features are always being added **What do you dislike about FortiCNAPP?** - Search should be based on Natural Language processing so we can query in plain English instead of LQL - more robust APIs to integrate to CI/CD - right now we have to work around the API to search for latest scans **What problems is FortiCNAPP solving and how is that benefiting you?** - Securing workloads - visibility into exposure and issues - Integrating with workflow for DevSecOps ### 41. So far, so good. **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** June 28, 2023 **What do you like best about FortiCNAPP?** It's very useful to have all my alerts showing up in one place, with filters provided to make sure I'm seeing what I want to see. The alerts are comprehensive and beneficial, giving me a great at-a-glance understanding of what's going on. **What do you dislike about FortiCNAPP?** It has been slightly difficult to filter out noise. It seems to require more effort on my end to ensure that devices and networks are configured to eliminate this. It would be nice to see more ways to filter that out from within Lacework itself. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework helps us solve our cloud security problems by providing us with necessary alerts and details about our different accounts. Since we utilize multiple cloud services, it's extremely beneficial to have all our alerts from each service in one place. ### 42. Cloud Security Management simplified **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** June 14, 2024 **What do you like best about FortiCNAPP?** Its diverse service offerings and ability to adapt to market needs - it's like the swiss army knife of cloud security tools, allowing us to consolidate different functions and needs all in one place **What do you dislike about FortiCNAPP?** Account management team has seen some flux in the last year **What problems is FortiCNAPP solving and how is that benefiting you?** The dynamic growth of our cloud infrastructure requires us to have automated posture analysis to mitigate and reduce risks, as on our scale manual remediation would be near impossible ### 43. Swiss Army Knife On Steroids **Rating:** 5.0/5.0 stars **Reviewed by:** Luqmaan M. | Security Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** May 22, 2024 **What do you like best about FortiCNAPP?** I love the AI feature that gives a direction on how to triage some alerts. I also love the polygraph **What do you dislike about FortiCNAPP?** It has too much information,and little workshops **What problems is FortiCNAPP solving and how is that benefiting you?** We are able to keep track of our cybersecurity maturing model and this illustrates the SOC's value to the business **Official Response from Emily Chin:** > Thanks very much for your positive review! It's great to hear that you find the AI feature and Polygraph valuable! I’m very excited to share that we have weekly workshops available and regular live webinars with our technical team: https://community.lacework.com/p/events-live-sessions. If a one-on-one conversation would be beneficial, I’d be happy to connect you with someone directly. Please let me know at emily.chin@lacework.net. ### 44. The Lacework experience **Rating:** 4.0/5.0 stars **Reviewed by:** Abhilash T. | Mid-Market (51-1000 emp.) **Reviewed Date:** April 03, 2023 **What do you like best about FortiCNAPP?** its a great swiss knife tool combining vulnerabilities with attack paths and reporting based on various international standards like ISO27001. **What do you dislike about FortiCNAPP?** the attack path does not work for our infrastructure design unfortunately..or at least not completely **What problems is FortiCNAPP solving and how is that benefiting you?** We are actually solving quite a number of problems with Lacework. 1. to get a full visbility of our infrastructure to know what happens and why it happens. 2. To have a good anomaly detection in place. 3. To check for compliance in all of our cloud components. ### 45. Quick way to catch vulnerabilities **Rating:** 2.5/5.0 stars **Reviewed by:** Deivydas R. | Mid-Market (51-1000 emp.) **Reviewed Date:** November 17, 2023 **What do you like best about FortiCNAPP?** Our team installed Lacework on AWS ECS instances and it showed a lot of potential vulnerabilities. There were some packages that we would have never considered as malicious ones and Lacework showed us those. Also, it is pretty to launch on services like EC2. **What do you dislike about FortiCNAPP?** Not so easy to install Lacework on ECS machines. Our Devops team did some extra mile job to allow us to run Lacework on our ECS tasks. However, that run of the sidecar resulted in longer start time of the ECS and bigger resource consumption. Also the pricing is too aggresive in my oppinion. The value it gives is great, but the cost we are paying for it - is way too much. **What problems is FortiCNAPP solving and how is that benefiting you?** Showing vulnerable packages. Showing vulnerable containers. Showing us what is covered and not covered yet. **Official Response from Emily Chin:** > Thank you so much for taking the time to share your experience with Lacework. We appreciate your thorough and thoughtful review. It’s great to hear that our platform has been effective in identifying potential vulnerabilities and enhancing visibility into your environment. If you need any additional help or want to meet with the team, please feel free to reach out to me any time: emily.chin@lacework.net. ### 46. Lacework: A Very Good Cloud Security Tool **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Enterprise (> 1000 emp.) **Reviewed Date:** June 03, 2024 **What do you like best about FortiCNAPP?** Lacework is fully featured. It contains all of what we need for a cloud security platform, from alerting to CSPM. **What do you dislike about FortiCNAPP?** The Lacework global search does not always find what I need. I wish it were more intuitive to search for resources. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework helps us tremendously in tracking and responding to the drift in our cloud environments. It also has been substantially helpful with its container security and image vulnerability features. ### 47. Lacework CNAPP tool **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Enterprise (> 1000 emp.) **Reviewed Date:** October 26, 2023 **What do you like best about FortiCNAPP?** Lacework's ability to provide insights from major CSP's is great as it provides single pane of glass for all findings from all cloud. Lacework's integration is good for small to medium size cloud footprint companies but requires engineering work for enterprise and very large cloud footprint companies. **What do you dislike about FortiCNAPP?** Ability to export data to SIEM environment out of the box. It is tough and requires considerable work to export data from Lacework. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework is providing the insights around cloud workload and container. It's ability to co relate the data from cloud control plane and cloud endpoint plane provides end to end visibility of attack path. This greatly helps in investigating cloud security incidents. ### 48. A great Cibersecurty monitoring platform **Rating:** 4.5/5.0 stars **Reviewed by:** Jonatan G. | Mid-Market (51-1000 emp.) **Reviewed Date:** September 18, 2023 **What do you like best about FortiCNAPP?** We use Lacework as our Cibersecurty Cloud activity monitoring tool. Lacework give us alerts about suspecious activities happening in our clouds and provides us relevant information for investigations. Also, vulnerabilities management for hosts and containers are very valuable as we use the reports as our baseline to drive our security releases. Finally, we use Security Compliance information to evaulate our security posture and is has been very useful to enforce our security policies. **What do you dislike about FortiCNAPP?** We have found some issues dealing with the volume of information that we have with the user interface; nevertheless the support team has helped us to find the way to use the Lacework API to retrieve the reports that we need. **What problems is FortiCNAPP solving and how is that benefiting you?** Lecework help us to unify and centralize several securty features instead using different brands and tools. Lacework gives visibility to our security issues and the main benefit for us is that we can track and follow them. The dashboards and insigths can help us to understand our progress and help us to prioritize our security improvement projects. ### 49. Lacework Review **Rating:** 4.5/5.0 stars **Reviewed by:** Benjamin T. | Cyber Security Consultant, Enterprise (> 1000 emp.) **Reviewed Date:** March 07, 2024 **What do you like best about FortiCNAPP?** Lacework puts many things like logs and events in a single portal that is easy to monitor and manage. A bonus is also making sure the security processes meet compliance as well as the vulnerability scanner. **What do you dislike about FortiCNAPP?** The "Resources" section could be a little cluttered, altough it provides a ton of information. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework has helped to streamline the security processes. Instead of going through multiple logs from many different places, it is now possible to access all of them in a single place in Lacework. That helps a lot with monitoring and exactly what we needed to stay alert at the frontline for defence. **Official Response from Emily Chin:** > We're glad to hear that Lacework has streamlined your security processes and enhanced your monitoring and management of logs and events. Thank you for leaving us a positive review. We appreciate your feedback about the 'Resources' section and if you have any additional questions or suggestions, please send them to us directly: emily.chin@lacework.net. ### 50. Lacework CSPM and Cloud workload protection **Rating:** 4.0/5.0 stars **Reviewed by:** Pankaj P. | Security Architect, Enterprise (> 1000 emp.) **Reviewed Date:** May 28, 2024 **What do you like best about FortiCNAPP?** Lacework product offers AI components that reduce the number of alerts for managing security operations, offering great ease of use. Their client engagement team truly partners with us to provide great support and ease of implementation. **What do you dislike about FortiCNAPP?** Slow progression on troubleshooting technical issue. **What problems is FortiCNAPP solving and how is that benefiting you?** Lacework is providing complete visibility to the Cloud environment. It gives us an end-to-end view of applications, networks, infrastructure, and processes. ## FortiCNAPP Discussions - [What is in the pipeline for Lacework?](https://www.g2.com/discussions/24342-what-is-in-the-pipeline-for-lacework) - 2 comments, 1 upvote - [Is lacework a SIEM?](https://www.g2.com/discussions/is-lacework-a-siem) - 1 comment - [View FortiCNAPP pricing details and edition comparison](https://www.g2.com/products/forticnapp/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-13+08%3A19%3A12+-0500&secure%5Bsession_id%5D=ab14a74d-3c94-4dda-b73b-e90fb24c501f&secure%5Btoken%5D=408aa7d20f88b90c6f37b14840eed8bea51852a32f19ed832dcf9555b8ce6857&format=llm_user) ## FortiCNAPP Integrations - [AWS Bedrock](https://www.g2.com/products/aws-bedrock/reviews) - [AWS CloudTrail](https://www.g2.com/products/aws-cloudtrail/reviews) - [AWS Security Hub](https://www.g2.com/products/aws-security-hub/reviews) - [Azure Kubernetes Service (AKS)](https://www.g2.com/products/azure-kubernetes-service-aks/reviews) - [Google Anthos Service Mesh](https://www.g2.com/products/google-anthos-service-mesh/reviews) - [Google Kubernetes Engine (GKE)](https://www.g2.com/products/google-kubernetes-engine-gke/reviews) ## FortiCNAPP Features **Management** - Dashboards and Reports - Workflow Management - Administration Console **Administration** - Risk Scoring - Security Auditing - Configuration Management **Security** - Compliance Monitoring - Anomoly Detection - Cloud Gap Analytics **Configuration** - Configuration Monitoring - Unified Policy Management - Adaptive Access Control - API / Integrations **Access control - Cloud Infrastructure Entitlement Management (CIEM)** - Policy Management - Fine-Grained Access Control - Role-Based Access Control (RBAC) - AI-driven access control **Security - Cloud-Native Application Protection Platform (CNAPP)** - Workload and container security - Threat detection and response - DevSecOps Integrations - Unified Visibility **Cloud Visibility** - Data Discovery - Cloud Registry - Cloud Gap Analytics **Operations** - Governance - Logging and Reporting - API / Integrations **Monitoring** - Continuous Image Assurance - Behavior Monitoring **Compliance** - Governance - Data Governance - Sensitive Data Compliance **Security** - Compliance Monitoring - Risk Analysis - Reporting **Visibility** - Multicloud Visibility - Asset Discovery **Monitoring - Cloud Infrastructure Entitlement Management (CIEM)** - Monitoring - AI-based detection **Artificial Intelligence - Cloud-Native Application Protection Platform (CNAPP)** - Intelligent remediations and suggestions - Risk prioritization - Anomaly detection using machine learning **Security** - Data Security - Security Auditing **Security Controls ** - Anomaly Detection - Security Auditing - Cloud Gap Analytics **Protection** - Dynamic Image Scanning - Runtime Protection **Administration** - Policy Enforcement - Auditing - Workflow Management **Administration** - Security Integration - Multicloud Visibility **Vulnerability Management** - Threat Hunting - Vulnerability Scanning - Vulnerability Intelligence - Risk-Prioritization **Auditing - Cloud Infrastructure Entitlement Management (CIEM)** - Visibility - Compliance Reporting **Cloud Configuration Management - Cloud-Native Application Protection Platform (CNAPP)** - Multi-cloud visibility - Cloud Security Posture Management (CSPM) **Identity** - Governance - User Analytics **Agentic AI - Cloud Security Monitoring and Analytics** - Autonomous Task Execution - Proactive Assistance - Decision Making **Agentic AI - Cloud-Native Application Protection Platform (CNAPP)** - Autonomous Task Execution - Adaptive Learning ## Top FortiCNAPP Alternatives - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (773 reviews) - [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews) - 4.8/5.0 (111 reviews) - [Orca Security](https://www.g2.com/products/orca-security/reviews) - 4.6/5.0 (251 reviews)