SecurityBrief Asia - Technology news for CISOs & cybersecurity decision-makers
Story image

Fortinet launches AI-powered data loss prevention solution

Today

Fortinet has announced the general availability of FortiDLP, a data loss prevention and insider risk management solution.

FortiDLP is based on technology from Next DLP and integrates with the existing Fortinet Security Fabric. The solution is designed to enhance data security management, enforce data protection dynamically, and increase visibility of insider threats for large enterprise customers.

John Maddison, Chief Marketing Officer at Fortinet, stated, "In an era when data protection is paramount, FortiDLP offers a next-gen solution that combines artificial intelligence (AI)-enhanced detection and insider risk management to secure sensitive information. By leveraging an AI-powered data protection solution with the help of generative AI, security teams can anticipate risks, streamline incident response, and mitigate threats faster than legacy DLP solutions. Protecting your data from both internal and external threats starts with visibility and proactive prevention, and FortiDLP delivers that protection on day one."

According to a recent prediction by Gartner, "By 2027, 70 per cent of CISOs in larger enterprises will adopt a consolidated approach to address both insider risk and data exfiltration use cases." FortiDLP aims to address traditional challenges faced by Chief Information Security Officers (CISOs), including managing data silos, navigating rigid data classification policies, and coping with risks from malicious insiders.

FortiDLP offers several key features distinguishing it from older DLP solutions. These include cloud-native endpoint protection, shadow AI data protection, and enhanced insider risk detection.

The solution provides shadow AI data protection, allowing employees to use generative AI tools like OpenAI ChatGPT and Google Gemini safely. Administrators can establish policies to ensure these interactions are secure, balancing productivity with data security.

FortiDLP also offers "Day one data visibility and protection," with pre-configured policies and machine learning for data movement visibility. It protects data even when endpoints are not connected to the network.

Additionally, the solution can identify insider threats by monitoring user behaviour. This includes analysing employee activity regarding sensitive data access to ensure any potential data leakage is promptly mitigated.

In terms of cloud security, FortiDLP ensures comprehensive oversight over interactions involving data in the cloud and continues to secure data beyond initial cloud-based locations.

FortiDLP employs origin-based data protection, providing immediate visibility concerning potential data exposure risks. It complements traditional data classification techniques with capabilities like manipulation detection and data egress controls.

Moreover, the solution includes risk-informed user education, guiding employees in handling sensitive information responsibly.

An AI-powered assistant is integrated into FortiDLP to provide incident analysis. It utilises FortiAI to summarise and contextualise high-risk activities, aiding analysts' understanding based on the MITRE Engenuity Insider Threat Tactics framework.

FortiDLP is part of Fortinet's strategy to augment their security solutions, intending to offer it as a standalone product and incorporate its features into the broader Fortinet Security Fabric. The solution reflects the next-generation cloud-native data protection platform from Next DLP, a vendor recognised by Gartner for its capabilities in the market.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X