Cisco Security: Moving to Security Everywhere. #TIGcyberSec. Stefano Volpi

Size: px

Start display at page:

Download "Cisco Security: Moving to Security Everywhere. #TIGcyberSec. Stefano Volpi 13-10-2015"

Anthony Rodgers
9 years ago
Views:

#TIGcyberSec Cisco Security: Moving to Security Everywhere Stefano Volpi

2 Cisco is All In with Security I expect security to grow very healthily as we move forward. And you will continue to see us make a number of resource investments in areas like services, sales, and consultancy in a way that really brings this picture to life. I think you re going to see good growth out of our security business...we are positioned really well. John Chambers CEO, Cisco Q2 FY15 Earnings Call February 11, Cisco and/or its affiliates. All rights reserved. Cisco Public 2

In the news: Feb 2013 Today Global Security Sales Organization 6000+

its affiliates. All rights All reserved. rights reserved.

3 In the news: Feb 2013 Today Global Security Sales Organization Cisco and/or Cisco and/or its affiliates. its affiliates. All rights All reserved. rights reserved. Cisco Confidential Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3

4 Talos Group: Threats by the Numbers 7399 Common Vulnerabilities and Exposure (CVE) Entries in 2013 a 10% increase from ,100,000 Incoming Malware Samples Per Day, Increasing Daily 4.2 Billion Web Filtering Blocks Per Day 1 Billion Sender Base Reputation Queries Per Day 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 4

The Security Problem Changing Business Models Dynamic Threat Landscape Complexity

6 Silos Create Security Gaps Traditional Firewall Functions VPN Functions Context- Aware Functions IPS Functions WWW Malware Functions 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 6

The Network and Security Synergies Through Integration Increases Visibility Accelerates

Security Services Advisory Integration Managed Custom Threat Intelligence Integration Services Managed Threat Defense Technical Security

8 Security Services Advisory Integration Managed Custom Threat Intelligence Integration Services Managed Threat Defense Technical Security Assessments Security Optimization Services Remote Managed Services 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 8

Strategic Imperatives Visibility-Driven Threat-Focused Platform-Based Network-Integrated, Broad Sensor Base, Context and Automation Continuous Advanced Threat Protection, Cloud-Based Security

9 Strategic Imperatives Visibility-Driven Threat-Focused Platform-Based Network-Integrated, Broad Sensor Base, Context and Automation Continuous Advanced Threat Protection, Cloud-Based Security Intelligence Agile and Open Platforms, Built for Scale, Consistent Control, Management Network Endpoint Mobile Virtual Cloud 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 9

Mapping Technologies to the Model Attack Continuum Discover Enforce Harden Detect Block Defend Scope Contain Remediate Firewall Patch Mgmt IPS IDS AMD App

10 Mapping Technologies to the Model Attack Continuum Discover Enforce Harden Detect Block Defend Scope Contain Remediate Firewall Patch Mgmt IPS IDS AMD App Control Vuln Mgmt Antivirus FPC Log Mgmt VPN IAM/NAC /Web Forensics SIEM Security Services 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 10

Comprehensive Security Product Portfolio Firewall & NGFW Cisco ASA 5500-X Series Cisco ASA 5500-X w/ NGFW license Cisco ASA 5585-X w/ NGFW blade Cisco ASA with FirePOWER Services IPS & NGIPS Cisco

11 Comprehensive Security Product Portfolio Firewall & NGFW Cisco ASA 5500-X Series Cisco ASA 5500-X w/ NGFW license Cisco ASA 5585-X w/ NGFW blade Cisco ASA with FirePOWER Services IPS & NGIPS Cisco IPS 4300 Series Cisco ASA 5500-X Series integrated IPS FirePOWER NGIPS FirePOWER NGIPS w/ Application Control FirePOWER Virtual NGIPS Advanced Malware Protection AMP for Networks AMP for Endpoints AMP for Private Cloud / Virtual Appliance Web Security Cisco Web Security Appliance (WSA) Cisco Virtual Web Security Appliance (vwsa) Cisco Cloud Web Security Security Cisco Security Appliance (ESA) Cisco Virtual Security Appliance (vesa) Cisco Cloud Security NAC + Identity Services Cisco Identity Services Engine (ISE) Cisco Access Control Server (ACS) VPN Cisco AnyConnect VPN Meraki MX UTM 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 11

12 BEFORE Discover Enforce Harden DURING Detect Block Defend AFTER Scope Contain Remediate Next Generation Firewall VPN + AnyConnect Web / Security (cloud) Next Generation IPS Advanced Malware Protection Web / Security (cloud) Advanced Malware Protection pxgrid APIC-EM Network as an Enforcer Network as a Sensor 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 12

Cisco Confidential For Internal Use 2014 Cisco

13 Security Everywhere Endpoint Branch Edge Campus Data Center Cloud Operational Technology Services Cisco Confidential For Internal Use 2014 Cisco and/or its affiliates. All rights reserved. Cisco Public 13

Cisco and Sourcefire. AGILE SECURITY : Security for the Real World. Stefano Volpi

Cisco and Sourcefire. AGILE SECURITY : Security for the Real World. Stefano Volpi Cisco and Sourcefire AGILE SECURITY : Security for the Real World Stefano Volpi SOURCEfire Worldwide John Chambers statement Security is the TOP issue for Cisco and many of the CIO s in the industry. We