Intelligent CISO Issue 21 | Page 38

FEATURE to current threats, which leaves them unable to plan and anticipate the attacks to come in the near future. Why do CISOs need to reassess how they are approaching the security of their networks? The job scope of the CISO is becoming multi-dimensional; she or he needs to be a business enabler, an agent of change and a human leader. In addition, the CISO needs to talk the language of the business. And since managing a business is primarily managing risk, the CISO needs to factor traditional network and security indicators into the risk curve of his company. The Fortinet Security Fabric delivers a unified approach that is broad, integrated and automated. Instead of being Mr No: ‘We cannot have this collaborative application, we can’t have people bringing in their own devices, we need to forbid social networks’, the CISO of 2020 and beyond would say: ‘These are the three possible scenarios regarding the use of social media inside our company, each of which is associated to a risk level. The best ratio/performance/risk is the second one that reduces the probability of GDPR infringement by 80% while enabling each employee to connect to LinkedIn, Twitter and Office 365’. This new approach will make the CISO part of the C-level suite, turning his cybersecurity knowledge into strategic recommendations based on business risk. What are the key elements of Fortinet’s network security solutions? DX is an opportunity for nearly every organisation to achieve more flexibility and cost efficiency for itself and 38 better experiences for its customers. At the same time, DX increases the digital attack surface, gives hackers innovative ways to generate increasingly sophisticated attacks and contributes to a growing complexity of regulations and security solutions. This will not stop emerging leaders – the ones who build a foundation for managing risk that enables their organisations to move faster than competitors in leveraging DX. The Fortinet Security Fabric is that foundation. It unifies security solutions behind a single pane of glass, makes the growing digital attack surface visible, integrates AI-driven breach prevention and automates operations, orchestration and response. In summary, it enables organisations to create new value with DX without compromising security for business agility, performance and simplicity. How do Fortinet’s solutions enable visibility and reduce complexity? The influx and speed of DX projects makes it harder for organisations to protect against advanced threats. Add new and evolving regulations and the adoption of security standards, along with the fact that threats are faster and more advanced than ever, and the complexity of security expands exponentially. Automated workflows and orchestration – from detection, to protection, to response – becomes a requirement for any enterprise seeking to succeed in this complex world of security management. This is where the Security Fabric delivers tangible dividends. Automation of network operations helps DevOps teams to focus on time to market, improves operational efficiencies through zero-touch provisioning and generates real-time insights around branch network performance around issues such as spikes, scaling and priority routing of traffic. Automation of security operations reduces risk through proactive threat detection, threat correlation, intelligence-sharing alerts and threat research and analysis. Integration of IT service management (ITSM) tools unlocks automation of event analysis and responses. This reduces response times from days to minutes or even seconds. The Security Fabric also uses automation to transform compliance audits, tracking and ongoing reporting across industry regulations and security standards. The latter includes dashboards for the CISO, CIO, CEO and even the board of directors. This saves security teams myriad hours in manual log aggregation and correlation, a task that is particularly onerous with a disaggregated security architecture lacking transparent visibility and centralised controls Why do organisations require a broad, integrated solution? The volume and velocity of malicious attacks, coupled with their increasing sophistication, makes it difficult for cybersecurity defences to keep pace. Blocking known threats is not enough today. Artificial Intelligence (AI) and Machine Learning (ML) offer organisations the means to stay ahead of cybercriminals. Unfortunately, only slightly more than one-third of security vendors use AI and ML capabilities in their solutions. Fortinet recognised the importance of doing so years ago in its development of FortiGuard AI. Specifically, FortiGuard The job scope of the CISO is becoming multi-dimensional; she or he needs to be a business enabler, an agent of change and a human leader. Issue 21 | www.intelligentciso.com