Inside Territory Account Manager

"Cybersecurity" and "Fortinet" collaborate in enhancing data sovereignty May 7, 2026 21:40 Abu Dhabi (Al-Ittihad) The Cybersecurity Council of the UAE government signed a memorandum of understanding with Fortinet, a global leader in cybersecurity that drives the convergence of networking and security, to enhance national capabilities in cybersecurity, support data sovereignty, and enable secure digital transformation across the UAE. This collaboration reflects the country's broader effort to attract investments in the digital ecosystem, protect critical infrastructure, and create a trusted environment for organizations operating in an increasingly data-driven economy. Under the memorandum, signed on the sidelines of the "Make it in the Emirates" platform, Fortinet will collaborate with the Cybersecurity Council to explore establishing a local data center within the UAE to support data sovereignty and regulatory compliance requirements, aligning with the national cybersecurity priorities backed by the Cybersecurity Council. Additionally, the data center will serve as the foundation for a global cybersecurity center of excellence, aiming to deliver threat intelligence locally through Fortinet's FortiGuard system to support the development of cybersecurity talent, enable innovation in startups, and contribute to ongoing policy collaboration. This initiative aligns with the UAE's continued focus on developing national capabilities, fostering innovation, and strengthening cooperation frameworks within the cybersecurity ecosystem. The memorandum also includes a proposal for bilateral participation in global platforms such as the RSA Cybersecurity Conference and the World Economic Forum, reinforcing the importance of public-private partnerships in driving cybersecurity priorities and addressing emerging threats. Dr. Mohamed Hamad Al-Kuwaiti, Head of Cybersecurity for the UAE Government, affirmed that this ongoing collaboration with major global companies in cybersecurity reflects the country's continuous commitment to strengthening its digital environment and cyber infrastructure, supporting its sustainable leadership in various cybersecurity fields regionally and globally. He stressed that this approach highlights the pivotal role of public-private partnerships as a key pillar within the national cybersecurity strategy, contributing to the establishment of a secure and resilient digital ecosystem. He also noted that the cooperation with Fortinet embodies a shared commitment to enhancing capacity building and supporting innovation, along with cementing the UAE's position as a global data hub and a leading international destination for cybersecurity and digital trust. Meanwhile, Filippo Montielli, Senior Vice President for Europe, Middle East, and Africa at Fortinet, said that the UAE continues to adopt its proactive approach to cybersecurity, recognizing its role as a fundamental pillar for sustainable digital growth. He added: "Through our collaboration with the Cybersecurity Council, we look forward to building on this momentum by exploring local infrastructure, expanding access to advanced threat intelligence, and supporting the development of cybersecurity skills in line with national priorities." Under the memorandum, the potential establishment of the data center and the FortiGuard Center of Excellence will serve as a collaborative platform between the Cybersecurity Council and national computer emergency response teams, aiming to enhance cyber resilience.

Fortinet in 2026: what the latest FortiOS 8.0 updates mean for your network. The cybersecurity landscape of 2026 is no longer just about blocking known viruses; it is a battle of machine-speed intelligence. At the recent Fortinet Accelerate 2026 conference, the unveiling of FortiOS 8.0 marked a pivotal shift in how enterprise networks are defended. If you are managing an IT network, the "business as usual" approach to firewall management is officially over. Here is a deep dive into what the latest Fortinet updates mean for your infrastructure and how to leverage them for maximum security. 1. The rise of "agentic" AI in secops. For years, AI in networking was limited to basic chatbots or pattern recognition. FortiOS 8.0 introduces Fabric-Based AI Agents that move beyond simple automation into "agentic" workflows. * Conversational Troubleshooting: You can now interact with your FortiGate using natural language to diagnose complex SD-WAN routing issues or firewall policy conflicts. * Automated Triage: These agents don't just alert you; they perform the initial investigation, verifying if an alert is a true positive before it even hits your dashboard. * Model Context Protocol (MCP): This allows AI agents to maintain "memory" across your entire Security Fabric. If an attacker pivots from a remote branch to your data center, the AI follows the trail in real-time. 2. Securing the "shadow AI" Attack surface. With over 98% of Generative AI (GenAI) apps initially entering enterprises unsanctioned, Fortinet has introduced FortiView for AI. This provides deep visibility into which AI tools your employees are using. * AI-Aware Controls: You can now allow productivity-boosting tools like ChatGPT while blocking specific "risky" actions - such as uploading sensitive source code or customer data. * Deep DLP with OCR: One of the most significant updates is the integration of Optical Character Recognition (OCR) into Data Loss Prevention. It can now detect sensitive information hidden in screenshots or images, closing a massive loophole for data exfiltration. 3. Next-Generation SASE and sovereignty. As global regulations tighten, FortiOS 8.0 introduces SASE Outpost and Sovereign SASE options. This is a game-changer for industries like finance, healthcare, and government. * Local Enforcement: SASE Outpost allows you to deploy a SASE Point of Presence (POP) within your own private data center while maintaining centralized cloud management. * Data Residency: Sovereign SASE provides granular control over where your logs are stored and where your control plane resides, ensuring compliance with regional data laws. 4. Preparing for the "Post-Quantum" Future. Threat actors are already practicing "Harvest Now, Decrypt Later." Fortinet is staying ahead with Quantum-Safe Protection. * PQC Certificates: FortiOS 8.0 uses Post-Quantum Cryptography (PQC) for management paths and agentless VPNs. * Hybrid Key Exchange: By combining traditional encryption with quantum-resilient algorithms, Fortinet ensures that your encrypted traffic remains unreadable even by future quantum computers. SEO checklist: why you should upgrade in 2026. If you are running older versions of FortiOS, you are likely facing increased targeting from AI-automated offensive tools. To optimize your network for 2026, consider these three steps: * Enable AI-Aware Application Control: Prevent data leaks via unsanctioned GenAI. * Audit Your Perimeter: AI-driven bots are now scaling vulnerability scans at machine speed; ensure your FortiGate is patched to the latest 8.0 firmware. * Leverage the Security Fabric: Move away from point products. The strength of FortiOS 8.0 lies in its ability to synchronize security across switches, access points, and firewalls. Final thoughts. Fortinet's 2026 strategy is clear: Intelligence by Design. By integrating AI natively into a single operating system rather than bolting it on through acquisitions, FortiOS 8.0 offers a unified, scalable foundation that anticipates risks before they manifest.

Edge Device Exploitation: risks, attacks and detection. The recent wave of Edge Device Exploitation attacks targeting edge infrastructure from vendors like Ivanti, Fortinet, and Palo Alto Networks highlights a critical shift in how attackers gain access to enterprise environments. Instead of going after endpoints or users first, attackers are focusing on the systems that sit at the front door of the network. These devices are designed to provide secure remote access and enforce security policies. When they are compromised, they offer attackers a direct and often invisible path into the internal network. What is happening. Security teams across industries are observing large scale exploitation of vulnerabilities in VPN appliances, firewalls, and remote access gateways. These systems are typically exposed to the internet, making them highly attractive targets. Attackers scan for vulnerable devices, identify unpatched systems, and then attempt to gain access. In many cases, the exploitation process does not require user interaction. Once access is established, attackers deploy persistence mechanisms that allow them to return even after initial remediation attempts. Because these devices operate at the network boundary, activity originating from them is often trusted. This makes detection significantly more difficult. Why edge devices are a prime target. Edge infrastructure plays a unique role in enterprise security. It acts as both a gatekeeper and a bridge between external users and internal systems. If that gatekeeper is compromised, the entire trust model breaks down. There are several reasons why attackers prioritize these systems. They are always exposed to the internet. They often run complex software that may contain vulnerabilities. Many organizations delay patching due to operational concerns. And once compromised, these devices provide broad visibility into network traffic and authentication flows. In many incidents, attackers use edge devices not just for initial access but also for maintaining long term presence inside the network. How attackers operate. The attack process typically begins with automated scanning. Attackers look for known vulnerabilities in specific device versions. When a vulnerable system is identified, they attempt to exploit it to gain access. After initial access, the focus shifts to persistence. Attackers may modify system components or deploy hidden access methods that survive reboots and updates. From there, they move deeper into the network by harvesting credentials and mapping internal systems. Because the entry point is a trusted device, lateral movement can happen with minimal resistance. This allows attackers to escalate privileges and access sensitive data without triggering immediate alerts. Impact on organizations. The consequences of edge device compromise can be severe. Attackers can bypass traditional security controls and operate within the network as if they were legitimate users. This often leads to data theft, ransomware deployment, or long term espionage. In some cases, organizations discover the breach only after significant damage has already occurred. Another challenge is remediation. Even after patching the vulnerability, persistence mechanisms may remain. This means the attacker can regain access unless the device is thoroughly investigated and rebuilt. Detection and defense strategies. Defending against this type of attack requires a combination of strong hygiene and advanced monitoring. Patching edge devices promptly is critical, even if it requires operational planning. Organizations should also limit exposure by restricting access to these systems wherever possible. Monitoring should focus not just on whether a login is successful, but on whether the behavior associated with that login is normal. Unusual patterns such as unexpected configuration changes, abnormal authentication flows, or sudden spikes in internal traffic should be investigated immediately. It is also important to treat edge devices as high risk assets. Logs from these systems should be integrated into centralized monitoring platforms to enable better visibility. How Gurucul helps detect and stop these attacks. This is where Gurucul provides strong value. Traditional security tools often struggle with edge device attacks because they rely on known signatures or predefined rules. Gurucul takes a different approach by focusing on behavior and identity. Gurucul analyzes patterns across users, devices, and systems. If an edge device begins behaving differently, such as initiating unusual connections or accessing unexpected resources, it is flagged immediately. When attackers move from a compromised edge device into user accounts, Gurucul tracks those identity activities. It assigns risk scores based on behavior, helping security teams quickly identify compromised accounts. Network and lateral movement visibility. Gurucul provides visibility into how attackers move within the network. It detects abnormal communication patterns and privilege escalation attempts that often follow edge compromise. Automated response. The platform can trigger automated actions when suspicious behavior is detected. This helps contain threats before they spread further into the environment. Final thoughts. The exploitation of edge devices is not a temporary trend. It is becoming a preferred method for gaining access to enterprise networks. These systems sit in a position of trust, and once that trust is broken, the impact can be far reaching. Organizations need to move beyond basic patching and start focusing on continuous monitoring and behavioral analysis. Security today is not just about blocking access. It is about understanding what happens after access is granted.