Fortinet Public Cloud Security
Secure Your Public Cloud Infrastructure and Workloads
Gain Visibility and Control Over Your Cloud Environments and Applications
Organizations are increasingly deploying a variety of workloads across multiple clouds. In turn, business-critical data and services are increasingly scattered across this distributed infrastructure. Using the shared responsibility model as a guiding principle, enterprises rely on cloud providers to protect the network, storage, and computing layers, while enterprises own the security for everything that is built, deployed, or stored in the public cloud. Due to multi-cloud adoption, most enterprises maintain heterogeneous environments, with tools from each cloud platform differing significantly.
Fortinet Cloud Security Solution Functions and Products
Fortinet adaptive cloud security solutions and products complement the power and scalability of cloud providers by breaking down the barriers that complicate security visibility and management across an organization’s entire infrastructure. At the same time, Fortinet streamlines operations, policy management, and visibility for improved security lifecycle management with full automation capabilities. And with native integration of security capabilities to each cloud platform, Fortinet products enable broad protection of applications and support for the broadest set of cloud use cases.
The Fortinet network security product line is available on all of the leading cloud providers with BYOL or on-demand per-usage (PAYG) options.
Management and Automation
- FortiManager: Cloud-based management for Fortinet products
- FortiAnalyzer: Cloud-based reporting to streamline SOC operations.
- FortiSIEM: Fortinet's multi-vendor Security Information and Event Management solution.
- FortiCWP: A security broker controls and monitors the organization's management of public cloud infrastructures.
Broad Protection
- FortiGate: Industry leading next-generation firewall runs in the cloud or on-premise
- FortiWeb: Fortinet's web-application firewall protects web applications and helps with patching and regulatory compliance.
- FortiMail: Secure email gateway protects against email-bourne threats and data loss via email.
- FortiSandbox: Offers a powerful combination of advanced detection, automated mitigation, actionable insight, and flexible deployment to stop targeted attacks and subsequent data loss.
Native Integration
- Fortinet Cloud Connectors: Provide an abstraction layer for Fortinet products to treat cloud infrastructures in a seamless manner by translating. Network addresses into security objects and providing various other security integrations with cloud provider API’s.
- Fortinet Fabric APIs: The APIs enable automated operations through dynamic sharing of local and global threat intelligence across security components.
- Fortinet DevOps stiches: Automation recipes making security or infrastructure events automatically trigger actions.
Available in:
Fortinet offers its industry leading series of network security products over the Oracle Cloud enabling you advanced security protection for your cloud based infrastructure and applications.
Amazon Web Services (AWS)
- FortiGate Next-Generation Firewall
- FortiWeb Web Application Firewall (WAF)
- FortiManager (BYOL) Centralized Security Management
- FortiAnalyzer Centralized Log Analytics
- FortiMail-VM BYOL
- FortiSandbox Advanced Threat Protection
Microsoft Azure
- FortiGate Next-Generation Firewall (NGFW) - Single VM
- FortiWeb Web Application Firewall
- Fortinet FortiSandbox Advanced Threat Protection
- FortiMail Secure Cloud Email
- FortiManager Centralized Security Management
- FortiAnalyzer Centralized Log Analytics
Google Cloud Platform (GCP)
- FortiGate Next-Generation Firewall
- FortiWeb Web Application Firewall
- FortiManager Centralized Security Management
- FortiAnalyzer Centralized Log Analytics
Oracle Cloud (OCI)
- FortiGate Next-Generation Firewall for OCI
- FortiWeb Web Application Firewall
- FortiManager Centralized Security Management
- FortiAnalyzer Centralized Log Analytics
Alibaba Cloud
- FortiGate Next-Generation Firewall - Single VM (On-Demand)
- FortiGate Next-Generation Firewall - Single VM (BYOL)
- FortiManager Centralized Security Management
- FortiAnalyzer Centralized Log Analytics
FortiGate Cloud Firewall Ecosystem
Public Cloud Security Use Cases:
Security in the cloud is intended to increase the organizations confidence to deploy applications in the cloud and by such improve overall organizational agility and ability to respond to market demand. By leveraging Fortinet’s Security Fabric solutions to deploy use case driven security capabilities, organizations benefit from market leading security with streamlined management functionality. Following is a set of common deployment scenarios of Fortinet’s Security Fabric:
Platform Security:
SaaS Visibility and Control
Software-as-a-Service (SaaS) application usage is often unregulated and unsecure. A lack of visibility and control on SaaS applications usage heightens risk.
Solution
FortiCASB-SaaS leverages the SaaS application API to monitor all SaaS activity and configuration of multiple SaaS services.
FortiCASB-SaaS provides centralized, detailed visibility on all SaaS applications usage. This enables organizations to implement uniform application control and security policies, protect their sensitive data against advanced threats, and support security compliance and governance.
Benefits
- Organizations gain full visibility over usage of SaaS applications including their potential to spread malware or leak data
- Provides full support for major SaaS applications such as Salesforce.com, Microsoft Office 365, etc.
Cloud Infrastructure Visibility and Control
As cloud use increases, so does the likelihood of misconfiguration. Analysts estimate that by 2023, misconfiguration will cause 99% of cloud-related risk, leading to disrupted services and unexpected costs.
Solution
FortiCWP leverages the public cloud management API to monitor activity and configuration of multiple cloud resources. It continuously evaluates configurations across regions and public cloud types, and provides consistent visibility. The solution simplifies regulatory compliance violation reporting, and enhances compliance by providing guidance on security best practices. It also offers threat and risk management tools that help trace misconfigurations to their source.
Benefits
- Consistent compliance reporting across multiple clouds
- Dynamic cloud heat map and threat maps
- Streamlined incident investigation
Compliance in the Cloud
For many organizations, it is a time consuming burden to achieve compliance with PCI DSS, HIPPA, SOX, GDPR, and other regulation mandates.
Solution
FortiCWP aggregates and organizes security information from multiple cloud services and API’s into meaningful compliance reports and live compliance dashboards.
FortiSIEM provides a broader view of compliance across multiple clouds, Fortinet Security Fabric products and third-party products. It can create compliance reports at the push of a button.
FortiAnalyzer collects logs from Fortinet Security Fabric elements, and FortiManager enables changes to be audited, reviewed, approved, and implemented. Together, they close the loop on compliance gap mitigation. All systems support automated processes to facilitate compliance policy management and workflow, reducing risk when policies are changed.
Benefits
- Automated compliance auditing and reporting for on-premises and cloud environments.
Cloud Based Security Management and Analytics
Using legacy management tools alongside new technologies creates complex incompatibilities, especially when seeking to manage from the cloud.
Solution
Leverage the multi-regional and global presence of top cloud infrastructure providers to deploy centralized and global security management and analytics systems in the cloud. FortiManager-VM, FortiAnalyzer-VM, and FortiSIEM-VM can all be deployed in the cloud to scale and globalize.
Benefits
- Centralized, unified security management and visibility
- Enhanced audit and compliance reporting
- Faster incident response
- Improved operational and cost efficiency, reducing risk
- Increased ability to automate security management
Features and Benefits
Streamlined and Automated Management
Consistent Security Across Public and Private Cloud Applications
Multi-Layer Advanced Application Protection
Flexible pay as you go billing and licensing
Scalable and resilient protection for elastic workloads
Support leading IaaS Provders
Deploy Any Application In Any Cloud With Fortinet
As the leader in multi-cloud security, Fortinet gives you the confidence to deploy any application in any cloud. Our solutions provide broad protection across the entire digital attack surface, both on-premises and in public clouds. Native integration with each of the major cloud providers enables automated, centralized management across all clouds uniformly and seamlessly. Giving you unified visibility and control and policy management that supports risk management and compliance requirements.
Fortinet cloud security addresses customer components such as your data and applications, operating systems, access and identity management, encryption, APIs, and network traffic. This complements the public cloud provider’s security features to provide complete and compliant protection.
Native Integration with Your Cloud Provider
Fortinet’s cloud security solutions and products enable secure workloads through tight integration with all major public cloud providers to ensure privacy and confidentiality while leveraging the benefits of scalability, metering, and time to market.
Our purpose-built cloud security solutions collaborate with key Fortinet products for varying cloud deployment models and use cases, while allowing for centralized management, open API integrations, metering consumption, cloud platform orchestration, and automation.