"The process for security compliance can be an arduous and costly one for many organizations, so having an automated compliance strategy that runs across and deep into the network - on a common product platform - can significantly mitigate security risks and help to alleviate the associated financial and technological burdens," said Michael Xie, CTO and co-founder of Fortinet.
The FortiScan-1000B appliance performs the following security functions as part of a comprehensive vulnerability management system:
â¢ Vulnerability Management: Identifies security vulnerabilities and finds compliance exposures on hosts, servers and throughout the network transparently to end-users; endpoint VM is achieved through a client-resident agent, while network-level VM is accomplished through agent-less network analysis, from FortiAnalyzer, which provides network discovery, asset prioritization and profile-based scanning;
â¢ Auditing: Audits and monitors across heterogeneous systems and provides industry-standard benchmarks for IS compliance audits for operating systems; users can either select from the list of audit benchmarks or create their own audit standards by choosing specific controls. This approach provides maximum flexibility for users and at the same time their audit framework will be standards based;
â¢ Patch/Remediation: Delivers patch management with ready-to-deploy remediation and enforcement actions; remediation capability goes beyond traditional patch management, allowing network managers to change configurations and potentially mitigate weak settings, including disabling an application or denying a network request;
â¢ Reporting/Compliance: Aids compliance for regulatory mandates with 360 degree reporting and analysis; provides industry, regulatory and best practices templates for ISO 17799, SOX, HIPAA, GLBA, NIST, SCAP, FISMA, etc. Pre-defined reports and views for compliance are also provided.
Like the rest of Fortinet's product line, FortiScan-1000B will also rely on the FortiGuardâ¢ subscription service to automate FortiScan policy, remediation, vulnerability database updates in real-time. The appliance comes with two terabytes of storage and can support up to 2,000 network assets.FortiScan-1000B will be available in the second quarter of this year.