Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2015 Cisco and/or its affiliates. All rights reserved. 1 The Importance of Threat-Centric Security William Young Security Solutions Architect It’s Our.

Published byLorraine Robertson Modified over 9 years ago

Similar presentations

Presentation on theme: "© 2015 Cisco and/or its affiliates. All rights reserved. 1 The Importance of Threat-Centric Security William Young Security Solutions Architect It’s Our."— Presentation transcript:

1 © 2015 Cisco and/or its affiliates. All rights reserved. 1 The Importance of Threat-Centric Security William Young Security Solutions Architect It’s Our Time

2 © 2015 Cisco and/or its affiliates. All rights reserved. 2 Security Perspective

3 © 2015 Cisco and/or its affiliates. All rights reserved. 3 The Problem is Threats

4 © 2015 Cisco and/or its affiliates. All rights reserved. 4 Today’s Advanced Malware is Not Just a Single Entity 100% of companies connect to domains that host malicious files or services 54% of breaches remain undiscovered for months 60% of data is stolen in hours avoids detection and attacks swiftly It is a Community that hides in plain sight 100 percent of companies surveyed by Cisco have connections to domains that are known to host malicious files or services. (2014 CASR)

5 © 2015 Cisco and/or its affiliates. All rights reserved. 5 YEARS MONTHS Impact of a Breach HOURS Breach occurs 60% data in breaches is stolen in hours 54% of breaches remain undiscovered for months Information of up to 750 million individuals on the black market over last three years START Source: Verizon Data Breach Report 2014 Source: Verizon Data Breach Report 2012

6 © 2015 Cisco and/or its affiliates. All rights reserved. 6 Breach/Detection Time Delta is Not Improving Source: Verizon 2014 Data Breach Investigations Report Time to compromise Time to discovery 25% 50% 75% 100% 2004200520062007 2008 2009 2010 2011 20122013 Percent of beaches where time to compromise (orange)/time to discovery (blue) was days or less

7 © 2015 Cisco and/or its affiliates. All rights reserved. 7 If you knew you were going to be compromised, would you do security differently?

8 © 2015 Cisco and/or its affiliates. All rights reserved. 8 A Threat-Centric Approach ATTACK CONTINUUM Discover Enforce Harden Detect Block Defend Scope Contain Remediate Visibility and Context Firewall App Control VPN Patch Mgmt Vuln Mgmt IAM/NAC IPS Antivirus Email/Web IDS FPC Forensics AMD Log Mgmt SIEM

9 © 2015 Cisco and/or its affiliates. All rights reserved. 9 Cisco: Covering the Entire Attack Continuum ATTACK CONTINUUM Discover Enforce Harden Detect Block Defend Scope Contain Remediate FireSIGHT and pxGrid ASA NGFW Secure Access + Identity Services VPN Meraki NGIPS ESA/WSA CWS Advanced Malware Protection Cognitive ThreatGRID

10 © 2015 Cisco and/or its affiliates. All rights reserved. 10 A Threat-Centric Approach ATTACK CONTINUUM Point-in-Time Continuous Discover Enforce Harden Detect Block Defend Scope Contain Remediate NetworkEndpointMobileVirtualCloud

11 © 2015 Cisco and/or its affiliates. All rights reserved. 11 Today’s Security Appliances Context- Aware Functions IPS Functions Malware Functions VPN Functions Traditional Firewall Functions

12 © 2015 Cisco and/or its affiliates. All rights reserved. 12 Workflow (automation) Engine APIs Visibility and Context are the Foundation Broad visibility for context Visibility Set policy to reduce surface area of attack Control Focus on the threat – security is about detecting, understanding, and stopping threats Threat Understand scope, contain & remediate Breach

13 © 2015 Cisco and/or its affiliates. All rights reserved. 13 Workflow (automation) Engine Visibility Must Be Pervasive Visibility Control Threat Breach Scope Contain Remediate Detect Block Defend Control Enforce Harden Discover Monitor Inventory Map BEFORE ASA NGFW VPN Meraki ISE NAC Network / Devices (FireSIGHT/PXGrid) Users / Applications (FireSIGHT/PXGRID/ISE) Files / Data (FireSIGHT/AMP) DURING AFTER AMP ThreatGrid CTA NGIPS ESA/WSA Reputation APIs

14 © 2015 Cisco and/or its affiliates. All rights reserved. 14 A Threat-Centric Approach Reduces Complexity and Increase Capability Cloud Services Control Platform Hosted Collective Security Intelligence Centralized Management Appliances, Virtual Network Control Platform Device Control Platform Cloud Services Control Platform Appliances, Virtual Host, Mobile, Virtual Hosted

15 © 2015 Cisco and/or its affiliates. All rights reserved. 15 The Time is Now for Cisco’s Threat-Centric Approach Consistent Control Complexity Reduction Consistent Policies Across the Network and Data Center Fits and Adapts to Changing Business Models Global Intelligence With the Right Context Detects and Stops Advanced Threats Advanced Threat Protection Unmatched Visibility

16 © 2015 Cisco and/or its affiliates. All rights reserved. 16 Thank you.

Download ppt "© 2015 Cisco and/or its affiliates. All rights reserved. 1 The Importance of Threat-Centric Security William Young Security Solutions Architect It’s Our."

Similar presentations

1© Copyright 2011 EMC Corporation. All rights reserved. The Future of the Advance Soc 3rd Annual Privacy, Access and Security Congress, Ottawa, 2012 Mike.

1© Copyright 2011 EMC Corporation. All rights reserved. The Future of the Advance Soc 3rd Annual Privacy, Access and Security Congress, Ottawa, 2012 Mike.
© 2013 Bradford Networks. All rights reserved. Rapid Threat Response From 7 Days to 7 Seconds.

© 2013 Bradford Networks. All rights reserved. Rapid Threat Response From 7 Days to 7 Seconds.
Security Life Cycle for Advanced Threats

Security Life Cycle for Advanced Threats
Stonesoft Roadmap WHAT FEATURES WILL COME IN 2013-2014.

Stonesoft Roadmap WHAT FEATURES WILL COME IN
Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –

Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –
The Most Analytical and Comprehensive Defense Network in a Box.

The Most Analytical and Comprehensive Defense Network in a Box.
Preventing Good People From Doing Bad Things Best Practices for Cloud Security Brian Anderson Chief Marketing Officer & Author of “Preventing Good People.

Preventing Good People From Doing Bad Things Best Practices for Cloud Security Brian Anderson Chief Marketing Officer & Author of “Preventing Good People.
©2014 Bit9. All Rights Reserved Building a Continuous Response Architecture.

©2014 Bit9. All Rights Reserved Building a Continuous Response Architecture.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential.

© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Confidential.
MIGRATION FROM SCREENOS TO JUNOS based firewall

MIGRATION FROM SCREENOS TO JUNOS based firewall
CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,

CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,
Cisco Live 2013 4/20/2017.

Cisco Live /20/2017.
It’s Not Your Father’s NAC: Next-generation NAC

It’s Not Your Father’s NAC: Next-generation NAC
Confidential and proprietary material for authorized Verizon Business personnel only. Use, disclosure or distribution of this material is not permitted.

Confidential and proprietary material for authorized Verizon Business personnel only. Use, disclosure or distribution of this material is not permitted.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Welcome to the Human Network Matt Duke 11/29/06.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Welcome to the Human Network Matt Duke 11/29/06.
The Most Analytical and Comprehensive Defense Network in a Box.

The Most Analytical and Comprehensive Defense Network in a Box.
Dell Connected Security Solutions Simplify & unify.

Dell Connected Security Solutions Simplify & unify.
©2014 Bit9. All Rights Reserved Endpoint Threat Prevention Charles Roussey | Sr. Sales Engineer Detection and Response in Seconds.

©2014 Bit9. All Rights Reserved Endpoint Threat Prevention Charles Roussey | Sr. Sales Engineer Detection and Response in Seconds.
Paul King Director, Threat Intelligence CiscoSystems.

Paul King Director, Threat Intelligence CiscoSystems.
© 2015 ForeScout Technologies, Page 2 Source: Identity Theft Resource Center Annual number of data breaches Breaches reported Average annual cost of security.

© 2015 ForeScout Technologies, Page 2 Source: Identity Theft Resource Center Annual number of data breaches Breaches reported Average annual cost of security.

Similar presentations

Ads by Google