FortiSOAR Overview
Extended detection and response (XDR) is a natural extension of the endpoint detection and response (EDR) concept, in which behaviors that occur after threat prevention controls act are further inspected for potentially malicious, suspicious, or risky activity that warrant mitigation. The difference is simply the location (endpoint or beyond) where the behaviors occur.
FortiSOAR Overview | Security Orchestration Automation and Response
FortiSOAR™ is a holistic and enterprise-built security orchestration and security automation workbench that empowers security operation teams.
FortiSOAR™ increases a team’s effectiveness by increasing efficiency, allowing for response in near real-time. In this video, you’ll see how FortiSOAR™ takes your security operation team to the next level by automating the incident response process and facilitating collaboration, behind one unified interface.
Features and Benefits
Incident Management
Enterprise-grade customizable incident management enables SOC analysts to efficiently investigate alerts and better understand, review, and manage incidents
Automated Workflows
Leverage the most advanced playbook engine to create workflows within the product and integrate into existing enterprise tools. 200+ playbooks enable teams to easily onboard
FortiSOAR for MSSPs
Create a unique managed security service provider (MSSP)-enabled customer centric dashboards, workflows, and views to enable easy security operations management across customer segments
SOC Dashboards and Reports
A built-in advanced visual dashboard enables customers to easily create dashboards specific to a role within security operations
Partner Connectors
Integrate existing enterprise security solutions. FortiSOAR comes with 280+ partner connectors to existing vendors across SIEM, network security, endpoint, cloud, and more
Queue Management
Built-in queue management handles automatic work assignments across multiple queues and teams within the SOC

Keeping you ahead of threats
The Fortinet Security Fabric continuously assesses the risks and automatically adjusts to provide comprehensive real-time protection across the digital attack surface and cycle.
Powered by FortiOS, the Fabric is the industry’s highest-performing integrated cybersecurity platform with a rich ecosystem. The Fabric enables consistent security across the extended digital attack surface. Seamless interoperability, complete visibility, and granular control are now possible for hybrid deployments including hardware, software, and X-as-a-Service across networks, endpoints, and clouds.
