FortiSIEM

Developed by Fortinet

From detection to security insights

By integrating Mimecast with FortiSIEM, organizations gain search and correlation capabilities across all log types to detect and respond to cyberattacks and defend against growing threats while modernizing and scaling security operations through integrated visibility, detection, investigation, and response.

Solution overview

  1. Emails received by Mimecast are passed through a series of hygiene scanning techniques, to ensure that they are safe before delivery to the recipient.
  2. Email intelligence provided by Mimecast is sent to FortiSIEM for normalization.
  3. FortiSIEM uses the email intelligence to alert analysts and add context to data from other data sources.
  4. With FortiSOAR, automate the management and response to phishing emails.
fortiSIEM-diagram.webp

Mimecast + FortSIEM use cases

Mimecast data adds additional context within FortiSIEM to aid:

Icon_Bcircle_correlation.svg

Threat correlation

Identify initial attack deployment methodology, characteristics, and subsequent access attempts without the need for manual effort or multiple toolsets.
07BLOG_1.jpg
Icon_Bcircle_magnifying-glass.svg

Advanced threat detection

Improve your organization’s security posture and detect threats by augmenting email perimeter defense with user and entity behavior analytics.
07BLOG_1.jpg
Icon_Bcircle_follow.svg

Lateral movement detection

Detect and follow attackers even as they switch IP addresses, devices, or credentials.
07BLOG_1.jpg
icon_Bcircle_alert.svg

Alert prioritization

Increase efficiency and effectiveness by prioritizing the most pressing threats.
07BLOG_1.jpg
icon_threat_intelligence_hub.png

Threat intelligence

Understand and block attacks at all levels of your organization, as well as analyze events across the attack chain to enhance productivity and remediate vulnerabilities.
07BLOG_1.jpg
07BLOG_1.jpg
07BLOG_1.jpg
07BLOG_1.jpg
07BLOG_1.jpg
07BLOG_1.jpg

Key benefits

01.

Earlier detection and containment of attacks, with rapid response to phishing and business email compromise tactics.

02.

FortiSIEM and threat intelligence enrichment detects threats within Mimecast events.

03.

Increase protection, reduce resource utilization, and improve analysis and knowledge of threats through built in dashboards and Mimecast regional threat intelligence.

04.

Correlation across Mimecast events, cloud, endpoint, and network data to quickly identify high-risk individuals and devices that may create future security breaches

FortiSOAR Integration

FortiSOAR combines infrastructure orchestration, playbook automation, case management and integrated threat intelligence to streamline processes and tools.

Back to Top