DATA SHEET

FortiCASB™

Visibility, Insight, and Control for SaaS Applications

Highlights

§ On-Demand scanning of data stored in the cloud

§ Cloud usage analytics

§ User entitlement management

§ Configuration assessment

§ Predefined policies

§ Data loss prevention and threat detection

§ User behavior and activity monitoring

FortiCASB is a Fortinet-developed cloud-native

Cloud Access Security Broker (CASB) subscription

service that is designed to provide visibility,

compliance, data security, and threat protection for

cloud-based services employed by an organization.

With support for major SaaS service providers, FortiCASB

provides insights into users, behaviors, and data stored in

the cloud with comprehensive reporting tools, and

provides advanced controls to extend security policies

from within the perimeter to SaaS applications.

Enforcement for SaaS

API-based access to cloud applications enables visibility and control of stored data.

Total Scalability

Cloud-based subscription model grows with your organization.

On-network or Remote

Data is protected directly with the SaaS provider, not funneled to an inspection point.

FortiCASB™

2 www.fortinet.com

HIGHLIGHTS

Using an API-based approach, FortiCASB is directly connected to

SaaS providers to access usage and data stored in the cloud. This

method gives IT security managers the ability to scan stored data

for threats, proprietary information, or sensitive customer records.

This approach also ensures that all users of the organization’s SaaS

applications are monitored and protected by FortiCASB no matter

where they are or what device they are using.

Built from the “Fabric-up”, FortiCASB is designed for deep

integration into the Fortinet Security Fabric to provide consolidated

SaaS application management and reporting with FortiGate

and FortiAnalyzer.

Internal UsersExternal Users

FORTICASB

DOWNLOAD ONLYRESTRICTED

UNSANCTIONED

UNSANCTIONED

SANCTIONED

SANCTIONED

TOLERATED

TOLERATEDFORTINET SECURITY FABRIC

On-Demand Data ScanningUnlike a proxy-based service or hardware device, FortiCASB

directly connects to the SaaS provider to access data and files

stored in an organization’s accounts. New information is validated

against data leakage policies and scanned for threats. Existing

information or “data at rest” is also scanned to ensure it meets

business policies. If a business policy is updated, it can be easily

applied to data stored in the cloud by the administrator.

User Insights and PoliciesFortiCASB offers many tools to provide insights into user behaviors

and their activities on SaaS applications. Administrators can monitor

usage as needed and have the ability to view user entitlements,

dormant users, and conduct detailed configuration assessments.

FEATURES

GLOBAL HEADQUARTERSFortinet Inc.899 KIFER ROADSunnyvale, CA 94086United StatesTel: +1.408.235.7700www.fortinet.com/sales

EMEA SALES OFFICE905 rue Albert Einstein06560 Valbonne FranceTel: +33.4.8987.0500

APAC SALES OFFICE300 Beach Road 20-01The ConcourseSingapore 199555Tel: +65.6395.2788

LATIN AMERICA SALES OFFICESawgrass Lakes Center13450 W. Sunrise Blvd., Suite 430 Sunrise, FL 33323United StatesTel: +1.954.368.9990

Copyright© 2017 Fortinet, Inc. All rights reserved. Fortinet®, FortiGate®, FortiCare® and FortiGuard®, and certain other marks are registered trademarks of Fortinet, Inc., in the U.S. and other jurisdictions, and other Fortinet names herein may also be registered and/or common law trademarks of Fortinet. All other product or company names may be trademarks of their respective owners. Performance and other metrics contained herein were attained in internal lab tests under ideal conditions, and actual performance and other results may vary. Network variables, different network environments and other conditions may affect performance results. Nothing herein represents any binding commitment by Fortinet, and Fortinet disclaims all warranties, whether express or implied, except to the extent Fortinet enters a binding written contract, signed by Fortinet’s General Counsel, with a purchaser that expressly warrants that the identified product will perform according to certain expressly-identified performance metrics and, in such event, only the specific performance metrics expressly identified in such binding written contract shall be binding on Fortinet. For absolute clarity, any such warranty will be limited to performance in the same ideal conditions as in Fortinet’s internal lab tests. In no event does Fortinet make any commitment related to future deliverables, features or development, and circumstances may change such that any forward-looking statements herein are not accurate. Fortinet disclaims in full any covenants, representations, and guarantees pursuant hereto, whether express or implied. Fortinet reserves the right to change, modify, transfer, or otherwise revise this publication without notice, and the most current version of the publication shall be applicable.

FST-PROD-DS-FCASB FCASB-DAT-R1-201704

FortiCASB™

FEATURES

ORDER INFORMATION

Product SKU Description

FortiCASB Cloud Access Security Broker FC-10-FCASB-145-02-DD FortiCASB 100 User License — 1 year

Advanced SaaS AnalyticsFortiCASB offers a comprehensive set of analysis tools to manage

SaaS usage and data storage. Detailed user monitoring helps to

quickly identify risks and automated tools help to manage incidents

as they occur.

Application Discovery and ControlWhen used with the Cloud Access Security Inspection (CASI)

features of FortiOS and with FortiAnalyzer for reporting, FortiCASB

can offer a complete solution to identify SaaS applications used on

the network and provide additional management tools. CASI on

FortiOS provides an easy-to-use feature set to manage tolerated

and unsanctioned SaaS on the network.