Security Watch: Cisco Embeds Security Everywhere Across the Extended Network

Cisco has announced new offerings to embed security from the data centre out to endpoints, branch offices, and the cloud for pervasive threat visibility and control. By integrating security everywhere, enterprises and service providers can deliver threat-centric security to today’s threat landscape and capture emerging business opportunities created by the rise of the digital economy and the Internet of Everything (IoE).

The IoE market is expected to generate $19-trillion in value to organisations over the next decade, and represents a $1.7-trillion opportunity to service providers. Additionally, according to the 2015 Cisco Visual Networking IndexTM (VNI) Forecast, the number of IP- connected personal devices and M2M connections online will grow from 14 billion in 2014 to more than 24 billion by 2019. However, cybercrime is simultaneously becoming increasingly sophisticated and industrialised with the financial opportunity for cybercriminals rising to an estimated $450-billion to $1-trillion.

Cisco is adding more sensors to increase visibility with more control points to strengthen enforcement and pervasive, advanced threat protection to reduce time-to-detection and time-to-response.

Expanding Security Solutions for Enterprise Organisations

Cisco is launching several solutions across the entire networking portfolio:

Endpoints: With Cisco AnyConnect Featuring Cisco AMP for Endpoints, customers using the Cisco AnyConnect 4.1 VPN client can deploy and expand their threat protection to VPN-enabled endpoints.

Campus and Branch: FirePOWER Services solutions for Cisco Integrated Services Routers provides centrally managed Next-Generation Intrusion Prevention System and Advanced Malware Protection at the branch office integrated in the network fabric, where dedicated security appliances may not be feasible.

Network as a Sensor and Enforcer: Cisco has embedded multiple security technologies into the network infrastructure to provide broad threat visibility to rapidly identify users and devices associated with anomalies, threats and misuse of networks and applications. New capabilities include:

Integration between Identity Services Engine and Lancope StealthWatch: Enterprises can go beyond mapping IP addresses and identify threat vectors based on ISE’s context of who, what, where, when and how users and devices are connected and access network resources. This provides greater contextual threat visibility with StealthWatch for accelerated identification of threats.

NetFlow on Cisco UCS: Cisco’s customers now have greater visibility into network traffic flow patterns and threat intelligence information in the data centre through network-as-a-sensor capabilities in physical and virtual servers.

TrustSec + ISE and StealthWatch Integration: Stealth Watch can now block suspicious network devices by initiating segmentation changes, providing rapid response to identified malicious activity. ISE can then modify access policies for Cisco routers, switches, and wireless LAN controllers embedded with TrustSec technology.

Cisco also announced:

Hosted Identity Services will provide a secure, 24/7, cloud-delivered service for the Cisco Identity Services Engine. The new, hosted service speeds time to deployment, supporting business growth and providing role-based, context-aware identity enforcement of users and devices permitted on the network, streamlining enterprise mobility experiences.

Eleven new partners have joined the pxGrid Ecosystem, Cisco’s security context information exchange fabric, with the addition of several new ecosystem technology categories, including cloud security and network/application performance management.

Cisco has also announced new service provider security solutions.

The Cisco FirepowerTM 9300 Integrated Security Platform is a carrier-grade, high-performance, scalable and modular multi-services security platform purpose-built for service providers, that can scale security for increased data flows due to accelerated service demands and carrier class requirements.

Expanded Advanced Orchestration and Cloud Capabilities enable Cisco’s new security solutions to easily integrate with the Cisco architecture and third-party SDN/NFV solutions, as well as Cisco’s Adaptive Security Appliance Virtual with Cisco’s Network Service Orchestrator and Application-Centric Infrastructure. These orchestration and cloud capabilities also include open APIs for integration with orchestration, Operation Support Systems/Business Support Systems, and Cloud Security-as-a-Service solutions.

Discolosure: Anthony Caruana travelled to Cisco Live in San Diego as a guest of Cisco

Feeling social? Follow us on Twitter and LinkedIn Now!

Join the CSO newsletter!

Error: Please check your email address.

Tags IT UpdateIT SecurityEmbeded SecurityNetwork securityVisual Networking IndexTM (VNI)Data CentreSecurity WatchCSO Australiasecurity solutionsInternet of Everything (IoE)IT NewsciscoM2M

More about 24/7AdvancedAMPCiscoCSOIntrusionLANLancopeTwitter

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Anthony Caruana

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts