Security leaders’ efforts to reduce recovery time objectives are often hampered by the reactive nature of traditional security operations practices. This causes longer outages, less-effective responses, and thus poses risks to critical assets introduced by the mass of fluid and elusive threats. The Flowmon-Fortinet joint solution leverages Flowmon’s network traffic excellence with award-winning Fortinet FortiGate Next-Generation firewall for security policy enforcement with an integrated approach to security and networking to create a multilayered and highly automated security matrix.
“Empowering incident response via automation is definitely the way to make the life of security practitioners easier. And we are excited to bring this together with Fortinet via a high performing, scalable and easy to deploy solution,” says Jiri Tobola, CEO at Flowmon Networks. “The symbiosis of the Flowmon solution and FortiGate next generation firewalls (NGFWs) eliminates time-consuming manual work, brings certainty that damage is mitigated at its very beginning and optimizes enterprise security.”
Where FortiGate NGFW, a core element of the Security-Driven Networking, watches the perimeter and protects against external threats, Flowmon analyzes east-west network traffic to detect risks that bypass prevention systems. Once Flowmon detects an indicator of compromise, e.g. reconnaissance or lateral movement, data exfiltration or CnC communication, it sends a message to FortiGate to block unwanted communication. The integrated solution uses the simultaneous deployment of several detection techniques at once to cover a far broader spectrum of threats.
“Today’s bad actors use advanced techniques to avoid detection, but they still leave footprints scattered all over the network. We’re happy to welcome Flowmon in the Fortinet Open Fabric Ecosystem to provide integrated solutions to customers for comprehensive security. Flowmon’s artificial intelligence (AI)-powered engine detects indicators of compromise in the traffic and integrates with the Fortinet Security Fabric to deliver advanced multilayered security protection to customers.” says Neil Prasad, Head of Global Technology Alliances at Fortinet.
Fortinet FortiGate NGFWs enable security-driven networking and consolidate industry-leading security capabilities such as intrusion prevention system (IPS), web filtering, secure sockets layer (SSL) inspection, and automated threat protection.
Flowmon’s network intelligence delivers actionable insights by automatically analyzing network traffic and detecting advanced threats, which eliminates the trouble of sifting through information noise. It allows IT professionals to learn about breaches and performance degradations quickly, understand their context, impact, magnitude, and root cause, and respond to them in time.