SUNNYVALE, CA, Oct. 08, 2024 (GLOBE NEWSWIRE) —
News summary
Fortinet® (NASDAQ: FTNT), the global cybersecurity leader driving the convergence of networking and security, today announced the general availability of Lacework FortiCNAPP, a single, unified AI-driven platform to secure everything. From code to the cloud, all from one vendor.
“Lacework FortiCNAPP is based on Lacework's proven cloud-native application protection platform with tight integration with Fortinet Security Fabric,” said John Madison, Fortinet's chief marketing officer. “We are excited to expand our cloud-native security offerings and provide the industry's most comprehensive and complete cloud security platform that enables teams to seamlessly eliminate risks across their multi-cloud environments.”
Introducing Lacework FortiCNAPP provides additional benefits beyond Lacework's leading offerings, such as automated remediation and blocking of active runtime threats, as well as improved visibility into FortiGuard Outbreak Alerts, which provide essential information about new and emerging threats and the risks they pose within an organization's environment.
Challenges disrupting cloud adoption
As customers continue to adopt cloud infrastructure and services, they are quickly realizing that traditional security tools simply lack the on-premises capabilities required to address the scale, speed, and dynamic nature of the cloud. Security teams face key challenges due to the lack of time to address cloud security at scale due to limited knowledge of cloud security, the proliferation of cloud security products that do little to help customers resolve issues, and the overwhelming number of security and compliance alerts.
Fortinet helps accelerate customers' cloud journeys
With Lacework FortiCNAPP, Fortinet simplifies and enhances cloud security with a unified platform from a single vendor that brings together multiple tools to dramatically reduce the time to detect, prioritize, investigate and respond to cloud-native threats. Lacework FortiCNAPP offers a unique approach to AI that never stops learning, maximizing cloud security with minimal time and effort for development, operations and security teams by automatically connecting risk insights to threat data at runtime, ensuring the most critical issues are prioritized and addressed.
Fortinet allows customers to meet all their cloud security needs by offering key features such as:
Unified platform: Fragmented tools provide complex, expensive, and limited protection. As a platform, Lacework FortiCNAPP provides complete visibility from code to the cloud and connects build and runtime risk and threat data to prioritize what matters most. AI-Based Anomaly Detection: Since cloud threats evolve as quickly as the cloud itself, creating rules for each potential attack scenario is almost impossible. Lacework FortiCNAPP's AI-based anomaly detection allows security analysts to detect previously unidentified attack patterns that traditional rules-based systems cannot achieve. Integrated Code Security: Integrated code security with cloud security enables teams to address issues at the earliest, most cost-effective stage of the application lifecycle. By offering code security as an integrated capability within the platform, customers can save time and money by fixing security issues, reducing the risk of vulnerable applications and infrastructure while maintaining developer productivity and speed of innovation. Composite Alerts: Lacework FortiCNAPP is unique in early detection of signs of active attacks by automatically correlating different signals into one high-confidence composite alert. The platform uses behavioral analytics, anomaly detection, insider threat intelligence, and insights from cloud provider activity logs and threat services to identify active attacks, including compromised credentials, ransomware, and cryptojacking. Integration with Fortinet Security Fabric: Integration with Fortinet Solutions like FortiSOAR allow customers to simplify their response to active runtime threats, such as compromised hosts and compromised access keys, with automated remediation playbooks. Additionally, its integration with FortiGuard Outbreak Alerts helps teams understand how Lacework FortiCNAPP provides enhanced visibility and deeper insights into the latest threats and where the solution can disrupt potential attacks. Cloud Infrastructure Entitlements Management (CIEM): Lacework FortiCNAPP CIEM provides complete visibility into cloud identities and their permissions. It automatically detects identities, evaluates effective network permissions, and highlights redundant permissions by comparing permissions granted versus permissions used. Each identity is assigned a risk score based on more than 30 factors, which helps prioritize high-risk identities. Lacework FortiCNAPP also provides automated processing instructions for properly sized permissions, ensuring least privileged access.
Third party validation
Lacework FortiCNAPP is based on the industry-recognized technology from Lacework, which is consistently recognized as a leader and representative vendor in CNAPP and Cloud Workload Security by leading analyst firms, including Frost and Sullivan, Gartner®, GigaOm, and KuppingerCole.
Support quotations
“Lacework FortiCNAPP helped us deal with the massive amount of information we were getting from all the different systems, from native security tools and logging and alerting tools that came from cloud providers to third-party tools that we purchased to help solve these problems.”
– John Turner, Senior Security Architect, LendingTree
“Lacework FortiCNAPP automatically discovers active users, services, security groups, and secrets within LawnStarter's AWS environment and compares them to industry frameworks and compliance requirements. LawnStarter can quickly pull custom reports generated by Lacework FortiCNAPP to see which resources are compliant. As a result, LawnStarter has seen a 75% reduction in breaches compliance over the past year, saving the company a significant amount of time and money LawnStarter now has a strong compliance practice that is essential to earning and maintaining trust with clients, providers, investors and advisors.
– Alberto Silveira, Head of Engineering at LawnStarter
Additional resources
*Gartner, Gartner Cloud Application Protection Platform Market Guide, Dale Coppin, Charlie Winkless, Neil Macdonald, Esraa Eltahawy, July 22, 2024
GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the United States and internationally. All rights reserved.
Gartner does not endorse any vendor, product or service mentioned in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other rating. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
About Fortnite
Fortinet (NASDAQ: FTNT) is a driving force in the evolution of cybersecurity, network convergence and security. Our mission is to secure people, devices and data everywhere, and today we deliver cybersecurity everywhere you need it with the largest integrated portfolio of more than 50 enterprise-level products. More than half a million customers trust Fortinet's solutions, which are among the most widespread, most patented, and most validated in the industry. Fortinet Training Institute, one of the largest and most extensive training programs in the industry, is dedicated to making cybersecurity training and new career opportunities available to everyone. Collaboration with respected organizations from the public and private sectors, including Computer Emergency Response Teams (CERTs), government agencies and academia, is a key aspect of Fortinet's commitment to strengthening cyber resilience globally. FortiGuard Labs, Fortinet's elite threat research and intelligence organization, develops and uses leading machine learning and artificial intelligence technologies to provide customers with timely, continuous, top-rated protection and actionable threat intelligence. Learn more at https://www.fortinet.com, the Fortinet blog, and FortiGuard Labs.
Copyright © 2024 Fortinet, Inc. All rights reserved. The symbols ® and ™, respectively, indicate federally registered and common law trademarks of Fortinet, Inc. and its subsidiaries and affiliates. Fortinet trademarks include, but are not limited to: Fortinet, Fortinet logo, FortiGate, FortiOS, FortiGuard, FortiCare, FortiAnalyzer, FortiManager, FortiASIC, FortiClient, FortiCloud, FortiMail, FortiSandbox, FortiADC, FortiAI, FortiAIOps, FortiAntenna , and FortiAP. , FortiAPCam, FortiAuthenticator, FortiCache, FortiCall, FortiCam, FortiCamera, FortiCarrier, FortiCASB, FortiCentral, FortiConnect, FortiController, FortiConverter, FortiCSPM, FortiCWP, FortDAST, FortiDB, FortiDDoS, FortiDeceptor, FortiDeploy, FortiDevSec, FortiEDR, FortiExtender, FortiFirewall, FortiFlex FortiFone, FortiGSLB, FortiGuest, FortiHypervisor, FortiInsight, FortiIsolator, FortiLAN, FortiLink, FortiMonitor, FortiNAC, FortiNDR, FortiPenTest, FortiPhish, FortiPoint, FortiPolicy, FortiPortal, FortiPresence, FortiProxy, FortiRecon, FortiRecorder, FortiSDNConnector, ForticSym ,Forti SMS , FortiSOAR, FortiStack, FortiSwitch, FortiTester, FortiToken, FortiTrust, FortiVoice, FortiWAN, FortiWeb, FortiWiFi, FortiWLC, FortiWLM, and FortiXDR. Other trademarks are the property of their respective owners. Fortinet has not independently verified statements or testimonials attributed to third parties and Fortinet does not independently endorse such statements. Notwithstanding anything to the contrary herein, nothing herein shall constitute a warranty, guarantee, contract, binding specification or other binding commitment by Fortinet or any indication of intent to bind a binding commitment, and performance information and other specifications contained herein may be unique to particular environments .
