What is FortiCare Best Practice Services?
Good question. In effect, FortiCare Best Practice Services ensures that your firewall solution performs at its highest level, for as long as possible. Most hardware options combine FortiCare and FortiGuard. These options greatly increase the versatility and capability of firewalls, whether hardware, software, or cloud-based.
What are they, then?
Basically, FortiCare gives you global tech support on a per-product basis. You’ll receive a timely response to any technical issues your device may have. In addition, you’ll have complete visibility on ticket resolution progress. It includes things like firmware upgrades, access to the support portal and associated technical resources. Also, you get reporting on technical incidents via the web, chat, and telephone.
What is FortiEDR?
EDR, or Endpoint Detection and Response, is sort of an outgrowth of Endpoint Protection. EP is a reactive, defensive product. As such, it includes antivirus, anti-malware and data encryption. In addition, it boasts personal firewalls, intrusion prevention and data loss prevention. Most of EP’s features are signature-based. Fortinet FortiEDR is more than that.
Of course, Fortinet FortiEDR certainly has elements of next-gen antivirus. But, it boasts additional abilities as well. For example, you can also expect real-time anomaly detection and alerting, forensic analysis and endpoint remediation capabilities.
Fortinet FortiEDR records every execution, modification, registry change, and network connection across an entire organization. As a result, it improves threat visibility beyond the scope of EP.
One of the more valuable features is that it notifies you of any suspicious file on any PC. If any execution or installation or anything is happening, it just alerts you. Not only that, it also blocks the execution until you allow it.
You just check whether the execution is legitimate or not. Then, approve it or keep it blocked. This is a nice, reassuring bit of control. The ability to get forensic details, and also memory exfiltration are very handy. They enable the user to analyze the data separately after an incident.
FortiEDR divides up it’s capabilities into Pre-Infection and Post-Infection features. The Pre-Infection suite is sub-divided into Discover and Predict, and Prevent. Summarily, this ‘realm’ of FortiEDR discovers and controls rogue devices, tracks applications, and mitigates vulnerabilities. And, it even protects disconnected endpoints, among other things.
The Post-Infection set includes the ability to detect and defuse fileless malware and other advanced bad guys real-time. It stops breaches as they happen, and prevents ransomware encryption. In addition, it also carries a host of remediation abilities, including the FortiResponder Managed Detection and Response service. That is, if you want that.
FortiEDR can address an array of enterprise use cases. The cloud management platform can be deployed on-premise in an air-gapped environment, or on a secure cloud instance. Endpoints are protected both on- and off-line.
This is the only endpoint security solution built from the ground up to detect advanced threats and stop breaches and ransomware damage in real-time. Even on an already compromised device.
This allows you to respond and remediate incidents automatically to protect data, ensure system uptime, and preserve business continuity. FortiEDR defends everything from workstations and servers with current and legacy operating systems.
- Highly and easily scaleable
- Superb ease of setup and use
- System vulnerability mitigation
- Rogue device detection and control
- Detailed memory exfiltration