Fortinet delivers AI-enhanced Data Protection and Insider Risk Management

FortiDLP’s unified approach to data protection enables enterprise organizations to anticipate and prevent accidental and malicious data loss across cloud deployments, applications, and managed and unmanaged devices.

  • Sunday, 10th November 2024 Posted 8 months ago in by Phil Alsop

Fortinet has introduced FortiDLP, a next-generation data loss prevention (DLP) and insider risk management solution. Based on Next DLP’s innovative technology and integration into the Fortinet Security Fabric, the new solution bolsters Fortinet’s overall portfolio of DLP capabilities. FortiDLP enables effective management of data security, dynamic enforcement of data protection, and enhanced visibility of insider threats at scale for large enterprise customers.

“In an era when data protection is paramount, FortiDLP offers a next-gen solution that combines AI-enhanced detection and insider risk management to secure sensitive information,” said John Maddison, chief marketing officer at Fortinet. “By leveraging an AI-powered data protection solution with the help of generative AI, security teams can anticipate risks, streamline incident response, and mitigate threats faster than legacy DLP solutions. Protecting your data from both internal and external threats starts with visibility and proactive prevention, and FortiDLP delivers that protection on day one."

Traditional DLP Solutions Fall Short for CISOs

Gartner® recently predicted in its latest Market Guide for Data Loss Prevention that, “By 2027, 70% of CISOs in larger enterprises will adopt a consolidated approach to address both insider risk and data exfiltration use cases.” However, CISOs and security teams continue to struggle with traditional DLP challenges, like managing data silos and dispersed data with a growing hybrid workforce, navigating cumbersome and rigid policies to classify data, slow performance of legacy tools, and the increasing risk posed by malicious insiders having access to sensitive data.

What Sets FortiDLP Apart from Legacy DLP Solutions

Fortinet’s answer to traditional DLP challenges is FortiDLP, an AI-enhanced, cloud-native endpoint data protection solution that enables customers to address all their data protection requirements with a single solution. With the recent acquisition of Next DLP, Fortinet adds a powerful data protection solution to the Fortinet Security Fabric, giving security teams a more effective way to prevent data leaks and loss, detect behavior-related threats, train employees to make risk-informed decisions and comply with security policies. The solution also addresses employees’ use of unsanctioned SaaS applications and guards against data leakage when employees use shadow AI (unapproved GenAI tools). Some of the key features that set FortiDLP apart from the competition include:

• Shadow AI Data Protection: FortiDLP enables employees to safely use publicly available GenAI tools, such as OpenAI ChatGPT, Google Gemini, and others. Administrators can set policy actions to alert employees to proper data handling practices while allowing them to continue using these tools. The result is a balance between enabling greater productivity while securing the organization against sharing sensitive corporate data with these tools.

• Day One Data Visibility and Protection: FortiDLP provides automated data movement visibility and protection from day one with out-of-the-box policies and machine learning embedded at the endpoint for baselining, with contextual and content inspection that works even if endpoints are disconnected from the network.

• Insider Risk Protection: FortiDLP can identify actions, behaviors, and other indicators and apply appropriate policy actions to identify and stop insiders from disclosing sensitive data outside of the organization. Security teams can also monitor individual user risk with the solution by identifying, analyzing, and capturing employee activity when sensitive data is accessed and/or policies are violated.

• SaaS Application Data Protection: FortiDLP provides comprehensive visibility into user interactions with data in the cloud and maintains protection as data moves out of the cloud. The solution builds a comprehensive risk-scored inventory of SaaS applications utilized across an organization, with insights into data ingress, egress, and credentials. It also fortifies defenses against potential data breaches from business data exposure via unauthorized application usage.

• Origin-Based Data Protection: FortiDLP provides instant visibility into data exposure risk with Secure Data Flow, which complements traditional content and sensitivity classification-based approaches with origin-based data identification, manipulation detection, and data egress controls. Security teams can track and prevent data egress from endpoints and unmanaged mobile devices to USB drives, printers, and SaaS apps like Slack, Office 365, and Google Workspace.

• Risk-Informed User Education: Administrators can configure policies and actions that include the presentation of customizable messages to educate users on the importance of safeguarding sensitive data while also enabling mechanisms that drive accountability for employee behavior.

• AI-Powered Guidance: The FortiDLP AI-powered assistant enhances incident analysis by using FortiAI to summarize and contextualize data associated with observed high-risk activity, mapped to the MITRE Engenuity Insider Threat Tactics, Techniques, and Procedures (TTP) Knowledge Base for easy consumption by analysts and peers.

As part of its ongoing commitment to offering customers enterprise-grade data protection, Fortinet plans to sell FortiDLP as a stand-alone solution in addition to adding advanced AI-driven data loss prevention capabilities to its security service edge (SSE) offering and integrate additional insider risk and data protection capabilities across the Fortinet Security Fabric.

Cynomi unveils ELEVATE

Posted 2 days ago by Aaron Sandhu
Cynomi introduces ELEVATE, a partner program designed to drive scalability and growth in cybersecurity services with zero setup and quick ROI.
Sophos collaborates with Secureworks to enhance partner growth with a new integrated program leveraging innovative security solutions.
TD SYNNEX has been awarded AI Partner of the Year, recognising its efforts in AI solutions and partner enablement.
Confluent announces a $200 million investment to enhance its partner ecosystem, driving innovation and real-time data solutions in an AI-driven world.
Assured Data Protection announces organisational changes to strengthen its growth trajectory, appointing Stacy Hayes as Chief Strategy Officer and...
Calero introduces a new SaaS Management offering to streamline IT processes, optimise resources, and centralise data for today's technology-driven...

Parallel Works launches ACTIVATE AI Partner Ecosystem

Posted 3 days ago by Aaron Sandhu
Parallel Works introduces its ACTIVATE AI Partner Ecosystem, enhancing AI infrastructure with scalable, integrated solutions across hybrid cloud...

Zurich Insurance Group acquires BOXX Insurance Inc.

Posted 5 days ago by Aaron Sandhu
BOXX Insurance is set to join Zurich Insurance Group, continuing its mission in cyber insurance and protection as an independent entity.