FortiSIEM 依托用户和实体行为分析(UEBA)技术,为用户提供强大的安全信息和事件管理(SIEM)功能优势
FortiSIEM 搭载众多优势功能,支持自动构建资产清单,自动应用前沿行为分析,快速检测和响应威胁,为安全运营团队提供强劲支持。FortiSIEM 是业内唯一一款全面内置配置管理数据库 (CMDB) 的安全运营平台。
Fortinet Advisor 搭载生成式 AI 助手,在事件调查、响应、威胁猎捕等过程中提供指导并提升 FortiSIEM 分析师技能水平。Advisor 可自动解析安全事件,并在数秒内生成涵盖潜在负面影响及补救措施建议等易于理解的事件摘要。分析师还可使用自然语言向 Fortinet Advisor 提问,以创建内容丰富的报告,并获得安全产品方面的建议和帮助。丰富的内置菜单提示,支持 FortiSIEM 分析师在通用工作流活动中轻松调用 Advisor AI 助手。
阅读 Fortinet Advisor 博客FortiGuard Labs 威胁情报专家提供 24x7 全天候支持,极速分析最新威胁并构建缓解措施。依托 UEBA 等全新 AI 驱动的行为异常检测功能,FortiSIEM 可有效防范各类已知和未知威胁。利用统计模型识别与正常行为模式不符的异常行为,如以极快速度(或窃取凭据)实现跨地区登录。
FortiSIEM 支持在统一可扩展解决方案中提供可见性、关联性、自动响应和修复措施建议。既能显著降低网络管理和安全运营复杂性,又能有效释放资源,优化漏洞检测,甚至防御各类恶意入侵。为提高威胁猎捕效率,FortiSIEM 现已搭载全新链路图技术,轻松构建用户、设备和事件间的可视化视图。
现代化 SOC 要求 SIEM 解决方案不仅限于处理日志收集、简单的规则关联、内容搜索和合规报告等传统任务。FortiSIEM 既支持传统任务,又搭载诸多独特的优势功能,满足当今安全运营需求。
自学资产清单
支持被动和主动发现方法、运用代理、FortiGate 和 OT 资产管理系统
实时安全分析
支持关联性分析、UEBA 机器学习引擎和 1600 多条规则,提供强大的威胁检测功能
生成式 AI 赋能
Fortinet Advisor 采用生成式 AI 指导、简化并自动化安全分析活动
Osquery 终端可见性
无缝集成优势打造可扩展的终端调查和取证监控功能
深度架构集成
依托强大的 API 跨 Security Fabric 集成广泛的 Fortinet 产品组合和第三方解决方案
业界领先的威胁情报
由 500 多名研究人员提供专业支持,并由全球规模最大的传感器阵列为 AI 馈送数据
FortiGuard NOC(网络运营中心)/SOC(安全管理平台)安全套件,提供众多高级安全技术,助力组织优化 NOC 和 SOC 团队。借助 AI 和自动化优势聚焦更多关键任务,更快响应各类威胁。
| 型号 | 每秒事件数 | 存储 | 技术参数表 |
|---|---|---|---|
| FortiSIEM 500F |
5000 |
3 TB |
|
| FortiSIEM 500G |
5000 |
4 TB |
|
| 型号 | 每秒事件数 | 存储 | 技术参数表 |
|---|---|---|---|
| FortiSIEM 2000F |
15,000 |
36 TB |
|
| FortiSIEM 2000G |
20,000 |
32 TB + 4 TB NVMe |
|
| 型号 | 每秒事件数 | 存储 | 技术参数表 |
|---|---|---|---|
| FortiSIEM 3500G |
40,000 |
96 TB |
|
Fortinet 致力于帮助客户赢得商业成功,FortiCare 服务每年赋能成千上万的组织充分利用其 Fortinet 产品和服务投资。为此,FortiCare 基于生命周期理念为客户提供业内独树一帜的安全服务,助力客户追逐成功。
技术支持服务
各种基于设备的选项支持高效操作。FortiCare Elite 选项为关键产品提供 15 分钟的响应时间。
高级支持
通过指定专家的运营审查,可提供各种基于客户的白手套服务,以减少干扰并提高生产力。
专业服务
我们的多供应商专家可以设计和部署基于最佳实践的完整解决方案,帮助您实现网络或安全目标并采用新功能。
RMA
整个产品系列均提供 Premium RMA 选项,加急更换有缺陷的硬件,以满足您的可用性目标。
See how Fortinet's new GenAI assistant, Fortinet Advisor, guides and turbocharges the FortiSIEM analyst experience across incident investigation, response, report creation, and more.
Learn about security’s biggest gap and how the NOC-SOC approach helps close that gap.
SIEMs can be difficult, SOCs are expensive, and the related compliance is a pain. StratoZen reduces or eliminates these challenges for their clients by using FortiSIEM as part of their SOC and SIEM “as a service” solutions.
Learn about the new features in FortiSIEM 5.0 – CMDB, UEBA and SOAR Orchestration. Learn how you can do more with less, harmonizing security and networking operations to business focused outcomes.
1touch.io provides automated real-time discovery, mapping, and tracking of personal data across structured and unstructured repositories found on-prem or in the cloud. Together with Fortinet, 1touch.io enables joint customers to effectively and granularly protect and report sensitive personal data across the enterprise.
Creating a Service-Centric Workload and Connectivity Converged Infrastructure that empowers our Enterprise customers to innovate without compromise. Our cloud networking and zero trust solution allows you to select Fortinet to protect your traffic.
6connect is the global leader in network resource provisioning automation and control. Together with Fortinet, 6connect’s ProVision platform provides unparalleled flexibility for SDWAN migration and increased flexibility for the modern enterprise dealing with the realities of hybrid cloud and distributed multi-vendor networks.
ABB is a pioneering technology leader that works closely with utilities, industry, transportation and infrastructure customers to write the future of industrial digitalization and realize value.
Acalvio ShadowPlex Autonomous Deception solution provides early detection of advanced threats with precision and speed. Together with Fortinet, Acalvio can automatically quarantine any compromised enterprise hosts based on the deception alerts and user-configurable threat severity levels.
At ADVA Optical Networking, we're creating a new vision for a more connected world. Our award-winning network functions virtualization (NFV) solutions provide our customers with unprecedented choice and flexibility. Our ADVA Ensemble solution suite provides a comprehensive NFV architecture that includes programmable hardware, comprehensive software and end-to-end orchestration solutions.
Advantech helps service providers and enterprises extend the cloud to the IoT edge by providing scalable network platforms that accelerate network transformation. Advantech network appliances and edge servers combined with Fortinet security software offer key foundational building blocks that will form the backbone of the new IoT economy.
Aislelabs is a location analytics and marketing automation platform designed for brick & mortar enterprises across multiple verticals. Aislelabs products, deployed on Fortinet infrastructure, enables end-to-end customer behavioral analytics by not only tracking how customers behave within the space, but also tools to engage them online and offline.
Alcide is a cloud-native security leader with the mission to empower DevOps and security teams to manage application and networking security through the intelligent automation of security policies applied uniformly, regardless of the workload and infrastructure.
AMD is transforming our lives by building great products that accelerate next-generation high-performance and adaptive computing experiences. AMD and Fortinet unlock high-performance capabilities for customers, enabling them to experience a best-in-class security and user experience with a compelling value proposition.
