Fortinet Launches FortiSOC, a Unified SOC Platform Powered by Agentic AI

New cloud-delivered SOC platform brings together six core security operations functions into a single AI SOC experience designed to simplify and scale modern security operations

Artificial Intelligence | Innovation | Product Development | Security Operations

Posted: Wednesday, Jun 17

KBI.Media
$
Fortinet Launches FortiSOC, a Unified SOC Platform Powered by Agentic AI

Fortinet Launches FortiSOC, a Unified SOC Platform Powered by Agentic AI

June 17, 2026 – Fortinet^® (NASDAQ: FTNT), the global cybersecurity leader driving the convergence of networking and security, has announced the availability of FortiSOC, a unified, cloud-delivered security operations centre (SOC) platform. FortiSOC brings together six security operations functions into a single Software-as-a-Service (SaaS) experience and embeds agentic AI to autonomously investigate and correlate alerts across assets and identities, then recommend or execute response actions under analyst oversight. Built on Fortinet’s proven security operations (SecOps) technologies, FortiSOC helps organisations simplify and scale modern operations through one console, one subscription, and one unified operating model.

Michael Xie Founder, President, and Chief Technology Officer, Fortinet, said, “Security teams today are being challenged by faster attacks, growing investigation volume, and fragmented operations that simply don’t scale.

“FortiSOC gives organisations a simpler way to operationalise the SOC capabilities they need through a unified, cloud-delivered platform designed to support security teams of all sizes, from teams building foundational capabilities to enterprises scaling advanced SOC environments. With embedded AI, integrated workflows, and built-in best practices informed by Fortinet’s own global security operations centre, FortiSOC delivers the power of an AI SOC to help customers eliminate complexity, automate threat detection and response, and stay a step ahead of attackers.”

One unified platform for modern security operations

FortiSOC is designed to simplify how organisations operationalise security operations by unifying security information and event management (SIEM); security orchestration, automation, and response (SOAR); threat intelligence; and behavioural and identity threat detection (ITDR) into a single platform. With agentic AI and FortiGuard Labs threat intelligence, FortiSOC extends the SecOps innovations introduced at Fortinet Accelerate 2026 by integrating analytics, investigation, automation, and response workflows into a single cloud-delivered experience for modern environments. FortiSOC enables security teams to move from alert to investigation to response with reduced friction, fewer operational silos, and stronger cross-environment visibility.

Support for every stage of the SOC journey

FortiSOC is designed to support organisations at every stage of SecOps adoption, from resource-constrained teams establishing foundational monitoring capabilities to highly sophisticated and advanced SOC teams requiring deeper automation, broader correlation, and AI-assisted investigation at scale.

Based on proven Fortinet technologies, FortiSOC extends this journey through a cloud-delivered approach that combines advanced cyber defence, essential network operations centre (NOC) and IT visibility, and adaptable workflows that can expand with customer needs. Organisations can use it to establish a streamlined entry into SecOps, modernise legacy approaches, or scale large or mature environments without changing direction as requirements evolve.

FortiAI-Assist further differentiates FortiSOC by applying autonomous investigation, AI-generated playbooks, and model context protocol (MCP)-powered agent coordination across alerts, investigations, threat hunting, cases, and response actions. Leveraging enterprise-wide telemetry and threat intelligence, FortiAI-Assist helps coordinate activity across tools, workflows, and teams within the same platform. Security teams can tailor processes, coordinate activity across security and IT systems, involve stakeholders across departments, and extend use cases over time while maintaining the speed, consistency, and control required in modern environments.

Key benefits include:

One platform, total control: Unify SIEM, SOAR, user and entity behaviour analytics (UEBA), case management, threat intelligence, ITDR, and AI-driven operations into a single SaaS platform. FortiSOC gives security teams the speed of AI, consistency, and clarity to stay ahead of threats without the overhead of managing multiple tools.
One subscription, zero complexity, better return on investment (ROI): A single console and subscription model helps reduce procurement complexity, streamline day-to-day operations, and improve resource allocation so security teams can focus on the most important objective: stopping threats.
Ready on day one, prepared for what comes next: Best-practice content for detection methods, playbooks, and more based on Fortinet’s own global SOC operations are available out-of-the-box. FortiGuard Labs real-time threat intelligence, outbreak alerts, and monthly content updates allow organisations to keep pace with the speed and sophistication of today’s threat actors.
Connected by design, ready to scale: Native integrations across the entire Fortinet Security Fabric and thousands of third-party connectors eliminate coverage gaps and help organisations automate detection and response across security, IT, and business systems. MCP support extends this reach to diverse environments, allowing FortiAI-Assist to operate, orchestrate, and coordinate various AI capabilities and tasks throughout FortiSOC, minimising manual handoffs that slow remediation.

Extending the Fortinet SOC platform

FortiSOC complements and expands the broader Fortinet SOC Platform portfolio of FortiAnalyzer, FortiSIEM, and FortiSOAR by uniting and extending these capabilities for customers who prefer a single cloud-based SOC platform model. These existing best-of-breed solutions will continue to be enhanced and available. Together, these solutions comprise the Fortinet SOC Platform, which delivers flexible pathways and purchase options tailored to meet customer needs today and offering them a smooth pathway for future evolution.

As organisations modernise SecOps, analysts continue to see growing demand for integrated, cloud-delivered SOC platforms that simplify operations and reduce tool sprawl.

Michelle Abraham, Senior Research Director, Security and Trust, IDC, said, “IDC research shows that organisations are increasingly prioritising analyst workflow and investigation experience as well as cloud-delivered security operations as they work to improve visibility, streamline processes, and accelerate response.

“FortiSOC builds on Fortinet’s established security operations portfolio by combining proven technologies into a unified SaaS platform that can support both foundational and advanced SOC use cases.”

Read the blog and listen to the webinar for more detail on how FortiSOC helps streamline SecOps and accelerate detection and response.

Additional resources

Read more about FortiSOC.
Read more about the Fortinet Security Fabric.
Learn about the Fortinet Open Ecosystem.
Visit com/trust to learn about Fortinet innovation, collaboration partners, product security processes, and enterprise-grade products.
Read about how Fortinet customers are securing their organisations.
Learn about Fortinet’s commitment to product security and integrity, including its responsible product development and vulnerability disclosure approach and policies.
Follow Fortinet on X, LinkedIn, Facebook, and Instagram. Subscribe to Fortinet on our blog or YouTube.