Fortra is a cybersecurity software and services company focused on helping organizations break the cyber attack chain through a unified, AI-driven platform. Its portfolio spans offensive security, data protection, cloud and application security, managed detection and response, threat intelligence, and human risk management, giving security teams a coordinated way to address both prevention and response.
Fortra’s positioning is distinctly data-centric. It combines telemetry, threat research, and machine learning across its portfolio to surface risk, correlate signals, and protect sensitive information across endpoints, networks, cloud apps, email, and web environments. Alongside software, Fortra delivers managed and expert-led services for customers that need deeper monitoring, faster response, or added operational support.
Offerings, Capabilities, and Integrations
Fortra’s capabilities cover offensive testing, threat intelligence, data protection, cloud security, vulnerability management, integrity and compliance monitoring, secure file transfer, email security, and human risk management. Its platform strategy centers on shared telemetry and AI-backed correlation, with a common experience designed to simplify administration and connect signals across multiple control points.
Integration is a recurring theme across the portfolio. Data classification can inform downstream protection policies, cloud data controls extend visibility into SaaS and cloud platforms, and offensive tooling aligns with red team and validation workflows. Fortra also pairs software with managed services, enabling customers to combine self-managed controls with 24/7 monitoring, expert tuning, and response support.
Products and Services
- Cobalt Strike: Adversary simulation software for red team operations that emulates advanced attacker behavior, post-exploitation activity, lateral movement, and command-and-control techniques.
- Core Impact: Penetration testing platform for safely validating vulnerabilities across network, client-side, and web application attack paths through multi-phased testing.
- Outflank Security Tooling: Cloud-delivered red team toolkit built to emulate sophisticated real-world attackers and support evasive operations across the attack chain.
- Digital Guardian: Data loss prevention offering, now marketed as Fortra DLP, that provides visibility and protection for sensitive data across endpoints, networks, and cloud environments.
- GoAnywhere MFT: Managed file transfer software that automates and encrypts file exchanges and workflows with centralized administration and broad protocol support.
- Alert Logic: Managed security portfolio delivering XDR, MDR, and managed WAF services for cloud, hybrid, on-premises, and web application environments.
- Tripwire: Integrity and compliance monitoring portfolio that includes file integrity monitoring, security configuration management, and vulnerability prioritization capabilities.
- Fortra Human Risk Management: Security awareness training and phishing simulation solution focused on changing user behavior and reducing human-driven cyber risk.
- Fortra Threat Brain: AI-powered threat intelligence hub that correlates indicators and research from Fortra telemetry, external sources, and expert analysis.
- Fortra Vulnerability Management: Risk-based vulnerability management solution that identifies, evaluates, reports, and prioritizes exploitable weaknesses for remediation.
- Fortra CASB: Cloud access security broker that provides visibility and policy control for cloud apps, risky behavior, and unsanctioned application use.
- Fortra Data Security Posture Management: DSPM offering that discovers, classifies, and protects sensitive data across cloud services, SaaS apps, and broader enterprise environments.
- Fortra Data Classification: Data classification suite that applies visual and metadata labels to help organizations identify, govern, and protect sensitive information.
- Fortra XDR: Managed extended detection and response service that delivers cross-environment visibility, 24/7 monitoring, investigation, and incident response support.
- Fortra Managed WAF: Managed web application firewall service for protecting web apps and APIs with expert tuning, threat intelligence, and continuous oversight.
Target Customers
Fortra targets organizations that need coordinated offensive and defensive security across hybrid environments, including mid-market businesses, large enterprises, and public sector organizations. It is especially relevant for teams managing sensitive data, complex infrastructure, distributed users, cloud adoption, and ongoing compliance requirements.
Typical buyers include security operations teams, red teams and penetration testers, data security leaders, compliance and risk teams, cloud security teams, and IT operations groups. The portfolio aligns well with regulated and attack-prone sectors such as financial services, government, healthcare, energy and utilities, manufacturing, retail, and SaaS-oriented businesses.
Cloud Integrations and Marketplace
- AWS Marketplace: Fortra maintains an established AWS Marketplace presence spanning products and services such as GoAnywhere MFT, Alert Logic MDR, Digital Guardian, Tripwire, Cobalt Strike, Core Security offerings, and professional services, supported by dedicated AWS-focused solution pages.
- Microsoft Azure Marketplace: Fortra has verified Azure Marketplace listings for offerings including GoAnywhere Managed File Transfer, GoAnywhere Agent and Gateway, Tripwire Enterprise, Tripwire IP360, Fortra Vulnerability Management Virtual Scanner, and Terranova security awareness training within the Fortra portfolio.
Key People
- Matt Reck: Chief Executive Officer
- JR Ritchie: Chief Financial Officer
- Chris Hand: Chief Revenue Officer
- Aaron Cockerill: Chief Product Officer
- John Lehmann: Chief Technology Officer
- Chris Reffkin: Chief Security & Risk Officer
- Suzie Rybicki: Chief People Officer
- Jaymie Cater: Chief Customer Officer
- Kyle Hofmann: Chief Legal Officer
- John Grancarich: EVP, Head of Defense & Intelligence
- Tim Woodfield: EVP, Tech Solutions
Key Facts
- Headquarters: Eden Prairie, Minnesota, United States
- Employees: Approximately 3,000
- Annual Revenue: Approximately $800M
- Parent Company: Private equity consortium including TA Associates, Harvest Partners, Charlesbank Capital Partners, and HGGC
- Subsidiaries: Approximately 30 acquired businesses and brands, including Tripwire, Digital Guardian, Outflank, GlobalSCAPE, and PhishLabs
- Publicly Listed: Privately held
Analyst Recognitions
- IDC: 2025 IDC MarketScape: Worldwide DLP Vendor Assessment – Major Player.
