Skip to content Skip to navigation Skip to footer
Overview
Security Services
Case Studies & Reviews
Models & Specs
Support & Services
Resources

What Is Fortinet FortiAnalyzer?

FortiAnalyzer consolidates telemetry across networks, endpoints, and cloud environments. It combines a unified data lake, built-in automation, native threat intelligence, and GenAI assistance to centralize essential capabilities. FortiAnalyzer enables horizontal scaling, faster detection, and effective response, all from one platform. 

FortiAnalyzer email metrics dashboard

Unified Data Lake

FortiAnalyzer ingests, normalizes, and enriches data across security and network environments as the unified data lake of the Fortinet Security Fabric. Analysts gain structured dashboards such as IoT, SOC, email metrics, and endpoint vulnerability, offering actionable insights into risks and trends. This consolidated approach improves investigation speed, enhances operational awareness, and supports informed decision-making from a single source of truth. 

FortiAnalyzer Outbreak Alerts dashboard

Advanced Threat Detection

FortiAnalyzer integrates with FortiGuard Labs to provide continuous threat intelligence, delivering automated outbreak detection and indicators of compromise (IOC) services. Analysts benefit from risk-based threat scoring, anomaly detection, and automated correlation mapped to the MITRE ATT&CK framework. These capabilities refine threat investigation, accelerate identification, and improve incident prioritization, helping organizations efficiently strengthen their security postures.

Built-in SOC Automation and GenAI-Assistant

FortiAnalyzer includes SIEM, SOAR, and XDR capabilities, automating essential security functions. Preconfigured automation content packs (updated monthly), feature playbooks, premium reports, and third-party log parsers reduce manual configuration efforts. GenAI-assistant FortiAI optimizes efficiency with natural language processing, talk-to-text support, and automated threat response. Learn how FortiAI with FortiAnalyzer refines workflows, minimizes response time, and improves analyst effectiveness.

Watch Now
video proactive defense with fortiai

Features and Benefits

Unified Data Lake

Provides a single view of logs, incidents, configurations, and alerts

Native threat intel

Detects in real time with data correlation and baked-in threat intelligence

Built-in SOC automation

Includes turnkey SIEM, SOAR, and XDR capabilities with pre-configured content packs, updated monthly

Embedded GenAI

Employs FortiAI for AI-assisted and augmented operations

Flexibility and scalability

Offers lightweight appliance, VM, or cloud deployment options that scale horizontally 

Enterprise-ready integrations

Includes native integration with the Fortinet Security Fabric and turnkey third-party connectors

99%

Improve Operational Efficiency

49%

Improve MTTR

587%

Average ROI

FortiAnalyzer Use Cases

icon consolidation
Unified Management
FortiAnalyzer offers a consolidated, real-time view of telemetry across your entire network to enhance visibility and simplify management.
icon webscraping
Advanced threat detection
Integrated FortiGuard Security Services enable quick detection of emerging threats, bolstering security responsiveness.
icon automated workflow
Automated SecOps
Automation capabilities streamline security operations, reducing complexity and cost, while elevating efficiency and effectiveness.

Enterprise Analyst Validation

ESG Economic Validation on Fortinet SecOps Fabric
ESG Economic Validation: The Quantified Benefits of Fortinet Security Operations Solutions. Improved security team operational efficiency and reduced risk to the organization, each by up to 99%. Written by Aviv Kaufmann, Practice Director and Principal Economic Validation Analyst at Enterprise Strategy Group. January 2025
The Quantified Benefits of Fortinet Security Operations Solutions
As enterprises evolve, new technologies emerge, and cybercriminals introduce more sophisticated attacks, security leaders and their teams face a variety of challenges in securing the organization’s networks. This new report published by Enterprise Strategy Group details the benefits of using Fortinet Security Operations solutions, including improved operational efficiency and more effective risk management.
Download Report »

FortiGuard AI-Powered Security Services

FortiGuard Labs - Fortinet’s elite cybersecurity threat intelligence and research organization comprised of experienced threat hunters, researchers, analysts, engineers, and data scientists - develops and enhances FortiGuard AI-powered Security Services as well as provides valuable expert help through FortiGuard Expert-driven Security Services.

Show All Services
Content Security
Web Security
Device Security
Application Security
SOC NOC Security
FortiGuard Indicators of Compromise Service
FortiGuard Indicators of Compromise Service

Utilizes an extensive library of IOCs to help security teams detect a previously unknown compromise of their network environment.

View the latest outbreak alerts on cyber-attacks | FortiGuard Labs
FortiGuard Outbreak Alerts

View the latest outbreak alerts tracked by FortiGuard Labs. View the full Outbreak Alert report to understand the impact and outcome of the attack. From the latest Colonial Pipeline ransomware attack to the Microsoft Exchange zero-day exploits.

SOC-as-a-Service
SOC-as-a-Service

Fortinet Security Operations Center-as-a-Service (SOCaaS) is a cloud-based security monitoring service for Fortinet customers of FortiGate, FortiEDR, FortiXDR, and/or FortiClient. Fortinet SOCaaS can complement and enhance your Enterprise security operations center (SOC) capabilities through integration, technology automation, and security expertise. The services analyze events generated from your devices, perform alert triage, and escalate threats to empower your teams and focus them on what matters most.

Case Studies

Alcampo
Alcampo
Leading Spanish Retailer Secures and Streamlines Business Operations with Fortinet Secure SD-Branch
Large Restaurant Chain
Large Restaurant Chain
Integrating Networking with Security Improves Customer Experience for Large Restaurant Chain
Snam
Snam
Leading Italian Energy System Operator Boosts Efficiency with Secure SD-WAN
Viettel Group
Viettel Group
Achieving Robust Security in a Vulnerable Landscape: How Viettel Safeguards Its Network and Customers with Fortinet

Gartner Peer Reviews

Read what customers say about FortiAnalyzer in Gartner Peer Insights Reviews for their SD-WAN, NGFW, and consolidation projects.
★★★★★
“Easy Going To Deployment & Configure, Directly Insight In The Connectivity”

“Easy to configure • Easy to deployment • Easy to centralized manage • Single appliance for: SD-WAN + advance routing + NGFW functions helped us consolidate other point products.”

—  Security Officer, Manufacturing
★★★★★
“FortiAnalyzer The Your Best Friend With FortiGate Devices”

“I am using Fortianalyzer for a long time, If you have Fortigate devices you have to Fortianalyzer, because it gives you more information and security awareness about your network. It has own security dashboard and user friendly web interface which is easy to search traffic logs.”

—  Sr. Network & Security Engineer
★★★★
“Great Utility For Regulatory Compliance And Troubleshooting.”

“We originally purchased FortiAnalyzer solely as a detective control. We now utilize it for troubleshooting client vpn connections as well as traffic metrics.”

—  Compliance Consultant

Models and Specifications

Compare Products

View by:

  • Appliances
  • Subscription
FortiAnalyzer 150G
GB/Day
25
Sustained LPS
500
Collector Mode Sustained LPS
750
No. Days @ Max Sustained LPS
90
Max Devices/VDOMs
50
Max ADOMs
3
FortiAnalyzer 300G
GB/Day
100
Sustained LPS
2,000
Collector Mode Sustained LPS
3,000
No. Days @ Max Sustained LPS
50
Max Devices/VDOMs
180
Max ADOMs
25
FortiAnalyzer 810G
GB/Day
200 *self-encrypting storage
Sustained LPS
4,000
Collector Mode Sustained LPS
6,000
No. Days @ Max Sustained LPS
50
Max Devices/VDOMs
800
Max ADOMs
50
FortiAnalyzer 1000G
GB/Day
660
Sustained LPS
20,000
Collector Mode Sustained LPS
30,000
No. Days @ Max Sustained LPS
60
Max Devices/VDOMs
2,000
Max ADOMs
50
FortiAnalyzer 3100G
GB/Day
3000
Sustained LPS
42,000
Collector Mode Sustained LPS
60,000
No. Days @ Max Sustained LPS
30
Max Devices/VDOMs
4,000
Max ADOMs
500
FortiAnalyzer 3510G
GB/Day
5,000
Sustained LPS
60,000
Collector Mode Sustained LPS
90,000
No. Days @ Max Sustained LPS
35
Max Devices/VDOMs
10,000
Max ADOMs
500
FortiAnalyzer 3700G
GB/Day
8,300
Sustained LPS
100,000
Collector Mode Sustained LPS
150,000
No. Days @ Max Sustained LPS
60
Max Devices/VDOMs
10,000
Max ADOMs
1,200
FortiAnalyzer BigData 4500G
GB/Day
20TB
Sustained LPS
300,000
Collector Mode Sustained LPS
-
No. Days @ Max Sustained LPS
30
Max Devices/VDOMs
10,000+
Max ADOMs
2,500
VM
GB/Day
Stackable
Sustained LPS
Stackable
Collector Mode Sustained LPS
Stackable
No. Days @ Max Sustained LPS
Stackable
Max Devices/VDOMs
10,000
Max ADOMs
1,200
Cloud
GB/Day
Stackable
Sustained LPS
Stackable
Collector Mode Sustained LPS
Stackable
No. Days @ Max Sustained LPS
Stackable
Max Devices/VDOMs
10,000
Max ADOMs
-

FortiCare Support & Professional Services

Fortinet is dedicated to helping our customers succeed, and every year FortiCare services help thousands of organizations get the most from their investments in Fortinet's products and services. To achieve this, FortiCare follows the life-cycle approach and provides unique services to help our customers in their success journeys.

Technical Support Services

Technical Support Services

Various per-device options are available for efficient operations. FortiCare Elite option provides a 15-minute response time for critical products.

Advanced Support

Advanced Support

Various per-account white glove services are available to reduce disruption and increase productivity with operational reviews by designated experts.

Professional Services

Professional Services

Our multi-vendor experts can design and deploy a complete best practice-based solution to help you meet your network or security objectives and adopt new capabilities.

RMA

RMA

Priority RMA options are available across the product family for expedited replacement of defective hardware to meet your availability objectives.

Resources

Solution Briefs
eBooks
Blog
Checklists
Data Sheets
Videos
White Papers
Webinars
Simplify SD-WAN Operations with Fortinet Secure SD-WAN, FortiManager, and FortiAnalyzer
Simplify SD-WAN Operations with Fortinet Secure SD-WAN, FortiManager, and FortiAnalyzer »

Fortinet Secure SD-WAN addresses today’s WAN challenges, combining next-generation firewalls (NGFWs) with integrated solutions for management and analytics to centralize and simplify SD-WAN operations.

Choose the Fortinet SOC Platform for Unified Threat Response
Choose the Fortinet SOC Platform for Unified Threat Response »

Fortinet provides a unified threat response product suite that employs advanced detection, automation, and GenAI assistance to rapidly identify, investigate, and respond to the threats that matter.

Built-in AI Assistance Streamlines Visibility and Improves Threat Response in Fortinet FortiAnalyzer
Built-in AI Assistance Streamlines Visibility and Improves Threat Response in Fortinet FortiAnalyzer »

FortiAnalyzer centralizes log collection, analysis, and correlation while offering continuous security posture assessment reporting. This solution provides security teams with a single console to manage, automate, orchestrate, and respond to incidents, ensuring complete visibility across the entire attack surface.

Massively Accelerate Time to Detect and Disrupt, Investigate and Remediate with the Fortinet Security Operations Solution
Massively Accelerate Time to Detect and Disrupt, Investigate and Remediate with the Fortinet Security Operations Solution »

Fortinet Security Operations Solution uses AI and advanced analytics to monitor activity across users, devices, networks, emails, applications, files, and logs and detect anomalous or malicious actions that humans may easily overlook.

Simplify Operations with the Fortinet Security Fabric and FortiAnalyzer
Simplify Operations with the Fortinet Security Fabric and FortiAnalyzer »

FortiAnalyzer solves challenges with consolidated network information and automated processes. Part of the Fortinet Security Fabric, FortiAnalyzer integrates with other Fortinet offerings and enables you to leverage security analytics and automation without the need for additional consoles or solutions.

Accelerate Efficiency of Security Operations Across the Security Fabric with Rapid Response
Accelerate Efficiency of Security Operations Across the Security Fabric with Rapid Response »

In 2019 alone, over $124 billion was spent on cybersecurity;1 however, many organizations’ security teams are struggling to keep up. Challenges include too many consoles, alert overload, a reliance on manual processes, and a shortage of cybersecurity personnel.

Strategies That Reduce Complexity and Simplify Security Operations
Strategies That Reduce Complexity and Simplify Security Operations »

Enterprise Security for Changing Times - Protection for Expanding Infrastructures, Increasing Attacks, and Compliance

Fortinet Analytics-Powered Security and Log Management
Fortinet Analytics-Powered Security and Log Management »

FortiAnalyzer for Increased Efficiencies, Faster Response, and Compliance

Fortinet Solutions for Automation-driven Network Operations
Fortinet Solutions for Automation-driven Network Operations »

Read the eBook to understand how FortiManager and FortiAnalyzer support network operations use cases for centralized management, compliance, and automation to provide better detection and protection against breaches.

Elevate Your Security Operations with FortiAI
Elevate Your Security Operations with FortiAI »

FortiAI, embedded within FortiAnalyzer, is built on over a decade of Fortinet AI innovation and patents. It enhances security operations by automating threat detection, reducing manual workloads, and empowering teams with actionable intelligence—without the inefficiencies or limitations of standalone AI tools.

Introducing FortiAnalyzer 7.6
Introducing FortiAnalyzer 7.6 »

FortiAnalyzer 7.6 offers advanced automation, AI-driven insights, and intuitive visualization tools for fast and effective threat response.

Fortinet Expands GenAI Offerings for Security and Networking Operations
Fortinet Expands GenAI Offerings for Security and Networking Operations »

Fortinet has added new GenAI capabilities to its SecOps solutions, including FortiAnalyzer, FortiSOAR, and FortiSIEM.

Secure Remote Access for the Teleworker Accessing the Cloud
Secure Remote Access for the Teleworker Accessing the Cloud »

Discover how organizations can meet the performance and capacity requirements of an increased remote workforce accessing applications hosted in the cloud and SaaS services more than ever before.

Automate Network Management to Accelerate Digital Transformation
Automate Network Management to Accelerate Digital Transformation »

Discover how Fortinet’s Fabric Management Center, which combines FortiManager and FortiAnalyzer for effective network operations, enables agile network management for Fortinet customers.

11 Tips for Implementing GenAI into Security Operations
11 Tips for Implementing GenAI into Security Operations »

Integrating GenAI into your cybersecurity platform reduces the complexity of deciphering threats and helps bridge the cybersecurity skills gap. Take these steps to effectively evaluate and implement GenAI in your SecOps.

FortiAnalyzer Ordering Guide
FortiAnalyzer Ordering Guide »

FortiAnalyzer Ordering Guide

Fortinet Product Matrix
Fortinet Product Matrix »

Fortinet Product Matrix

FortiAnalyzer Data Sheet
FortiAnalyzer Data Sheet »

FortiAnalyzer Datasheet

FortiAnalyzer Big Data 4500G Data Sheet
FortiAnalyzer Big Data 4500G Data Sheet »

FortiAnalyzer Big Data 4500G Datasheet

Fortinet AI-Driven Security Operations
Fortinet AI-Driven Security Operations »

Fortinet's Security Operations platform transforms security operations with behavior-based sensors that detect and disrupt threats across the attack surface. Powered by FortiOS, it enables automated, orchestrated, and AI-augmented investigation and remediation—reducing cyber risk, cost, and effort.

Proactive Defense with FortiAI: Unleash AI-Driven Threat Hunting
Proactive Defense with FortiAI: Unleash AI-Driven Threat Hunting »

Experience how Fortinet's FortiAI empowers security teams to uncover hidden threats before they strike. See how advanced machine learning capabilities transform massive amounts of security data into actionable intelligence—accelerating threat hunting and reducing investigative overhead.

Streamline SOC Integration with FortiAnalyzer in Under 5 Minutes
Streamline SOC Integration with FortiAnalyzer in Under 5 Minutes »

Watch this demo to learn how you can use FortiAnalyzer to streamline SOC integration with FortiGate, FortiAuthenticator, and FortiClient EMS in less than five minutes.

How a Leading Manufacturer Leveraged ZTNA
How a Leading Manufacturer Leveraged ZTNA »

Discover how Barnes Group, a global industrial and aerospace manufacturing leader, secures its expansive corporate network. With over 8,000 endpoints, Barnes Group relies on Fortinet Universal ZTNA, advanced endpoint and network protection, and FortiGuard AI-powered Security Services to maintain top-notch security.

Fortinet Supports Compassionate Caregivers With a Secure and Reliable Network
Fortinet Supports Compassionate Caregivers With a Secure and Reliable Network »

Catholic Health Services (CHS) provides healthcare services to thousands of people through its 38 locations across Broward and Miami-Dade counties in Florida. Its role and location place CHS at risk, not only of internet outages due to hurricanes and other hazards but also of cyberattacks due to the personal health information it collects. For this budget-strapped non-profit, Fortinet’s centrally managed SecurityFabric with Secure SDWAN affords both resilient connectivity and efficient IT operations. Learn how Catholic Health Services secured the modernization of its network with the Fortinet Security Fabric and Fortinet Secure SD-WAN.

Understanding the Security Operations Journey
Understanding the Security Operations Journey »

To meet cybersecurity needs, organizations must create a strategy that includes unified security management, AI assistance, security automation, and continuous assessment.

Generative AI in Security Operations
Generative AI in Security Operations »

Generative AI (GenAI) offers a transformative opportunity for SecOps teams to enhance decision-making, streamline operations, and improve the organization’s overall security posture.

Understanding Today’s Threat Actors
Understanding Today’s Threat Actors »

Insights from Incident Responders and Tips for Protecting Your Organization

Unleash Your Security Fabric with FortiAnalyzer for Operational Technology
Unleash Your Security Fabric with FortiAnalyzer for Operational Technology »

Part of the OT-Aware Security Platform, FortiAnalyzer for OT provides comprehensive network traffic analysis, log management, and automated threat responses.

Security Complexity Spirals Out of Control
Security Complexity Spirals Out of Control »

Analytical Fragmentation Creates Challenges for Security Architects

Unified Threat Response: Your Journey to an AI-Powered SOC
Unified Threat Response: Your Journey to an AI-Powered SOC »

This session delves into outsmarting and outpacing attackers by unifying threat response with centralized analytics, automation, and GenAI.

SecOps Made Easy: AI, Automation & Consolidation for Lean Teams
SecOps Made Easy: AI, Automation & Consolidation for Lean Teams »

If you find that your team is juggling too many alerts and getting overwhelmed with daily operations, don’t miss this webinar.

Ecosystem

FortiAnalyzer provide integration with many leading vendors as part of the Fortinet Security Fabric. Below is a list of current Product Alliance Partners:

Amazon Web Services
Amazon Web Services

AWS services are trusted by more than a million active customers around the world – including the fastest growing startups, largest enterprises, and leading government agencies – to power their infrastructures, make them more agile, and lower costs.

Learn more on the Fortinet-AWS alliance

Resources
Functionalities
Cloud
Fortinet Fabric Ready Fabric Connector DevOps
Criterion Networks, Inc.
Criterion Networks, Inc.

Criterion Networks is a SaaS and professional services company specializing in network transformation and modernization. Customers greatly benefit from on-demand and custom design, deployment, training, demo and PoC capabilities of Fortinet SD-WAN and security solutions, accelerating network transformation initiatives, shortening sales cycles and deployment times, while lowering cost structures.

Resources
Functionalities
Networking, SDN-NFV & Virtualization
Fortinet Fabric Ready
CyberArk
CyberArk

CyberArk is the global leader in privileged account security, a critical layer of IT security to protect data, infrastructure and assets across the enterprise, in the cloud and throughout the DevOps pipeline. CyberArk delivers the industry’s most complete solution to reduce risk created by privileged credentials and secrets.

Resources
Functionalities
Identity Management
Fortinet Fabric Ready
D3 Security
D3 Security

D3 Security's award-winning SOAR platform seamlessly combines security orchestration, automation and response with enterprise-grade investigation/case management, trend reporting and analytics. With D3's adaptable playbooks and scalable architecture, security teams can automate SOC use-cases to reduce MTTR by over 95%, and manage the full lifecycle of any incident or investigation. 

Resources
Functionalities
Automation, Security Operations
Fortinet Fabric Ready
DFLabs
DFLabs

DFLabs IncMan SOAR leverages existing security products to dramatically reduce the response and remediation gap caused by limited resources and the increasing volume of incidents. Together with Fortinet, IncMan allows joint customers to respond to security incidents in a faster, more informed and efficient manner. 

Resources
Functionalities
Automation, Security Operations
Fortinet Fabric Ready
Google Cloud Platform
Google Cloud Platform

Google Cloud Platform is a secure, dedicated public cloud computing service operated by Google which provides a range of infrastructure and application services that enable deployments in the cloud. Fortinet provides critical firewalling, advanced security and scalable BYOL protection for elastic compute, container, and machine-learning workloads in Google’s innovative public cloud.

Resources
Functionalities
Cloud
Fortinet Fabric Ready Fabric Connector DevOps
Guardicore
Guardicore

Guardicore solutions provide a simpler, faster way to guarantee persistent and consistent security — for any application, in any IT environment. Together with Fortinet Guardicore provides visibility and control for hybrid clouds and data centers.

Resources
Functionalities
Cloud
Fortinet Fabric Ready Fabric Connector
IBM
IBM

IBM Security offers one of the most advanced and integrated portfolios of enterprise security products and services. The portfolio enables organizations to effectively manage risk and defend against emerging threats.

Resources
Functionalities
Security Operations, Cloud, Vulnerability Management
Learn More
Microsoft Azure
Microsoft Azure

Microsoft is the leading platform and productivity company for the mobile-first, cloud-first world, and its mission is to empower every person and every organization on the planet to achieve more.

Resources
Functionalities
Identity Management, Cloud, Unified Communications
Learn More
Nutanix
Nutanix

Nutanix makes infrastructure invisible, elevating IT to focus on the applications and services that power their business. The Nutanix enterprise cloud platform leverages web-scale engineering and consumer-grade design to natively converge compute, virtualization and storage into a resilient, software-defined solution that delivers any application at any scale.

Resources
Functionalities
SDN-NFV & Virtualization
Fortinet Fabric Ready

Training & Certifications

Fortinet Certified Professional - Security Operations
FortiAnalyzer Analyst
In this course, you will learn the fundamentals of using FortiAnalyzer for centralized logging. You will also learn how to identify current and potential threats through log analysis. Finally, you will examine the management of events, incidents, reports, and task automation with playbooks. These skills will provide you with a solid foundation for becoming a SOC analyst in an environment using Fortinet products.
Learn More
Fortinet Certified Professional - Network Security
FortiAnalyzer Administrator
In this course, you will learn how to deploy, configure, and secure FortiAnalyzer. You will also learn how to register and manage devices with FortiAnalyzer. Finally, you will explore the fundamentals of the logging and reporting management capabilities included in FortiAnalyzer. These skills will provide you with a solid foundation for becoming a professional FortiAnalyzer administrator.
Learn More
Fortinet Certified Solution Specialist - OT Security
OT Security
Learn how to design, deploy, administrate, and monitor FortiGate, FortiNAC, FortiAnalyzer, and FortiSIEM devices to secure OT infrastructures. These skills will provide you with a solid understanding of how to design, implement, and operate an OT security solution based on Fortinet products.
Learn More

Free Product Demo

Experience smart, fast, scalable security in the FortiAnalyzer self-guided demo.

What to Expect

  • Discover how easy it is to deploy all FortiAnalyzer capabilities
  • Dive into a single console to see a holistic view of the security landscape
  • Learn how FortiAnalyzer detects broadly, responds rapidly, and scales  
fortianayzer dashboard

FortiAnalyzer News

Gartner Peer Insights reviews constitute the subjective opinions of individual end users based on their own experiences, and do not represent the views of Gartner or its affiliates.

Quick Links

links image 1 139x100

Free Product Demo

resource center icon 139X159

Resource Center

links image 2 139x121

Free Trials

contact sales icon 139x85

Contact Sales

Also of Interest: