Defense & Operations
UTM (Unified Threat Management)
Also known as: Unified Threat Management, All-in-One Security Appliance
Definition
An all-in-one network security appliance that combines firewall, IPS, web filtering, antivirus and VPN in a single device, primarily targeted at SMBs and branch offices.
Examples
- A FortiGate UTM at a branch office providing firewall, IPS, web filtering and SSL VPN to remote workers.
- A Sophos XG appliance bundling antivirus scanning and content filtering for a 200-user retail chain.
Related terms
Firewall
A network security device or software that monitors and controls inbound and outbound traffic based on a defined ruleset, separating trusted from untrusted networks.
Next-Generation Firewall (NGFW)
An advanced firewall that combines stateful inspection with application awareness, integrated IPS, user-identity controls, and TLS inspection to enforce richer policies.
Intrusion Prevention System (IPS)
An inline security control that detects malicious traffic and actively blocks, resets, or scrubs it in real time.
VPN (Virtual Private Network)
VPN (Virtual Private Network) — definition coming soon.
Security Controls
Safeguards or countermeasures — technical, administrative, or physical — used to prevent, detect, or respond to threats against information assets.
EPP (Endpoint Protection Platform)
A preventive endpoint security suite that combines antivirus, anti-malware, host firewall and exploit protection to block threats before they execute on a device.