Fortinet Bolsters Incident Response With CyberSponse Deal
Vendor will integrate SOAR platform into wide range of cybersecurity offerings
Cybersecurity vendor Fortinet has bought CyberSponse, a company that was already a technology partner and which comes with a security orchestration, automation, and response (SOAR) platform.
The Lowdown: The purchase of CyberSponse, which was announced this week, is the latest step by Fortinet to grow its capabilities via acquisition. The company in October announced it was buying enSilo to expand its endpoint security expertise. No financial details for the CyberSponse deal were released.
The Details: Fortinet already had integrated CyberSponse’s SOAR platform for enterprises and MSSPs into its Security Fabric offering. The plan is to further bring the platform’s automation and incident response capabilities to other Fortinet products, including FortiAnalyzer, FortiSIEM, and FortiGate.
The combination of Fortinet and CyberSponse technologies will:
> Augment SOC and MSSP efforts: The integrated offerings will provide a scalable architecture that includes multi-tenancy features to streamline SOC operations and make it easier for MSSPs to run managed detection and response services.
> Deliver more than 325 connectors: These will enable enterprises and MSSPs to integrate their Fortinet products and services with those of other security vendors, creating a single place for network visibility and control.
> Make configuration easier: There will be more than 200 playbooks for automating incident response action sequences and tasks.
> Deliver case management modules: These will include incident timeline and asset correlation views, as well as a tool for automatically measuring ROI and savings.
> Introduce role-based access control: This will better ensure the security of user-related data.
The Impact: SOAR platforms are an increasingly important part of a company’s security profile and MSSP service offerings to address the growth in cyberattacks that are getting more sophisticated, the shortage of skilled cybersecurity pros, and the need for centralized views of threats. SOAR offerings enable companies to more easily collect data about security threats housed in sprawling corporate networks, correlate the information, and respond to them automatically. A report from ResearchandMarkets forecasts that the global SOAR market will grow from $868 million this year to almost $1.8 billion by 2024, growing more than 15% a year.
The Buzz: “The growing number of security tools being deployed by enterprises has introduced operational complexities that make organizations more vulnerable to breaches,” Fortinet founder and CEO Ken Xie said. “With the integration of CyberSponse’s powerful SOAR platform into the Fortinet Security Fabric, we will offer customers accelerated incident response and the ability to standardize and scale processes that will enhance security posture and reduce business risk and associated costs.”
“Organizations are still looking for advanced incident response capabilities that can help them be more efficient,” said Jon Oltsik, senior principal analyst and fellow at Enterprise Strategy Group. “To meet these goals, large organizations will gladly embrace a SOAR solution from Fortinet that can help them enhance automation, orchestration, and response capabilities and maximize efficiencies, savings, and speed.”
“This is an ideal match,” said Joseph Loomis, founder and CSO at CyberSponse. “CyberSponse’s mission has always been to make security operations management effortless and effective with innovative yet disruptive technology. The combined powerhouse of Fortinet’s Security Fabric and CyberSponse’s SOAR technology will ensure customers are protected by the most sophisticated global security operations platform that includes hundreds of integrations enabling streamlined out-of-the-box playbook execution.”
Related Links:
CHANNELNOMICS: Fortinet Acquires enSilo to Boost Endpoint Protection