Endpoint Protection

Expand all | Collapse all

Forti client vs MS ATP defender

  • 1.  Forti client vs MS ATP defender

    Posted May 19, 2020 12:58 PM
    Hello team ,

    I am looking for an official comparison chart between Fortinet Endpoint client vs Mocrosoft Defender to site out advantages of One over the other

    Forticlient has multiple purposes- ( It serves as VPN Client also)- Does it cover the EDR Functionality and advanced EPP
    Fortinet has recently acquired an EDR company ensilo 


    Does the Forti client ( may be newer version) has the Ensilo inbuilt ?

    Also the client Management of Forticlient is still via EMS solution or any cloud native Solution ?

    ------------------------------
    skywalker
    ------------------------------


  • 2.  RE: Forti client vs MS ATP defender

    Posted Jun 02, 2020 02:24 AM

    Hi Anupam,

    Fortinet FortiClient appeared in the Gartner MQ Endpoint Detection Platforms market analysis in August 2019.
    https://www.gartner.com/doc/reprints?id=1-1OCBC1P5&ct=190731&st=sb
    This report identified limited capability of that product.

    As a result of Fortinet's recent acquisition of Ensilo, the EDR capability is enhanced in the Fortinet FortiEDR product
    and provides improved capability and leverages the integrations with Fortinet Security Fabric products.

    FortiEDR also provides additional Use Cases for Operational Technology (OT) Security and Point-of-Sale (POS).

    Microsoft ATP is a leading product in the EDR space, and is now across all of the Microsoft ecosystem (Azure, O365, Windows),
    plus Linux & MacOS.   Having implemented this product and run many vendor comparisons in the past 2 years its hard to beat,
    however the cost per seat can be high (negotiable on existing Microsoft license base).


    For a wider review of EDR security capability the Mitre Attack website is the most comprehensive from a SecOps perspective
    https://attackevals.mitre.org/evaluations.html?round=APT29

    Hope that helps

    KR

    Justin




  • 3.  RE: Forti client vs MS ATP defender

    GROUP ADMIN
    Posted Jun 02, 2020 08:57 AM
    Hi Anupam,
    Fortinet acquired ensilo at the end of 2019 and launched FortiEDR.  FortiEDR's functionalities combine attack surface reduction, machine learning AV, post-infection protection, Detection, and response.   I encourage you to check out this demo video https://www.youtube.com/watch?v=_DoSSI9fPAk

    As for your other questions, the EDR functions that come from enSilo is not built into FortiClient.
    as for EMS, FortiClient now has a cloud-managed option - FortiClient Cloud.

    Regards,
    Tsailing

    ------------------------------
    Tsailing Merrem
    ------------------------------