Cyber security solutions firm Fortinet has entered into an agreement with Splunk to help enterprises and service providers protect themselves from cyber attacks that threaten their networks.
As part of the alliance, Fortinet will provide customers a method for facilitating better response times and mitigation capabilities, as part of their Splunk software deployments, designed to thwart fast-acting cyber threats.
Jon McGettigan, Fortinet’s senior director Australia, NZ & South Pacific Islands, says the growing sophistication of cyber attacks means companies must now assume attackers have already compromised their systems at some level.
“Better visibility of advanced threats gives enterprises a powerful tool for mitigating risk,” he says.
McGettigan says the strategic alliance with Splunk is ‘another proof point’ of Fortinet’s enterprise capabilities.
“Traditional, siloed security solutions are not adequate,” he says. “A collaborative security model that extends the aggregate awareness and capability of the siloed solutions is required to strengthen the enterprise defence posture.
“This alliance with Splunk gives organisations with large complex IT infrastructure advanced capabilities to prevent, detect and mitigate threats before they can do significant damage,” McGettigan explains.
He says an effective security framework must include well-coordinated defence systems that enable quick reaction to advanced attacks.
“Through our partnership with Splunk, we provide customers with the means to surface and respond to the most critical, time-sensitive threats to significantly reduce the associated risks.”
Fortinet’s FortiGate App for Splunk® Enterprise delivers real-time multivariate threat querying, visualisation and anomalous behaviour detection within the context of all of the organisation’s security data.
Fortinet leverages Splunk solutions to enable enterprise security teams with large and complex IT environments to more quickly and effectively identify the most critical threats posing risk to their organisations.
McGettigan says the interoperability with Splunk’s collaborative security model takes the solution one step further, enabling teams to accelerate and automate defence against those critical threats.
“The ability to more seamlessly bring security logs and threat intelligence from Fortinet into Splunk Enterprise and Enterprise Security represents a leap forward for our joint customers," adds Haiyan Song, senior vice president of Security Markets, Splunk.
“By harnessing the threat data captured by the FortiGate devices, and translating that quickly into actionable intelligence and remediation steps, organisations can better leverage Splunk as the Nerve Center in their command centres to turn the tables on hackers and advanced threats,” Song says.