Fortinet expands FortiCNAPP with network and data context

Fortinet updated FortiCNAPP to help security teams prioritize real-world cloud risk and focus remediation efforts on exposures with operational relevance.

The company cited its 2026 Cloud Security Report, which found nearly 70% of organizations identified tool sprawl and visibility gaps as top barriers to effective cloud security, and described the update as addressing those challenges across cloud environments.

Fortinet said the enhancements correlated cloud configuration, identity exposure, vulnerabilities, network enforcement, data sensitivity, and runtime behavior into a single workflow. It incorporated network-level protection context by detecting FortiGate solutions placed along internet-accessible paths to workloads and added native Data Security Posture Management (DSPM) that identified sensitive data, access patterns, and potential malware while supporting privacy and data governance requirements.

The vendor consolidated signals from cloud posture, infrastructure entitlement, vulnerabilities, DSPM, and network security posture into a unified view and added runtime-informed prioritization that validated vulnerable code paths to distinguish theoretical findings from active, exploitable risk. Fortinet said the correlated context around configuration issues, identity exposure, vulnerabilities, network reachability, data sensitivity, and runtime behavior enabled faster remediation with fewer tools.

“Cloud security teams aren’t struggling because they lack data. They’re struggling because growing complexity, limited resources, and skills gaps make it harder to manage risk across cloud environments,” said Nirav Shah, Senior Vice President, Products and Solutions at Fortinet.

Fortinet said the enhancements would help organizations reduce noise, improve decision-making, and align security efforts with actual exposure and available resources.