FortiSIEM 旨在成為您安全營運團隊的骨幹,能夠自動建立資產盤點,也能應用尖端行為分析以快速偵測及應對威脅,功能應有盡有。FortiSIEM 的安全營運平台獨步業界,完整內置配置管理資料庫 (CMDB)。
透過其 CMDB,FortiSIEM 能夠自動利用主動和被動發現方法,為您構建資產清單。清單包括裝置及其應用程式,而且會長期追蹤這些資產的狀態。持續收集情境,例如設定、效能、漏洞及其與業務服務的關係,以及 Purdue 模型 OT 關聯,因此事件發生時團隊能夠瞭解環境狀態。另外,它們擁有主動解決問題所需的可視性。
FortiGuard Labs 威脅情報專家全天候地分析最新威脅,並快速建立緩解措施。FortiSIEM 結合最新的 AI 驅動行為異常偵測功能,例如 UEBA,可抵禦已知和未知的威脅。統計模型可用來找出可疑和不可能的偏差,例如跨地理區域的登入需要超人的速度(或是遭竊憑證)。
FortiSIEM 透過單一、可擴充的解決方案整合了可視性、關聯、自動回應和修復功能。它能減少管理網路與安全營運的複雜度,有效釋放資源、改善入侵偵測,甚至是預防入侵。FortiSIEM 現在採用新的連結圖技術,可以輕鬆視覺化使用者、裝置和事件之間的關聯,支援更高效的威脅獵捕。
雖然現代 SOC 需要擁有遠超記錄聚合、簡單關聯規則與法規遵循技能的 SIEM,但這些基本技能依舊重要。
自學式資產清單
被動和主動發現方法、代理程式的使用、FortiGates,以及 OT 資產管理系統
即時安全分析
利用超過 1600 個開箱即用型規則,並且對應至 MITRE ATT&CK
業界領先的威脅情報
以 500 多位研究人員以及全球最大的感測器陣列提供的 AI 驅動為後盾
簡化調查
使用建議的行動手冊和威脅獵捕功能簡化工作流程
深度 Fabric 整合
透過強大的 API,跨 Fortinet 產品組合和第三方解決方案整合 Security Fabric
持續的合規性
3,500 多份開箱即用的報告,用於按需自助只讀稽核調查
| 型號 | 每秒事件數 | 儲存 | 資料表 |
|---|---|---|---|
| FortiSIEM 500F |
5000 |
3 TB |  |
| FortiSIEM 500G |
5000 |
4 TB | |
| 型號 | 每秒事件數 | 儲存 | 資料表 |
|---|---|---|---|
| FortiSIEM 2000F |
15,000 |
36 TB | |
| FortiSIEM 2000G |
20,000 |
32 TB + 4 TB NVMe | |
| 型號 | 每秒事件數 | 儲存 | 資料表 |
|---|---|---|---|
| FortiSIEM 3500G |
40,000 |
96 TB |
|
Fortinet 致力於協助我們的客戶取得成功,並且 FortiCare 服務每年都會幫助數千家組織從其對 Fortinet 產品和服務的投入中獲得最大利益。為實現這一目標,FortiCare 遵循生命週期方法並提供獨特的服務,幫助客戶邁向成功之路。
技術支援服務
按裝置提供的各種選項可實現高效運作。FortiCare Elite 選項針對關鍵產品提供了 15 分鐘的回應時間。
進階支援
按帳戶提供各種白手套服務,透過指定專家的運作審查,減少中斷並提高生產力。
專業服務
我們的多廠商專家可以設計並部署以最佳做法為基礎的全面解決方案,協助您達成網路或安全目標並採用新功能。
維修換貨
所有產品系列均提供進階維修換貨選項,可快速更換有缺陷的硬體,達成您的可用性目標。
Learn about security’s biggest gap and how the NOC-SOC approach helps close that gap.
SIEMs can be difficult, SOCs are expensive, and the related compliance is a pain. StratoZen reduces or eliminates these challenges for their clients by using FortiSIEM as part of their SOC and SIEM “as a service” solutions.
Learn about the new features in FortiSIEM 5.0 – CMDB, UEBA and SOAR Orchestration. Learn how you can do more with less, harmonizing security and networking operations to business focused outcomes.
AWS services are trusted by more than a million active customers around the world – including the fastest growing startups, largest enterprises, and leading government agencies – to power their infrastructures, make them more agile, and lower costs.
Learn more on the Fortinet-AWS alliance
Armis the leading unified asset visibility and security platform designed to address the new threat landscape that connected devices create. Our real-time and continuous protection sees the full context of all managed, unmanaged, and IoT devices, including medical devices, operational technology, and industrial control systems.
ATAR Labs builds next-generation SOAR platform ATAR. Together with Fortinet, SOC teams become more agile and respond to complex threats and defend their infrastructure. Automatic processes deployed and orchestrated from ATAR, and enforcement, and detection from Fortinet creates an integrated operation to achieve a secure environment.
Brocade networking solutions help the world's leading organizations turn their networks into platforms for business innovation. With solutions spanning public and private data centers to the wireless network edge, Brocade is leading the industry in its transition to the New IP network infrastructures required for today's era of digital business.
Cisco is the worldwide leader in IT that helps companies seize the opportunities of tomorrow by proving that amazing things can happen when you connect the previously unconnected.
Citrix is leading the transition to software-defining the workplace, uniting virtualization, mobility management, networking, and SaaS solutions to enable new ways for businesses and people to work better.
Claroty's ICS Security Platform passively protects industrial networks and assets from cyberattack; ensuring safe and continuous operation of the worlds most critical infrastructures without compromising the safety and security of personnel or expensive industrial assets. 2018 S4 ICS Challenge winner!
Cloud Range is the industry’s leading cyber preparedness simulation platform that reduces exposure to cyber risk across the organization. Fortinet and Cloud Range have partnered to provide cybersecurity teams with full-service, live-fire simulation exercises designed explicitly for OT/ICS, IT, IoT, and converged environments.
CrowdStrike has redefined security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity, and data.
CyGlass is an AI based SaaS security platform that uses network data to uncover, pinpoint, and respond to advanced cyber threats that have evaded traditional security controls.
