Fortinet expands FortiCNAPP with network, data, and runtime-aware risk prioritization

Fortinet announced new enhancements to FortiCNAPP that help organizations better understand and prioritize cloud risk beyond what many CNAPP solutions offer. By correlating cloud configuration, identity exposure, vulnerabilities, network enforcement, data sensitivity, and runtime behavior within a single workflow, FortiCNAPP enables security teams to focus on the risks that matter most.

“Cloud security teams aren’t struggling because they lack data. They’re struggling because growing complexity, limited resources, and skills gaps make it harder to manage risk across cloud environments,” said Nirav Shah, SVP, Products and Solutions at Fortinet. “By unifying network enforcement, data sensitivity, and runtime validation within FortiCNAPP, we’re enabling customers move from alert overload to clear, prioritized action based real-world exposure and business impact.”

As organizations expand across hybrid and multi-cloud environments, security teams are often forced to piece together risk signals from disconnected tools, resulting in fragmented visibility and slower response. According to the Fortinet 2026 Cloud Security Report, nearly 70% of organizations cite tool sprawl and visibility gaps as the top barriers to effective cloud security.

FortiCNAPP addresses this challenge by adding protection where it matters most for cloud security teams, across the network, data, and runtime layers of cloud environments.

Factoring network security posture into cloud workload risk

FortiCNAPP incorporates network-level protection context directly into risk evaluation, providing a more accurate picture of real exposure that many CNAPP solutions lack.

• Network-aware risk scoring: FortiCNAPP detects FortiGate solutions deployed along the internet-accessible path to cloud workloads and incorporates that protection directly into workload risk assessments, ensuring exposure is evaluated in the context of existing network enforcement.
• Reduced false urgency: Persistent protection context provides a more realistic view of risk and enables security and network teams to operate from a shared, consistent understanding of exposure.

Native Data Security Posture Management (DSPM) adds data risk context

FortiCNAPP enhances risk prioritization by directly incorporating data sensitivity and exposure, without requiring customers to move or export their data.

• In-place data risk visibility: Built-in DSPM identifies sensitive data, access patterns, and potential malware, while supporting privacy and data governance requirements.
• Business impact-driven prioritization: Risks affecting sensitive data are automatically elevated, helping teams focus remediation efforts on issues with the greatest potential impact.

Bringing risk signals together into a unified workflow

FortiCNAPP simplifies cloud risk operations by consolidating often siloed security signals into a single, actionable workflow.

• Unified risk management: Insights from cloud posture, infrastructure entitlement, vulnerabilities, DSPM, and network security posture into a single view.
• Runtime-informed prioritization: Validation of vulnerable code paths helps teams distinguish theoretical findings from active, exploitable risk.
• Faster remediation: Correlated context around configuration issues, identity exposure, vulnerabilities, network reachability, data sensitivity, and runtime behavior enables faster response with fewer tools.

As cloud environments grow more complex, risk management requires understanding not just what is misconfigured or vulnerable, but whether protections are in place, what data is involved and the likelihood of real-world impact. With these enhancements, FortiCNAPP helps organizations reduce noise, improve decision-making, and align security efforts with actual exposure and available resources.

Organizations are using FortiCNAPP to simplify cloud security operations and gain visibility into risk across complex cloud environments by unifying network, data, and runtime context within a single platform.

“FortiCNAPP gives us visibility across identities, workloads, and vulnerabilities so we know exactly where risk exists and how to address it,” said Huy Ly, Head of Global IT Security & Infrastructure at Monolithic Power Systems. “It acts like a continuous auditor, helping us assess the health of our cloud environment at a glance, even without deep, hands-on cloud expertise. Combined with the Fortinet Security Fabric, FortiCNAPP helps us proactively reduce risk across our cloud operations.”