Fortinet moves to acquire cloud-based threat analytics company ZoneFox Limited

Fortinet, a specialist in the field of broad, integrated and automated cyber security solutions, has completed the acquisition of ZoneFox Limited, a privately-held cloud-based insider threat detection and response company headquartered in Edinburgh. The acquisition further enhances the Fortinet Security Fabric and strengthens Fortinet’s existing endpoint and Security Information and Event Management (SIEM)-focused security offer.

Thanks to the acquisition, end user customers will be provided with:

*Deeper visibility into endpoints and associated data flow and user behaviour, both on and off the network

*Machine learning capabilities able to distil billions of events each day into high quality threat leads to uncover blind spots and alert users of suspicious activity

*A cloud-based architecture that captures essential data around five core factors – user, device, resource, process and behaviour – to analyse and configure policies easily

*Full forensics timeline recording of information, combined with a simple search interface that helps analysts quickly determine the actions needed to boost an enterprise’s security posture

*A zero-configuration agent that’s easy and fast to deploy (the solution can scale-up to support over 10,000 agents without performance loss)

*Out-of-the-box support for the EUs GDPR, ISO 27001, HIPAA and PCI DSS with ‘ready-to-go’ policies

The integration of ZoneFox’s award-winning machine learning-based threat-hunting technology will complement FortiClient endpoint security to provide endpoint detection and response capabilities and will extend FortiSIEM with additional user entity behaviour analytics features, both on-premises and in the cloud.

Fortinet expects that the new endpoint security capabilities provided by ZoneFox will allow enterprise organisations to better leverage machine learning in order to detect anomalous behaviour and provide an even faster response to insider threats.

Speaking about the deal, Ken Xie (founder, chairman of the Board and CEO at Fortinet, said: “Enterprise organisations are experiencing a dramatic increase in the number of endpoints and users accessing data and cloud resources, which is also increasing the need to defend against insider threats. In fact, 30% of breaches involved insiders acting negligently or maliciously according to the 2018 Verizon Data Breach Investigations Report. By combining ZoneFox’s cloud-based threat-hunting technology with Fortinet’s existing endpoint and SIEM security offerings, we’re well positioned to provide our customers with an integrated approach to defend against insider threats, eliminate network blind spots and protect today’s expanding attack surface with automation and machine learning.”

In response, Dr Jamie Graves (CEO and founder of ZoneFox) stated: “We’re pleased to join the Fortinet team and bring together our shared vision of alleviating CISO concerns about insider threats. Integrating our solution with the Fortinet Security Fabric will allow us to extend our reach to a broad spectrum of Fortinet and third party solutions in order to solve customers’ most difficult challenges in the realm of network security.”

About the Author
Brian Sims BA (Hons) Hon FSyI, Editor, Risk UK (Pro-Activ Publications) Beginning his career in professional journalism at The Builder Group in March 1992, Brian was appointed Editor of Security Management Today in November 2000 having spent eight years in engineering journalism across two titles: Building Services Journal and Light & Lighting. In 2005, Brian received the BSIA Chairman’s Award for Promoting The Security Industry and, a year later, the Skills for Security Special Award for an Outstanding Contribution to the Security Business Sector. In 2008, Brian was The Security Institute’s nomination for the Association of Security Consultants’ highly prestigious Imbert Prize and, in 2013, was a nominated finalist for the Institute's George van Schalkwyk Award. An Honorary Fellow of The Security Institute, Brian serves as a Judge for the BSIA’s Security Personnel of the Year Awards and the Securitas Good Customer Award. Between 2008 and 2014, Brian pioneered the use of digital media across the security sector, including webinars and Audio Shows. Brian’s actively involved in 50-plus security groups on LinkedIn and hosts the popular Risk UK Twitter site. Brian is a frequent speaker on the conference circuit. He has organised and chaired conference programmes for both IFSEC International and ASIS International and has been published in the national media. Brian was appointed Editor of Risk UK at Pro-Activ Publications in July 2014 and as Editor of The Paper (Pro-Activ Publications' dedicated business newspaper for security professionals) in September 2015. Brian was appointed Editor of Risk Xtra at Pro-Activ Publications in May 2018.

Related Posts