---
title: FortiCNAPP Reviews
meta_title: 'FortiCNAPP Reviews 2026: Details, Pricing, & Features | G2'
meta_description: Filter 386 reviews by the users' company size, role or industry
  to find out how FortiCNAPP works for a business like yours.
aggregate_rating:
  rating_value: 4.4
  review_count: 386
  scale: '5'
date_modified: '2026-07-17'
parent_category:
  name: Cloud Security
  url: https://www.g2.com/categories/cloud-security
---

# FortiCNAPP Reviews
**Vendor:** Fortinet  
**Category:** [Cloud-Native Application Protection Platform (CNAPP)](https://www.g2.com/categories/cloud-native-application-protection-platform-cnapp)  
**Average Rating:** 4.4/5.0  
**Total Reviews:** 386
## About FortiCNAPP
FortiCNAPP (formerly Lacework) is an AI-powered Cloud-Native Application Protection Platform that delivers unified security across your multi-cloud and hybrid environments. Built to protect the entire application lifecycle—from development to runtime—it combines posture management, workload protection, identity security, and threat detection into one integrated platform. By leveraging machine learning and behavioral analytics, FortiCNAPP helps security teams detect unknown threats, reduce noise, and accelerate response. Integrated with the Fortinet Security Fabric, it provides full-stack visibility across cloud, network, and endpoint environments—empowering teams to operate with confidence, reduce complexity, and scale securely.



## FortiCNAPP Pros & Cons
**What users like:**

- Users favor the **robust security features** of FortiCNAPP, ensuring comprehensive protection across multi-cloud environments. (8 reviews)
- Users value the **vulnerability detection capabilities** of FortiCNAPP, enhancing security monitoring and deployment efficiency. (7 reviews)
- Users admire the **effective alerting for misconfigurations** and appreciate its seamless integration with Fortinet products. (6 reviews)
- Users value the **excellent visibility and integration** of FortiCNAPP, enhancing cloud security management effortlessly. (6 reviews)
- Users find Lacework FortiCNAPP&#39;s **ease of use** enhances their experience, making setup and navigation straightforward and efficient. (6 reviews)
- Monitoring (6 reviews)
- Vulnerability Management (6 reviews)
- Cloud Management (5 reviews)
- Compliance (5 reviews)
- Compliance Management (5 reviews)

**What users dislike:**

- Users find the **difficult setup** of FortiCNAPP challenging, particularly for those lacking cloud security expertise. (5 reviews)
- Users struggle with **poor documentation** , making setup and configuration difficult, particularly for new users. (5 reviews)
- Users find the **complex setup** challenging, particularly for new users without extensive cloud security knowledge. (4 reviews)
- Users find the **setup difficulty** of FortiCNAPP challenging due to complex configuration and insufficient documentation. (4 reviews)
- Users find the **complex configuration** challenging due to overwhelming features and insufficient documentation for newcomers. (3 reviews)
- Users find the **insufficient information** during initial setup and overwhelming data presentation challenging for new users. (3 reviews)
- Alert Overload (2 reviews)
- Users find Lacework FortiCNAPP&#39;s setup to be **complicated and overwhelming** , impacting initial productivity and efficiency. (2 reviews)
- Dashboard Issues (2 reviews)
- Difficult Configuration (2 reviews)

## FortiCNAPP Reviews
  ### 1. Easy to find and locate issues with numerous ways to filter threats

**Rating:** 3.5/5.0 stars

**Reviewed by:** Grant F. | Enterprise (> 1000 emp.)

**Reviewed Date:** October 06, 2023

**What do you like best about FortiCNAPP?**

Able to see lots of data without being overwhelmed with walls of texts and distracting information.

**What do you dislike about FortiCNAPP?**

While there is a tab about critical alerts on the dashboard, I would like an additional tabs for new and/or severe alerts occur.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Monitoring and alerting company funded projects to maintain security awareness for customer security.

  ### 2. Lacework a great tool that provides cloud security and visibility

**Rating:** 4.5/5.0 stars

**Reviewed by:** Job V. | Mid-Market (51-1000 emp.)

**Reviewed Date:** April 20, 2023

**What do you like best about FortiCNAPP?**

The most helpful thing about Lacework in our organization is that it gives developers and us insight in the protection and security of our cloud enviroment, which we previously didn't have. Within our organization we use different cloud enviroments and Lacework brings all of this together and we can give the responsibilities of our security standard to the developers. Is gives comprehensive cloud security, is easy to use and the onboarding of the different teams can easily be done.

**What do you dislike about FortiCNAPP?**

Lacework can be complex for some users / developers. Because it still requires a certain level of technical knowledge and expertise to be fully utilized.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework helped solve the problem of not having insight in our cloud environment within our organization. Furthermore, Lacework helped with identifying security threats and monitor the compliance of our cloud environments.

  ### 3. Clever Solution for Securing your Cloud Infrastructure

**Rating:** 5.0/5.0 stars

**Reviewed by:** Tulio B. | Enterprise (> 1000 emp.)

**Reviewed Date:** June 26, 2023

**What do you like best about FortiCNAPP?**

What I like most about Lacework is the wide variety of services offered to the customer. The CSPM section is very complete, offering rules that go beyond the Security Standards demand. The rule customization is effortless. Also, the Polygraph is a great way to have visibility of the EKS environment.

**What do you dislike about FortiCNAPP?**

The only negative point is the time range that the tool updates the CSPM alert status, which is 24h. The best scenario would be Lacework updating the alerts status in almost real-time, by analyzing Cloudtrail Log events. But I was told that this feature is being developed and will be launched by the end of this year.

**What problems is FortiCNAPP solving and how is that benefiting you?**

It helps the companies to have visibility of the environment, the most critical resources and how to fix them. It allows the security teams to take action when necessary, by giving recommendations.

  ### 4. 1 stop Cloud native SOC solution

**Rating:** 4.0/5.0 stars

**Reviewed by:** Siddarth G. | Cloud Operations Analyst ll, Enterprise (> 1000 emp.)

**Reviewed Date:** August 02, 2023

**What do you like best about FortiCNAPP?**

That it's running 24*7 and I don't need to run explicit scans.
We're deploying lacework agents as and when we spin up new servers and saves a lot of time and effort in managing huge infrastructure.

**What do you dislike about FortiCNAPP?**

Can't think of anything at this moment. We've been fixing most vulnerabilities using lacework .

**What problems is FortiCNAPP solving and how is that benefiting you?**

Let's me know the most critical vulnerabilities which needs to be tackled immediately and something which is of a lesser priority.

We're tracking our vulnerability nos going down after every maintenance window.

  ### 5. Lacework really enables security easily and quickly

**Rating:** 5.0/5.0 stars

**Reviewed by:** Tonino G. | Enterprise (> 1000 emp.)

**Reviewed Date:** May 19, 2023

**What do you like best about FortiCNAPP?**

Lacework's UI is a great place where you can see everything from Cloud security to agents installed.  This allows anyone to easily view and see how your posture is and how much work is needed.  Their tools and services around compliance is great and not to mention the vulnerability pages - which are enhanced by having agentless scanning

**What do you dislike about FortiCNAPP?**

The downside to Lacework is around agent management.  Not having an auto update for the agents mean we have to manually plan these in and it takes time and effort to accomplish

**What problems is FortiCNAPP solving and how is that benefiting you?**

Visibility of cloud security over all our cloud systems and accounts.  This allows us to see the compliance, and monitor our security posture in 1 place.  Simple and easy

  ### 6. Easy usage

**Rating:** 4.0/5.0 stars

**Reviewed by:** Gustavo N. | Enterprise (> 1000 emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

It is easy to view information on the platform and easy to take action based on priority.

**What do you dislike about FortiCNAPP?**

Reporting capabilities and historical reporting on previous vulnerabilities would be helpful.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Identifying vulnerabilities on diferent domains with legacy configurations.

  ### 7. Lacework review

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Retail | Mid-Market (51-1000 emp.)

**Reviewed Date:** May 10, 2023

**What do you like best about FortiCNAPP?**

I like that Lacework is in multiple cloud environments and performs better than cloud-native security products. I also like the direction that Lacework is building solutions for. The initiative to add Code Security is a major win for customers

**What do you dislike about FortiCNAPP?**

The UI should have an engineer or SOC analyst view, one that has fewer graphs and provide the ability to pivot on data easily. The UI should also have an expert mode to allow experienced threat hunters to find assets and threats easily. Also, have the ability to export to industry-standard formats

**What problems is FortiCNAPP solving and how is that benefiting you?**

The ability to have visibility across our cloud environments and understand our risk. The move to shift left while not burdening the developers with yet another tool is a major win. Consolidation of tools will help to reduce time to resolution for security events!

  ### 8. Comprehensive Cloud Security

**Rating:** 4.0/5.0 stars

**Reviewed by:** Ranjeet Singh N. | Enterprise (> 1000 emp.)

**Reviewed Date:** November 03, 2023

**What do you like best about FortiCNAPP?**

Lacework offers a range of features to address cloud security challenges. It provides visibility into your cloud environment, monitors for security threats, and helps us maintain compliance with various industry standards.

**What do you dislike about FortiCNAPP?**

I don't have anything to dislike about Lacework at this particular moment.

**What problems is FortiCNAPP solving and how is that benefiting you?**

User-friendly platform simplifies the complex task of cloud security, making it accessible to security professionals teams.
It offers compliance monitoring and reporting capabilities to streamline auditing processes.

  ### 9. Great tool for Cloud Security

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

Our org use Lacework for Cloud Security monitoring, it provides alerts about suspicious activities on the cloud and relevant details for investigation.

**What do you dislike about FortiCNAPP?**

Not much to dislike. So far so good, LW is amazing.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework offers a comprehensive solution to the challenges of monitoring and securing cloud infrastructures. Its advanced capabilities, such as real-time monitoring, anomaly detection, and automated threat response, enable our organizations to proactively identify and mitigate security risks.

  ### 10. Lacework is a comprehensive security solution

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Staffing and Recruiting | Mid-Market (51-1000 emp.)

**Reviewed Date:** May 23, 2023

**What do you like best about FortiCNAPP?**

What we highly value about Lacework is its ability to deliver comprehensive security insights into our AWS resources. It goes beyond surface-level monitoring and provides detailed visibility into network communication, low-level changes, and vulnerability assessment on EC2 instances. This in-depth analysis enables us to proactively identify potential security risks, detect anomalies, and enhance our overall defense posture.

**What do you dislike about FortiCNAPP?**

During our experience, we faced challenges when formulating a strategy to deploy the Lacework agent across all EC2 and Fargate instances within our AWS organization. It is worth noting that the deployment process might not be as straightforward as anticipated. However, we are pleased with the range of tools and support offered by Lacework. These resources proved invaluable in navigating the complexities of the deployment process and ensuring successful implementation.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework addresses the challenge of comprehensive visibility and monitoring across AWS resources. By providing deep insights into network communication, low-level changes, and resource behavior, Lacework allows us to detect and respond to security issues effectively.

  ### 11. Single platform for security monitoring

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Consumer Services | Enterprise (> 1000 emp.)

**Reviewed Date:** May 22, 2023

**What do you like best about FortiCNAPP?**

What I like the most about Lacework is its ability to ingest data from multiple sources (cloudtrail logs, ECR scan, eks audit logs, vuln scan result from agents, etc...) and correlate them to give our team a good picture of what is going on in our environment. Lacework keeps releasing new features that will make its platform more comprehensive. Besides, the Lacework customer support team is excellent. All of our concerns and issues are addressed promptly

**What do you dislike about FortiCNAPP?**

- Lacework is a monitoring platform. It does not offer any mechanism to remediate the findings.
- LQL (language to query lacework data) is still a work in progress
- Findings can include false positives, and there is no suitable mechanism to safelist similar findings (e.g., alerts about a certain service reaching out to different burp collaborator domains)
- The Web UI is clunky at times, but changes are coming (as we are told)

**What problems is FortiCNAPP solving and how is that benefiting you?**

It helps us correlate activities and events within our cloud environments (AWS, GCP)  and gives us what it deems to be the most relevant events. It saves us time from triaging events

  ### 12. Cloud-native Threat Detection at its best

**Rating:** 5.0/5.0 stars

**Reviewed by:** Mirco K. | Small-Business (50 or fewer emp.)

**Reviewed Date:** May 22, 2023

**What do you like best about FortiCNAPP?**

Lacework provides you with a comprehensive view of your entire cloud infrastructure including (service) accounts as well as the posture of containers and hosts. Lacework is easy to setup and maintain while being a massive help in our ability to understand Threats within the enviorment and correlating factors.

**What do you dislike about FortiCNAPP?**

The UI can feel buggy at times (e.g. when trying to setup reports) and difficult to get used to, when based on alert types, a slightly different menu is presented.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Getting visbility into all cloud assets is a challange of its own. With Lacework you can get this out of the box easily and cover multiple aspects of security (solutions) all in one.

  ### 13. Powerful, comprehensive visibility for your resources at AWS.

**Rating:** 4.0/5.0 stars

**Reviewed by:** John D. | Mid-Market (51-1000 emp.)

**Reviewed Date:** April 13, 2023

**What do you like best about FortiCNAPP?**

Sometimes we have resources created to solve a specific issue at AWS.  Those resources are forgotten and pose a threat.  No more forgotten vulnerabilities.  It's all right there for you to see with recommendations on mitigation or best practices.  Integration with Slack lets us see threats in near real time.

**What do you dislike about FortiCNAPP?**

Lacework collects so much data that it's sometimes hard to present in a way that is easy to understand or research possible implications.  I'm not sure this is an easily solvable problem.  I guess I'd rather have the data than not.

**What problems is FortiCNAPP solving and how is that benefiting you?**

We see resources that are out of compliance with best practices and are able to see preferred approaches to solving problems in AWS.  Seeing the vulnerabilities on all of our hosts in one place is also a huge benefit.

  ### 14. Lacework for Microsoft Azure

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 01, 2023

**What do you like best about FortiCNAPP?**

Lacework offers an intuitive GUI that unifies the support and monitoring experience across multiple cloud platforms.

**What do you dislike about FortiCNAPP?**

I have no real dislikes of Lacework. The product provided the solutions I was seeking from the product.

**What problems is FortiCNAPP solving and how is that benefiting you?**

The primary value I gained from Lacework was a unified GUI for monitoring multiple cloud platforms. While each platform offered it's own native solution, having a single point of management was immensely more efficient.

  ### 15. A fantastic all-around advanced threat and detection solution

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 01, 2023

**What do you like best about FortiCNAPP?**

Easy to use. Console is very easy to digest and understand; works smoothly with out change ticket system (JIRA); have been able to customize the kinds of stats and metrics I'm looking for; restrictive access so that not everyone can use it. Great integration with AWS

**What do you dislike about FortiCNAPP?**

The AWS security hub built-in package doesn't really provide what I'm looking for in regards to CloudTrail Logs. Still don't know how to setup the alerts. Enrolling accounts through Lacework in Control Tower is difficult with too many steps

**What problems is FortiCNAPP solving and how is that benefiting you?**

How to better deploy security best practices, maintain secuirty posture and to more effectively use accounts in Control Tower,

  ### 16. Great tool w/ fast support

**Rating:** 4.0/5.0 stars

**Reviewed by:** Benj R. | Mid-Market (51-1000 emp.)

**Reviewed Date:** April 20, 2023

**What do you like best about FortiCNAPP?**

Their alerting system is always extremely accurate, and can be customized to fit your needs perfectly. Moreover, the devoted support staff is highly-responsive, knowledgeable and always there to help with any issues you may have.

**What do you dislike about FortiCNAPP?**

While the user interface is undoubtedly not very intuitive and may leave you wanting more, the good news is that the support team is on the ball and extremely responsive to any issues you may encounter. Their efficiency in addressing concerns should give comfort in the meantime.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is an ideal tool for keeping your cloud infrastructure compliant, and alerting us to any container vulnerabilities. With Lacework, my team can keep an eye on virtually everything connected to our infrastructure, making sure that everything runs smoothly.

  ### 17. Safety first!

**Rating:** 3.5/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.)

**Reviewed Date:** May 17, 2023

**What do you like best about FortiCNAPP?**

The most helpful thing about Lacework is that it provides visibility - when something changes on our side, Lacework instantly knows about it and provides necessary information whether is it safe and we are good to go or something needs to change. I like that information is being present in graphics, it's always better to visualize things rather than just look at plain text.

**What do you dislike about FortiCNAPP?**

Sometimes I feel that the interface could be more user-friendly - as a beginning user of Lacework I found myself to be lost sometimes. It needs to be learnt for some time to be used properly. On the first time, I spent almost an hour on trying to just find my repository.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is solving our problems with container's security - because of Lacework's scanning we were informed that we need to upgrade some of the docker images that were used.

  ### 18. Machine learning and behavioural analytics to identify potential security threats

**Rating:** 4.5/5.0 stars

**Reviewed by:** Bilal M. | Principal Systems Architect, Enterprise (> 1000 emp.)

**Reviewed Date:** February 16, 2023

**What do you like best about FortiCNAPP?**

1. We have moved to Lacework from Prisma Cloud mainly to reduce the cost.
2. It uses machine learning and behavioural analytics to identify potential security threats and vulnerabilities and provides real-time alerts to security teams
3. The platform is easy to set up and use, with an intuitive user interface and automated workflows.

**What do you dislike about FortiCNAPP?**

1. Lacework focuses more on workload protection, whereas Prisma Cloud provides a broader range of security features, including cloud security posture management and compliance monitoring.
2.  Lacework lacks granular control over security policies and allows for more customisation and configuration.
3. Prisma Cloud offers more detailed reporting and visibility into security posture is lacking in Lacework

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is a comprehensive cloud security platform that provides threat detection, compliance monitoring, and workload protection for public, private, and hybrid cloud environments. It uses machine learning and behavioural analytics to identify potential security threats and vulnerabilities and provides real-time alerts to security teams. Lacework offers a wide range of features, including vulnerability scanning, file integrity monitoring, runtime application security, and compliance monitoring for various industry regulations. The platform is easy to set up and use, with an intuitive user interface and automated workflows. Lacework provides robust security for cloud environments with minimal manual intervention required from security teams.

  ### 19. Cloud Security Posture Management Platform

**Rating:** 4.5/5.0 stars

**Reviewed by:** David P. | Enterprise (> 1000 emp.)

**Reviewed Date:** February 16, 2023

**What do you like best about FortiCNAPP?**

Lacework provides extensive coverage for a wide range of cloud workloads, including containers, Kubernetes, AWS, and Azure. This means our firm can use a single platform to secure our entire cloud environment, rather than having to use multiple tools. Lacework uses automation and machine learning to provide real-time insights into security threats and vulnerabilities. This helps us quickly identify and remediate issues, and reduces the burden on my cloud security team. The platform offers built-in compliance checks for major industry standards such as PCI DSS, HIPAA, and SOC 2. This helps my firm stay compliant with regulatory requirements and reduces the risk of compliance-related issues. Lacework has a user-friendly interface that makes it easy for my team to set up and use the platform. This saves time and reduces the learning curve for my security teams.

**What do you dislike about FortiCNAPP?**

Lacework can be expensive for those with limited budgets. The pricing model is based on the number of cloud accounts and workloads that are being monitored, so the cost can quickly add up for larger environments. Lacework's user interface is generally user-friendly, there can be a learning curve for security teams that are new to the platform. Some features may also be more complex to set up and use than others. The platform integrates with a wide range of cloud providers and technologies, but there may be challenges in integrating the platform with certain legacy systems or third-party tools.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Securing cloud environments can be challenging due to the dynamic and complex nature of cloud workloads, which can change rapidly and frequently. My business is using Lacework to streamline our cloud security operations, reduce the burden on security teams, and gain insights into our cloud environment that can help inform effective business decisions. Ultimately, Lacework helps us solve the problem of securing our cloud workloads in a way that is effective, efficient, and scalable.

  ### 20. Nice, but there is still much work to do.

**Rating:** 3.0/5.0 stars

**Reviewed by:** Amir M. | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

The ease of use of the system, ease of implementation. easy integration.

**What do you dislike about FortiCNAPP?**

Limitation in creating policies / triggers.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Security alerts that happening

**Official Response from Emily Chin:**

> Thank you for taking the time to share a review of your Lacework experience. We appreciate your feedback on ease of use and integration with Lacework, and understand the need for more flexibility to customize policies and triggers. If you need any additional help or want to meet with the team, please feel free to reach out to me any time: emily.chin@lacework.net.

  ### 21. Early experience

**Rating:** 4.0/5.0 stars

**Reviewed by:** Sri T. | Enterprise (> 1000 emp.)

**Reviewed Date:** November 11, 2023

**What do you like best about FortiCNAPP?**

With  early experience, Lacework works well for cloud native applications. Our security experts demo'ed a POC and it is very promosing to reduce security alerts for containarized applications from early on before they are deployed to Production.Onboarding and ease of use is good.

**What do you dislike about FortiCNAPP?**

Ver early on but cost is a factor for decision

**What problems is FortiCNAPP solving and how is that benefiting you?**

Cloud compliance

  ### 22. Great partnership that's always evolving!

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Computer & Network Security | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 29, 2023

**What do you like best about FortiCNAPP?**

Lacework worked with us to build our cloud security. And when we were still over on assets, has hung in there and worked with us while we tried to make changes rather than charging us boatloads.

**What do you dislike about FortiCNAPP?**

When we started, Lacework was younger and still growing. Now they have hit a point where they have a great product, but we are working to try to improve the reporting capabilities and views.

**What problems is FortiCNAPP solving and how is that benefiting you?**

We had a one-size-fits-all security solution before and found it wasn't meeting our needs. We migrated off that solution and used an EDR product + Lacework. We didn't know at the time, but LW also had a partnership coming with that EDR, so we have gotten the best of both worlds.

  ### 23. Great Product, excellent support

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

Low overhead to reduce Security alerts. Great ability to detect outliers.
Simple to use solution. Support team is great to work with both on customer success and technical roadmap.

**What do you dislike about FortiCNAPP?**

Agent sizing can be misleading and requires a much deeper understanding of that usage model to ensure no cost overruns.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Reducing the need to have a very large SecOps team.

  ### 24. Very useful for us, we were able to reduce and maintain our infrastructure at low risk

**Rating:** 4.5/5.0 stars

**Reviewed by:** Rodrigo J. | Enterprise (> 1000 emp.)

**Reviewed Date:** February 17, 2023

**What do you like best about FortiCNAPP?**

- The search tool
- Very detailed info, event including things like the docker layer introducing the vulnerability, or the jar library that we used to update services and use latest dependency versions with fixes.
- Alerts

**What do you dislike about FortiCNAPP?**

I see email alerts are very noisy and sometimes I lost track of what was reported exactly, so at the end I'm ignoring these emails.
I didn't check if there are some alternatives like Github interactions to report issues in the repo directly, or JIRA integration, this is something I don't manager really, there's another teams in charge of the Lacework configuration.

**What problems is FortiCNAPP solving and how is that benefiting you?**

We have many services running in our k8s cluster, and a lot of them explosed publicly, so Lacework is very useful to indentify potential and new vulnerability and keep these services up-to-date with quick actions as simple as updating dependencies, or taking in consideration some network issues.

  ### 25. Lacework is a great tool for managing cloud and container workloads and securing them

**Rating:** 4.5/5.0 stars

**Reviewed by:** Kiril J. | Mid-Market (51-1000 emp.)

**Reviewed Date:** February 17, 2023

**What do you like best about FortiCNAPP?**

One of Lacework's key features is its ability to detect and respond to threats in real-time, thanks to its use of machine learning and behavioral analysis techniques. This means that potential security issues can be identified and addressed before they can cause harm to the system, providing peace of mind to IT team and their organization

**What do you dislike about FortiCNAPP?**

There's a lot of information and features in Lacework's user interface. You'd have to spend some time learning it, so you don't get lost.This would make it easier to find the category or alert you are looking for.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Its ability to detect and respond to threats in real-time. This means that potential security issues can be identified and addressed before they cause harm to the system. Moreover, IaC scanner helps resolve issues before they even reach the cloud infrastructure. When a pull request is submitted, it runs a vulnerability scan.

  ### 26. Cloud Security Posture with ease

**Rating:** 4.0/5.0 stars

**Reviewed by:** Ferdinand D. | Small-Business (50 or fewer emp.)

**Reviewed Date:** February 17, 2023

**What do you like best about FortiCNAPP?**

Lacework offers a lot of tools that one would otherwise employ a stack of different softwares. It massivly helps our organisation to handle infrastructural threat intelligence, Cloud Security Posture, Cloud Compliance and Security Asset Management.
Their support is very service oriented and always in best interest of the customer

**What do you dislike about FortiCNAPP?**

The false positives often requires manual rework. Also there are some features like Jira integration missing that would be desireable. But the Software is always improving and new features are coming all the time.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is our solution for CSPM, continous development in a secure manner, enforcing a shift left policy for infrastructure as well as cloud and container security

  ### 27. Good cloud security tool

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.)

**Reviewed Date:** November 02, 2023

**What do you like best about FortiCNAPP?**

- With machine learning, the alarms become fewer over time and you can focus on the really important alarms.
- Very good overview
- Very good detection

**What do you dislike about FortiCNAPP?**

There is a missing CISO dashboard to total overview all teams
Whitlist process is sometimes complex

**What problems is FortiCNAPP solving and how is that benefiting you?**

Alarms become fewer over time
Each workload team gets its own interface

  ### 28. A Great Cloud Security solution to protect a Cloud Environment

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.)

**Reviewed Date:** August 31, 2023

**What do you like best about FortiCNAPP?**

A lot of pros and cons but the best things that I like are the detection capabilities of threats by their Machine learning model. Everything is easy to use and understand. Great vendor support as well.

**What do you dislike about FortiCNAPP?**

The alerting capabilities can be made a little better and more efficient as there are a lot of false positives and noise. Moreover the access controls like user roles and permissions can be made easier to comprehend.

**What problems is FortiCNAPP solving and how is that benefiting you?**

The problem to maintain and operate a vulnerability assessment solution is made easier with features like Cloud Compliance and Behavioral Analysis. The productivity of the team can be maintained when the major focus of the analysts is not on checking a plethora of logs for detecting threats in the environment.

  ### 29. Great security solution

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 07, 2023

**What do you like best about FortiCNAPP?**

Visibility into mulitiple cloud accounts, vulnerability management, incident management

**What do you dislike about FortiCNAPP?**

Not much so far. Initial setup was a bit noisy with alearts while it was creating a baseline, but was easy to filter.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Visibility into mulitiple cloud accounts for config compliance and asset inventory.
Visibility into hosts and containers for vulnerabilities

  ### 30. Fantastic tool for small security teams.

**Rating:** 3.5/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** May 11, 2023

**What do you like best about FortiCNAPP?**

Lacework Polygraph is a robust tool capable of learning our system and detecting/alerting on anomalies. Instead of having to develop rules based on our system's unique structure, we've relied on Lacework's ML capabilities and established a baseline for our system. Lacework has also helped us track our compliance to meet ISO and SOC requirements.

**What do you dislike about FortiCNAPP?**

Lacework's user interface is tedious to navigate. Users cannot open new pages for each issue and are given an overlayed tab instead. Moreover, Lacework is a complicated tool that requires time to learn, yet Lacework Academy is not kept up to date and often offers guides for aspects of the GUI which have long since been changed.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework has provided our team with a complete view of our cloud infrastructure while enabling our team to respond to actual issues instead of sorting through alerts.

  ### 31. Product was ok.

**Rating:** 3.0/5.0 stars

**Reviewed by:** Verified User in Food & Beverages | Enterprise (> 1000 emp.)

**Reviewed Date:** November 09, 2023

**What do you like best about FortiCNAPP?**

Product once setup works well, however requires quite a bit of setup.

**What do you dislike about FortiCNAPP?**

Product still relies on agent based deployment. 
initial review of logs had much higher false positives than anticipated.

**What problems is FortiCNAPP solving and how is that benefiting you?**

We didn't get to the phase of the product being fully used by our security team unfortunately.

**Official Response from Emily Chin:**

> Thank you so much for your feedback. We value your insights on the setup process and hope that we have the opportunity to assist with your security needs in the future. I'm happy to help coordinate time with our team, if you're interested. Please feel free to connect with me directly at emily.chin@lacework.net. 

  ### 32. Good vision, but the execution is lacking right now

**Rating:** 2.5/5.0 stars

**Reviewed by:** Verified User in Government Administration | Mid-Market (51-1000 emp.)

**Reviewed Date:** April 14, 2023

**What do you like best about FortiCNAPP?**

Lacework is a good tool for smaller teams that can't afford a SIEM or lack the experience to set up a SIEM for Cloud environments. It is far less noisy than legacy tools. If you're just starting your security journey, Lacework may be a good fit to get you started. Our AE and our Solutions engineer are awesome and I feel like they care about us getting the most value out of Lacework. They have some of the best CLI tools and API's that I've ever worked with.

**What do you dislike about FortiCNAPP?**

There is very little that's unique about Lacework. It does not ingest cloud logs like VPC FLow Logs, Load Balancer logs, S3 Access Logs, etc. They don't ingest AWS security events like Guard Duty and instead rely on their IP to alert on. Lacework has missed indicators of compromise while undergoing penetration tests. We've found some issues and limitations with larger time ranges, monitoring network traffic, and anomaly detection for AWS metrics. Support has been poor lately. I've found that when I ask a question and it's not a positive answer they often answer a different question. Windows support is still developing. They don't have alerts for failed logins on Windows workloads and these must be configured by the customer. As your security matures over time, you'll need to reset the machine-learning models because it's been trained to ignore poor security practices.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework helped us solve the problem of not having an SIEM and how to gain visibility into behaviors in our cloud environments with minimal work on a very small team.

**Official Response from Christine Medina:**

> Hello! Thanks for leaving us a detailed and honest review. I love hearing that your account team (AE and SE) are helping you get more value out of our partnership and that we're helping your lean team. We are announcing enhancements to data ingestion from third party sources this week — I'd love to scheduled some time for our team to chat through these with you. If you're open to it, please email me at christine.medina@lacework.com so I can coordinate the sync for you. I look forward to hearing from you. Thanks again.

  ### 33. Amazing customer support and good product, on the expensive side and lacks open security integration

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** April 14, 2023

**What do you like best about FortiCNAPP?**

The interaction with the customer success and product manager has been extremely open and positive.
They are putting development efforts into the product. They have also demonstrated commitment to the roadmaps they promised at the beginning of the contract, developing the agentless scanning capabilities, custom privacy features and expanding coverage of different Cloud Service Providers.
The product and the SaaS portal (with European hosting available) are easy to integrate and use; the agents are seamless, and agentless scanning is catching up regarding features with the agent-based capabilities.
When we acquired it, Lacework was the only security and compliance product that could meet all of our requirements regarding support for hybrid public/private deployments, completely private Cloud, containers' introspection, European legislation, and privacy.
Their customer support is excellent. We had access to continuous technical deployment support throughout the whole run of the contract. 
Finally, compliance and security vulnerability scanning coverage is impressive and vastly superior to the standard CSP service offerings.

**What do you dislike about FortiCNAPP?**

The product is expensive, especially considering that competitive offerings are now available, which were not a couple of years ago. Depending on your use case, Lacework may be overkill. A simpler, cheaper alternative could fit your niche better - especially if you do not need to support hybrid deployments and private Clouds. If you focus on public Cloud and agentless scanning, competitive products will likely serve you better and will probably be cheaper.
Lacework was subject to a series of layoffs at the beginning of 2023. We have not noticed slow-downs or impacts from that.
For a long time, the major turn-off from Lacework was their inability to work in real-time unless you are investing into  (or already have available) a Snowflake data lake. Logs and events are processed into 24-hour batches, and you receive daily email notifications of non-conformity or security issues. This behavior is sufficient for compliance but clearly unacceptable for security purposes. Although they integrate now with New Relics and Splunk, they can still not offer an open integration with other tools unless the events are channeled through a Splunk collector.
We have noticed that other security tools could leverage the information Lacework collects (or Lacework could introduce monitoring for such security events). For instance, they see all the web URLs accessed by a specific Cloud instance or container but do not act on them. They will identify whether a malicious IP is connected, but not in case of a malicious URL, although the information is present. Third-party tools could leverage this if integration were possible.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Monitor multi-Cloud Service Providers respecting privacy legislation and compliance.

  ### 34. An in-depth Cloud Security Solutions

**Rating:** 3.5/5.0 stars

**Reviewed by:** Kannapiran G. | Enterprise (> 1000 emp.)

**Reviewed Date:** August 07, 2023

**What do you like best about FortiCNAPP?**

Easy of implemeatation.I really like a visibilty into all aspects of network beahviour and threats.

**What do you dislike about FortiCNAPP?**

whitelisting legitimate traffic and beahaviours is bit tricky and noise of false positive are high.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Monitoring threat traffic to cloud based projects and servers. adding new projects as easy .various alert notifications and integrations. security insights and security complanice monitoring.

  ### 35. Lacework: A Comprehensive Review of the Cloud Security Platform

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** August 15, 2022

**What do you like best about FortiCNAPP?**

Lacework is a cloud security platform that offers a range of features and capabilities to help organizations secure their cloud workloads. One of the things that customers often like about Lacework is its ability to provide comprehensive security coverage across multiple cloud environments and platforms, including AWS, Azure, Google Cloud Platform, and Kubernetes.

Lacework offers features such as workload protection, compliance automation, threat detection, and incident response, all of which work together to provide a holistic approach to cloud security. The platform also uses machine learning and behavioral analytics to help identify and mitigate potential security risks and threats.

**What do you dislike about FortiCNAPP?**

One potential concern is the pricing model of Lacework, which may be considered relatively expensive compared to other cloud security solutions. Some users have also noted that while the platform offers many features and capabilities, it may be overwhelming for users who are not familiar with cloud security.

Another criticism is that the platform may generate a high number of false positive alerts, which can be frustrating for users who need to spend time investigating and addressing them. However, Lacework has made efforts to address this issue by providing more granular controls over the types of alerts generated and refining their machine learning algorithms.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework is solving numerous problems by adhering to the different security compliances. Container vulnerability scan and integrations with different third-party vendors are a plus.
Image scanning, map of the containers using an image, and AMI scanning are some of its core features for addressing any security vulnerabilities.

  ### 36. Lacework is very good, easy to use. Very good dashboard.

**Rating:** 4.5/5.0 stars

**Reviewed by:** Steven L. | Cloud Security Director, Mid-Market (51-1000 emp.)

**Reviewed Date:** August 15, 2023

**What do you like best about FortiCNAPP?**

This text is already in English and does not require translation.

**What do you dislike about FortiCNAPP?**

Nothing at this time. Everything works as required. I have no issues and from users I interact with I have heard of no issues. Everyone is quite satisfied with Lacework.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework identifies vulnerabilities very well. The report we receive is easy to read and understand. This way, we can immediately correct any vulnerabilities that are found.

  ### 37. Great security with easy installation

**Rating:** 5.0/5.0 stars

**Reviewed by:** Royi S. | Mid-Market (51-1000 emp.)

**Reviewed Date:** April 13, 2023

**What do you like best about FortiCNAPP?**

Lacework more than other tool has reliable and not false positive alerting giving easy way understanding where you need to improve your security posture.

**What do you dislike about FortiCNAPP?**

I think some of the dashboards and metrics are not self explanatory but it improves over time

**What problems is FortiCNAPP solving and how is that benefiting you?**

First, compliance ,and network security, security inside our contains and I think they have more capabilities that we are not even using. This helps on prénsales calls and for compliance calls

  ### 38. Simply works

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** July 19, 2023

**What do you like best about FortiCNAPP?**

Lacework gathers and organizes pretty much everything you want to know about your systems from a security standpoint. The best thing about lacework for me is for the most part I don't have to think about it, when it does the alert the alerts are usable, but it doesn't drive me crazy with useless alerts.

Lacework support is also top notch.

**What do you dislike about FortiCNAPP?**

What am I supposed to do with all my time now that I am not trying to sort through thousands of irrelevant alerts every day?

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework replaces multiple systems, and is easier to use than anything it replaced.

  ### 39. Review As a Fresher

**Rating:** 2.5/5.0 stars

**Reviewed by:** Verified User in Logistics and Supply Chain | Enterprise (> 1000 emp.)

**Reviewed Date:** August 03, 2023

**What do you like best about FortiCNAPP?**

The compliance monitoring feature is very nice and powerful. it help me ensure my cloud enviornment is complaint with variety of standards such as SOC2,ISO 27001 andPCI DSS.

**What do you dislike about FortiCNAPP?**

Not particularly but User Interface was very difficult for me to navigate in the starting.but after spending more time. its very easy for me now. but could be more straight forward.

**What problems is FortiCNAPP solving and how is that benefiting you?**

it helped us in various areas such as in cloud misconfigurations, reduced risks giving informations such as open ports , informations about the IOCs and many more. its time saving as well.

**Official Response from Tori Devereux:**

> Hello! Thanks for the feedback on our compliance monitoring feature — reducing your cloud risks is music to our ears. Part of our passion is ensuring our customers are in good shape, so glad to hear you’re feeling more confident with our UI after spending more time with our platform. If you have any specific ideas on how to improve the UI, I would love to pass it along to our UX team and see what they can do, or I’d be happy to coordinate a date where you can meet with them live! Please email me directly at tori.devereux@lacework.net to coordinate.

  ### 40. Super gui, super easy to learn. Also improving all the time

**Rating:** 4.5/5.0 stars

**Reviewed by:** Gabriel V. | CloudOps - Application Operations Engineer, Mid-Market (51-1000 emp.)

**Reviewed Date:** February 15, 2023

**What do you like best about FortiCNAPP?**

I didn´t need to do a lot of learning for start using lacework. Most menus are intuitive enough so I was able to perform tasks, like look for python libraries with vulnerabilities by looking using the hash file search. Also a few time we have contacted lacework for extra help and they always were super-responsive.

**What do you dislike about FortiCNAPP?**

Sometimes, for example on some specific logins on AWs against another service using AWS user pools the events have not a lot of info, but I track those down to Cloudtrail and basically aws does not log more info, so I believe there is no much room for improvement there.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Find vulnerabilities and issues easily around all our workloads. Dectec suspicious events so we can further investigate. It was specially helpful with the openssl vulnerability, even checking the container images!

  ### 41. A comprehensive and robust view of security

**Rating:** 4.5/5.0 stars

**Reviewed by:** Gideon E. | Regional Operations Manager, Mid-Market (51-1000 emp.)

**Reviewed Date:** April 18, 2023

**What do you like best about FortiCNAPP?**

I appreciate the comprehensive security monitoring that Lacework provides for AWS, GCP, and our own microservices architectures. The high signal-to-noise ratio allows security analysts to stay vigilant and investigate suspicious activity quickly. Continuous vulnerability management and compliance checks also help us effectively mitigate risk across all platforms. Deploying agents through code is a huge time saver, allowing security team members to spend more time analyzing rather than building systems from scratch.

**What do you dislike about FortiCNAPP?**

I do not like the fact that Lacework is more expensive compared to market alternatives.By having a more precise plan for resource allocation, it would be easier to manage expenses efficiently and ensure that costs cover the actual needs specified by customer requirements.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework helps me make sense of my security data. Without it, I would be overwhelmed trying to manually process all the information coming in from multiple sources

  ### 42. Lacework. It's the bees knees.

**Rating:** 5.0/5.0 stars

**Reviewed by:** Brandon P. | Enterprise (> 1000 emp.)

**Reviewed Date:** August 02, 2023

**What do you like best about FortiCNAPP?**

Lacework makes cloud security much easier. From container security to cloud security posturing, Lacework provides some peace of mind we are doing cloud security right.

**What do you dislike about FortiCNAPP?**

There isn't anything I don't like. It works well.

**What problems is FortiCNAPP solving and how is that benefiting you?**

It helps to provide oversight of cloud posture, container security, infrastructure as code security, entitlements, and more.

  ### 43. Lacework experience

**Rating:** 4.0/5.0 stars

**Reviewed by:** Ranesh K. | Sr. DevOps engineer, Enterprise (> 1000 emp.)

**Reviewed Date:** August 02, 2023

**What do you like best about FortiCNAPP?**

wonderful cloud security management tool, I liked the dashboard visualizations. Also the resources section in the menu. the Vulnerabilities menu is also good in that gives a more clear view of the issues reported.

**What do you dislike about FortiCNAPP?**

Lacework needs to provide more details on the compliance dashboard section, but cannot say much about disability. I don't have much things to say.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Reports itself is a good input to take action. I manually monitor my cloud resources and the dash give me more details about the resources and create action item.

  ### 44. Lacework experience

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Marketing and Advertising | Enterprise (> 1000 emp.)

**Reviewed Date:** November 13, 2023

**What do you like best about FortiCNAPP?**

Its coverage over all cloud account and workloads

**What do you dislike about FortiCNAPP?**

How some alerts do not include process information

**What problems is FortiCNAPP solving and how is that benefiting you?**

threat detection for cloud workloads. Its giving us coverage and confidence in knowing our workloads can detect compromise / misconfigurations

  ### 45. Security Monitoring tool for CSPM, VM, IAC and some more

**Rating:** 4.0/5.0 stars

**Reviewed by:** Kamal Kumar M. | Senior Information Technology Security Analyst, Mid-Market (51-1000 emp.)

**Reviewed Date:** April 19, 2023

**What do you like best about FortiCNAPP?**

1. CSPM Features
2. Ease of using the framework as well as agents 
3. Good UI
4. Easy to integrate with most the cloud resources
5. Easily available support with quick response

**What do you dislike about FortiCNAPP?**

1. Vulnerability management processes have to improve
2. Reporting specifically related to VM needs to improve
3. Feature requests needs to be completed on priority

**What problems is FortiCNAPP solving and how is that benefiting you?**

It is giving us a clear picture of our infrastructure when it comes to different security standards such as PCI-DSS, CIS, HIPPA and more. Also it is giving us a better picture of vulnerabilities in our infrastructure.

  ### 46. Awesome CSPM and K8s/Image Analyzis

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.)

**Reviewed Date:** June 26, 2023

**What do you like best about FortiCNAPP?**

Investigation and the ability to see the resources and the correlation with the apiCctions is a key feature for us. Polygraph is one of the most efficient graphical interfaces with AWS logging I've seen. Great insights!

**What do you dislike about FortiCNAPP?**

The CSPM scans only happens every 24 hours. Hopefully, this time can be reduced in the near future so some alerts can be raised faster than waiting a day to get critical information.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Showing alerts for all compliances like CIS, PCI DSS is default security requirement for any enterprise nowdays. Lacework delivers it with great details. 

Polygraph gives so many insights about the environment with just a few clicks. 

Scanning ECR repositories, showing vulnerabilities, showing which cluster is using those images, ranking the severity of CVE, and giving remediation for the exposures is fantastic. It provides more detailed information than many solutions in the market.

  ### 47. Fully automated vulnerabilities detection and prevention with Lacework

**Rating:** 4.5/5.0 stars

**Reviewed by:** Nam V. | Mid-Market (51-1000 emp.)

**Reviewed Date:** February 14, 2023

**What do you like best about FortiCNAPP?**

With Lacework, we can obtain 100% fully automated process in security scanning and vulnerabilities detection/prevention with the tool. Once deployed, Lacework takes over the whole process that had been manually done in the past with other tools and will scan all uploaded docker images.

**What do you dislike about FortiCNAPP?**

We have a automated process of deploying builds using our CI/CD pipeline to VMs. Usually these VMs are short lived as they are created on demand by build systems and destroyed after used. We was trying to use Lacework agents to scan the VMs but the agent requires to be installed inside the host and takes quite a few hours to scan. This use case is suitable for static hosts but not with on-demand deployments of test VMs.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Detect vulnerabilities and provide suggestion/solutions to fix security issues.

  ### 48. It is good overall

**Rating:** 3.5/5.0 stars

**Reviewed by:** Verified User in Hospital & Health Care | Mid-Market (51-1000 emp.)

**Reviewed Date:** March 05, 2024

**What do you like best about FortiCNAPP?**

Detection and remediation, east of use, integration

**What do you dislike about FortiCNAPP?**

Nothing much there to dislike about the product

**What problems is FortiCNAPP solving and how is that benefiting you?**

Cybersecurity

  ### 49. Excels in it's approach to cloud security.

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 28, 2023

**What do you like best about FortiCNAPP?**

Lacework truly excels in its approach to cloud security by offering a remarkable range of capabilities. From threat detection and anomaly detection to vulnerability management and compliance monitoring, Lacework covers all the bases when it comes to safeguarding our cloud environment at Maxex. This friendly and all-encompassing approach ensures our organizations can confidently defend against ever-evolving threats and keep our valuable data and applications secure.

**What do you dislike about FortiCNAPP?**

Recent UX design upgrade was more complex than the previous one.

**What problems is FortiCNAPP solving and how is that benefiting you?**

Threat detection and anomaly detection to vulnerability management and compliance monitoring.
Lacework covers all the bases when it comes to safeguarding our cloud environment at Maxex.

  ### 50. Great cloud security tool for CSPM and workload protection

**Rating:** 4.0/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** November 01, 2023

**What do you like best about FortiCNAPP?**

- a lot of useful new features have been added since we signed our contract 2 years ago
- API and cli are easy to use
- the CSPM and workload protection just work

**What do you dislike about FortiCNAPP?**

pricing could be a concern if you have a limited budget

**What problems is FortiCNAPP solving and how is that benefiting you?**

Lacework addresses critical security challenges by providing robust cloud-native security solutions. This benefits us by ensuring our systems and data are protected in the cloud environment, safeguarding against potential breaches and threats.


## FortiCNAPP Discussions
  - [What is in the pipeline for Lacework?](https://www.g2.com/discussions/24342-what-is-in-the-pipeline-for-lacework) - 2 comments, 1 upvote
  - [Is lacework a SIEM?](https://www.g2.com/discussions/is-lacework-a-siem) - 1 comment

- [View FortiCNAPP pricing details and edition comparison](https://www.g2.com/products/forticnapp/reviews?page=3&section=pricing&secure%5Bexpires_at%5D=2026-07-19+01%3A11%3A58+-0500&secure%5Bsession_id%5D=e0798474-4046-4ce5-961f-73bb01bc4c35&secure%5Btoken%5D=9313d7743075e73fe70fdc00fcddcf4d742a937bf06943ac827f72a619d6e4ea&format=llm_user)
## FortiCNAPP Integrations
  - [AWS Bedrock](https://www.g2.com/products/aws-bedrock/reviews)
  - [AWS CloudTrail](https://www.g2.com/products/aws-cloudtrail/reviews)
  - [AWS Security Hub](https://www.g2.com/products/aws-security-hub/reviews)
  - [Azure Kubernetes Service (AKS)](https://www.g2.com/products/azure-kubernetes-service-aks/reviews)
  - [Google Anthos Service Mesh](https://www.g2.com/products/google-anthos-service-mesh/reviews)
  - [Google Kubernetes Engine (GKE)](https://www.g2.com/products/google-kubernetes-engine-gke/reviews)

## FortiCNAPP Features
**Management**
- Dashboards and Reports
- Workflow Management
- Administration Console

**Administration**
- Risk Scoring
- Security Auditing
- Configuration Management

**Security**
- Compliance Monitoring
- Anomoly Detection
- Cloud Gap Analytics

**Configuration**
- Configuration Monitoring
- Unified Policy Management
- Adaptive Access Control
- API / Integrations

**Access control - Cloud Infrastructure Entitlement Management (CIEM)**
- Policy Management
- Fine-Grained Access Control
- Role-Based Access Control (RBAC)
- AI-driven access control

**Security - Cloud-Native Application Protection Platform (CNAPP)**
- Workload and container security
- Threat detection and response
- DevSecOps Integrations
- Unified Visibility

**Cloud Visibility**
- Data Discovery
- Cloud Registry
- Cloud Gap Analytics

**Operations**
- Governance
- Logging and Reporting
- API / Integrations

**Monitoring**
- Continuous Image Assurance
- Behavior Monitoring

**Compliance**
- Governance
- Data Governance
- Sensitive Data Compliance

**Security**
- Compliance Monitoring
- Risk Analysis
- Reporting

**Visibility**
- Multicloud Visibility
- Asset Discovery

**Monitoring - Cloud Infrastructure Entitlement Management (CIEM)**
- Monitoring
- AI-based detection

**Artificial Intelligence - Cloud-Native Application Protection Platform (CNAPP)**
- Intelligent remediations and suggestions
- Risk prioritization
- Anomaly detection using machine learning

**Security**
- Data Security
- Security Auditing

**Security Controls **
- Anomaly Detection
- Security Auditing
- Cloud Gap Analytics

**Protection**
- Dynamic Image Scanning
- Runtime Protection

**Administration**
- Policy Enforcement
- Auditing
- Workflow Management

**Administration**
- Security Integration
- Multicloud Visibility

**Vulnerability Management**
- Threat Hunting
- Vulnerability Scanning
- Vulnerability Intelligence
- Risk-Prioritization

**Auditing - Cloud Infrastructure Entitlement Management (CIEM)**
- Visibility
- Compliance Reporting

**Cloud Configuration Management - Cloud-Native Application Protection Platform (CNAPP)**
- Multi-cloud visibility
- Cloud Security Posture Management (CSPM)

**Identity**
- Governance
- User Analytics

**Agentic AI - Cloud Security Monitoring and Analytics**
- Autonomous Task Execution
- Proactive Assistance
- Decision Making

**Agentic AI - Cloud-Native Application Protection Platform (CNAPP)**
- Autonomous Task Execution
- Adaptive Learning

## Top FortiCNAPP Alternatives
  - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (822 reviews)
  - [Orca Security](https://www.g2.com/products/orca-security/reviews) - 4.7/5.0 (302 reviews)
  - [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews) - 4.8/5.0 (110 reviews)

