Systems Built with Best-of-Breed Solutions
With a Cisco Self-Defending Network, security is integrated into the network, throughout the infrastructure and protecting each endpoint. This systems approach to information security is:
Integrated: Every element in the network acts as a point of defense
Adaptive: Innovative behavioral methods automatically recognize and adapt to new types of threats as they arise
Collaborative: Various network components work together to provide new means of protection
Best-in-breed solutions allows for rapid response to emerging threats such as:
Malware spread by E-mail and SPAM
Malware propagation and botnets
Phishing attacks hosted on Websites
Attacks targeting increasing extensible markup language (XML) traffic, service-oriented architecture (SOA), and Web services
These solutions offer a path to migration and integration. As emerging threats become more pervasive, these products become more integrated into a systems approach.
A systems approach to configuration, policy, and monitoring meets ongoing regulatory compliance and enables cost-effective systems management. The systems approach to security management provides:
Common policy configuration across products
Threat intelligence and event collaboration
Reduced configuration complexity
Effective risk analysis and operational control
Cisco ASA 5500 Series
All-in-One Security Solution
The CiscoÂ® ASA 5500 Series is an enterprise-strength comprehensive security solution that combines market-leading firewall, VPN, and optional content security capabilities, so you can feel confident your business is protected. This easy-to-use solution lets you control access to network resources to protect business data and maximize network uptime. Employee productivity is increased by controlling file sharing, instant messaging, spam, phishing, and other emerging threats. IT resources are freed from virus eradication and system cleanup activities. New business applications can be safely deployed without opening up security holes. Mobile employees and business partners can securely connect to your network over the Internet using IP Security (IPsec) or Secure Sockets Layer (SSL) VPN services. With a Cisco ASA 5500 Series solution protecting your network, you can focus on growing your business, without worrying about the latest security threats.
Building on the Cisco PIXÂ® Family of security appliances, the Cisco ASA 5500 Series allows valid business traffic to flow, while keeping out unwelcome visitors. And with its application control capabilities, the solution can limit peer-to-peer file sharing, instant messaging, and malicious traffic, while enabling secure deployment of new business applications for improved profitability and competitiveness. This prevents security leaks and the introduction of threats to the network.
With robust content security capabilities delivered via the optional Content Security and Control Security Services Module (CSC-SSM), the Cisco ASA 5510 Adaptive Security Appliance provides critical perimeter security services needed for comprehensive protection. The content security module provides advanced content security features integrated into the system such as Antivirus, Anti-spyware, Anti-spam, Anti-phishing, Real-time protection for Web access, e-mail, and file transfer, URL filtering and E-mail content filtering.
Cisco IPS 4200
In today’s busy network environments, business continuity relies on effective network intrusion prevention to stop malicious attacks, worms, and application abuse before they affect your data and resources. CiscoÂ® IPS 4200 Series Sensors and Cisco IPS Sensor Software are core components of Cisco’s intrusion prevention solution. Using Cisco IPS Sensor Software’s inline prevention technology, Cisco IPS 4200 Series Sensors accurately detect, classify, and stop malicious traffic on IPv4 and IPv6 networks.
Intrusion Prevention for the Self-Defending Network
The most diverse line of IPS sensors provide the right tool for the right job, anywhere in the network
Intrusion prevention is integrated into the fabric of the network
PSolution is built on Cisco security and network intelligence
Modular inspection engines provide rapid response with minimal downtime
Behavioral anomaly detection protects against day-zero attacks
Dynamic risk-based threat rating adapts policy to attacks in real time
On-box and network-wide correlation provides greater confidence
Network and endpoint collaboration provide greater visibility and effectiveness
A common, solution-based management interface helps reduce operational costs
Secure Email Appliances
Cisco IronPort email security appliances are easy-to-deploy solutions that defend your email system against spam, viruses, phishing, and a wide variety of other threats. In use at eight of the ten largest ISPs and more than 40 percent of the world’s largest enterprises, these systems have a demonstrated record of unparalleled performance, accuracy and reliability. Cisco IronPort email security appliances protect enterprises of all sizes â€“ the same code base that power our most sophisticated customers is used in the entire product family. By reducing the downtime associated with email-borne malware, these products simplify the administration of corporate mail systems and reduce the burden on technical staff, while offering insight into mail system operation.
Cisco IronPort C-Series and Cisco IronPort X-Series email security appliances provide industry-leading email security by fighting spam, viruses, and blended threats to protect organizations of all sizes. Because of their demonstrated record of security and reliability, these systems are in production at eight of the ten largest ISPs and more than 40 percent of the world’s largest enterprises.
Web Security Appliances
The number of security threats introduced by web traffic has reached epidemic proportions. Traditional gateway defenses are proving to be inadequate against a variety of web-based malware, leaving corporate networks exposed to the inherent danger posed by these threats. In addition to the security risks introduced by web-based malware and spyware, web traffic also exposes an organization to compliance and productivity risks introduced by inappropriate usage of the web within an organization. The Cisco-IronPort S-Series web security appliance is the industry’s first and only secure web gateway to combine traditional URL filtering, reputation filtering, malware filtering and data security on a single platform to address these risks. By combining innovative technologies, the Cisco IronPort S-Series helps organizations address the growing challenges of both securing and controlling web traffic.
Cisco Security Agent
Cisco Security Agent is the first endpoint security solution that combines zero-update attack protection, data loss prevention, and signature-based antivirus in a single agent. This unique blend of capabilities defends servers and desktops against sophisticated day-zero attacks, and enforces acceptable-use and compliance policies within a simple management infrastructure.
Cisco Security Agent provides numerous benefits including:
Zero-update protection reduces emergency patching in response to vulnerability announcements, minimizing patch-related downtime and IT expenses
Visibility and control of sensitive data protects against loss from both user actions and targeted malware
Predefined compliance and acceptable use policies allow for efficient management, reporting, and auditing of activities
“Always Vigilant” Security – Your system is always protected, even when users are not connected to the corporate network or lack the latest patches