组织正在不断地向多云基础设施中迁移业务,带来了散落在各种基础设施中的业务关键数据和服务不断增多。基于云安全责任共担模型,组织依赖云服务提供商来保护存储、计算、网络,即基础设施层,自己来保护所有在公有云中构建、部署、存储的一切,包括服务、应用和数据。由于组织持续采用多云,大多数企业通过各个云平台提供的完全不同的工具来维护各种各样的环境。
马上观看
概览
组织正在拥抱多个公有云平台,这样就带来了更高的管理复杂度,进而提升了安全风险水平。此外,各个云平台提供的原生安全工具只能在自家云平台上使用,无法在如今多云的世界中有效管理跨所有云的安全风险,也无法提供一致的安全策略。这些挑战不仅在极大的消耗安全运营的宝贵时间,提升管理成本,并且让应用安全管理陷入困境,与此同时,多种云平台的API交互安全也在给安全管理员带来越来越多的困扰。
FortiCWP为安全管理员和DevOps团队提供能够评估其实用的公有云中的安全态势,如配置是否安全,是否合规或符合最佳安全规范,检测由于错误配置带来的潜在威胁,分析云资源(云内或跨云)间的流量。这样,安全管理员能够有效管理多云基础设施带来的风险,还能提供持续合规报表,通过与云基础设施进行集成来自动化保护云资源生命周期安全。
FortiCWP型号与规格
FortiCWP通过由Fortinet托管的SaaS服务来集中管理存储在SaaS中的数据和公有云应用。
如果您已经是我们的用户,可以直接访问FortiCWP.com服务。
View by:
白皮书
案例
在线视频
技术参数
View by:
Risk Management
Continuous configuration assessments and risk analysis presents actionable information enabling security teams to focus on the highest priority issues, take quick remediation actions, and automatically fix known configuration errors to manage and mitigate risk. Protect public clouds including: Amazon S3, Amazon Elastic Compute Cloud, Amazon EKS, IBM Identity and Access Manager roles, and more.
- Reduce risk with central visibility and control in distributed/multi-cloud environments.
- Prioritize vulnerabilities based on individual risk score.
Data Security
FortiCWP analyzes configurations, files, and documents in cloud storage services to identify and monitor insecure configurations, sensitive data, and malware. By drilling down to document profiles from generated alerts, customers can monitor and analyze sensitive data activity to investigate data leakage in their environment.
- Identify sensitive data, assess data leakage, and discover misconfigurations across the cloud environment.
- Assess risk by drilling down to document profiles from alerts to investigate data leakage and misconfigurations.
Traffic Analysis and Investigation
Obtain comprehensive visibility into all network resource topologies. FortiCWP also identifies and monitors network traffic for attacks, with drill-down capabilities on resource profiles. It provides contextual understanding of the cloud environment, helping eliminate blind spots, reduce incident response time, and analyze incident impact to improve security posture.
Gain complete visibility and visualize Infrastructure-as-a-Service (IaaS) environments to:
- Quickly implement effective control and security policies.
- Protect resources against inside or outside threats in major public cloud infrastructures.
Threat Detection and Response
Continuously monitor/track all security activity, including configurations, user activity, traffic flow logs, and data storage in public cloud environments. Predefined policies detect any potential risk such as: malicious traffic, suspicious user activity, vulnerability configuration, and sensitive data leaks and malware.
- Detect complex threats and user activity in public cloud environments.
- Identify suspicious host/IP and provide details on violated policies.
- Rapid response to identified threats based on contextual alerts.
合规
For organizations operating in a highly regulated industry, FortiCWP provides out-of-the-box policies for standards and mandates, and allows organizations to quickly generate compliance reports for auditing teams so they can identify policy violations and take necessary remedial actions.
- Enhanced visibility and control maintains historical snapshots of public cloud environments.
- Continuous monitoring of security and compliance assessment policies.
- Comprehensive reporting to stay compliant and reduce risk.
产品特性
基于API
与市场领先的云服务供应商进行基于高级API的集成
DevOps整合
提供自动化响应能力和数据洞察,并轻松与DevOps流程整合
可定制的威胁发现
高度定制化的检测方式来识别新威胁,以满足不同用户的需求
完善的分析能力
完善且方便使用的可视化工具快速识别风险和策略违反情况
合规报表与策略
预定义开箱即用的合规报表选项
消除云中盲点
通过将云平台中的威胁、资源和流信息整合,消除云中流量的盲点
FortiCWP 功能亮点
- 风险管理,让安全团队始终聚焦在高优先级的事件上,并进行快速响应降低影响
- 数据安全,提供配置安全评估,分析在云存储服务中的文档
- 流量分析,确保安全团队获得对跨多云的资源连接关系的映射,并进行可视化展现
- 威胁检测,持续监控基础设施安全,并帮助安全团队快速响应
- 获取合规报表,支持PCI, HIPPA, SOX, GDPR, ISO 27001, NIST
重点支持云平台
