Business & Technology

FortiAI: Virtual Security Analyst Revolutionizes Threat Protection for SecOps

By Damien Lim | February 24, 2020

Today’s businesses are fully aware of the consequences of a successful cyber attack, and yet they continue to struggle to put together a cyber security strategy that can deal with them effectively. And when you ask these organizations what their biggest challenge is to respond to threats in a timely manner, the most common response is likely tied to an overburdened SecOps team that cannot fully investigate every threat alert or encounter. 

The Promise of Artificial Intelligence 

While there have been inroads to automating threat protection, the expanding attack surface and sophistication of cybercriminal attack methods still outpace constrained security teams and legacy security processes. This challenge is compounded by the volume of false positives, and/or the various trial and errors, that SecOps team may have to deal with.

To tackle these issues, Fortinet has taken mature artificial intelligence that has been developed and trained by FortiGuard Labs and packaged it into the FortiAI appliance. 

Fortinet’s Mature Artificial Intelligence 

To further combat threats, Fortinet started developing various Machine Learning (ML) models in the early 2010’s to study the millions of samples they collected every day, long before putting the first ML solution into production. This solution applied ML-assisted intelligence towards detecting and blocking malware families as part of the antimalware engine found in several Fortinet products, including our flagship FortiGate firewall. Several critical milestones after this initial offering include applying in-line ML to various Fortinet technology and products, including Web Application Firewall (FortiWeb), Sandbox (FortiSandbox), UEBA (FortiInsight) and EDR (FortiEDR).  

With continued investment into AI, Fortinet expanded to Deep Learning models, developing a sophisticated AI that emulates the neurons found in a human brain, known as an Artificial Neural Network. After many years of training and refining, Fortinet has now developed a self-learning Deep Neural Networks (DNN) based solution named FortiAI: Virtual Security AnalystTM. FortiAI is aimed at alleviating the tedious work of studying malware characteristics to identify and classify them into threat categories, and furthermore, pin-point patient zero and other subsequent infected systems in sub-seconds. It functions just like a cyber Security Analyst, but multiplied by 10.

FortiAI Fundamentally Changes the Role AI Plays in SecOps

FortiAI: Virtual Security AnalystTM embeds DNN that is pre-trained with 6+ million malware features. It is an on-premises appliance providing accurate verdicts for incoming threats in real time, while studying and learning new threats so it can evolve and adapt to new attacks instantaneously. The result is a tailored threat intelligence that is specific to your organization that doesn’t rely on daily AI updates from the cloud.

The wait for a truly proactive and self-learning AI security solution is over. AI can now be applied directly to any organization’s environment to scale their cyber security operations and level the playing field with cybercriminals attempting to use AI in their attack methods. 

Engage in our Fortinet user community (Fuse). Share ideas and feedback, learn more about our products and technology, or connect with peers.

Explore how FortiAI is revolutionizing security operations with self-learning AI.