Site icon GIXtools

Fortinet extends AI support to network threat detection, cloud workflow

Fortinet has expanded the reach of its AI-powered security assistant that uses genAI techniques to simplify and automate security analyses.

The company is adding new components to Fortinet Advisor (FortiAI), its natural language, AI-based security assistant that promises to help customers better handle security operations and network management. The FortiAI assistant initially was part of Fortinet’s FortiSIEM security information and event management platform and FortiSOAR security orchestration, automation, and response product. Now, Fortinet has added FortiAI support to its FortiNetwork Detection and Response (FortiNDR) Cloud package.

“FortiNDR Cloud is designed to enable threat hunters to easily view detections and observations that correlate to their queries. Security analysts can query FortiAI and easily understand the FortiNDR Cloud coverage capabilities against new and emerging threats, attacker tactics and techniques, and specific vulnerabilities,” Fortinet stated.

The idea is to use AI’s information gathering and sorting capabilities to help customers do more effective searching and analysis of threats, the vendor stated.

The vendor also added FortiAI to its Lacework FortiCNAPP package. Fortinet bought Lacework in June and promised to integrate Lacework’s technology across a variety of its products, including its secure access service edge (SASE) and Security Fabric packages.

Lacework helps customers manage and secure cloud workflows. Its technology looks for, filters out and shares details about abnormal or uncharacteristic activity that could indicate critical security problems, according to the company. 

“Using natural language queries, teams can easily clarify the reason behind the alerts that are generated, understand the risk, such as how an attacker could compromise the system, gain step-by-step guidance on how to investigate and respond, and streamline the remediation of issues with syntactically correct code,” Fortinet stated.

Fortinet has been adding support for AI-related technology throughout its product portfolio. For example, it recently announced that its FortiGate NGFW now includes real-time inline detection and prevention of AI-powered attacks. An upgrade to the AI-powered Inline Malware Prevention Service includes new features such as real-time anti-phishing and an accelerated AI pre-filter, according to Fortinet.

FortiAnalyzer, which is the vendor’s security analytics and log management platform, also recently gained AI-based enhancements. The features include the ability to learn and detect network configurations, events, and alerts, along with advanced threat visualization, according to the company. It also introduced a Security Automation Subscription that offers features such as premium reports, event handlers, and incident response playbooks.

Other Fortinet Security Fabric AI enhancements improve threat analysis and response and streamline network and security operations by tying FortiAI system into the vendor’s core data lake. This is aimed at helping security operations teams make more informed decisions, respond to threats faster, and simplify routine and complex tasks.

Read more about Fortinet

Source:: Network World

Exit mobile version