Fortinet black logo

Online Help

Home FortiCNP 22.3.a Online Help

Cloud Protection

22.3.a
22.4.a
22.3.b
22.3.a
Copy Link
Copy Doc ID cf00dcb1-0886-11ed-bb32-fa163e15d75b:20762

Cloud Protection

Introduction

FortiCNP is Fortinet's Cloud-Native Protection (CNP) service. FortiCNP Cloud Protection continuously monitors and tracks all security components, including configurations, user activity, traffic flow log, and data storage in public cloud environments. Equipped with predefined security policies out-of-the-box, FortiCNP monitors for security risks such as:

  1. Malicious traffic
  2. Suspicious user activity
  3. Vulnerable configuration
  4. Sensitive data leak and malware

FortiCNP provides contextual information to respond to identified threats. FortiCNP also supports automated incident response through integration with cloud services such as AWS SQS and SNS workflow, streamlining DevOps.

  • Central Visibility - Visibility is one of the most important aspects of cloud security. FortiCNP provides users central visibility for multi-cloud environments in a single pane glass view. With Resource Risk Insights, users are able to quickly locate a resource, identify its highlighted risk attributes, such as configuration risk, vulnerabilities, and view the resource profile to understand the resource life cycle as well as tracking configuration changes. Associated Resources also provides a graphical view of relationships among different resources which gives security admin the clearest way to understand how the cloud infrastructure is configured.
  • Risk Assessment – FortiCNP’s deep risk assessment and continuous analysis solution enables security teams to focus on the highest priority issues, take quick remediation as well as utilizing auto fixing option to effectively manage and address risk. Actionable alerts enable organizations to prioritize response based on the severity of issues.
  • Traffic Analysis and Investigation - FortiCNP continuously monitors and analyzes traffic flow, integrates with FortiGuard IOC and Anti Botnet databases to detect compromised instances and malicious incoming traffic. In return it provides traffic flow in graphical view for quick investigation on network attack and analyzes traffic flow overtime.
  • Data Security - FortiCNP not only provides comprehensive configuration assessment to ensure security of data storage, but it also analyzes documents inside the storage to identify and monitor sensitive data and malware. Security admins can monitor and analyze sensitive data activity by drilling down document profiles from generated alerts to investigate data leakage in the environment.
  • Threat Protection and Response - FortiCNP uses User Entity Behavior Analytics to look for suspicious or irregular user behavior. It also sends out alerts for malicious behavior.
  • Compliance - For organization operating in a highly regulated industry, FortiCNP provides out-of-the-box policies for standards such as PCI, HIPPA, SOX, GDPR, ISO 27001, and NIST which allows organizations to generate compliance reports instantly for auditing teams, so policy violations can be identified quickly and take necessary remedial actions.

Previous
Next

Cloud Protection

Introduction

FortiCNP is Fortinet's Cloud-Native Protection (CNP) service. FortiCNP Cloud Protection continuously monitors and tracks all security components, including configurations, user activity, traffic flow log, and data storage in public cloud environments. Equipped with predefined security policies out-of-the-box, FortiCNP monitors for security risks such as:

  1. Malicious traffic
  2. Suspicious user activity
  3. Vulnerable configuration
  4. Sensitive data leak and malware

FortiCNP provides contextual information to respond to identified threats. FortiCNP also supports automated incident response through integration with cloud services such as AWS SQS and SNS workflow, streamlining DevOps.

  • Central Visibility - Visibility is one of the most important aspects of cloud security. FortiCNP provides users central visibility for multi-cloud environments in a single pane glass view. With Resource Risk Insights, users are able to quickly locate a resource, identify its highlighted risk attributes, such as configuration risk, vulnerabilities, and view the resource profile to understand the resource life cycle as well as tracking configuration changes. Associated Resources also provides a graphical view of relationships among different resources which gives security admin the clearest way to understand how the cloud infrastructure is configured.
  • Risk Assessment – FortiCNP’s deep risk assessment and continuous analysis solution enables security teams to focus on the highest priority issues, take quick remediation as well as utilizing auto fixing option to effectively manage and address risk. Actionable alerts enable organizations to prioritize response based on the severity of issues.
  • Traffic Analysis and Investigation - FortiCNP continuously monitors and analyzes traffic flow, integrates with FortiGuard IOC and Anti Botnet databases to detect compromised instances and malicious incoming traffic. In return it provides traffic flow in graphical view for quick investigation on network attack and analyzes traffic flow overtime.
  • Data Security - FortiCNP not only provides comprehensive configuration assessment to ensure security of data storage, but it also analyzes documents inside the storage to identify and monitor sensitive data and malware. Security admins can monitor and analyze sensitive data activity by drilling down document profiles from generated alerts to investigate data leakage in the environment.
  • Threat Protection and Response - FortiCNP uses User Entity Behavior Analytics to look for suspicious or irregular user behavior. It also sends out alerts for malicious behavior.
  • Compliance - For organization operating in a highly regulated industry, FortiCNP provides out-of-the-box policies for standards such as PCI, HIPPA, SOX, GDPR, ISO 27001, and NIST which allows organizations to generate compliance reports instantly for auditing teams, so policy violations can be identified quickly and take necessary remedial actions.

Previous
Next