FortiAnalyzer

FortiAnalyzer is a powerful log management, analytics, and reporting platform, providing organizations with single-pane orchestration, automation, and response for simplified security operations, proactive identification and remediation of risks, and complete visibility of the entire attack surface.

Integrated with the Fortinet Security Fabric, advanced threat detection capabilities, centralized security analytics, and complete end-to-end security posture awareness and control helps security teams identify and eliminate threats before a breach can occur.

Orchestrate security tools, people, and process for streamlined execution of tasks and workflows, incident analysis and response, and rapidly expedite threat detection, case creation and investigation, and mitigation and response.

Automate workflows and trigger actions with fabric connectors, playbooks, and event handlers to accelerate your network security team’s ability to respond to critical alerts and events, plus service level agreement (SLA) for regulation and compliance.

Respond in real-time to network security attacks, vulnerabilities, and warnings of potential compromises, with threat intelligence, event correlation, monitoring, alerts and reporting for immediate tactical response and remediation.

Key Features

  • Security Fabric Analytics with event correlation and real-time detection across all logs, with Indicators of Compromise (IOC) service and detection of advanced threats
  • Fortinet Security Fabric integration with FortiGate NGFWs, FortiClient, FortiSandbox, FortiWeb, FortiMail, and others for deeper visibility and critical network insights
  • Enterprise-grade high availability to automatically back-up FortiAnalyzer databases (up to four node cluster), which can be geographically dispersed for disaster recovery
  • Security Automation to reduce complexity, leveraging REST API, scripts, connectors, and automation stitches to expedite security response and reduce time-to-detect
  • Multi-Tenancy solution with quota management, leveraging (ADOMs) to separate customer data and manage domains for operational effectiveness and compliance
  • Flexible deployment options as appliance, VM, hosted, or public cloud. Use AWS, Azure, or Google for cloud secondary archival storage.

FEATURES HIGHLIGHT

Incident Detection and Response

  • Centralized NOC/SOC Visibility for the Attack Surface
  • Event Management
  • Incident Management
  • Playbook Automation
  • Security Services

Security Fabric Analytics

  • Analytics and Reporting
  • Assets and Identity
  • FortiView
  • Monitors
  • FortiAnalyzer Reports

Deployments

  • Deploying FortiAnalyzer
  • FortiAnalyzer High Availability (HA)
  • Multi-Tenancy with Flexible Quota Management
  • Analyzer-Collector Mode
  • Log Forwarding for Third-Party Integration
  • Trusted Platform Module (TPM) Encryption

Cloud Services

  • FortiAnalyzer Cloud

FortiAnalyzer Virtual Machines

  • FortiAnalyzer-VM S
  • FortiAnalyzer-VM

Leave a comment

Hey, so you decided to leave a comment! That's great. Just fill in the required fields and hit submit. Note that your comment will need to be reviewed before its published.