---
title: FortiCNAPP Reviews
meta_title: 'FortiCNAPP Reviews 2026: Details, Pricing, & Features | G2'
meta_description: Filter 386 reviews by the users' company size, role or industry
  to find out how FortiCNAPP works for a business like yours.
aggregate_rating:
  rating_value: 4.4
  review_count: 386
  scale: '5'
date_modified: '2026-07-17'
parent_category:
  name: Cloud Security
  url: https://www.g2.com/categories/cloud-security
---

# FortiCNAPP Reviews
**Vendor:** Fortinet  
**Category:** [Cloud-Native Application Protection Platform (CNAPP)](https://www.g2.com/categories/cloud-native-application-protection-platform-cnapp)  
**Average Rating:** 4.4/5.0  
**Total Reviews:** 386
## About FortiCNAPP
FortiCNAPP (formerly Lacework) is an AI-powered Cloud-Native Application Protection Platform that delivers unified security across your multi-cloud and hybrid environments. Built to protect the entire application lifecycle—from development to runtime—it combines posture management, workload protection, identity security, and threat detection into one integrated platform. By leveraging machine learning and behavioral analytics, FortiCNAPP helps security teams detect unknown threats, reduce noise, and accelerate response. Integrated with the Fortinet Security Fabric, it provides full-stack visibility across cloud, network, and endpoint environments—empowering teams to operate with confidence, reduce complexity, and scale securely.



## FortiCNAPP Pros & Cons
**What users like:**

- Users favor the **robust security features** of FortiCNAPP, ensuring comprehensive protection across multi-cloud environments. (8 reviews)
- Users value the **vulnerability detection capabilities** of FortiCNAPP, enhancing security monitoring and deployment efficiency. (7 reviews)
- Users admire the **effective alerting for misconfigurations** and appreciate its seamless integration with Fortinet products. (6 reviews)
- Users value the **excellent visibility and integration** of FortiCNAPP, enhancing cloud security management effortlessly. (6 reviews)
- Users find Lacework FortiCNAPP&#39;s **ease of use** enhances their experience, making setup and navigation straightforward and efficient. (6 reviews)
- Monitoring (6 reviews)
- Vulnerability Management (6 reviews)
- Cloud Management (5 reviews)
- Compliance (5 reviews)
- Compliance Management (5 reviews)

**What users dislike:**

- Users find the **difficult setup** of FortiCNAPP challenging, particularly for those lacking cloud security expertise. (5 reviews)
- Users struggle with **poor documentation** , making setup and configuration difficult, particularly for new users. (5 reviews)
- Users find the **complex setup** challenging, particularly for new users without extensive cloud security knowledge. (4 reviews)
- Users find the **setup difficulty** of FortiCNAPP challenging due to complex configuration and insufficient documentation. (4 reviews)
- Users find the **complex configuration** challenging due to overwhelming features and insufficient documentation for newcomers. (3 reviews)
- Users find the **insufficient information** during initial setup and overwhelming data presentation challenging for new users. (3 reviews)
- Alert Overload (2 reviews)
- Users find Lacework FortiCNAPP&#39;s setup to be **complicated and overwhelming** , impacting initial productivity and efficiency. (2 reviews)
- Dashboard Issues (2 reviews)
- Difficult Configuration (2 reviews)

## FortiCNAPP Reviews
  ### 1. Great product. No issues using it so far in the day to day task

**Rating:** 4.0/5.0 stars

**Reviewed by:** Michael E. | Senior Information Security Analyst, Mid-Market (51-1000 emp.)

**Reviewed Date:** May 22, 2024

**What do you like best about FortiCNAPP?**

The UI. It's simple and easy to navigate.

**What do you dislike about FortiCNAPP?**

Sometimes the platform can be slow which leads to draging out simple tasks.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Compliance

**Official Response from Emily Chin:**

> It’s great to hear that you find the UI simple and easy to navigate and appreciate your feedback on our platform’s performance and speed.  If I can offer any additional support, please don't hesitate to email me at emily.chin@lacework.net

  ### 2. Easy to use after a short time of working with it

**Rating:** 4.5/5.0 stars

**Reviewed by:** Maurice H. | IT-Systemadministrator, Mid-Market (51-1000 emp.)

**Reviewed Date:** May 23, 2024

**What do you like best about FortiCNAPP?**

The GUI its super intuitive, im not missing any feature. I also do like that Laceworks is listing every CVE related to each case.

**What do you dislike about FortiCNAPP?**

We had smaller issues with integrating it into our enviroment but that could be fixed in no time!

**What problems is FortiCNAPP solving and how is that benefiting you?**

Laceworks is our all in one solution when it comes to finding breaches in our infrastructure.

**Official Response from Emily Chin:**

> Thanks for sharing your insights on your experience with our platform. Our team will be so happy to hear that you find it  easy to use and intuitive. We're committed to ensuring you get the most out of Lacework, so if there’s anything I can assist, please email any time at  emily.chin@lacework.net 

  ### 3. Accessing amazing breadth of data with ease

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Banking | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 17, 2023

**What do you like best about FortiCNAPP?**

The integration with Lacework is really easy and the amount of data that it manages to provide is incredibly wide. Very quickly it lets users to see topologies of services and their communication, packages and possible vulnurabilities and a whole lot more. Customer support and representatives also sent out a lot of informational articles and guides on how to use the product, even had a voice call. The implementation is also really quick, all that is required is to configure their agent and all the data is automatically collected.

**What do you dislike about FortiCNAPP?**

The amount of data can be a curse as well, by integrating quite late it can be overwhelming and the is no good course of action to action on all the recommendations it is providing.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is automating the data collection and analysis that would usually require a dedicated team. The ease of integration further adds to that, which greatly benefits the users, that they are not required to think a lot on how to provide all the required information about their security practices.

  ### 4. Shines especially in runtime detectiom

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Human Resources | Enterprise (> 1000 emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

Lacework is very good at showing you the information you need, when you need it. Implementation into your platform, if you run a standard setup, is dead simple, and once it learns (some weeks lead time), tou will get pretty accurate anomaly alerts that are actionable on your own environment. It has been a very strong addition to our daily routine of security assessment for a large environment. There are several integrations into external platforms to unify your alerts very easily and centralise your information.

**What do you dislike about FortiCNAPP?**

Some of the features that are bundled, apart from the runtime inference, are still on development and need a bit more polish. Customer support is very open to suggestions and bug reports and provide solutions when needed, but we need to report lacking some features from time to time.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Alert reduction. Our small team does not have the resources to attend a traditional SIEM platform, and Lacework has allowed us to be on top of security issues thanks to the work it does for us in terms of incident priorization.

  ### 5. Lacework is a one stop shop for monitoring all our resources in the cloud.

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** May 23, 2024

**What do you like best about FortiCNAPP?**

Real time vulnerability detection of our container images running various Kubernetes clusters.

**What do you dislike about FortiCNAPP?**

Personally, there is a learning curve to using Lacework to it's full potential.

**What problems is FortiCNAPP solving and how is that benefiting you?**

- alerts on our AWS accounts for suspicious activity
- container vulnerability score
- security recommendations to tighten AWS IAM permissions

**Official Response from Emily Chin:**

> Thank you for your review and feedback. We're thrilled to hear that you're benefiting from our real-time vulnerability detection and appreciate that it’s helping you with alerts and security recommendations. We acknowledge the learning curve and are here to provide additional resources and guidance to help you fully leverage our platform. If you're interested, I'd like to invite you to join a live workshops hosted daily by our experts to help answer your questions: https://community.lacework.com/p/events-live-sessions

If you have any other questions or need further assistance, please don't hesitate to reach out: emily.chin@lacework.net

  ### 6. A Lifesaver for Resource-Strained SecOps Teams

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Computer Hardware | Mid-Market (51-1000 emp.)

**Reviewed Date:** October 17, 2023

**What do you like best about FortiCNAPP?**

The incorporation of machine learning algorithms into its platform allows Lacework to intelligently filter out false positives and only surface alerts that require immediate attention. The system learns the baseline behavior of our dynamic environments and adjusts its monitoring algorithms accordingly. A new component deployed to multiple environments only triggers one alert.

We work in a setting where environments are spun up and torn down in a matter of minutes, and Lacework easily adapts to these changes without requiring manual configurations each time. This adaptability dramatically reduces the time we spend on repetitive tasks and helps us focus on higher-level security challenges.

Lacework offers a growing sweet of integrations, and where one doesn't suite your needs there's awalys outbound callbacks that can be setup

**What do you dislike about FortiCNAPP?**

One particular area that could see improvement is the documentation. As an organization that often gets early access to new features, we've found that the public documentation doesn't always keep pace with the rapid expansion and updates to the Lacework platform.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework has transformed our security operations by expanding our visibility far beyond just code scanning at build time. As a single pane of glass solution, it provides comprehensive monitoring across our entire stack, from host systems to containers and even the cloud platform. This has streamlined our SecOps processes, allowing us to proactively manage risks and respond to threats more efficiently.

  ### 7. Fantastic platform to understand our environment and manage our risks.

**Rating:** 5.0/5.0 stars

**Reviewed by:** Gregory G. | Mid-Market (51-1000 emp.)

**Reviewed Date:** July 06, 2023

**What do you like best about FortiCNAPP?**

As a 100% cloud-native SaaS-based software company with a global reach, we rely on Lacework to understand and manage our workloads, security posture, and vulnerabilities throughout our enterprise. Lacework helps us meet our operational, security and compliance goals with a rich feature set that can dynamically adjust to our ever-changing requirements. Lacework stands above with superior customer support and an ever-expanding feature set. We are happy customers.

**What do you dislike about FortiCNAPP?**

While integration with 3rd party monitoring tools is available, I'd like the ability to forward more of the raw data. Improving these capabilities would simplify the overall management of our environment and reduce the need to ingest redundant data into other monitoring tools like our SIEM.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework provides a single pane of glass for numerous use cases within our DevOps and SecOps teams. By supporting multiple cloud providers, we can simplify monitoring our production workloads. This multi-cloud support lets us speed up the onboarding of newly-acquired companies. It's one less thing to worry about. The analysis provided is actionable and timely, whether derived from event-driven conditions or identified vulnerabilities. They update their content frequently and can help identify and manage emerging threats. We are incredibly excited about the upcoming availability of static code analysis since this will help us simplify our toolset. The tool is flexible, allowing us to ensure our dynamic and ephemeral workloads are continuously monitored. Bottom line: they understand the cloud. They understand our needs. They help reduce our risk.

  ### 8. Increasing risk exposure awareness and control with minimal effort

**Rating:** 5.0/5.0 stars

**Reviewed by:** Vlad B. | Chief Technology Officer, Small-Business (50 or fewer emp.)

**Reviewed Date:** October 09, 2023

**What do you like best about FortiCNAPP?**

Having a centralized platform to address all cloud security concerns is invaluable. I'm particularly impressed with the rapid rollout of new features. Lacework provides a comprehensive view of our internal environment and proactively prompts us to address potential security issues with its top-notch alerting system.
Integrating Lacework into our system was seamless. Setting up their agents across our cloud environments was straightforward.
While the ever-expanding capabilities of the platform can be a tad overwhelming, Lacework's exceptional customer support ensures we're always current and can maximize the benefits of their latest features.

**What do you dislike about FortiCNAPP?**

The price might be a bit steep for smaller companies. Even though you get a lot for what you pay, and I fully understand why they charge what they do because of the top-tier support, it'd be cool if they had some more affordable plans in the future. This way, even smaller teams with tight budgets could benefit from some of their awesome features. They really could help a lot of businesses stay safe out there.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework has allowed us to gain better control over our cloud security with minimal effort. After addressing the initial issues that were identified, we now rely on its excellent proactive alerting to stay current and minimize the risk of cybersecurity attacks.

  ### 9. Strong Security, But Takes Time to Master

**Rating:** 3.0/5.0 stars

**Reviewed by:** Verified User in Primary/Secondary Education | Enterprise (> 1000 emp.)

**Reviewed Date:** June 10, 2024

**What do you like best about FortiCNAPP?**

Covers all our cloud security needs, protecting from end to end.

**What do you dislike about FortiCNAPP?**

Learning Curve: Setting up and getting the hang of it can be tricky and time-consuming for some.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is solving the headache of keeping our cloud environment secure by automatically detecting threats and giving us clear insights into any security issues. This means we don't have to constantly monitor everything ourselves, freeing up our time.

  ### 10. Lacework - The Alerts you need, when you need them!

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Manufacturing | Mid-Market (51-1000 emp.)

**Reviewed Date:** October 05, 2023

**What do you like best about FortiCNAPP?**

The part of Lacework that I like the most is the cloud compliance portal. It is the part theat I use most often.
Being able to work towards compliance across multible standanrds in one single place is great!

The Customer support is amazing. I can get answers to my questions even if they are not explicitly related to Lacework.

It is extremly easy to integrate with your current stack. I would reccomend using Terraform. But if you don't want to the Python SDK makes it easy to implement new solutions programtically.

**What do you dislike about FortiCNAPP?**

I think it would be nice if you could create out own reporting danshboards that could go back months in time. This would be nice to show to the higher-ups so that they can see the improvments that have happened.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is solving many problems for us. 
They act as a single pane of glass that allows us to see where we stand in our cloud along with getting alerts on any pressing issues that might come up.
In essence, they help improve the insight you have on what is going on in your cloud.

  ### 11. New visibility and insights into our cloud environment with Lacework

**Rating:** 5.0/5.0 stars

**Reviewed by:** Jake J. | Enterprise (> 1000 emp.)

**Reviewed Date:** October 05, 2023

**What do you like best about FortiCNAPP?**

Lacework was extremely easy to deploy and immediately provided exceptional value. One of our organization's largest pain points was our lack of visibility into our cloud environments. Once we deployed Lacework we immediately discovered services and host vulnerabilities we were unaware of. These insights allowed us to quickly identify our highest-risk areas so we could focus on remediation and mitigations in areas that would have the most impact. 
On the few occasions we've had technical issues, we've been able to quickly resolve them due to Lacework's tremendous customer support organization. They are the first vendor we've worked with that hosts regular office hours with technical experts who can work to resolve just about any issue.

**What do you dislike about FortiCNAPP?**

Due to the huge amount of data and features in Lacework, sometimes navigating the platform can be a little cumbersome. It took a little longer than expected to understand the best process for getting the most out of the platform.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework solves the problem of a complex cloud environment. We now have incredible insight into our security posture in our cloud environment and can work to prioritize remediation or mitigation plans for high-risk areas. Lacework allows us to dedicate our efforts to areas that will have the most benefit for our organization.

  ### 12. Lacework provides full guidance to implement best practices on your cloud infrastracture

**Rating:** 4.5/5.0 stars

**Reviewed by:** Gerard P. | Enterprise (> 1000 emp.)

**Reviewed Date:** November 08, 2023

**What do you like best about FortiCNAPP?**

The possibility to choose different frameworks to evaluate your cloud infrastructure as well as the possibility to make policy exception based on subscriptions.

**What do you dislike about FortiCNAPP?**

I miss the capability to export report all at one time. I have to go policy by policy in order to get the report for all the affected subscriptions.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is constantly checking for cloud infrastructure missconfiguration in our Azure environment, warning us whenever there is a policy that we are not compliying in any of our Azure subscriptions. This help us to make more secure our cloud native applications.

  ### 13. Does what it says in the tin, and does it very well.

**Rating:** 4.5/5.0 stars

**Reviewed by:** Vas F. | Mid-Market (51-1000 emp.)

**Reviewed Date:** July 28, 2023

**What do you like best about FortiCNAPP?**

The compliance reporting that Lacework provides is a fantastic capability to measure current level of compliance both at AWS and K8S levels. The interface of the product is very intuitive, easy to use and has benn getting frequent updates on UX and new capabilities such as the attack path capability which gives great insights to top risks.

**What do you dislike about FortiCNAPP?**

Experiences some interface issues but these were relatively minor and mostly linked with rolling out of new features and capabilities. Detecting and reporting the use of open source libraries with questionable licencing in container images is not yet supported.

**What problems is FortiCNAPP solving and how is that benefiting you?**

At macro level Lacework helps solving governance and compliance auditing and reporting, at more day-to-day level Lacework is instrumental in proactively raising smart alerts for the DevOps team to investigate for possible security violations and incidents, without overwhelming them with a tsunami of alerts.

  ### 14. our work with Lacework has been amazing and has helped us in improving our security

**Rating:** 4.5/5.0 stars

**Reviewed by:** Nick A. | Small-Business (50 or fewer emp.)

**Reviewed Date:** February 05, 2024

**What do you like best about FortiCNAPP?**

the ease of use and identifying issues to work on

**What do you dislike about FortiCNAPP?**

sometimes, it feels like there are too many logs to deal with; I would love to see some automation or workflow improvement that can be used

**What problems is FortiCNAPP solving and how is that benefiting you?**

Improving our cloud compliance and security monitoring

**Official Response from Emily Chin:**

> Thank you for sharing your positive experience with Lacework. We're thrilled to hear that Lacework has been amazing for improving your security. We appreciate your feedback about the ease of use and identifying issues. We understand your concern about the volume of logs, and if you had any further insights to share, please reach out directly and I’d be happy to connect you with the team: emily.chin@lacework.net 

  ### 15. Lacework Review on Security

**Rating:** 4.5/5.0 stars

**Reviewed by:** BalaKrishna V. | Enterprise (> 1000 emp.)

**Reviewed Date:** July 03, 2023

**What do you like best about FortiCNAPP?**

It's very simple to install the agent on Linux and containers; Detect Vulnerabilities at containers level and node level on AWS/GCP Environment. Remediate and validate the Vulnerabilities; we do build containers only with necessary packages to cut down the vulnerabilities. Its helpful for us in reducing Infra cost as well as we do build our ami with only necessary packages.

**What do you dislike about FortiCNAPP?**

Lacework agent for windows environment is not working as expected; also its in very preliminary stage for windows env. We do have around 20% environment on windows compared to sccm reviews lacework is not working as expected for windows environment.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Make sure the container was built only with necessary packages and choose image with very minimal size to overcome vulnerabilities. Do provide access for limited user to over come security issue, and run application with limited access for users.

Node level security and cost of the infra has come down after we start utilizing Lacework as we noticed lot of unnecessary packages installed and running multiple unwanted services.

Main benefits are Size of containers/Node instance type we have choosen/ Cut down the Infra cost.

  ### 16. Wonderful toolset to increase security and compliance confidence

**Rating:** 5.0/5.0 stars

**Reviewed by:** Gavin W. | Site Reliability Engineer, Mid-Market (51-1000 emp.)

**Reviewed Date:** February 24, 2023

**What do you like best about FortiCNAPP?**

Lacework provides easy-to-digest security alerts and frequent compliance report updates to ensure that we can keep track of any unusual or unexpected activity in our Cloud Accounts. Adding Lacework has been key to achieving and maintaining our compliance goals with a lean DevOps team.

Lacework has allowed us to keep tabs on our cloud-compliance through some infrastructure projects, including achieving and maintaining SOC-2 Type 2 compliance.

**What do you dislike about FortiCNAPP?**

When digging into a specific compliance report, the UI can be cumbersome, especially if your environment spans multiple cloud accounts. This issue can be mitigated by setting your desired reports to be delivered periodically by email.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Identifying any Resources in our Cloud environments that are not compliant with best practices and/or industry standards. Ranking these by severity and highlighting the exact resources that are out of compliance makes resolutions much more efficient.

Being an extra pair of eyes' that is always watching our CloudTrail logs for abnormalities. Gives tremendous peace of mind to see alerts such as  'User "John" logged in from a different location than usual and did "Action" on the staging environment'.

  ### 17. SOlid log reduction tool

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** March 08, 2024

**What do you like best about FortiCNAPP?**

The number of eents needing actual review is dramatically smallered than otherwise. 
The vulnerability scoring is good though moving to fully annotate CVSS 4 wouldbe best. 
ADditional integrations are not hard.

**What do you dislike about FortiCNAPP?**

There can be overwhelmingi nformation. 
The success team time can run cash.  So thoughtful use requires planning.

**What problems is FortiCNAPP solving and how is that benefiting you?**

reducing the size of log streams flowingo utof AWs andinto our SEIM for MSSP analysis

  ### 18. Very impressive tool

**Rating:** 5.0/5.0 stars

**Reviewed by:** Mathews T. | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 29, 2023

**What do you like best about FortiCNAPP?**

A very easy to use impressive tool that helped us understand our security better and also helped with flagging potential flaws in our applications, we were able to identify security-related issues on our Cloud and applied recommendations that Lacework identified; we also are making use of it for our container security patching to address vulnerabilities associated with our images.

**What do you dislike about FortiCNAPP?**

None, easy-to use the tool. the tool as been made in a way that it is user friendly and the menus are easy to use including the documentation around the components and the ins of th eapp.

**What problems is FortiCNAPP solving and how is that benefiting you?**

By identifying flaws with our containers and recommending security practices on the app, we were able to identify the vulnerabilities associated with our images and use patching to fix them. Also, when it comes to cloud infrastructure, we were able to work on security as per Lacework's recommendations, and our infrastructure is looking much better.

  ### 19. Lacework frees me up to focus on what is important

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Primary/Secondary Education | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

The machine learning from existing workloads makes setting up lacework a breeze. The lacework team has been rock solid about helping me to identify potential vulnerabilities in the system as well as working to use their platform to the fullest.

**What do you dislike about FortiCNAPP?**

The documents for lacework are scattered, making it hard to self-learn how to get started on their platform. Their support team makes up for this though by being very quick and eager to help.

**What problems is FortiCNAPP solving and how is that benefiting you?**

When we went through a security audit with a third-party partner, lacework made it super simple to export the correct type of reports they were looking for as well as to identify the high-priority items that we needed to resolve to make sure we were fully aligned with our partners needs.

  ### 20. Lacework covers the entire cloud environment and takes minutes to deploy

**Rating:** 5.0/5.0 stars

**Reviewed by:** Paul G. | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 27, 2023

**What do you like best about FortiCNAPP?**

Lacework compliance monitoring allows you to align with any standard you wish.
The AI-powered behavioural analysis is very impressive.
The host agent is lightweight and plug-n-play in any environment.
The vulnerability management provides all of the information needed including fix versions for vulnerable packages.
The team at Lacework are extremely friendly, helpful and diligent!

**What do you dislike about FortiCNAPP?**

Writing custom policies currently is quite manual and requires reading some of the documentation. I look forward to seeing this new feature built out more and added to the UI.

**What problems is FortiCNAPP solving and how is that benefiting you?**

The lacework agent give us the ability to understand potential security events on a host, machine, application, user and process level, providing top-down monitoring while reducing false-positives by learning our environments normal behavior. This saves our security team time, to focus on new controls and improvements and avoid time-wasting false-positive alert triage. 

We have up to date cloud complaince posture visibility which give us peace of mind that our assets are configured security and continuously monitored for potential changes which may make them vulnerable. We can pull professional reports based on inustry standards to provide to our customers or management team to show our current cloud posture. This is extremely valuable!

  ### 21. A great platform that saves us hours every month

**Rating:** 5.0/5.0 stars

**Reviewed by:** Junior G. | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 27, 2023

**What do you like best about FortiCNAPP?**

This tool is a game-changer. Its fantastic alert system and easy-to-use interface save us hours each month. Generating reports is a breeze, and it helps us easily address prospects' security concerns. It's the perfect solution for anyone looking to streamline their cloud security process and focus on what matters - their product. Overall, highly recommended for anyone looking to optimize their workflow and ensure their cloud infra is secure.

**What do you dislike about FortiCNAPP?**

Initially, the platform does not demand any configuration, but during the learning phase from your platform, there might be a few false positives. Nonetheless, the Lacework team's consistent support lessened the impact of this drawback. You should expect a transition period while implementing the solution, but it is ultimately a beneficial tool.

**What problems is FortiCNAPP solving and how is that benefiting you?**

At our company, we rely on Lacework to produce compliance reports for our customers during security assessments and due diligences. With Lacework's capability to detect any unusual behaviour, we can focus our attention on improving our platform, knowing that we will be alerted if anything needs our immediate attention.

  ### 22. Pleasantly surprised

**Rating:** 4.5/5.0 stars

**Reviewed by:** Inigo V. | Enterprise (> 1000 emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

I find it a really intuitive, easy-to-go tool. Easy to deploy, integrate, learn and navigate through it. Its ML based system really works, we received really few false positives. It covers all hour current needs.

**What do you dislike about FortiCNAPP?**

Lacework really will cover 80-90% of companies' needs, but for really mature environments with very advance need s maybe Lacework still lacks of some advanced functionalities such as proactive remediation.

**What problems is FortiCNAPP solving and how is that benefiting you?**

It helped us integrated all our cloud security tools in a single one, as well as reducing costs.

  ### 23. Lacework = Cloud Security

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.)

**Reviewed Date:** May 23, 2023

**What do you like best about FortiCNAPP?**

Lacework gives us the visibility we require to maintain and improve the security of our SaaS platform. Lacework's alerts are high fidelity, low noise, and highly reliable.

**What do you dislike about FortiCNAPP?**

Lacework's UI isn't immediately intuitive and could use some work.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework gives us visibility into many vital areas of our platform that we otherwise wouldn't have. We must be alerted about cloud user activity and workload user/process/network activity. Without that visibility, our cloud security program would have significant gaps. The automation that Lacework facilities with its native integrations, as well as its highly mature APIs, allow us to automate every single alert they create. Lacework has also allowed us to integrate security testing into many stages of our SDLC, giving us control over what can be pushed to production, given any security concerns that Lacework notices.

  ### 24. Great security platform with outstanding after sale support

**Rating:** 5.0/5.0 stars

**Reviewed by:** Alberto S. | H, Mid-Market (51-1000 emp.)

**Reviewed Date:** August 09, 2023

**What do you like best about FortiCNAPP?**

I like how humanized they are. The platform is great but the support we received from their after sales team (a.k.a implementation team) was outstanding. Many other competitors make you buy and then leave you and your team on your own. Lacework really cares about your success.

**What do you dislike about FortiCNAPP?**

Nothing in particular but I recommend other leaders to have focus. Lacework platform can find a lot of security risks in your product. You chose what needs to be fixed first. You own your roadmap and what is important to your businesses.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is helping Lawnstarter to become more secure every day. Lacework reduces the noise allowing the team to be more efficient. Lacework alerts us on new vulnerabilities shifting security to the left.

  ### 25. Mixed experience with Lacework

**Rating:** 3.5/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

Lacework is a comprehensive cloud security solution that provides advanced threat detection and automated compliance management. The platform offers a wide range of security features such as intrusion detection, vulnerability assessment, and compliance monitoring. Lacework provides excellent visibility into security events and alerts, helping to identify and remediate security issues quickly. I appreciate the detailed reporting and analytics that Lacework provides, which help me to make informed decisions about my cloud security posture.

**What do you dislike about FortiCNAPP?**

My experience with Lacework has been mixed. While I appreciate the platform's robust security and compliance features, I found that it does not integrate seamlessly with AWS Security Hub and other AWS compliance tools. This makes it challenging to manage security across both AWS and Lacework environments. Additionally, the Kubernetes cluster support integration was delayed, and the "Soon" status message was vague and unhelpful.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is solving the problem of cloud security by providing advanced threat detection and automated compliance management. By using Lacework, I can be confident that my cloud environment is secure and meets compliance standards. Lacework offers a wide range of security features such as vulnerability assessment, intrusion detection, and compliance monitoring. This helps me to prevent and detect security threats before they become major issues. 

Lacework provides detailed reporting and analytics that help me to stay on top of cloud security events and alerts. This enables me to manage security incidents quickly, efficiently, and minimizes the impact of potential security breaches. Additionally, Lacework provides a centralized platform and a single-pane-of-glass view into my security posture across multiple cloud environments. 

Lacework's cloud security solution is beneficial to me as it helps to ensure that my cloud environment is secure, compliant, and free from data breaches. By automating tasks such as compliance, threat detection, and incident response, Lacework helps me to save time and resources while also improving my overall security posture.

  ### 26. Lacework reduces the Barriers to Success when tackling the Complexities of Cloud Security

**Rating:** 5.0/5.0 stars

**Reviewed by:** J. David C. | Vice President I Chief Information Security Officer , Mid-Market (51-1000 emp.)

**Reviewed Date:** May 24, 2023

**What do you like best about FortiCNAPP?**

Lacework normalizes visibility in the cloud, promoting better detection and response in a complex and constantly evolving threat landscape.  Seeing value immediately after deployment is a significant advantage of the Lacework Platform.  This immediate ROI allows even the most inexperienced members of a security team to be an active part of addressing cloud security risks.  Lacework is also a true hybrid cloud security platform, allowing organizations to follow the migration lifecycle from on-prem to the cloud, maintaining visibility throughout the entire journey.  In addition, with the numerous integrations that Lacework provides, security teams gain full A-to-Z visibility across the whole technology stack, providing the breadth and depth of telemetry data that is needed to successfully address cloud environments.

**What do you dislike about FortiCNAPP?**

My only issue with the platform is the lack of a custom reporting capability and the need to augment this gap with other tools like a SIEM.  While this isn't a show-stopper or an attribute that would diminish the overall value the platform provides, it can be challenging when trying to focus on extracting information that meet specific needs.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Eliminating the systemic signal-to-noise problem in cloud environments, providing relevant and actionable events without the considerable overhead of approaching this with traditional techniques.  Lacework has allowed security teams with little to no experience in the cloud the ability to apply security principles while also educating them on the various technology relationships that only exist in the cloud that pose new security risks to the business.

  ### 27. Fantastic mutli-dimensional product

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Gambling & Casinos | Enterprise (> 1000 emp.)

**Reviewed Date:** August 21, 2023

**What do you like best about FortiCNAPP?**

Lacework's user behavioral analytics alerts are very accurate right out of the box.  We have had to do almost no tuning of the product.  Other competitive solutions have required us to enable/disable rules for weeks before it was effective in production, but Lacework provided us actionable intelligence right away.

**What do you dislike about FortiCNAPP?**

The user interface can be somewhat confusing, especially when it come to compliance reporting for the cloud security posture management functions.  More streamlined menus and easier access to reports would be very helpful.  Also, more granular control of permissions inside the console to grant access to auditors/executives would be a useful feature, as well as widget customization.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework has given us enhanced visibility and advanced analytics into the activities in our cloud environments.  Thanks to the extemely precise alerting, we do not spend time triaging alerts unncessarily that turn out to be false positives.

  ### 28. Cloud Security Confidence with Lacework

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Marketing and Advertising | Enterprise (> 1000 emp.)

**Reviewed Date:** August 02, 2023

**What do you like best about FortiCNAPP?**

A game-changer is Lacework's ability to neatly separate the issues of cloud security. Its AI-powered threat detection is equivalent to having a 24/7 cyberdetective on staff. It is nothing short of amazing how it examines behavioural patterns to find even the most subtle irregularities. Lacework's vigilant eyes have got my back, protecting me from potential data breaches and alerting me to any unauthorised access attempts .

The automated compliance prowess of Lacework is one element that truly sets it apart. It can be difficult to keep up with the constantly changing regulatory environment. But lacework uses its magic wand to make sure that my cloud arrangements always adhere to accepted practises.

**What do you dislike about FortiCNAPP?**

My experience with Lacework has been mostly positive; however, I must admit that sometimes it can seem a little too positive about security. A little bit of customization in the alerting system might be just what's needed to strike the ideal balance between rigorous security and a calmer notification experience.

Furthermore, Lacework's attentiveness to detail sometimes pushes me even while acceptable cloud experiments continue, since I love the challenge of investigation.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Cloud Compliance: By proactively discovering and helping me fix misconfigurations, Lacework's automated compliance engine ensures ongoing conformity with industry standards. The danger of non-compliance is reduced by this feature, which allows compliance audits.
Monitoring and analytics for cloud security: Lacework's AI-powered threat detection keeps track of our cloud environments in real-time, analyses behavioural trends, and spots abnormalities that can point to security flaws. A quick response to suspected threats is made possible by its powerful analytics, which also improves our overall cloud security.

  ### 29. Very satisfied. Covers many solutions

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 10, 2023

**What do you like best about FortiCNAPP?**

I've only had to talk to support once and the attention has been excellent, they saw a UX problem and in 4 months they implemented it, few products do that. The creation of customized policies and reports is a plus.

**What do you dislike about FortiCNAPP?**

Many CLI options are not available in the web console (e.g., deleting or editing queries or creating custom reports). Better control of API Keys is needed, such as knowing when they were last used. Very basic FIM.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Automatic scanning for compliance with CIS and internal policies. Automatic scanning for compliance with CIS and internal policies. Alerts related to infrastructure anomalies.

  ### 30. Seamless and impactful CSPM, saving us time & money

**Rating:** 4.5/5.0 stars

**Reviewed by:** Arran R. | Security, Mid-Market (51-1000 emp.)

**Reviewed Date:** July 12, 2023

**What do you like best about FortiCNAPP?**

Excellent documentation & support for automating the deployment of Lacework via Terraform, which made it extremely easy to get up & running. The value was almost instant - Lacework drastically improved our signal to noise ratio & gave us insights into areas that we hadn't considered, enhancing our awareness & information clarity.

**What do you dislike about FortiCNAPP?**

I'd really like to have a Compliance section for Hosts (like we do for Cloud & Kubernetes), where we can use the Lacework Agent to run compliance scans. I'd also like the ability to export SBOMs, in SPDX/CycloneDX format.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Greately reducing the complexity & cost of managing  security event monitoring, vulnerability management and compliance of our cloud environment. Without Lacework this would have taken years & a lot of headaches.

  ### 31. Good tool with AI/ML capabilities

**Rating:** 4.0/5.0 stars

**Reviewed by:** Shreyans J. | Site Reliability Engineer, Mid-Market (51-1000 emp.)

**Reviewed Date:** July 17, 2023

**What do you like best about FortiCNAPP?**

The best thing about lacework is the AI/ML algorithm which complements the polygraphs giving a very good attack vector pattern to analyze how the traffic flows in your infrastructure.
This gives a better understanding about the flow as well as helps to easily identify how deep an attacker penetrated/point of attack.

**What do you dislike about FortiCNAPP?**

Lacework should try to improve on how they provide near-real time alerting for the incidents and how fast they can analyze the data and generate the dashboard .

**What problems is FortiCNAPP solving and how is that benefiting you?**

We are able to monitor our cloud security posture for all the cloud accounts at a single centralized place. With the help of AI/ML, we are also able to analyze the attack vectors and take necesarry security measures.

  ### 32. Lacework will be the leading CSPM in the coming years

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

Anomaly detection and Compliance with Benchmarks.

**What do you dislike about FortiCNAPP?**

Alert detection delay and format of the alerts.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework helps us to detect any anomaly in our infrastructure, being able to react fastly to them. Also we can ensure compliance with some CIS benchmarks.

  ### 33. Application protection in the cloud using AI to bubble up important events

**Rating:** 4.5/5.0 stars

**Reviewed by:** Michael P. | Mid-Market (51-1000 emp.)

**Reviewed Date:** October 06, 2023

**What do you like best about FortiCNAPP?**

An easy tool to setup to weed out noise of security alerts.

**What do you dislike about FortiCNAPP?**

Recent changes to using VCPU pricing could make it expensive.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework has helped us have piece of mind in regards to activties in our production environment.  We don't have to worry about as much noise as the important risky alerts get posted to us instead of common behaviors. It has also helped us with following recommendations for security practices across multiple clouds.

  ### 34. Lacework Oh How Do I Love Thee!

**Rating:** 4.0/5.0 stars

**Reviewed by:** Jeffrey M. | Senior Security Engineer, Mid-Market (51-1000 emp.)

**Reviewed Date:** February 14, 2023

**What do you like best about FortiCNAPP?**

Lacework has been my goto for any Cloud Security needs!  It integrates well with all the cloud hosting companies and is easy to navigate.

**What do you dislike about FortiCNAPP?**

Nothing at all, Lacework has been just hands down solid.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework has solved the need to jump to cloud to cloud for review for any security/compliance issues.

  ### 35. Delivers right information at the right time!!

**Rating:** 5.0/5.0 stars

**Reviewed by:** Jay R. | Mid-Market (51-1000 emp.)

**Reviewed Date:** July 17, 2023

**What do you like best about FortiCNAPP?**

We have been working with Lacework for more than 2 years now. Lacework has delivered value from day 1; We used their dashboards to visualise and promote the tool internally to non-technical teams and Steakholders.

Techinical teams love it because 
* it was easy to deploy (15-20 mins first try!!!)
* Sends the right alerts with good context at the right time (No need to monitor dashboards 24x7)
* Dashboards abstract a lot of information and present just what's needed with the ability to dig deep
* Automation and plugins with Slack and Jira make it easier to manage investigatins
* Complience reports forms a nice todo list for devops to improve the infrastructure

Lacework is best in class product.

**What do you dislike about FortiCNAPP?**

not much to add here. Lacework has prioritised all important aspacts.

**What problems is FortiCNAPP solving and how is that benefiting you?**

24x7 monitoring and alerting of our infrastructure, scanning the aws resources for compliance, network monitoring for unusual traffic, checking resource versions against CVE

  ### 36. Comprehensive platform for cloud security and compliance

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** July 14, 2023

**What do you like best about FortiCNAPP?**

Lacework is really easy to integrate, with various different deployment strategies (i.e. Terraform, CloudFormation), and covers all aspects of cloud security monitoring. For our AWS deployment, Lacework analyses CloudTrail logs and alerts on anomalous behaviour. The compliance management function has a large number of pre-defined policies which are aligned to standards such as SOC 2, NIST CSF and others.

Data is accessible in an easy to use portal as well as via CLI, API, and integrations with tools including Jira, Slack and PagerDuty. Container images are scanned for vulnerabilities - again, with a few different options for integration. Lacework's agent also gives great visibility into the runtime behaviour on hosts and within containers, facilitating deep-dive investigations. Overall, Lacework offers a comprehensive set of features, making it a great choice for a cloud security platform.

**What do you dislike about FortiCNAPP?**

There is a bit of a learning curve with LQL (the query language that Lacework runs on for policy definition), although it's now possible to view queries defined as part of default policies, so there are a number of examples to refer to.

Alerts can sometimes be a little noisy with false positives.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework provides a single location for us to monitor our cloud security posture and perform investigations when required. The compliance features identify any resources that deviate from the standards we expect, which allows us to follow up and remediate. Runtime/workload capabilities provide insight into application/host/container behaviour and identifies anomalies. To summarise, the benefit for us of using Lacework is holistic visibility and threat detection across our cloud environment.

  ### 37. The Team at Lacework Has Been Super Supportive with The Information, Training and Knowledge Sharing.

**Rating:** 5.0/5.0 stars

**Reviewed by:** Cardell G. | Mid-Market (51-1000 emp.)

**Reviewed Date:** September 14, 2023

**What do you like best about FortiCNAPP?**

With the advent of using Slack Workspace, having the accessibility to reach out directly to our team always results in an immediate response. Furthermore, we have an on-going Monthly touch base via Zoom to ensure that our goals and priorities are meet. With this much attention, as a customer I’m extremely happy to know that our interest, security, and clients are at the best of heart.

**What do you dislike about FortiCNAPP?**

I don’t have anything that I currently dislike. My full introduction to the Security side of IT have been a wonderful journey, especially when you’re working with a team such as Lacework.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is solving a multitude of issues for my company which benefits us in every way possible related to their services.

  ### 38. Good so far

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

It really helpd to deep dive into container processes and their securities risks. We're using AWS ECR, and it's very easy setup with few additional commands to run Lacework agent. Last use case - we were trying to find how much memory each process in container is using, and Lacework helped to do that

**What do you dislike about FortiCNAPP?**

The dashboard and search could be improved. Some information is container withing agent (like processes), some within container or machine information, and it's not really possible to easily navigate between them (unless I'm missing something)

**What problems is FortiCNAPP solving and how is that benefiting you?**

Protecting from security vulnerabilities

  ### 39. Lacework review

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** October 09, 2023

**What do you like best about FortiCNAPP?**

Lacework is fantastic from both the security software aspect as well as the partnership they provide via customer support and other channels. They act as an extension of my security team.

The initial implementaion was completed in a morning. Integrating it into existing environments and environments that were created after we started using it was very easy.

It is easy to use, and has valuable features, including Jira integration which allows early and frequent updates of any outstanding issue.

**What do you dislike about FortiCNAPP?**

There is nothing to dislike. The product and service are fantastic.

**What problems is FortiCNAPP solving and how is that benefiting you?**

The primary business case for Lacework is to simplify our SOC reporting processes

  ### 40. Lacework for Vulnerability Management

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Apparel & Fashion | Enterprise (> 1000 emp.)

**Reviewed Date:** June 28, 2023

**What do you like best about FortiCNAPP?**

Excellent support and turnaround times for features, requests, and general guidance. Strong technical knowledge of the tool, its'  benefits, and continuous check-ins.

**What do you dislike about FortiCNAPP?**

The portal and UI may take a while to load due to the extensiveness of the polygraph feature, and the amount of info displayed on a page can overwhelm the browser.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Managing vulnerabilities in container images that are active in the environment, and alerting on potential threats and suspicious behavior across the environment in non-container machines and other hosts. Widespread usage for alerting mechanisms and integrating continuous monitoring.

  ### 41. It just makes my work easier

**Rating:** 4.5/5.0 stars

**Reviewed by:** Alberto M. | Networking and Security Specialist, Mid-Market (51-1000 emp.)

**Reviewed Date:** May 18, 2022

**What do you like best about FortiCNAPP?**

Just the fact that I can have Infrastructure as Code Security, Vulnerability Management and Posture and Compliance in one single console makes my job easier as we can take faster decisions when time is critical.

**What do you dislike about FortiCNAPP?**

So far I haven't found issues in the product, but for sure I'll find something in the future. Installation that it's usually one of the downsides of getting new security products was in fact pretty simple.

**What problems is FortiCNAPP solving and how is that benefiting you?**

We rapidly identify issues related to vulnerabilities, compliance and especially when we are attacked, even when we scan our entire cloud infrastructure, in several cloud accounts.

  ### 42. Lacework is a cyber security Swiss army knife

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Marketing and Advertising | Mid-Market (51-1000 emp.)

**Reviewed Date:** April 13, 2023

**What do you like best about FortiCNAPP?**

Threat intelligence and machine learning have improved significantly in our environment over the past 2 years and now we only receive around 5 alerts a week from the IR side. False positives have dropped down as well from external network connection alerts, which have been vastly improved as well. The who, what, why, when dossiers are instrumental for a security analyst to quickly gauge what is happening in the environment. The compliance and alert rules are vast and provide much better detection capabilities than something like Guard Duty.

**What do you dislike about FortiCNAPP?**

The new UI in my opinion is a step back and I prefer a full-screen view of events instead of the left 1/4 of the screen real estate not being used. Compared to some competitors, Lacework is somewhat of a black box and lacks further visibility that other tools provide. The individual dossiers are very slow to load at times and do not provide any data at all in some cases. Detection is not real-time and instantaneous compared to other tools. We are still seeing 0byte network connections in dossiers which we have reported on for years and this has still not been fixed.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework has helped us clean up our container vulnerability remediation process. It makes it easy to know what our highest-risk containers that need to be remediated as soon as possible. It has also been instrumental in detecting reconnaissance and is a great high-level tool for viewing IOCs and IOAs. It is a critical part of our IR process and has really helped us solve the classic security issue of alert fatigue.

  ### 43. Making the world a more secure place

**Rating:** 5.0/5.0 stars

**Reviewed by:** John S. | Enterprise (> 1000 emp.)

**Reviewed Date:** May 19, 2023

**What do you like best about FortiCNAPP?**

Everybody involved wants not just what's best for themselves and/or customers, but for everybody.

**What do you dislike about FortiCNAPP?**

This reality still has something called "time" - and getting new features involve investing this "time" in it, and somehow Lacework still hasn't found a solution to that. Hoping they invent time travel soon.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Visibility in what's happening in our cloud environments. In every way you can think of.

  ### 44. Lacework is easy to use and provides valuable insight

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.)

**Reviewed Date:** October 11, 2023

**What do you like best about FortiCNAPP?**

I like the wealth of information I have. Everything is accessable through the API too which makes it amazing for analyzing data using our own tools like Tableau.

**What do you dislike about FortiCNAPP?**

The UI can be clunky and unintuitive at times. All the data I need is there but can be hard to access to understand.

**What problems is FortiCNAPP solving and how is that benefiting you?**

We have many machines spanning many accouunts spanning a few cloud platforms and Lacework is compatable with all fo them and provides insights all in one place. In addition we have many containers and images running through our enviroment which Lacework is able to scan.

  ### 45. Powerful Tool to Manage Cloud Security

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Leisure, Travel & Tourism | Enterprise (> 1000 emp.)

**Reviewed Date:** August 02, 2023

**What do you like best about FortiCNAPP?**

AI/ML data aggregation to anyalyse huge amount of data to derive actionable insights, helps detect advanced cyber attacks quickly with a lot of context to proceed. Helps manage host and containers vulnerability management, CIEM is a powerfull feature to get started with priciple of least privileges, their flexibility with integratoin to various alert systems is good.

**What do you dislike about FortiCNAPP?**

Lacework tools lacks to provide opion orianted insights based on the industry trend, the tool should start prompting orgarnisations with opion orianted dashboards, reports on the areas where the focus is required.
They collect a lot of info, but lack in presenting all of it with dahsboards and graphs.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Cloud security monitoring across hundrends AWS accounts with minimum human resource involvement.
Container and Hosts vulnerability management with shift left focus.
Cloud IAM management

  ### 46. One of the best CNAPP tools out in the market!

**Rating:** 5.0/5.0 stars

**Reviewed by:** Kevin M. | Director of Cloud Operations, Mid-Market (51-1000 emp.)

**Reviewed Date:** May 16, 2023

**What do you like best about FortiCNAPP?**

Lacework has been vital in protecting our environment and giving us visibility across all domains. I like how Lacework gives you a quick summary of an alert that was recently fired. If I need to dig deeper, the dashboard with all the 5 W's, Why, When, Who, What, and Where is super beneficial too!

**What do you dislike about FortiCNAPP?**

Coming up with something which I dislike about Lacework was a bit difficult, but if I had to say one thing, it would be to have more support for Bottlerocket, but I know it is on their roadmap.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is helping with a lot for our cloud environments. To name a few this includes compliance, security scanning, security monitoring, container security, and anomaly detection. Overall it gives us total visibility of our cloud environments.

  ### 47. Straight to the point, valuable visibility

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Banking | Mid-Market (51-1000 emp.)

**Reviewed Date:** September 28, 2022

**What do you like best about FortiCNAPP?**

Lacework provides valuable visibility regarding activities occuring in our environment to help detect malicious interactions that might be happening.

Lacework goes beyond and offers container security, and is a great asset overall for a cloud infrastructure.
Detailed logging and reporting regarding Network and Internal Anomalies.

Valuable vulnerability management visibility inside Containers & Hosts

**What do you dislike about FortiCNAPP?**

I do not dislike anything at the moment. I would like a cleaner filtering system for container vulnerabilities, but the current state is not bad.

No response capabilities

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework helps provide visibility and acts well as an IDS. On top of everything, it helps us keep an eye on outdated components within our hosts/containers.

Their alert policies are clear and also offer compliance checks.

  ### 48. Achieve Compliance

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Food Production | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 09, 2023

**What do you like best about FortiCNAPP?**

The ability to verify compliance with security standards using Lacework reports.

**What do you dislike about FortiCNAPP?**

Most of the time, I don't know why an alert is a real risk. I mean, how can someone exploit a specific alert to attack my cloud resources?

**What problems is FortiCNAPP solving and how is that benefiting you?**

1 - Lacework is helping me achieve compliance, a requirement in various client contracts.
2 - Lacework alerts me when something unusual happens in the cloud.
3 - Lacework helped me identify insecure areas in my cloud infrastructure.

  ### 49. C&R Software Lacework Review

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** January 29, 2024

**What do you like best about FortiCNAPP?**

Initially, I would have to say the Delivery Team. Lacework went through great efforts to get C&R off the ground.

**What do you dislike about FortiCNAPP?**

I really cannot think of anything I dislike about Lacework.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework solved our Cloud Security Posture

**Official Response from Emily Chin:**

> Thanks so much for your review of Lacework. We're thrilled to know our Delivery Team met your expectations and that you've experienced a smooth journey with us.If we can assist with anything in the future, you can connect with me directly by email: emily.chin@lacework.net

  ### 50. Improving the security of production easily

**Rating:** 5.0/5.0 stars

**Reviewed by:** Alejandro  G. | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 06, 2023

**What do you like best about FortiCNAPP?**

The services the product offers and also the support team behind the product. Finally, how easy is to implement and integrate with our system.

**What do you dislike about FortiCNAPP?**

By now, I didn't find anything that dislike me.

**What problems is FortiCNAPP solving and how is that benefiting you?**

CVE scanning and security audit


## FortiCNAPP Discussions
  - [What is in the pipeline for Lacework?](https://www.g2.com/discussions/24342-what-is-in-the-pipeline-for-lacework) - 2 comments, 1 upvote
  - [Is lacework a SIEM?](https://www.g2.com/discussions/is-lacework-a-siem) - 1 comment

- [View FortiCNAPP pricing details and edition comparison](https://www.g2.com/products/forticnapp/reviews?page=2&section=pricing&secure%5Bexpires_at%5D=2026-07-17+06%3A39%3A22+-0500&secure%5Bsession_id%5D=64056b32-adb9-4f84-9773-c7f057e99567&secure%5Btoken%5D=7af05068a0f3c18c8076165e69de060571bc3a303a362794cdcedde2362ec7fd&format=llm_user)
## FortiCNAPP Integrations
  - [AWS Bedrock](https://www.g2.com/products/aws-bedrock/reviews)
  - [AWS CloudTrail](https://www.g2.com/products/aws-cloudtrail/reviews)
  - [AWS Security Hub](https://www.g2.com/products/aws-security-hub/reviews)
  - [Azure Kubernetes Service (AKS)](https://www.g2.com/products/azure-kubernetes-service-aks/reviews)
  - [Google Anthos Service Mesh](https://www.g2.com/products/google-anthos-service-mesh/reviews)
  - [Google Kubernetes Engine (GKE)](https://www.g2.com/products/google-kubernetes-engine-gke/reviews)

## FortiCNAPP Features
**Management**
- Dashboards and Reports
- Workflow Management
- Administration Console

**Administration**
- Risk Scoring
- Security Auditing
- Configuration Management

**Security**
- Compliance Monitoring
- Anomoly Detection
- Cloud Gap Analytics

**Configuration**
- Configuration Monitoring
- Unified Policy Management
- Adaptive Access Control
- API / Integrations

**Access control - Cloud Infrastructure Entitlement Management (CIEM)**
- Policy Management
- Fine-Grained Access Control
- Role-Based Access Control (RBAC)
- AI-driven access control

**Security - Cloud-Native Application Protection Platform (CNAPP)**
- Workload and container security
- Threat detection and response
- DevSecOps Integrations
- Unified Visibility

**Cloud Visibility**
- Data Discovery
- Cloud Registry
- Cloud Gap Analytics

**Operations**
- Governance
- Logging and Reporting
- API / Integrations

**Monitoring**
- Continuous Image Assurance
- Behavior Monitoring

**Compliance**
- Governance
- Data Governance
- Sensitive Data Compliance

**Security**
- Compliance Monitoring
- Risk Analysis
- Reporting

**Visibility**
- Multicloud Visibility
- Asset Discovery

**Monitoring - Cloud Infrastructure Entitlement Management (CIEM)**
- Monitoring
- AI-based detection

**Artificial Intelligence - Cloud-Native Application Protection Platform (CNAPP)**
- Intelligent remediations and suggestions
- Risk prioritization
- Anomaly detection using machine learning

**Security**
- Data Security
- Security Auditing

**Security Controls **
- Anomaly Detection
- Security Auditing
- Cloud Gap Analytics

**Protection**
- Dynamic Image Scanning
- Runtime Protection

**Administration**
- Policy Enforcement
- Auditing
- Workflow Management

**Administration**
- Security Integration
- Multicloud Visibility

**Vulnerability Management**
- Threat Hunting
- Vulnerability Scanning
- Vulnerability Intelligence
- Risk-Prioritization

**Auditing - Cloud Infrastructure Entitlement Management (CIEM)**
- Visibility
- Compliance Reporting

**Cloud Configuration Management - Cloud-Native Application Protection Platform (CNAPP)**
- Multi-cloud visibility
- Cloud Security Posture Management (CSPM)

**Identity**
- Governance
- User Analytics

**Agentic AI - Cloud Security Monitoring and Analytics**
- Autonomous Task Execution
- Proactive Assistance
- Decision Making

**Agentic AI - Cloud-Native Application Protection Platform (CNAPP)**
- Autonomous Task Execution
- Adaptive Learning

## Top FortiCNAPP Alternatives
  - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (822 reviews)
  - [Orca Security](https://www.g2.com/products/orca-security/reviews) - 4.7/5.0 (300 reviews)
  - [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews) - 4.8/5.0 (110 reviews)

