Description
Description: FORTISIEM AIO H/W FSM-2000F 5000 EPS
Fortinet FortiSIEM FSM-2000F – SUPERVISOR – security appliance – GigE – 2U – rack-mountable
Breaches cause customers to take their business elsewhere, resulting in material and substantially negative impacts to an organization’s bottom line. Attracting new customers is estimated at seven times more costly than keeping existing customers. Fines and legal fees can quickly add up. Publicly traded organizations can see negative and lasting impacts to their stock value, supplier relationships and shareholder perceptions. All these add up to explain why more boards are getting involved in security decisions. FortiSIEM provides organizations with a comprehensive, holistic and scalable solution, from IoT to the Cloud, with patented analytics that are actionable to tightly manage network security, performance and compliance standards, all delivered through a single pane of glass view of the organization.
Fortinet has developed an architecture that enables unified and cross-correlated analytics from diverse information sources including logs, performance metrics, SNMP Traps, security alerts and configuration changes. FortiSIEM essentially takes the analytics traditionally monitored in separate silos from – SOC and NOC – and brings that data together for a more holistic view of the threat data available in the organization. Every piece of information is converted into an event which is first parsed and then fed into an event-based analytics engine for handling real-time searches, rules, dashboards and ad-hoc queries.
Distributed event correlation is a difficult problem, as multiple nodes have to share their partial states in real time to trigger a rule. While many SIEM vendors have distributed data collection and distributed search capabilities, Fortinet is the only vendor with a distributed real-time event correlation engine. Complex event patterns can be detected in real time. This patented algorithm enables FortiSIEM to handle a large number of rules in real time at high event rates for accelerated detection timeframes.
Key Selling Points
Real-time network analytics
Security and compliance out-of-the-box
Single IT pane of glass
Cloud scale architecture
Self learning asset inventory (CMDB)
Multi-tenancy
MSP/MSSP ready
Cross correlation of SOC & NOC analytics