Fortinet FortiXDRCybersecurity

Fortinet’s AI-powered FortiXDR fully automates threat detection, investigation, response

Cybersecurity solutions firm Fortinet has made its Extended Detection and Response (XDR) solution (FortiXDR) available to enable organizations quickly respond to cyberattacks by leveraging artificial intelligence (AI).

FortiXDR is designed to reduce complexity, speed detection, and coordinate response to cyberattacks across the organization. Put simply, it can fully automate security operations processes typically handled by experienced security analysts to mitigate threats faster across the broad attack surface.

Fortinet said FortiXDR can “dramatically” reduce the number of alerts across products by 77% or more on average.

Fortinet forecasts threat actors to target edge networks in 2021

Fortinet survey finds key cybersecurity pivots in the retail industry during the pandemic

“Cybercriminals are using sophisticated and increasingly intelligent tools to target vulnerable network edges resulting from digital innovation,” said John Maddison, EVP of Products and CMO at Fortinet. “As a result, organizations need smarter, faster security operations to combat sophisticated, organized cybercrime. FortiXDR replicates the hands-on investigation that otherwise leaves organizations playing catch up. Applied across the Security Fabric platform, it helps enterprises keep pace with today’s accelerating threat landscape, even for organizations limited by small teams and few tools.”

Gartner defines XDR as “a security incident detection and response platform that automatically collects and correlates data from multiple security products.” XDR provides an intelligent and automated way to tie traditionally isolated solutions into a single system.

FortiGuard Labs

Unlike other solutions, FortiXDR is AI-powered by a patent-pending Dynamic Control Flow Engine and continually trained by the threat data and research of FortiGuard Labs as well as the frontline expertise of its incident responders. The solution starts by leveraging the diverse security information shared across the Fortinet Security Fabric for correlation and analysis, converting them into high fidelity security incidents. These are then investigated by the AI engine, just as a seasoned security analyst would, to come to a final threat classification and scope. Finally, the best possible contextual responses are defined and can be automatically implemented to quickly remediate confirmed incidents.

FortiXDR can also handle complex tasks in seconds that would take experts with specialized tools 30 minutes or more to accomplish, according to Fortinet. “And without human error.”

FortiXDR can ingest telemetry from more aspects of an organization than any other solution, increasing the chance of detecting and properly classifying attacks. It also covers more of the cyber kill chain stages and supports more points of response to mitigate the impact of an attack more effectively than competitive solutions. All of this enables organizations to reduce mean time to detection (MTTD) and mean time to response (MTTR) while improving security operations efficiency and security posture. As a result, FortiXDR enables organizations to reduce the risk of missing potentially crippling cyberattacks like ransomware, phishing, and more, all while easing the burden on small security teams.

FortiXDR joins Fortinet’s industry-leading portfolio of AI-driven Security Operations offerings, including incident response components suitable for organizations of any size or sophistication. FortiXDR’s “out of the box” operation makes it perfect for most midmarket and average enterprise organizations with limited teams, tools, and processes. For organizations with more staff, solutions, and systemic processes, FortiSIEM adds multi-vendor visibility while FortiSOAR orchestrates response. This family of products delivers the right-fit solution to organizations of any size to help teams reduce the risk potential of security incidents by blocking more, detecting sooner, and responding faster.