Next-Generation Security for Microsoft Azure

Consistent Multi-layered security from across clouds and datacenters to Microsoft Azure

Extending Advanced Security for Microsoft Azure
web product icon azure cloud

Fortinet Security Fabric for Microsoft Azure

More and more enterprises are turning to Microsoft Azure to extend internal data centers and take advantage of the elasticity of the public cloud. While Azure secures the infrastructure, you are responsible for protecting everything you put in it. Fortinet Security Fabric provides Azure and Office 365 users the broad protection, native integration and automated management enabling customers with consistent enforcement and visibility across their multi-cloud infrastructure. The Fortinet Security Fabric offers deep multi-layer-security protection and operational benefits for securing web applications, mail applications, preventing zero day threats and managing global security infrastructures from the cloud.

 

Fortinet Security Fabric and Microsoft Azure

 

 

Features and Benefits:

 

reduce cash icon

Flexible Bring-Your-Own-License (BYOL) and Pay-As-You-Go (PAYG) licensing for scalable cloud workload deployments

icon benefits management

Centralized management with actionable insights to understand targeted attacks and meet compliance regulations

cloud ready icon

Cloud-ready and multilayered for granular security function segmentation

Icon automation

APIs for automation and orchestration with cloud and SDN extensions

Fortinet Security Fabric supports these use cases for Microsoft Azure security:

Hybrid Cloud

Hybrid Cloud

Businesses need seamless security orchestration that scales along with cloud workloads. The Fortinet Security Fabric includes next-generation firewalls (NGFWs) that compliment native Azure security functions while supporting secured and encrypted connectivity across every flavor of cloud infrastructure.  They can be managed from either a public cloud deployment or on-premises in a private data center.

Advanced application protection

Advanced Threat Protection

An increasingly essential percentage of modern business applications are deployed over public cloud infrastructures. At the same time, web and mail applications are responsible for the highest number of breaches per pattern. The Fortinet Security Fabric for Azure includes solutions designed to protect these kinds of business-critical applications from known and zero-day attacks by leveraging Security Fabric solutions such as FortiWeb, FortiMail and FortiSandbox

Secure Access VPN

Secure Access VPN

The Fortinet Security Fabric delivers best-in-class performance for securing VPN traffic for remote access VPN in Azure.  By leveraging Azure's multi-region global infrastructure, organizations can instantaneously scale their services globally and offer remote access VPN termination close to the end user.  Remote access VPN can be used to enable access to cloud-based applications as well as on premises applications that are connected to the cloud over other forms of private links or VPN. 

Cloud Services Hub

Cloud Services Hub (vNET)

Cloud-provider connectivity far outperforms that of the typical mid-sized enterprise. An Azure-based virtual network (vNET) allows organizations to share security services to multiple networks worldwide. By leveraging the extent of the Fortinet’s solutions—including network visibility, VPN connectivity, next generation firewall (NGFW), advanced web application firewall, sandboxing, and mail security—the Security Fabric provides far more services while leveraging cloud elasticity and on-demand scalability for optimized price/performance.

Securing Office 365

Securing Office 365

Due to the high attachment rate of Office 365 with Azure cloud deployments, alongside the fact that most threats find their way into organizations via email, the need to secure Office 365-based email and business applications is as high as ever. The combination of FortiMail, FortiSandbox, and FortiCASB provides critical capabilities when securing Office 365. In particular, the Security Fabric enables deep visibility into mail messages for protection from zero-day threats and monitoring of the Office 365 API layer. 

Featured Products on Microsoft Azure:

Fortinet offers its industry leading series of network security products over the Microsoft Azure Public Cloud enabling customers advanced security protection for their cloud based infrastructure and applications. Following is a list of products that can be purchased directly from the Azure Marketplace.

FortiGuard Security Services for Azure

FG Application Control

应用控制

可对您的用户正在运行的应用程序获得无可比拟的实时可见性,并轻松执行您可接受的使用策略,从而提供安全性并满足合规要求。通过 FortiGuard 应用控制,您可以快速创建策略来允许、拒绝或限制对应用程序或整个类别的应用程序的访问。

FG Web Filtering

网页过滤

通过对恶意、被侵入或不当网站的访问阻拦来保护您的组织。

icon sandbox cloud

FortiSandbox 云

FortiSandbox 云服务是一个高级威胁检测解决方案,能够执行动态分析来提前识别未知的恶意软件。FortiSandbox 云生成的可执行威胁情报会反馈到防火墙网络安全策略配置中,进行威胁阻断。

FG Antivirus

反病毒

FortiGuard 反病毒可阻断最新病毒、间谍软件以及其他内容层面的威胁。它采用行业领先的高级检测引擎来阻止不断变化的新威胁在您的网络中获得据点、访问网络中宝贵的内容。

FG Intrusion Prevention

入侵防御

FortiGuard IPS 通过检测威胁并在威胁侵入到网络设备前对此阻断,以此抵御最新的网络入侵。

Product Category Thumb SS virus outbreak

Virus Outbreak Protection Service

FortiGuard Virus Outbreak Protection Service (VOS) closes the gap between antivirus updates with FortiCloud Sandbox analysis to detect and stop malware threats discovered between signature updates before they can spread throughout an organization. OS initiates a real-time look-up to our Global Threat Intelligence database.

Product Category Thumb SS security audit

Content Disarm & Reconstruction

Content Disarm & Reconstruction (CDR) strips all active content from files in real-time, creating a flat sanitized file. All active content is treated as suspect and removed. CDR processes all incoming files, deconstructs them, and removes all elements that do not match firewall policies.

FG AntiBotnet

IP 信誉 & 反僵尸安全服务

FortiGuard IP 信誉服务从 Fortinet 分布式威胁传感器网络、CERT、MITRE、进行合作的竞争对手以及其他全球资源收集恶意来源 IP 数据,合力提供关于敌对来源的最新威胁情报。有来自分布式网络网关近乎实时的情报,再结合 FortiGuard Labs 的世界级研究,组织可得到更安全的保护并对攻击实施主动拦截。

FortiGate Enterprise Bundle

Our Enterprise (ENT) bundle now includes:

  • CASB - providing visibility, compliance, data security and threat protection for your cloud-based services.
  • Industrial Security Service protection – SCADA (supervisory control and data acquisition) and ICS (industrial control systems). These signatures address attacks against critical infrastructure and manufacturing industries, where we are seeing frequent and sophisticated cyberattacks.
  • Security Rating Service - this service performs checks against your fabric-enabled network and provides scoring and recommendations to your operation teams. The subsequent scorecard can be used to gauge adherence to various internal and external organizational polices, standards, and regulations requirements, including providing a ranking of your firm against industry peers. 

The FortiGuard Enterprise (ENT) Protection bundle is designed to address today’s advanced threat landscape. The Enterprise Bundle consolidates the comprehensive protection needed to protect and defend against all cyberattack channels from the endpoint to the cloud. Including the technologies needed to address today’s challenging OT, compliance, and management concerns. The Enterprise Bundle offers the most comprehensive protection overall. The Enterprise Bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • Web Filtering
  • Antispam
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • CASB
  • Security Rating 
  • Industrial Security Service
  • FortiCare
FortiGate UTM Bundle

The FortiGuard Unified Protection Bundle (UTM) is our traditional Unified Threat Management security bundle. The Unified Protection Bundle extends threat protection across the entire digital attack surface, providing industry-leading defense against sophisticated attacks. The UTM bundle has you covered for web and email-based attacks. The UTM bundle delivers the best package available for a unified threat protection offering. The UTM Bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • Web Filtering
  • Antispam
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • FortiCare

The FortiGuard Advantage: 

  • FortiGuard processes over 69 million websites every hour, providing up-to-the-minute reputation and categorization. 
  • Prevent malicious downloads and browser hijacking attacks with top-rated web filtering (VBWeb Verified)
  • Improved email productivity through superior spam prevention validated with 3rd party independent testing (VBSpam + Verified)
FortiGate Advanced Threat Protection Bundle

The FortiGuard Advanced Threat Protection (ATP) bundle provides the foundational security needed to protect and defend against known and unknown cyber threats. The Advanced Threat Protection bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • FortiCare 24*7
Services Table
Service Advanced Threat Protection
(ATP)
 
Unified Protection
(UTM)
 
Enterprise Protection
(ENT)
 
A La Carte Protection


Threat Intelligence Service
     
Industrial Security Service
   

Security Rating
   

CASB
   

Web Filtering
 

Antivirus + Sandboxing




IPS




Antispam
 

 
Internet DB



 
IP Reputation


 
Application Control