Industry Trends

Azure Security Center and Fortinet: Integrated Threat Management Solution for Cloud Workloads

By Warren Wu | August 05, 2016

Over the last 18-24 months the embrace of public cloud for critical workloads has transitioned from the “investigative” stage to “plan of record” for the majority of organizations.  Still, mysteries and major questions remain – especially when it comes to securing your cloud workloads. 

Microsoft understands the needs of their customers to secure their cloud workload and has developed a great toolset to make securing Microsoft Azure simple and straightforward – Azure Security Center (ASC).  ASC delivers several critical elements for securing your cloud workload:

  • Proactive infrastructure recommendations for security
  • Simple push button launch to add security solutions into your deployment
  • Integrated logging across all security points in your infrastructure

Fortinet Partners with Microsoft to deliver Enterprise Firewalls with Threat Intelligence for Azure Security Center Customers

Microsoft launched Azure Security Center to their Azure cloud services in September 2015 and it is built on top of the Azure Marketplace (AMP).  Organizations who deploy using AMP can easily find the ASC, as it is integrated with AMP for onboarding, certification, and billing integration. The initial security capabilities for ASC included Web Application Firewall (WAF), Load Balancing, Network Security Groups (NSGs) and others. 

Fortinet partnered with Microsoft to deliver against their next major milestone: Next Generation Firewalls for ASC, which was released on July 21, 2016.  Fortinet’s Enterprise Firewall virtual solution, FortiGate NGFW on AMP, is now available in the Azure Security Center as one of two recommended firewall solutions for your Azure workloads.

Fortinet Security Fabric Provides End-to-End Protection Across Cloud Environments

Fortinet’s purpose-built cloud security solution collaborates with key Fortinet products for a variety of cloud deployment models including Azure cloud workloads, while allowing for centralized management, open API integration, metering consumption, cloud platform orchestration, and automation. As malware is detected by a FortiGate firewall in the cloud, the Fortinet Security Fabric shares that threat intelligence dynamically with the rest of the interconnected security infrastructure. This reduces the need for multiple touch points and redundant policies across cloud premises, and ensures governance over multi-layered security boundaries, from IoT to the cloud. ASC customers will benefit from true end-to-end protection when deploying the FortiGate Enterprise Firewall in their cloud environments. 


Figure: Azure Security Center Dashboard

Seamless Deployment and Configuration of FortiGate on Azure Security Center

With Fortinet’s recent Azure Security Center certification, customers can now easily provision FortiGate Enterprise Firewalls and FortiWeb Web Application Firewalls directly from the Azure Security Center to configure security policies for resource groups, and set separate policies for different types of cloud workloads. Besides logging integration and security dashboard visibility, Fortinet works closely with the Azure Security Center to map common event formats and support event normalization schema for alert integration. If preferred, customers can also export the logs from the Azure Security Center into their own on-premise SIEM engines for better Hybrid Cloud collaboration.

Azure Security Center delivers real-time visibility and recommendations into DevOps-driven cloud application delivery. It enables security teams to quickly detect and respond to internal and external attacks in cloud VM instances, to simplify threat management while minimizing risk, and to safeguard their business.

Click here to learn more about the Fortinet solution in the Azure Marketplace.