Powerful Security Information and Event Management (SIEM) with User and Entity Behavior Analytics (UEBA)
Free Product Demo
FortiSIEM is designed to be the backbone of your security operations team, delivering capabilities ranging from automatically building your inventory of assets to applying cutting edge behavioral analytics to rapidly detect and respond to threats. FortiSIEM is the industry’s only security operations platform with a fully inbuilt configuration management database (CMDB).
With its CMDB, FortiSIEM can automatically leverage active and passive methods of discovery to build your asset inventory. This includes devices and their applications, and it tracks the state of those assets over time. Continuously collecting context such as configurations, performance, vulnerability, their relationship to business services, and their Purdue model OT associations so teams know the state of the environment when an incident arises. And they have the visibility needed to fix problems proactively.
FortiGuard Labs threat intelligence experts work 24x7 to analyze the latest threats and build mitigations extremely fast. Combined with the latest AI-driven behavior anomaly detection capabilities such as UEBA, FortiSIEM protects against both known and unknown threats. Statistical models are leveraged to pick up deviations both strange and impossible, such as logins across geographical regions that would require superhero speeds (or stolen credentials).
FortiSIEM brings together visibility, correlation, automated response, and remediation in a single, scalable solution. It reduces the complexity of managing network and security operations to effectively free resources, improve breach detection, and even prevent breaches. To power more effective threat hunting, FortiSIEM now includes new link graph technology which allows for easy visualization of relationships between users, devices, and incidents.
The modern SOC requires a SIEM light years beyond log aggregation, simple correlation rules, and compliance, but those basics are still important.
Self-Learning Asset Inventory
Passive & active discovery methods, use of agents, FortiGates, & OT asset management systems
Real-Time Security Analytics
Leverages over 1600 out-of-the-box rules and mapped to MITRE ATT&CK
Industry-Leading Threat Intelligence
Driven by over 500 researchers and AI fed by the world’s largest array of sensors
Streamlined Investigations
Streamlined workflows with recommended playbooks and threat hunting capabilities
Deep Fabric Integration
Security Fabric integration across the Fortinet portfolio, and third-party solutions via robust APIs
Continuous Compliance
3500+ reports out of the box for on-demand, self-service, & read only audit investigations
The FortiGuard SOC/NOC Security suite offers advanced security technologies optimized for SOC and NOC teams. More focus is enabled through AI and automation for faster response to attacks.
| MODEL | EVENTS PER SECOND | STORAGE | DATA SHEET |
|---|---|---|---|
| FortiSIEM 500F |
5000 |
3 TB |
|
| FortiSIEM 500G |
5000 |
4 TB |
|
| MODEL | EVENTS PER SECOND | STORAGE | DATA SHEET |
|---|---|---|---|
| FortiSIEM 2000F |
15,000 |
36 TB |
|
| FortiSIEM 2000G |
20,000 |
32 TB + 4 TB NVMe |
|
| MODEL | EVENTS PER SECOND | STORAGE | DATA SHEET |
|---|---|---|---|
| FortiSIEM 3500G |
40,000 |
96 TB |
|
Fortinet is dedicated to helping our customers succeed, and every year FortiCare services help thousands of organizations get the most from their investments in Fortinet's products and services. To achieve this, FortiCare follows the life-cycle approach and provides unique services to help our customers in their success journeys.
Technical Support Services
Various per-device options are available for efficient operations. FortiCare Elite option provides a 15-minute response time for critical products.
Advanced Support
Various per-account white glove services are available to reduce disruption and increase productivity with operational reviews by designated experts.
Professional Services
Our multi-vendor experts can design and deploy a complete best practice-based solution to help you meet your network or security objectives and adopt new capabilities.
RMA
Premium RMA options are available across the product family for expedited replacement of defective hardware to meet your availability objectives.
Learn about security’s biggest gap and how the NOC-SOC approach helps close that gap.
SIEMs can be difficult, SOCs are expensive, and the related compliance is a pain. StratoZen reduces or eliminates these challenges for their clients by using FortiSIEM as part of their SOC and SIEM “as a service” solutions.
Learn about the new features in FortiSIEM 5.0 – CMDB, UEBA and SOAR Orchestration. Learn how you can do more with less, harmonizing security and networking operations to business focused outcomes.
Improved Security Team Operational Efficiency and Reduced Risk to the Organization, Each by Up to 99%
Fortinet Named a Challenger in the 2022 Gartner® Magic Quadrant™ for SIEM
AWS services are trusted by more than a million active customers around the world – including the fastest growing startups, largest enterprises, and leading government agencies – to power their infrastructures, make them more agile, and lower costs.
Learn more on the Fortinet-AWS alliance
ATAR Labs builds next-generation SOAR platform ATAR. Together with Fortinet, SOC teams become more agile and respond to complex threats and defend their infrastructure. Automatic processes deployed and orchestrated from ATAR, and enforcement, and detection from Fortinet creates an integrated operation to achieve a secure environment.
Brocade networking solutions help the world's leading organizations turn their networks into platforms for business innovation. With solutions spanning public and private data centers to the wireless network edge, Brocade is leading the industry in its transition to the New IP network infrastructures required for today's era of digital business.
Cisco is the worldwide leader in IT that helps companies seize the opportunities of tomorrow by proving that amazing things can happen when you connect the previously unconnected.
Citrix is leading the transition to software-defining the workplace, uniting virtualization, mobility management, networking, and SaaS solutions to enable new ways for businesses and people to work better.
Claroty's ICS Security Platform passively protects industrial networks and assets from cyberattack; ensuring safe and continuous operation of the worlds most critical infrastructures without compromising the safety and security of personnel or expensive industrial assets. 2018 S4 ICS Challenge winner!
CrowdStrike has redefined security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity, and data.
CyberArk is the global leader in privileged account security, a critical layer of IT security to protect data, infrastructure and assets across the enterprise, in the cloud and throughout the DevOps pipeline. CyberArk delivers the industry’s most complete solution to reduce risk created by privileged credentials and secrets.
CyberX delivers the only IIoT and ICS cybersecurity platform built by blue-team experts with a track record defending critical national infrastructure-and the only platform with patented ICS-aware threat analytics and machine learning. Together with Fortinet, CyberX reduces the time from ICS & IIoT threat detection to prevention.
CyGlass is an AI based SaaS security platform that uses network data to uncover, pinpoint, and respond to advanced cyber threats that have evaded traditional security controls.
Learn how FortiSIEM monitoring tools can help you detect, prevent, and respond to security threats by doing a self-guided demo.
Please complete the form to request a FortiSIEM demo
Gartner, Magic Quadrant for Security Information and Event Management, Pete Shoard, Andy Davies, Mitch Schneider, 11 October, 2022
Gartner and Magic Quadrant are registered trademarks of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Fortinet.
