SESSION ID: SESSION ID: #RSAC Jason Wright, CISSP, SFCP Effective Security Through Automation GPS-R01A Director, Solutions Marketing Cisco Security Business Group
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
SESSION ID:SESSION ID:
#RSAC
Jason Wright, CISSP, SFCP
Effective Security Through Automation
GPS-R01A
Director, Solutions MarketingCisco Security Business Group
#RSAC
Firewall
Last 20 years of security:
Got a problem?Buy a Box
#RSAC
The Existing Security Stack…
Firewall
VPN
Email Security
Web Security
DLP
SIEM
Replacement Box
Failover
Persistent Threats
IDS
Firewall 2.0
VPN 2.0
Email Security 2.0
Web Security 2.0
DLP 2.0
SIEM 2.0
Replacement Box 2.0
Failover 2.0
Persistent Threats 2.0
IDS 2.0
#RSAC
Why a Security Architecture?
Ability to Defend Getting More Complex
• Attack Surface Diversity: Growing exponentially due to IoT, SaaS / IaaS, and personal device trends
• Threats: Continuous rise in sophistication of attackers combined with rapid evolution of attacker techniques and tools
• Detection: Efficacy of classical detection methods eroding
• User Behavior: No longer constrained to IT controlled places, apps or devices
The Security Effectiveness Gap
#RSAC
Time to Detection
100Industry Days
Industry Result
#RSAC
Integration = Effective Security
#RSAC
API’s Alone are not the Answer
#RSAC
Multiple features within the
same product
Solution
Policy
Multiple products that work
together
Unified configuration and reporting
Functional
Integration has to have Layers
#RSAC
NetworkRouting
Endpoint
Domains
WebW W W
ISE
NGFW/ NGIPS
Sandbox
AnalyticsEventThreat IntelPolicyContext
UTM
Cloud App Monitoring
Solution Integration
#RSAC
Effective Security Needs to be
SimpleSecurity built into the
network and designed to
work together
1 2 3
OpenIntegrate across 3rd party
products
AutomatedInstantaneous remediation
reduce time to detection
save time and money
#RSAC
VS.
*Source Cisco Midyear Security Report, 2016
Industry Days100
Hours
~13
Integrate Automate: Reduce Time to Detection
SESSION ID:SESSION ID:
#RSAC
Jason Wright, CISSP, SFCP
Thank you!
GPS-R01A
Director, Solutions MarketingCisco Security Business Group
Related Documents
