Extended Security for Google Cloud Platform

  • Consistent Multi-layered security from across clouds and datacenters to GCP 
  • Seamless Security management across clouds and datacenters from GCP    
Extending Advanced Security for GCP
Google Cloud Platform (GCP)

Fortinet Security Fabric for Google Cloud Platform

Securing applications on Google Cloud Platform (GCP) is a shared responsibility practice. While the underlying infrastructure is secured by Google, cloud customers have the responsibility to secure data and applications they are building over the cloud infrastructure. Fortinet Security Fabric for GCP offers organizations the ability to confidently deploy applications on GCP or across multiple clouds and datacenters while maintaining a high level of security.

 

diagram-product-gcp-1.jpg

 

Features and Benefits:

 

reduce cash icon

Flexible Bring-Your-Own-License (BYOL) licensing for scalable cloud workload deployment

icon benefits scalable

Integrated cloud security competency with top-rated protection, tested by NSS Labs, Virus Bulletin, and AV-Comparatives

cloud ready icon

Cloud-ready, multilayered, and virtual domain (vDOM) support for granular security function segmentation

reduce login icon

Actionable instant reports to understand targeted attacks and meet compliance regulations

Fortinet Security Fabric supports these use cases for Google Cloud Platform security:

Hybrid Cloud

Cloud Services Hub

Organizations leverage the elasticity, availability and scalability of GCP to centralize security services into an autonomous services hub serving a variety of business needs.

  • All sites, clouds and departments connect to services hub
  • Multi-layered security offered from the cloud
  • Security services scale as needed (resources used on demand)
  • Cloud security management infrastructure is globally available and scalable
Advanced application protection

Remote Access VPN

Organizations leverage the global presence of GCP infrastructures to uniformly provide remote access to their employees and partners

  • Users connect to any organizational resources via cloud SSL VPN Termination points
  • SaaS Application Access is brokered by FortiCASB
  • SSL VPN Termination points available worldwide on demand
  • SSL Termination points connect to other clouds, datacenters or locations over IPSec VPN tunnels
Secure Access VPN

Hybrid Cloud

Organizations leverage GCP as an additional infrastructure to develop and deliver IT solutions to their business alongside with their private datacenters.

  • IPSec tunnel across datacenters and clouds
  • Interoperable with GCP Cloud VPN Gateway
  • Consistent security policies across infrastructures
  • Central management across clouds with management HA
Securing Office 365

Advanced Web Application Protection

Increased confidence for organizations to deploy sensitive web applications over GCP. Supports the ability to comply with regulation and patch applications on the fly.

  • FortiGate advanced threat protection in conjunction with FortiWeb
  • Potential Integration with FortiSandbox Cloud
  • Central Management via FortiManager and FortiAnalyzer
Cloud Services Hub

Security Management from the Cloud

Organization can leverage cloud provider global availability and googles global network to deploy security management across multiple cloud regions and leverage cloud storage for logs.

  • Cloud based management to manage global information security infrastructure
  • Single point to view worldwide security events and take action
  • Security management is always close to the manager

Featured Products on Google Cloud Platform:

Fortinet offers its industry leading series of network security products over the Google Cloud Platform enabling customers advanced security protection for their cloud based infrastructure and applications. Following is a list of products that can be purchased directly from the Google Cloud Platform Marketplace.

FortiGuard Security Services for Google Cloud Platform

FG Application Control

Application Control

Improve security and meet compliance with easy enforcement of your acceptable use policy through unmatched, real-time visibility into the applications your users are running. With FortiGuard Application Control, you can quickly create policies to allow, deny, or restrict access to applications or entire categories of applications.

FG Web Filtering

Web Filtering

Protects your organization by blocking access to malicious, hacked, or inappropriate websites.

Icon cloudsandbox

FortiSandbox Cloud

FortiSandbox Cloud Service is an advanced threat detection solution that performs dynamic analysis to identify previously unknown malware. Actionable intelligence generated by FortiCloud Sandbox is fed back into preventive controls within your network—disarming the threat.

FG Antivirus

Antivirus

FortiGuard Antivirus protects against the latest viruses, spyware, and other content-level threats. It uses industry-leading advanced detection engines to prevent both new and evolving threats from gaining a foothold inside your network and accessing its invaluable content.

FG Intrusion Prevention

Intrusion Prevention

FortiGuard IPS protects against the latest network intrusions by detecting and blocking threats before they reach network devices.

virus outbreak service icon

Virus Outbreak Protection Service

FortiGuard Virus Outbreak Protection Service (VOS) closes the gap between antivirus updates with FortiCloud Sandbox analysis to detect and stop malware threats discovered between signature updates before they can spread throughout an organization. OS initiates a real-time look-up to our Global Threat Intelligence database.

security audit service icon

Content Disarm & Reconstruction

Content Disarm & Reconstruction (CDR) strips all active content from files in real-time, creating a flat sanitized file. All active content is treated as suspect and removed. CDR processes all incoming files, deconstructs them, and removes all elements that do not match firewall policies.

FG AntiBotnet

IP Reputation & Anti-botnet Security

The FortiGuard IP Reputation Service aggregates malicious source IP data from the Fortinet distributed network of threat sensors, CERTs, MITRE, cooperative competitors, and other global sources that collaborate to provide up-to-date threat intelligence about hostile sources. Near real-time intelligence from distributed network gateways combined with world-class research from FortiGuard Labs helps organizations stay safer and proactively block attacks.

FortiGate Enterprise Bundle

Our Enterprise (ENT) bundle now includes:

  • CASB - providing visibility, compliance, data security and threat protection for your cloud-based services.
  • Industrial Security Service protection – SCADA (supervisory control and data acquisition) and ICS (industrial control systems). These signatures address attacks against critical infrastructure and manufacturing industries, where we are seeing frequent and sophisticated cyberattacks.
  • Security Rating Service - this service performs checks against your fabric-enabled network and provides scoring and recommendations to your operation teams. The subsequent scorecard can be used to gauge adherence to various internal and external organizational polices, standards, and regulations requirements, including providing a ranking of your firm against industry peers. 

The FortiGuard Enterprise (ENT) Protection bundle is designed to address today’s advanced threat landscape. The Enterprise Bundle consolidates the comprehensive protection needed to protect and defend against all cyberattack channels from the endpoint to the cloud. Including the technologies needed to address today’s challenging OT, compliance, and management concerns. The Enterprise Bundle offers the most comprehensive protection overall. The Enterprise Bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • Web Filtering
  • Antispam
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • CASB
  • Security Rating 
  • Industrial Security Service
  • FortiCare
FortiGate UTM Bundle

The FortiGuard Unified Protection Bundle (UTM) is our traditional Unified Threat Management security bundle. The Unified Protection Bundle extends threat protection across the entire digital attack surface, providing industry-leading defense against sophisticated attacks. The UTM bundle has you covered for web and email-based attacks. The UTM bundle delivers the best package available for a unified threat protection offering. The UTM Bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • Web Filtering
  • Antispam
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • FortiCare

The FortiGuard Advantage: 

  • FortiGuard processes over 69 million websites every hour, providing up-to-the-minute reputation and categorization. 
  • Prevent malicious downloads and browser hijacking attacks with top-rated web filtering (VBWeb Verified)
  • Improved email productivity through superior spam prevention validated with 3rd party independent testing (VBSpam + Verified)
FortiGate Advanced Threat Protection Bundle

The FortiGuard Advanced Threat Protection (ATP) bundle provides the foundational security needed to protect and defend against known and unknown cyber threats. The Advanced Threat Protection bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • FortiCare 24*7
Services Table
Service Advanced Threat Protection
(ATP)
 
Unified Protection
(UTM)
 
Enterprise Protection
(ENT)
 
A La Carte Protection


Threat Intelligence Service
     
Industrial Security Service
   

Security Rating
   

CASB
   

Web Filtering
 

Antivirus + Sandboxing




IPS




Antispam
 

 
Internet DB



 
IP Reputation


 
Application Control