FortiSIEM

功能强大的安全信息和事件管理

ESG Lab 评审 — FortiSIEM
适用于:
  • 设备
  • 虚拟机
web product icon fortisiem

FortiSIEM Overview

Cyberattacks are a 24/7 reality. The complexity and growth of the enterprise estate – Infrastructure, Applications, VM’s, Cloud, Endpoints and IoT means the attack surface grows exponentially. Coupled with a skills shortage, and resource constraints, security becomes everybody’s problem but visibility, event correlation and remediation are other people’s responsibility.  Effective security requires visibility – all the devices, all the infrastructure in realtime – but also with context – what devices represent a threat, what is their capability so you manage the threat the business faces, not the noise multiple security tools create.

Security management only gets more complex. Endpoints, IoT, Infrastructure, Security Tools, Applications, VM’s and Cloud – the number of things you need to secure and monitor grows constantly. FortiSIEM – Fortinet’s Multivendor Security Incident and Events Management solution brings it all together. Visibility, Correlation, Automated Response and Remediation in a single, scalable solution. Using a Business Services view, the complexity of managing network and security operations is reduced, freeing resources, improving breach detection. Worldwide 80% of breaches go undetected because of skills shortage and event information ‘noise’. FortiSIEM provides the cross correlation, applies machine learning and UEBA to improve response, to stop breaches before they occur.

 

FortiSIEM News

Fortinet Delivers Integrated NOC-SOC Solution to Automate IT Processes and Security Response

4/16/2018: New management and analytics solution integrates Network Operations Center (NOC) and Security Operations Center (SOC) to bridge gap across silos; ServiceNow collaboration automates workflows and security response. Read the press release.

 

Fortinet Delivers the Industry’s First Integrated NOC-SOC Solution

4/16/2018: Fortinet just announced the industry’s first purpose-built NOC-SOC solution designed to bridge workflows, analysis, and automated response between operational and security processes. Read the blog.

 

FortiSIEM Videos

Fortinet Management and Analytics Solution

Learn about security’s biggest gap and how the NOC-SOC approach helps close that gap.

立即观看
StratoZen Simplifies SIEM, SOC and Compliance with FortiSIEM

FortiSIEM Product Details

Security management only gets more complex. Endpoints, IoT, Infrastructure, Security Tools, Applications, VM’s and Cloud – the number of things you need to secure and monitor grows constantly. FortiSIEM – Fortinet’s Multivendor Security Incident and Events Management solution brings it all together. Visibility, Correlation, Automated Response and Remediation in a single, scalable solution. Using a Business Services view, the complexity of managing network and security operations is reduced, freeing resources, improving breach detection. Worldwide 80% of breaches go undetected because of skills shortage and event information ‘noise’. FortiSIEM provides the cross correlation, applies machine learning and UEBA to improve response, to stop breaches before they occur.

 

Features and Benefits

connectivity icon

Asset Self-Discovery

Visibility needs to be both comprehensive and granular – understanding a devices contextual capabilities and vulnerabilities reduces false positives. 
icon benefits scalable

Rapid Integrations and Scalability

Network aware and security tool agnostic operations and management get a real-time business view of availability, utilization and security posture.    
monitoring icon

Automated Workflow

A leading SOAR (Security Orchestration and Automated Response engine) the FortiSIEM Remediation Library responds to threats with the security tools you have today, and will grow with your enterprise.    
range of model icon

Single Pane of Glass

Bringing teams together to quickly remediate service issues, pursuant to a secure, always on enterprise environment. 
platform support icon

Unified Platform

Multi-tenancy for role-based access to a unified platform. Of benefit to MSP’s and Enterprise customers alike – deliver services and reports to a customer or a report. Share actionable intelligence and deliver value without compromise.    

   

FortiSIEM Models and Specifications

Events per Second
5,000
Storage Capacity
3 TB
Events per Second
15,000
Storage Capacity
36 TB
Events per Second
30,000
Storage Capacity
72 TB

FortiSIEM virtual machines are supported on VMware vSphere, KVM, Microsoft Hyper-V and OpenStack

描述
50 devices and 500 EPS all-in-one perpetual license
描述
Add 25 devices and 250 EPS all-in-one perpetual license
描述
Add 50 devices and 500 EPS all-in-one perpetual license
描述
Add 100 devices and 1000 EPS all-in-one perpetual license
描述
Add 250 devices and 2500 EPS all-in-one perpetual license
描述
Add 450 devices and 4500 EPS all-in-one perpetual license
描述
Add 950 devices and 9500 EPS all-in-one perpetual license
描述
Add 1950 devices and 19500 EPS all-in-one perpetual license
描述
Add 3950 devices and 39500 EPS all-in-one perpetual license
描述
Add 4950 devices and 49500 EPS all-in-one perpetual license

FortiSIEM virtual machines are available on Amazon Web Services.

FortiGuard Security Services for FortiSIEM

FG IOCs DK

Indicators of Compromise

The FortiGuard Indicator of Compromise (IOC) service packages recently observed artifacts of host intrusions or compromise, delivering them daily to retroactively identify any host intrusions and proactively protect against the latest targeted attacks.

Product Demo

Learn how FortiSIEM monitoring tools can help you detect, prevent, and respond to security threats by doing a self-guided demo.

Please complete the form below to request a FortiSIEM demo:

FortiSIEM Alliance Partners

FortiSIEM provides integration with many leading IT vendors as part of the Fortinet Security Fabric.  Below is a list of current FortiSIEM Alliance Partners: