Fortinet, Inc.: Fortinet Unveils New Real-Time Response and Automation Capabilities Across its Security Fabric, Empowering CISOs to Build a Self-Defending Ecosystem

New Innovations, Including FortiOS 7.4, Support Organizations in Building a Cybersecurity Platform Across Endpoint Security, SOC Automation, Threat Intelligence, Identity and Access, and Application Security

SUNNYVALE, Calif., April 04, 2023

Michael Xie, Founder, President and CTO at Fortinet
"From our founding, Fortinet's broad portfolio has been built with integration and automation in mind. Our commitment to this vision has made Fortinet a leader in supporting customers with consolidating point products into one unified cybersecurity platform - what we call the Fortinet Security Fabric. With today's news, we are taking this commitment one step further by adding new real-time response and automation capabilities to improve efficacy, increase effectiveness, and accelerate time to resolution of sophisticated attacks."

News Summary
Fortinet®with new and enhanced products and capabilities to enable advanced threat prevention and coordinated response for a self-defending ecosystem across networks, endpoints, and clouds.

The Majority of Organizations are Pursuing a Consolidation Strategy for Their Security

According to a recent survey from Gartner®, 75 percent of organizations are pursuing security vendor consolidation, up from 29 percent in 2020. The same survey notes, "Security and risk management leaders are increasingly dissatisfied with the operational inefficiencies and the lack of integration of a heterogenous security stack. Buyers are now looking for more efficient and integrated solutions, rather than point security products."¹

The Fortinet Security Fabric Supports Consolidation

Fortinet leads vendor consolidation with its Security Fabric platform comprised of over 50 enterprise-grade products. Today, Fortinet is widening this leadership position even further by adding new real-time response and automation capabilities across its Security Fabric to transform detection to real-time protection. New products and enhancements, including the introduction of FortiOS 7.4, span the following five key areas:

Endpoint Security & Early Response

• Simplify and expedite incident analysis: Built on a cloud-native foundation, FortiEDR (https://www.fortinet.com/products/endpoint-security/fortiedr?utm_source=pr&utm_campaign=fortiedr) and FortiXDR (https://www.fortinet.com/products/fortixdr?utm_source=pr&utm_campaign=fortixdr) now provide additional interactive incident visualization with enriched contextual incident data using multiple threat intelligence feeds that enable customers to simplify and expedite investigations.
• Block anomalous and malicious network activity: Unveiled today is a new FortiNDR Cloud (https://www.fortinet.com/products/network-detection-and-response?utm_source=pr&utm_campaign=fortindr) offering which combines robust artificial intelligence, complemented by pragmatic analysis and breach protection technology. The solution provides 365-day retention and visibility into network data, with built-in playbooks, and threat hunting capabilities to detect anomalous and malicious behavior on the network. Customers can also now choose from a self-contained, on-premises deployment powered by Fortinet's Virtual Security Analyst or a new guided SaaS offering maintained by advanced threat experts from FortiGuard Labs.
• Mitigate supply chain risks: FortiRecon (https://www.fortinet.com/products/fortirecon?utm_source=pr&utm_medium=pr&utm_campaign=fortirecon), supported by threat experts from FortiGuard Labs, now delivers enhanced proactive threat intelligence into critical risks associated with supply chain vendors and partners, including external exposed assets, leaked data, and ransomware attack intelligence.
• Deceive threat actors in real time and at scale: FortiDeceptor (https://www.fortinet.com/products/fortideceptor?utm_source=pr&utm_medium=pr&utm_campaign=pr-fortideceptor) now offers vulnerability outbreak defense. When a vulnerability is reported by FortiGuard Labs, the vulnerability is automatically pushed as a feed to the outbreak decoy, to deceive attackers from real assets to fake assets and quarantine the attack early in the kill chain. Further, a SOAR playbook can automatically initiate the creation and strategically place deception assets to gather granular intel and stop suspicious activities.
• Access and share threat intelligence with a global community: FortiDeceptor also now offers a new attack exchange program which allows FortiDeceptor customers to anonymously exchange valuable intel on the most current attacks and take proactive steps to avoid a breach.
  

SOC Automation & Augmentation

• Further simplify security operations and accelerate the detection of threats:FortiAnalyzer (https://www.fortinet.com/products/management/fortianalyzer.html?utm_source=pr&utm_campaign=fortianalyzer) enables more sophisticated event correlation across different types of log sources using a new intuitive rules editor that can be mapped to MITRE ATT&CK® use cases. In addition, FortiSOAR (https://www.fortinet.com/products/fortisoar.html?utm_source=pr&utm_campaign=fortisoar) now offers a turnkey SaaS subscription option, inline playbook recommendations driven by ML, extensive OT security features and playbooks, and unique no/low code playbook creation enhancements.
• Reduce alert triage and power more effective threat hunting:FortiSIEM (https://www.fortinet.com/products/siem/fortisiem.html?utm_source=pr&utm_campaign=fortisiem) now includes new link graph technology which allows for easy visualization of relationships between users, devices, and incidents. The solution is also now powered by an advanced machine learning framework, which enhances protection by detecting anomalies and outliers that may be missed by traditional methods.
• Remain one step ahead of adversaries: Fortinet now offers AI-assisted incident triage through its FortiGuard SOC-as-a-Service offering (https://www.fortinet.com/support/support-services/fortiguard-security-subscriptions/socaas?utm_source=website&utm_medium=pr&utm_campaign=fortiguard-security-subscriptions-socaas), as well as new SOC operations readiness and compromise assessment services from FortiGuard Labs.
  

AI-Powered Threat Intelligence

• Effectively counter multi-step, cyber-physical attacks: Fortinet has enhanced its FortiGuard AI-powered Device Security Services (https://www.fortinet.com/solutions/enterprise-midsize-business/security-as-a-service/device-security?utm_source=pr&utm_medium=pr&utm_campaign=pr-device-security) to further support IT/OT convergence. Time to protection is significantly reduced with enhanced automated virtual patching for both OT and IT devices based on global threat intelligence, zero-day research, and CVE query service. Granular OT security at the industry level is enhanced with Industrial Internet of Things (IIoT) and Internet of Medical Things (IoMT) device convergence.
• Reduce time to remediation and increase threat hunting effectiveness with new mapping of industrial devices and communication paths to the Purdue Reference Model hierarchy, new OT-specific playbooks for threat remediation, and incorporated use of the ICS MITRE ATT&CK® matrix for OT threat analysis.

Identity and Access

• Secure access to critical assets: Providing secure remote access for IT and OT networks, FortiPAM (https://www.fortinet.com/products/fortipam?utm_source=pr&utm_medium=pr&utm_campaign=pr-fortipam), an integral component of Fortinet's Identity and Access Management portfolio also comprised of FortiAuthenticator (https://www.fortinet.com/products/identity-access-management?utm_source=pr&utm_medium=pr&utm_campaign=pr-identity-access-management) and FortiToken (https://www.fortinet.com/products/identity-access-management?utm_source=pr&utm_medium=pr&utm_campaign=pr-identity-access-management), now includes zero-trust network access (ZTNA) controls when users try to access critical assets. The ZTNA tags can be applied to check device posture continuously for vulnerabilities, updated AV signatures, location, and machine groups.
  

Application Security

• Identify and fix vulnerabilities and misconfigurations in pre-production and runtime applications:FortiDevSec (https://www.fortinet.com/products/fortidevsec?utm_source=pr&utm_medium=pr&utm_campaign=pr-fortidevsec) is a new comprehensive application security testing solution incorporating SAST, DAST and SCA, for early vulnerability and misconfigurations detection, and protection including secret discovery. The tool scans application code in CI/CD pipelines and provides actionable remediation information to developers. The tool natively integrates with Jenkins, Bamboo, Azure DevOps, and more.
  

Supporting Quotes

"The received wisdom in security has long been that one should choose best-of-breed products and stitch them all together. Across the industry, the prevailing wisdom has changed as people increasingly realize that it makes more sense to have an integrated stack where different components work seamlessly together to create a proactive and automated security posture, and it is great to see this approach reflected in Fortinet's Security Fabric." - JP DiCicco, IT Manager Infrastructure Operations, RES Americas

"Adding additional Fortinet products into our environment and having that single Security Fabric really allows us to respond quickly to incidents, whereas before with the different siloed systems, they did not communicate with each other, so their intelligence was limited. But when we started migrating to the Fortinet suite, it really provided a lot of intelligence and automation to allow us to respond more quickly and to be more proactive." - Andy Craig, Chief Innovation Officer, Maple Knoll Communities

Fortinet Accelerate 2023
Accelerate is Fortinet's annual customer and partner conference taking place April 3-6, 2023. Visit Fortinet's LinkedIn company profileon April 4^th to live stream the keynotes, which will dive into today's cybersecurity news, as well as new innovations across Fortinet's secure networking portfolio.

Additional Resources

• Read more about Fortinet's Accelerate news and the benefits of consolidation and convergence in this blog post (https://www.fortinet.com/blog/business-and-technology/accelerate-doubling-down-on-convergence-and-consolidation?utm_source=pr&utm_medium=pr&utm_campaign=pr-accelerate-doubling-down-on-convergence-and-consolidation).
• Read about updates to Fortinet's NSE Certification program and more about the Fortinet Training Institute's momentum here (https://fortinet.com/corporate/about-us/newsroom/press-releases/2023/fortinet-expands-nse-certification-program-to-address-evolving-cybersecurity-skillset-needs?utm_source=pr&utm_medium=pr&utm_campaign=pr-fortinet-expands-nse-certification-program-to-address-evolving-cybersecurity-skillset-needs).
• Learn about Fortinet's free cybersecurity training (https://www.fortinet.com/training/cybersecurity-professionals?utm_source=website&utm_medium=pr&utm_campaign=freetraining), which includes broad cyber awareness and product training. As part of the Fortinet Training Advancement Agenda (TAA), the Fortinet Training Institute also provides training and certification through the Network Security Expert (NSE) Certification (https://www.fortinet.com/training-certification?utm_source=website&utm_medium=pr&utm_campaign=NSE),Academic Partner (https://www.fortinet.com/training/academic-partner-program?utm_source=website&utm_medium=pr&utm_campaign=academy), and Education Outreach (https://www.fortinet.com/training/education-outreach-program?utm_source=website&utm_medium=pr&utm_campaign=outreach) programs.
• Learn more about FortiGuard Labs (https://www.fortinet.com/fortiguard/labs?utm_source=website&utm_medium=pr&utm_campaign=fglabs) threat intelligence and research and Outbreak Alerts (https://www.fortinet.com/fortiguard/outbreak-alert?utm_source=website&utm_medium=pr&utm_campaign=outbreak), which provide timely steps to mitigate breaking cybersecurity attacks.
• Learn more about Fortinet's FortiGuard Security Services portfolio (https://www.fortinet.com/solutions/enterprise-midsize-business/security-as-a-service/fortiguard-subscriptions).
• Read about how Fortinet customers (https://www.fortinet.com/customers?utm_source=website&utm_medium=pr&utm_campaign=customers) are securing their organizations.
• Follow Fortinet on Twitter (https://twitter.com/Fortinet), LinkedIn (https://www.linkedin.com/company/fortinet/), Facebook (https://www.facebook.com/Fortinet/), and Instagram (https://www.instagram.com/behindthefirewall/). Subscribe to Fortinet on our blog (https://www.fortinet.com/blog?utm_source=website&utm_medium=pr&utm_campaign=blog) or YouTube (https://www.youtube.com/channel/UCJHo4AuVomwMRzgkA5DQEOA).
  

¹Gartner, Infographic: Top Trends in Cybersecurity 2022 - Vendor Consolidation, John Watts, Dionisio Zumerle, Published 19 August 2022.

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

About Fortinet
Fortinet, one of the largest and broadest training programs in the industry, is dedicated to making cybersecurity training and new career opportunities available to everyone. FortiGuard Labs, Fortinet's elite threat intelligence and research organization, develops and utilizes leading-edge machine learning and AI technologies to provide customers with timely and consistently top-rated protection and actionable threat intelligence. Learn more at https://www.fortinet.com, the Fortinet Blog, and FortiGuard Labs.

FTNT-O

Copyright © 2023 Fortinet, Inc. All rights reserved. The symbols ® and denote respectively federally registered trademarks and common law trademarks of Fortinet, Inc., its subsidiaries and affiliates. Fortinet's trademarks include, but are not limited to, the following: Fortinet, the Fortinet logo, FortiGate, FortiOS, FortiGuard, FortiCare, FortiAnalyzer, FortiManager, FortiASIC, FortiClient, FortiCloud, FortiMail, FortiSandbox, FortiADC, FortiAI, FortiAIOps, FortiAntenna, FortiAP, FortiAPCam, FortiAuthenticator, FortiCache, FortiCall, FortiCam, FortiCamera, FortiCarrier, FortiCASB, FortiCentral, FortiConnect, FortiController, FortiConverter, FortiCWP, FortiDB, FortiDDoS, FortiDeceptor, FortiDeploy, FortiDevSec, FortiEdge, FortiEDR, FortiExplorer, FortiExtender, FortiFirewall, FortiFone, FortiGSLB, FortiHypervisor, FortiInsight, FortiIsolator, FortiLAN, FortiLink, FortiMoM, FortiMonitor, FortiNAC, FortiNDR, FortiPenTest, FortiPhish, FortiPlanner, FortiPolicy, FortiPortal, FortiPresence, FortiProxy, FortiRecon, FortiRecorder, FortiSASE, FortiSDNConnector, FortiSIEM, FortiSMS, FortiSOAR, FortiSwitch, FortiTester, FortiToken, FortiTrust, FortiVoice, FortiWAN, FortiWeb, FortiWiFi, FortiWLC, FortiWLM and FortiXDR. Other trademarks belong to their respective owners. Fortinet has not independently verified statements or certifications herein attributed to third parties and Fortinet does not independently endorse such statements. Notwithstanding anything to the contrary herein, nothing herein constitutes a warranty, guarantee, contract, binding specification or other binding commitment by Fortinet or any indication of intent related to a binding commitment, and performance and other specification information herein may be unique to certain environments.

Media Contact:	Investor Contact:	Analyst Contact:
Camille Burdge Fortinet, Inc. 408-235-7700 pr@fortinet.com (mailto:pr@fortinet.com)	Peter Salkowski Fortinet, Inc. 408-331-4595 psalkowski@fortinet.com (mailto:psalkowski@fortinet.com)	Brian Greenberg Fortinet, Inc. 408-235-7700 analystrelations@fortinet.com (mailto:analystrelations@fortinet.com)