Securing Google Cloud Platform with Fortinet Security Fabric
Consistent Multi-layered security from across clouds and datacenters to GCPExtending Advanced Security for GCP
Fortinet Dynamic Cloud Security for GCP
Organizations are modernizing their IT operations to develop applications faster and accelerate time to innovate to maintain their competitive position in the digital innovation era. Google Cloud provides customers with modern approaches to enable business innovation. Cloud computing expands digital services across hybrid and multi-cloud infrastructures.
The Fortinet dynamic cloud security for Google Cloud provides consistent, best-in-class enterprise security to Google Cloud-based environments. The Security Fabric protects business workloads across on-premises, data centers and cloud environments — providing multi-layered security for cloud-based applications. The solution offers Network, Application, and Cloud platform security capabilities provided in a variety of form factors including VM-, container-, and SaaS delivered protection that natively integrates Fortinet security functionality into Google Cloud.
Fortinet breaks down the barriers that inhibit security visibility and management across private, public, and hybrid cloud platforms. The Fortinet Dynamic Cloud Security solution for GCP helps organizations maintain operationally viable consistent security protection in a shared responsibility model, from on-premises to the cloud.
Features and Benefits:
Simplify security management with single-pane control across GCP and on-premises data centers
Gain cloud-native visibility and control into your GCP workloads and applications
Leverage Fortinet Cloud Security Services Hub for scalable and multi-layer secure connectivity
Security offerings in VM, and SaaS form factors with flexible BYOL and PAYG billing options
FortiGate Next-Generation Firewall on GCP
The FortiGate Next Firewall on GCP delivers next generation firewall and SD-WAN capabilities for organizations of all sizes, with the flexibility to be deployed as next generation firewall and/or VPN gateway. It enables broad protection and automated management for consistent enforcement and visibility across your hybrid cloud infrastructure. FortiGate scales from the
FortiWeb Cloud WAF-as-a-Service
FortiWeb Cloud WAF-as-a-Service is a Security-as-a-Service SaaS cloud-based web application firewall (WAF) that protects public cloud-hosted web applications from the OWASP Top 10, zero-day threats, and other application layer attacks.
Requiring no hardware or software, the FortiWeb colony of WAF gateways can run in several GCP regions. This allows organizations to scrub application traffic within the same region their applications reside, addressing performance and regulation concerns, as well as keeping traffic cost to a minimum.
Cloud Workload Protection with FortiCWP
FortiCWP is Fortinet’s Cloud Workload Protection (CWP) solution. FortiCWP uses API level integration into GCP management and security services to monitor and track cloud resources including their configurations, activity, traffic flows. FortiCWP will also scan cloud data stores for sensitive or malicious content and produce reports on an organization’s compliance with common regulatory standards. FortiCWP also supports Microsoft Azure and AWS.
Fortinet Use Cases for GCP
Fortinet Dynamic Cloud Security enables the broadest set of use cases for GCP.
Cloud Platform Visibility and Control
- Cloud infrastructure visibility and control
Monitor activity and configuration of multiple cloud resources while simplifying regulatory compliance reporting.
- Compliance in the cloud
Automate compliance auditing and reporting for on-premises and cloud environments.
- Cloud-based security management and analytics
Leverage the global presence of GCP to deploy centralized and global security management and analytics systems in the cloud.
- Web Application Security
Secure web applications from known and unknown attacks using Fortinet's unique Web Application Security solutions
- Container Security
Enable security for all stages of container deployment and rollout.
- Secure Hybrid Cloud
Deploy secure connectivity, network segmentation, and application security for hybrid-cloud-based deployments.
- Cloud Security Services Hub
Unify disparate environments through a central security services hub, or transit network.
- Logical (intent-based) Segmentation
Deploy intent-based segmentation, which builds access rules and segments based on user identity or business logic, and adjusts rules dynamically in response to a continuous trust assessment.
Click here to learn more about these use cases.
Featured Products on Google Cloud Platform
Fortinet offers its industry-leading series of network security products on the Google Cloud Platform, enabling advanced security protection for your cloud-based infrastructure and applications.
The FortiWeb Web Application Firewall (WAF) provides advanced features and AI-based machine learning detection engines that defend web applications from vulnerability exploits, bots, malware uploads, DDoS attacks, advanced persistent threats (APTs), and zero-day attacks.
FortiManager provides single-pane-of-glass management for unified, end-to-end protection across the extended enterprise. It delivers insight into network traffic and offers enterprise-class features for threat containment.
FortiAnalyzer delivers critical insight into threats across the entire attack surface and provides Instant visibility, situation awareness, real-time threat intelligence, and actionable analytics.
Visit Google Marketplace for a complete list of Fortinet products on the Google Cloud Platform.
FortiGuard Security Services for Google Cloud Platform
可對您的客戶正在執行的應用程式獲得無可比擬的即時可視性，並輕鬆實施您可接受的使用原則，進而提高安全性並滿足合規要求。透過 FortiGuard 應用程式控制，您可以快速建立原則來允許、拒絕或限制對應用程式或整個類別的應用程式的存取。
FortiSandbox 雲端服務是一個進階威脅偵測解決方案，可執行動態分析以識別先前未知的惡意軟體。FortiSandbox 雲端產生的可執行情報會反饋到網路中的預防控制機制，進而消除威脅。
FortiGuard IPS 透過偵測威脅並在威脅侵入到網路裝置前進行封鎖，以此抵禦最新的網路入侵。
Virus Outbreak Protection Service
FortiGuard Virus Outbreak Protection Service (VOS) closes the gap between antivirus updates with FortiCloud Sandbox analysis to detect and stop malware threats discovered between signature updates before they can spread throughout an organization. OS initiates a real-time look-up to our Global Threat Intelligence database.
Content Disarm & Reconstruction
Content Disarm & Reconstruction (CDR) strips all active content from files in real-time, creating a flat sanitized file. All active content is treated as suspect and removed. CDR processes all incoming files, deconstructs them, and removes all elements that do not match firewall policies.
IP 聲譽評等 & 預防殭屍網路安全服務
FortiGuard IP 聲譽評等服務從 Fortinet 分佈式威脅感測器網路、CERT、MITRE、進行合作的競爭對手以及其他全球資源彙集惡意來源 IP 資料，這些資源共同協作，合力提供關於敵對來源的最新威脅情報。憑藉來自分佈式網路閘道近乎即時的情報，再結合 FortiGuard Labs 的世界級研究，組織可得到更安全的保護並對攻擊實施主動攔截。