Fortinet launches Lacework FortiCNAPP to enhance cloud-native security

October 23, 2024

In a significant advancement in cybersecurity, Fortinet (NASDAQ: FTNT) has announced the launch of Lacework FortiCNAPP, a cutting-edge cloud-native application protection platform (CNAPP). This new offering integrates seamlessly with the Fortinet Security Fabric, providing organisations with unmatched visibility and security across multi-cloud environments.

The announcement was made on October 22, 2024, during a press conference in Dubai, UAE. John Maddison, Fortinet’s Chief Marketing Officer, emphasised the importance of Lacework FortiCNAPP, stating, “This platform combines the proven capabilities of Lacework’s cloud-native application protection with our robust Security Fabric, delivering a comprehensive, full-stack cloud security solution that enables teams to effectively eliminate risks across their multi-cloud environments.”

Lacework FortiCNAPP not only enhances the existing features of Lacework’s platform but also introduces critical functionalities such as automated remediation and the ability to block active runtime threats. Furthermore, it enhances visibility into FortiGuard Outbreak Alerts, which inform organisations of new and emerging threats and their potential impacts.

The growing reliance on cloud infrastructure and services has exposed significant challenges for organisations seeking to maintain robust security. Traditional security tools are often insufficient to meet the demands of the dynamic cloud landscape, leaving security teams overwhelmed by a multitude of security and compliance alerts and lacking the necessary expertise to address these challenges effectively.

In response, Fortinet aims to streamline and fortify cloud security with Lacework FortiCNAPP. This unified platform reduces the complexity and costs associated with fragmented tools, enabling faster detection, prioritisation, investigation, and response to cloud-native threats. The platform employs an innovative AI-driven approach that continuously learns and adapts, enhancing security with minimal time and effort for development, operations, and security teams. By automatically linking risk insights with runtime threat data, it ensures that critical issues are swiftly addressed.

Key features of Lacework FortiCNAPP include a unified platform that correlates build and runtime risk data, AI-based anomaly detection capable of identifying previously unknown attack patterns, integrated code security that allows for early detection of vulnerabilities, and composite alerts that combine various signals to highlight active attacks. Additionally, the platform integrates with Fortinet’s Security Fabric solutions, streamlining responses to runtime threats through automated remediation playbooks.

The introduction of Cloud Infrastructure Entitlement Management (CIEM) within Lacework FortiCNAPP provides comprehensive visibility into cloud identities and their permissions. By automatically assessing and highlighting excessive permissions, it enables organisations to adopt a least-privileged access approach, thereby reducing risk.

With Lacework FortiCNAPP, Fortinet is positioning itself as a leader in addressing the complexities of cloud security, empowering businesses to navigate their cloud journeys with confidence.