Scribd
Upload
15 views12 pages

FortiCNAPP: Unified Cloud Security Solutions

FortiCNAPP is a unified cloud security platform that provides comprehensive visibility and protection across the software development lifecycle, from code to cloud. It emphasizes proactive defense, risk-based prioritization, real-time threat detection, and continuous governance of identity and context. The platform integrates various security measures, including Cloud Security Posture Management (CSPM) and Cloud Workload Protection (CWPP), to mitigate risks effectively.

Uploaded by

j3j3le
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
15 views12 pages

FortiCNAPP: Unified Cloud Security Solutions

FortiCNAPP is a unified cloud security platform that provides comprehensive visibility and protection across the software development lifecycle, from code to cloud. It emphasizes proactive defense, risk-based prioritization, real-time threat detection, and continuous governance of identity and context. The platform integrates various security measures, including Cloud Security Posture Management (CSPM) and Cloud Workload Protection (CWPP), to mitigate risks effectively.

Uploaded by

j3j3le
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd

FortiCNAPP

Vanderson Santos- Cloud Security Architect LATAM


santosv@[Link]
CDR

CNAPP
Cloud NetSec
Posture Workload
ASPM Identity
<?> SPM Protection
SD-WAN

WAF (WAAP) CSPM CWPP CIEM


S2S VPN

API GW KSPM KSPM


C2S VPN
Admission
DSPM
Ingress DAST Control

Egress

Coding SAST SCA Secrets


Lateral

© Fortinet Inc. All Rights Reserved. 5


Segurança nativa da nuvem eficaz requer uma abordagem unificada
Lacework FortiCNAPP: Single platform that understands your environment from code to cloud

Ingest Resolve
Exploitable Risks Composite Risks
Comprehend
Attack Paths Risk Mitigation
Minimize and mitigate
Excessive
Users Misconfigs Entitlements Permissions risk with the least
amount of effort
Active
Vulnerability Secrets …
Vulnerability

Lacework Composite threats


Active Threats
FortiCNAPP
Compromised Threat
Credentials
Management
Cryptojacking Detect active threats
Connection Processes API Calls Automatically correlate data quickly and minimize
Baseline normal behaviors their impact
User Login Events … Ransomware
Identify deviations and anomalies

© Fortinet Inc. All Rights Reserved. 6


O que define uma postura forte de segurança na nuvem?

Defesa proativa
Governança e automação com aplicação contínua de políticas

Priorização baseada em risco e resposta automatizada


Onde a segurança encontra a eficiência com recursos de correção instantânea

Detecção de ameaças em tempo real


Transforme percepções de postura em sinais acionáveis

Governança de identidade e consciência contextual


Visibilidade sem contexto leva à fadiga de alerta

Fundação de visibilidade unificada


Visibilidade completa e contínua de todos os ativos da nuvem

© Fortinet Inc. All Rights Reserved. 7


FortiCNAPP: Uma plataforma com visibilidade e proteção.

Defesa proativa
Governança e automação com aplicação contínua de políticas

Priorização baseada em risco e resposta automatizada


Onde a segurança encontra a eficiência com recursos de correção instantânea

Detecção de ameaças em tempo real


Transforme percepções de postura em sinais acionáveis

Governança de identidade e consciência contextual


Visibilidade sem contexto leva à fadiga de alerta

Fundação de visibilidade unificada


Visibilidade completa e contínua de todos os ativos da nuvem

© Fortinet Inc. All Rights Reserved. 8


FortiCNAPP: Uma plataforma com visibilidade e proteção.

Defesa proativa
Infrastructure as Code [Link]
Application Security Policy as Code (PaC)
(IaC) Security (preventive blocking and
(SAST/DAST/SCA) Enforcement
(preventive scanning) enrichment)

Priorização baseada em risco e resposta automatizada


Cloud Workload Protection Cloud Detection Policy as Code (PaC) FortiSOAR
Platform (CWPP) and Response (CDR) Enforcement (risk-informed, (automated response
(blocking/quarantine) (risk-based alerts) policy-driven control) orchestration)

Detecção de ameaças em tempo real


Cloud Workload Protection Composite Alerting via
Capacidades basicas Platform (CWPP)
Cloud Detection and
Lacework AI
[Link]
Response (CDR) (threat intelligence)
(runtime threat detection) (detection correlation)
Capacidades Diferenciadas

Governança de identidade e consciência contextual


Exclusivo do Lacework
FortiCNAPP Cloud Infrastructure Composite Alerting via
FortiSOAR [Link]
Entitlement Management Lacework AI (correlating
(correlation) (enrichment)
(CIEM) (least privilege) posture, workload, and identity)
Fortinet Security Fabric

Fundação de visibilidade unificada


Infrastructure as Code Cloud Workload Protection Cloud Infrastructure
Cloud Security Posture Kubernetes Security Posture
(IaC) Security Platform (CWPP) Entitlement Management
Management (CSPM) Management (KSPM)
(code posture) (visibility aspects) (CIEM) (initial identity)

© Fortinet Inc. All Rights Reserved. 9


O FortiCNAPP oferece cobertura completa no ciclo de vida das aplicações
Em todo o ciclo de vida do desenvolvimento do software (SDLC)

Develop Commit Build Run Triage

1st Party
Applications Threats
CI/CD Anomalies
3rd Party Git Repos
Pipelines Compromise

IaC Infrastructure

Code Security Container Posture Cloud Posture Threat Detection


▪ Design/coding weakness (CWE) ▪ Disclosed vuln. in 3rd party / OS ▪ Cloud misconfiguration ▪ Abuse / exploitation / attack
▪ Disclosed vuln. in library (CVE) software (CVE) ▪ Overly-privileged identity ▪ Availability interruption
▪ Unapproved library license ▪ Secrets mishandling
▪ Infrastructure misconfiguration ▪ Disclosed vuln. in 3rd party / OS
software (CVE)

© Fortinet Inc. All Rights Reserved. 10


Resposta automática

Lacework-FortiCNAPP detects FortiGate-VM detects tags &


Infected VM based on behavior blocks traffic from malicious VM

EventBridge Lambda
Infected VM FortiCNAPP FortiGate-VM
Cloud Services

Lacework-FortiCNAPP sends
info to a channel (EventBridge)

© Fortinet Inc. All Rights Reserved. 18


O monitoramento de ameaças na nuvem pode explodir
os custos do SIEM

CLOUD

ON-PREM

SIEM
NETWORK

SIEM Costs Alert Volume

Data ingestion & storage Many alerts mask incidents


costs can grow to over $1M and fatigues SOC staff

© Fortinet Inc. All Rights Reserved. 20


Adding Security to the Application Development
Container Container
Code Repo Registry (Prod)
Registry (Dev)

code commit
pull request
triggers deploy
IDE
triggers build
Release Pipeline
Download Source Download Image Download Image Download Image

Build Deploy to Dev Deploy to QA Deploy to PROD

Unit Test Admission Control Migration & Load Tests Workload Protection
Build
Pipeline Static Code Analysis Dynamic Scan (DAST) Dynamic Scan (DAST) L7 AppSec

Security Analysis Push Image (Prod) Network Security

Dependency Check

Build Docker Image

Push to Registry DEV QA PROD


Application Environments © Fortinet Inc. All Rights Reserved. 23
Ext. Users

Web Traffic Web Traffic


Protected Protected
FortiAppSec (WAAP)
FortiRecon
SD-WAN / IPSec VPN / ZTNA (EASM)

N/S + E/W Protection

Hosts Containers Containers Hosts

FortiAnalyzer FortiSIEM FortiSOAR


(Reports) (Events) (Orchestration)

Data Centers On-Premises FortiDeceptor Cloud Service Providers

Security Analytics
On-prem or in the Cloud
Vulnerability Network Malware Active Vuln.
File Integrity
Detection Connections Detection Detection
FortiCNAPP

Process Data Correlation Anomaly Composite Threat


User Alerts
Information Baseline Creation Detection Hunting © Fortinet Inc. All Rights Reserved. 25
Activity

You might also like