Fortinet, a cybersecurity company, has announced the launch of Fortinet FortiSOC, a cloud-delivered platform intended to support security operations by unifying six security functions into a single Software-as-a-Service (SaaS) offering. The platform is designed for enterprise use and incorporates agentic AI to manage alerts autonomously and provide recommended responses, with oversight from security analysts.
Modern security teams often deal with a high volume of alerts and increasing investigative workloads due to evolving attack methods. FortiSOC is positioned to streamline these processes through a cloud-based approach, supporting organisations at different stages of building or operating a Security Operations Centre (SOC). It is intended to help teams move from threat detection through to response with reduced operational complexity.
Security operations capabilities
FortiSOC combines several security functions, including security information and event management (SIEM) and security orchestration, automation, and response (SOAR), into a single platform. It also integrates with FortiGuard Labs threat intelligence services to provide contextualised security insights. The platform is designed to reduce operational silos and support more coordinated investigation workflows.
It also supports a range of SOC requirements, from basic monitoring to more advanced operations, using AI-assisted automation and correlation to assist with analysis and response processes.
Key features
- Integrated platform: Combines SIEM, SOAR, threat intelligence, and user behaviour analytics in one system to centralise security operations.
- Simplified operations: Uses a subscription-based model intended to reduce complexity and streamline resource management.
- Rapid deployment: Includes prebuilt content and real-time intelligence updates to support quicker setup and adaptation to new threats.
- Scalable architecture: Designed to integrate with the Fortinet Security Fabric and third-party tools for broader compatibility.
FortiSOC is described as part of an expanded SOC portfolio that also includes tools such as FortiAnalyzer and FortiSOAR, aiming to provide a more unified approach to security operations.
Overall, the platform reflects a move toward cloud-based, integrated security operations environments, combining existing technologies into a SaaS-based model intended to support both developing and more established SOC implementations.
