Fortinet FortiSIEM-VM (BYOL) - Security Information and Event Management
Next generation SIEM that provides a unified platform to collect, correlate and manage massive amounts of log data in the context of your IT infrastructure
ExploreProduct Description
Overview
FortiSIEM is a highly scalable multi-tenant Security Information and Event Management (SIEM) solution that provides real time infrastructure and user awareness for accurate threat detection, analysis and reporting. FortiSIEM first discovers the infrastructure including devices, applications, users in physical / virtual, on-premise / cloud environments and auto-populates a Configuration Management Database (CMDB). It then collects various pieces of information such as logs, traffic flows, performance metrics, configuration changes and correlates them in real time to detect security and performance issues. FortiSIEM has built-in integrations with over 350 devices and applications for data collection, major external threat intelligence sources, major ticketing systems and supports all major compliance requirements. FortiSIEM has a purpose built software architecture that can scale collection, real time correlation and reporting by incrementally adding virtual appliances without any down time.
Highlights
Unified analysis of log, flow, performance and change data in context of auto-discovered CMDB
Real time alerting, Compliance Reporting, Cloud Scale Architecture for On-premise and Cloud Infrastructure and Application Data sources
Multi-tenant, MSP/MSSP Ready