Next Generation Security for Azure

  • Consistent Multi-layered security from across clouds and datacenters to Microsoft Azure
  • Seamless security management and visibility across clouds and datacenters from Microsoft Azure
Extending Advanced Security for Microsoft Azure
Microsoft Azure banner image

Fortinet Security Fabric for Microsoft Azure

More and more enterprises are turning to Microsoft Azure to extend internal data centers and take advantage of the elasticity of the public cloud. While Azure secures the infrastructure, you are responsible for protecting everything you put in it. Fortinet Security Fabric provides Azure and Office 365 users the broad protection, native integration and automated management enabling customers with consistent enforcement and visibility across their multi-cloud infrastructure. The Fortinet Security Fabric offers deep multi-layer-security protection and operational benefits for securing web applications, mail applications, preventing zero day threats and managing global security infrastructures from the cloud.

 

Fortinet Security Fabric and Microsoft Azure

 

 

Features and Benefits:

 

reduce cash icon

Flexible Bring-Your-Own-License (BYOL) and Pay-As-You-Go (PAYG) licensing for scalable cloud workload deployments

icon benefits management

Centralized management with actionable insights to understand targeted attacks and meet compliance regulations

cloud ready icon

Cloud-ready and multilayered for granular security function segmentation

Icon automation

APIs for automation and orchestration with cloud and SDN extensions

Fortinet Security Fabric supports these use cases for Microsoft Azure security:

Hybrid Cloud

Hybrid Cloud

Businesses need seamless security orchestration that scales along with cloud workloads. The Fortinet Security Fabric includes next-generation firewalls (NGFWs) that compliment native Azure security functions while supporting secured and encrypted connectivity across every flavor of cloud infrastructure.  They can be managed from either a public cloud deployment or on-premises in a private data center.

Advanced application protection

Advanced Threat Protection

An increasingly essential percentage of modern business applications are deployed over public cloud infrastructures. At the same time, web and mail applications are responsible for the highest number of breaches per pattern. The Fortinet Security Fabric for Azure includes solutions designed to protect these kinds of business-critical applications from known and zero-day attacks by leveraging Security Fabric solutions such as FortiWeb, FortiMail and FortiSandbox

Secure Access VPN

Secure Access VPN

The Fortinet Security Fabric delivers best-in-class performance for securing VPN traffic for remote access VPN in Azure.  By leveraging Azure's multi-region global infrastructure, organizations can instantaneously scale their services globally and offer remote access VPN termination close to the end user.  Remote access VPN can be used to enable access to cloud-based applications as well as on premises applications that are connected to the cloud over other forms of private links or VPN. 

Cloud Services Hub

Cloud Services Hub (vNET)

Cloud-provider connectivity far outperforms that of the typical mid-sized enterprise. An Azure-based virtual network (vNET) allows organizations to share security services to multiple networks worldwide. By leveraging the extent of the Fortinet’s solutions—including network visibility, VPN connectivity, next generation firewall (NGFW), advanced web application firewall, sandboxing, and mail security—the Security Fabric provides far more services while leveraging cloud elasticity and on-demand scalability for optimized price/performance.

Securing Office 365

Securing Office 365

Due to the high attachment rate of Office 365 with Azure cloud deployments, alongside the fact that most threats find their way into organizations via email, the need to secure Office 365-based email and business applications is as high as ever. The combination of FortiMail, FortiSandbox, and FortiCASB provides critical capabilities when securing Office 365. In particular, the Security Fabric enables deep visibility into mail messages for protection from zero-day threats and monitoring of the Office 365 API layer. 

Featured Products on Microsoft Azure:

Fortinet offers its industry leading series of network security products over the Microsoft Azure Public Cloud enabling customers advanced security protection for their cloud based infrastructure and applications. Following is a list of products that can be purchased directly from the Azure Marketplace.

FortiGuard Security Services for Azure

FG Application Control

Application Control

Improve security and meet compliance with easy enforcement of your acceptable use policy through unmatched, real-time visibility into the applications your users are running. With FortiGuard Application Control, you can quickly create policies to allow, deny, or restrict access to applications or entire categories of applications.

FG Web Filtering

Web Filtering

Protects your organization by blocking access to malicious, hacked, or inappropriate websites.

Icon cloudsandbox

FortiSandbox Cloud

FortiSandbox Cloud Service is an advanced threat detection solution that performs dynamic analysis to identify previously unknown malware. Actionable intelligence generated by FortiCloud Sandbox is fed back into preventive controls within your network—disarming the threat.

FG Antivirus

Antivirus

FortiGuard Antivirus protects against the latest viruses, spyware, and other content-level threats. It uses industry-leading advanced detection engines to prevent both new and evolving threats from gaining a foothold inside your network and accessing its invaluable content.

FG Intrusion Prevention

Intrusion Prevention

FortiGuard IPS protects against the latest network intrusions by detecting and blocking threats before they reach network devices.

virus outbreak service icon

Virus Outbreak Protection Service

FortiGuard Virus Outbreak Protection Service (VOS) closes the gap between antivirus updates with FortiCloud Sandbox analysis to detect and stop malware threats discovered between signature updates before they can spread throughout an organization. OS initiates a real-time look-up to our Global Threat Intelligence database.

security audit service icon

Content Disarm & Reconstruction

Content Disarm & Reconstruction (CDR) strips all active content from files in real-time, creating a flat sanitized file. All active content is treated as suspect and removed. CDR processes all incoming files, deconstructs them, and removes all elements that do not match firewall policies.

FG AntiBotnet

IP Reputation & Anti-botnet Security

The FortiGuard IP Reputation Service aggregates malicious source IP data from the Fortinet distributed network of threat sensors, CERTs, MITRE, cooperative competitors, and other global sources that collaborate to provide up-to-date threat intelligence about hostile sources. Near real-time intelligence from distributed network gateways combined with world-class research from FortiGuard Labs helps organizations stay safer and proactively block attacks.

FortiGate Enterprise Bundle

Our Enterprise (ENT) bundle now includes:

  • CASB - providing visibility, compliance, data security and threat protection for your cloud-based services.
  • Industrial Security Service protection – SCADA (supervisory control and data acquisition) and ICS (industrial control systems). These signatures address attacks against critical infrastructure and manufacturing industries, where we are seeing frequent and sophisticated cyberattacks.
  • Security Rating Service - this service performs checks against your fabric-enabled network and provides scoring and recommendations to your operation teams. The subsequent scorecard can be used to gauge adherence to various internal and external organizational polices, standards, and regulations requirements, including providing a ranking of your firm against industry peers. 

The FortiGuard Enterprise (ENT) Protection bundle is designed to address today’s advanced threat landscape. The Enterprise Bundle consolidates the comprehensive protection needed to protect and defend against all cyberattack channels from the endpoint to the cloud. Including the technologies needed to address today’s challenging OT, compliance, and management concerns. The Enterprise Bundle offers the most comprehensive protection overall. The Enterprise Bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • Web Filtering
  • Antispam
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • CASB
  • Security Rating 
  • Industrial Security Service
  • FortiCare
FortiGate UTM Bundle

The FortiGuard Unified Protection Bundle (UTM) is our traditional Unified Threat Management security bundle. The Unified Protection Bundle extends threat protection across the entire digital attack surface, providing industry-leading defense against sophisticated attacks. The UTM bundle has you covered for web and email-based attacks. The UTM bundle delivers the best package available for a unified threat protection offering. The UTM Bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • Web Filtering
  • Antispam
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • FortiCare

The FortiGuard Advantage: 

  • FortiGuard processes over 69 million websites every hour, providing up-to-the-minute reputation and categorization. 
  • Prevent malicious downloads and browser hijacking attacks with top-rated web filtering (VBWeb Verified)
  • Improved email productivity through superior spam prevention validated with 3rd party independent testing (VBSpam + Verified)
FortiGate Advanced Threat Protection Bundle

The FortiGuard Advanced Threat Protection (ATP) bundle provides the foundational security needed to protect and defend against known and unknown cyber threats. The Advanced Threat Protection bundle includes: 

  • NGFW Application Control
  • IPS
  • Antivirus
  • Botnet
  • IP/Domain Reputation
  • Mobile Security
  • FortiSandbox Cloud
  • Virus Outbreak Protection
  • Content Disarm & Reconstruction 
  • FortiCare 24*7
Services Table
Service Advanced Threat Protection
(ATP)
 
Unified Protection
(UTM)
 
Enterprise Protection
(ENT)
 
A La Carte Protection


Threat Intelligence Service
     
Industrial Security Service
   

Security Rating
   

CASB
   

Web Filtering
 

Antivirus + Sandboxing




IPS




Antispam
 

 
Internet DB



 
IP Reputation


 
Application Control