FortiAI-Assist for FortiAnalyzer
AI-Powered Security Solutions

Overview:

FortiAI-Assist for FortiAnalyzer

FortiAI-Assist is embedded in FortiAnalyzer, leveraging its unified logs, alerts, telemetry, and platform-wide intelligence to monitor and analyze alerts and mitigate incidents, powering AI-assisted triage, investigation, and threat response. This is complemented by intuitive menu prompts in FortiAnalyzer and its ability to use natural language and voice-to-text to generate complex database queries and report creation—helping analysts simplify operations, detect faster, and respond smarter, all from a single platform.

Executive Summary

Today’s organizations balance network and security operations against an everevolving threat landscape. As adversaries use AI-driven evasion techniques, threats are increasingly dynamic and challenging to detect. At the same time, security teams face an overwhelming number of security incidents requiring investigation, compounded by limited resources that hinder their ability to deploy, configure, and maintain security tools, leaving gaps in coverage. These constraints prevent teams from achieving the unified visibility, automation, and threat intelligence necessary to effectively mitigate risks.

FortiAnalyzer delivers a turnkey, unified security operations platform, helping teams streamline security monitoring, automate threat detection, and operationalize security intelligence. As the unified data lake of the Fortinet Security Fabric, FortiAnalyzer enables organizations of all sizes to consolidate data, simplify investigations, and coordinate response efforts efficiently. With embedded GenAI-assisted investigations, built-in SIEM, SOAR, and threat intelligence, FortiAnalyzer lets you simplify and scale security operations.

Bridging Network and Security Operations

FortiAnalyzer bridges network and security operations by aggregating and correlating data across IT infrastructure, firewalls, cloud environments, and endpoints. Instead of managing separate platforms for network health monitoring and security event detection, teams gain a consolidated view of system performance, security alerts, and operational insights. This unified approach to security monitoring allows you to detect threats faster, minimize blind spots, and improve collaboration between IT and security teams—all while maintaining scalability for evolving security requirements.

FortiAnalyzer makes it easy to expand from NOC to SOC, mature security capabilities, and optimize security workflows for greater collaboration. A number of core capabilities address today’s network and security operations challenges.

Features:

Key features and capabilities of FortiSIEM include:

• Unified Data Lake: Provides a single view of logs, incidents, configurations, and alerts.
• Native Threat Intel: Detects in real time with data correlation and baked-in threat intelligence.
• Built-in SOC Automation: Includes turnkey SIEM, SOAR, and XDR capabilities with pre-configured content packs, updated monthly.
• Embedded AI Assistance: Employs FortiAI for AI-assisted and augmented operations.
• Flexibility and Scalability: Offers lightweight appliance, VM, or cloud deployment options that scale horizontally.
• Enterprise-ready Integrations: Includes native integration with the Fortinet Security Fabric and turnkey third-party connectors.

FortiAnalyzer Use Cases

Unified Management

FortiAnalyzer offers a consolidated, real-time view of telemetry across your entire network to enhance visibility and simplify management.

Advanced Threat Detection

Integrated FortiGuard Security Services enable quick detection of emerging threats, bolstering security responsiveness.

Automated SecOps

Automation capabilities streamline security operations, reducing complexity and cost, while elevating efficiency and effectiveness.

FortiAI-Assist Use Cases

Automated Alert Triage

Prioritizes notifications based on risk, context, and historical patterns; suppresses duplicate alerts; only flags high-confidence threats.

Adaptive Threat Hunting

Scans logs, network traffic, and user behavior to search for threats without waiting for human input.

Root-Cause Tracing

Identifies an attack's origin, method, and impact using AI-driven reasoning.

Auto Configuration

Generates and corrects CLI and Jinja scripts in seconds with FortiAI Script Assistant, validating existing ones and recommending fixes for optimized operations.

Policy Creation

Allows quick policy change script generation, eliminating repetitive labor and human errors.

LAN/WAN Optimization

Enhances visibility and automation, reducing issue resolution time across LAN and SD-WAN through AI-assisted monitoring and trend analysis.

Specifications:

Model	GB/Day	Sustained LPS	Collector Mode Sustained LPS	No. Days @ Max Sustained LPS	Max Devices/VDOMs	Max ADOMs
FortiAnalyzer 150G	25	500	750	90	50	3
FortiAnalyzer 300G	100	2,000	3,000	50	180	25
FortiAnalyzer 810G	200 *self-encrypting storage	4,000	6,000	50	800	50
FortiAnalyzer 1000G	660	20,000	30,000	60	2,000	50
FortiAnalyzer 3100G	3,000	42,000	60,000	30	4,000	500
FortiAnalyzer 3510G	5,000	60,000	90,000	35	10,000	500
FortiAnalyzer 3700G	8,300	100,000	150,000	60	10,000	1,200
FortiAnalyzer BigData 4500G	20TB	300,000	-	30	10,000+	2,500

Pricing Notes:

• All Prices are Inclusive of GST
• Hardware plus FortiCare Premium and FortiGuard Enterprise Protection
  Hardware Unit, FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, Enterprise Services Bundle (IPS, AV, Botnet IP/Domain, Mobile Malware, FortiGate Cloud Sandbox including Virus Outbreak and Content Disarm & Reconstruct, Application Control, Web & Video Filtering, Antispam, Security Rating, Industrial Security and FortiConverter Service) plus term of contract
• Hardware plus FortiCare Premium and FortiGuard SMB Protection
  Hardware Unit, FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, SMB Services Bundle (IPS, AV, Botnet IP/Domain, Mobile Malware, FortiGate Cloud Sandbox including Virus Outbreak and Content Disarm & Reconstruct, Application Control, Web & Video Filtering , Antispam and FortiGate Cloud subscription service) plus term of contract
• Hardware plus FortiCare Premium and FortiGuard Unified Threat Protection (UTP)
  Hardware Unit, FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, UTP Services Bundle (IPS, AV, Botnet IP/Domain, Mobile Malware, FortiGate Cloud Sandbox including Virus Outbreak and Content Disarm & Reconstruct, Application Control, Web & Video Filtering and Antispam Service) plus term of contract
• Enterprise Protection (IPS, Advanced Malware Protection, Application Control, Web & Video Filtering, Antispam, Security Rating, IoT Detection, Industrial Security, FortiConverter Svc, and FortiCare Premium)
  FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, Enterprise Services Bundle (IPS, AV, Botnet IP/Domain, Mobile Malware, FortiGate Cloud Sandbox including Virus Outbreak and Content Disarm & Reconstruct, Application Control, Web & Video Filtering, Antispam, Security Rating, Industrial Security and FortiConverter Service)
• SMB Protection (IPS, Advanced Malware Protection, Application Control, Web & Video Filtering, Antispam, plus FortiGate Cloud subscription and FortiCare Premium)
  FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, SMB Services Bundle (IPS, AV, Botnet IP/Domain, Mobile Malware, FortiGate Cloud Sandbox including Virus Outbreak and Content Disarm & Reconstruct, Application Control, Web & Video Filtering, Antispam and FortiGate Cloud subscription service)
• Unified Threat Protection (UTP) (IPS, Advanced Malware Protection, Application Control, Web & Video Filtering, Antispam Service, and FortiCare Premium)
  FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, UTP Services Bundle (IPS, AV, Botnet IP/Domain, Mobile Malware, FortiGate Cloud Sandbox including Virus Outbreak and Content Disarm & Reconstruct, Application Control, Web & Video Filtering and Antispam Service)
• Advanced Threat Protection (IPS, Advanced Malware Protection Service, Application Control, and FortiCare Premium)
  FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, Advanced Threat Protection Bundle (IPS, AV, Botnet IP/Domain, Mobile Malware, FortiGate Cloud Sandbox including Virus Outbreak and Content Disarm & Reconstruct Service, Application Control)
• FortiCare Essential Support
  FortiCare Essential Ticket Handling, Hardware Replacement, Firmware and General Upgrades, Application Control
• FortiCare Premium Support
  FortiCare Premium Ticket Handling, Advanced Hardware Replacement (NBD), Firmware and General Upgrades, Application Control
• FortiCare Elite Support
  FortiCare Premium Support with FortiCare Elite Ticket Handling.
• Prices are for one year of Premium RMA support. Usual discounts can be applied.
• Annual contracts only. No multi-year SKUs are available for these services.
• Contact Fortinet Renewals team for upgrade quotations for existing FortiCare contracts.
• Pricing and product availability subject to change without notice.