NETWORK SECURITY - CISCO NVE SOLUTION
Cisco’s Network Visibility and Enforcement solution combines Cisco Stealthwatch, the Cisco Identity Services Engine(ISE), and Cisco TrustSec technology. The combination of Stealthwatch and Cisco’s Identity Services Engine helps organizations get a 360° view, respond to threats faster, and secure a growing digital business.
Stealthwatch gathers telemetry from across your network and detects malicious activity using machine learning. ISE helps to achieve rapid threat containment. ISE shares user and device details and controls access across wired, wireless, and VPN networks. Combination of Stealthwatch and ISE converts the network into an end-to-end sensor and enforcer that can detect and stop sophisticated security issues.
NETWORK SECURITY - CISCO IPS
Cisco IOS Intrusion Prevention System (IPS) helps protect your network from attacks by inspecting traffic passing in both directions through any combination of router LAN and WAN interfaces. It is an inline, deep-packet inspection feature that effectively mitigates a wide range of network attacks. A component of the Cisco IOS Integrated Threat Control framework and complemented by Cisco IOS Flexible Packet Matching feature, Cisco IOS IPS provides your network with the intelligence to accurately identify, classify, and stop or block malicious traffic in real time.
NETWORK SECURITY - CISCO FIREPOWER NGFW
The Cisco Firepower NGFW (next-generation firewall) is a fully integrated, threat-focused next-gen firewall with unified management. It uniquely provides advanced threat protection before, during, and after attacks. The Cisco Firepower NGFW includes Application Visibility and Control (AVC), optional Next
Gen IPS (NGIPS), Cisco Advanced Malware Protection (AMP) for Networks, and URL Filtering.
Cisco Firepower NGFWs may be managed in a variety of ways depending on the way you work, your environment, and your needs. The Cisco Firepower Management Center (formerly FireSIGHT) provides centralized management of the Cisco Firepower NGFW, the Cisco Firepower NGIPS, and Cisco AMP for Networks. It also provides threat correlation for network sensors and Advanced Malware Protection (AMP) for Endpoints.
NETWORK VISIBILITY - CISCO STEALTHWATCH
Cisco Stealthwatch provides continuous real-time monitoring of, and pervasive views into, all network traffic. It dramatically improves visibility across the extended network and accelerates response times for suspicious incidents. It creates a baseline of normal web and network activity for a network host, and applies context-aware analysis to automatically detect anomalous behaviors. Stealthwatch can identify a wide range of attacks, including malware, zero-day attacks, distributed denial-of-service (DDoS) attempts, advanced persistent threats (APTs), and insider threats.
Now, with Cognitive Analytics, a cloud-based threat detection and analytics capability, Cisco Stealthwatch can get additional contextual information to identify and prioritize new and emerging threats across the extended network. Stealthwatch with Cognitive Analytics has additional visibility and context into global and local traffic and utilizes machine learning for continuous analysis and detection of command and control communications. Now, you can detect threats that have bypassed existing security controls and identify data exfiltration to legitimate cloud services.
The integration of Cisco Stealthwatch with the Cisco Identity Services Engine helps organizations get a 360-degree view of their extended network.
NETWORK ACCESS CONTROLS - CISCO ISE
Getting ahead of threats requires thorough visibility and control. That means having deep visibility into the users, devices, and applications accessing your network. And it means gaining the dynamic control to make sure that only the right people with trusted devices get the right level of access to network services. ISE simplifies the delivery of consistent, highly secure access control across wired, wireless, and VPN connections.
With far-reaching, intelligent sensor and profiling capabilities, ISE can reach deep into the network to deliver superior visibility into who and what are accessing resources. Through the device profiler feed service, ISE delivers automatic updates of Cisco’s validated device profiles for various IP-enabled devices from multiple vendors which simplifies the task of keeping an up-to-date library of the newest IP enabled devices.
NEXT GENERATION FIREWALLS - CISCO FIREPOWER NEXT-GENERATION FIREWALL (NGFW)
The Cisco Firepower NGFW (next-generation firewall) is a fully integrated, threat-focused next-gen firewall with unified management. It uniquely provides advanced threat protection before, during, and after attacks. The Cisco Firepower NGFW includes Application Visibility and Control (AVC), optional Next Gen IPS (NGIPS), Cisco Advanced Malware Protection (AMP) for Networks, and URL Filtering.
Cisco Firepower NGFWs may be managed in a variety of ways depending on the way you work, your environment, and your needs. The Cisco Firepower Management Center (formerly FireSIGHT) provides centralized management of the Cisco Firepower NGFW, the Cisco Firepower NGIPS, and Cisco AMP for Networks. It also provides threat correlation for network sensors and Advanced Malware Protection (AMP) for Endpoints.
ICS AND SCADA SECURITY - CISCO 3000 ISA
The Cisco Industrial Security Appliances are true industrial firewalls that provide OT targeted protection based on proven enterprise class security. The ISA 3000 with four data links is a DIN rail mount, ruggedized appliance that provides the widest range of Access, Threat, and Application controls for the harshest and most demanding of industrial environments. The ISA 3000 is the answer to provide both safety and security to your network modernization projects. It also provides the anchor point for converging IT and OT security visibility without interfering with industrial operational practice. This security appliance is built to withstand extreme environments, reflect industrial design, all the while adhering to overall IT network design, compliance, and performance requirements.
The ISA 3000 Series is ideal for industrial Ethernet applications where hardened products are required. The product is successfully running in major electrical utilities, energy production, mining and other automation environments. Further uses are intelligent transportation systems (ITS), city surveillance programs, and water/wastewater utilities.
EMAIL SECURITY - CISCO EMAIL SECURITY
Cisco Email Security enables users to communicate securely and helps organizations combat Business Email Compromise (BEC), ransomware, advanced malware, phishing, spam, and data loss with a multilayered approach to security. It includes advanced threat protection capabilities to detect, block, and remediate threats faster; prevent data loss; and secure important information in transit with end-to-end encryption.
