SecureX turns one year old next month. It has been quite a journey from the first announcement at RSA Conference 2020, when there was one 3rd party integration (VirusTotal), to the release of SecureX the summer of 2020 with a large ecosystem. When SecureX was launched, we had several turnkey partner integrations into SecureX, like the Splunk add-on and QRadar extension. … [Read more...] about SecureX threat response Turnkey Integrations
Response
Cyber Hygiene: An ounce of prevention is worth a pound of incident response
Today’s incident response teams operate like hospital emergency rooms (ERs). When an alert comes in—malware infection, intrusion, anomalous behavior, etc.—a specialist is called in for diagnosis and remediation. In cybersecurity, as in healthcare, good preventive care can improve outcomes and reduce costs. At Cisco, I’ve been a part of a team responsible for imagining a … [Read more...] about Cyber Hygiene: An ounce of prevention is worth a pound of incident response
Extending Detection into Automated Response with SecureX and Secure Cloud Analytics
Networks span across the enterprise, campus, branch, and into the cloud. Resources that enable agile operational models to allow the business to anticipate and respond to change are expanding the attack surface and bring with them more complexity. Complexity that attackers are taking advantage of. Meanwhile an ever-increasing amount of sensitive and legally protected data is … [Read more...] about Extending Detection into Automated Response with SecureX and Secure Cloud Analytics
Report to Your Management with the Definitive ‘Incident Response for Management’ Presentation Template
Security incidents occur. It's not a matter of 'if' but of 'when.' There are security products and procedures that were implemented to optimize the IR process, so from the 'security-professional' angle, things are taken care of.However, many security pros who are doing an excellent job in handling incidents find effectively communicating the ongoing process with their … [Read more...] about Report to Your Management with the Definitive ‘Incident Response for Management’ Presentation Template
2021 Security Outcomes Study: Timely Incident Response as a Business Enabler
Anyone who has ever observed or participated in a dance rehearsal is familiar with the count-off cadence, 5, 6, 7, 8. The same is true of musicians who count at the beginning of a piece, or an athlete awaiting the starting signal. These indicators alert us to the same thing: Be ready NOW. Cybersecurity has a set of starting signals as well, but they differ in one aspect. In … [Read more...] about 2021 Security Outcomes Study: Timely Incident Response as a Business Enabler
Cisco Secure Endpoint named an Endpoint Prevention and Response (EPR) Leader
AV-Comparatives named Cisco a Strategic Leader in its EPR report Cisco Secure Endpoint (previously AMP for Endpoints) was named a Strategic Leader by AV -Comparatives in the Endpoint Prevention and Response (EPR) CyberRisk Quadrant in their inaugural EPR Comparative Report. AV-Comparatives is a leading independent endpoint security software testing organization withtwo decades … [Read more...] about Cisco Secure Endpoint named an Endpoint Prevention and Response (EPR) Leader
Cisco Secure Workload Immediate Actions in Response to “SUNBURST” Trojan and Backdoor
Background The SUNBURST trojan and backdoor, as dubbed by FireEye researchers, that has compromised multiple U.S. Government systems recently, highlights the complexity and connectedness of the modern enterprise IT environment as a security weakness. Recent reporting makes clear that the adversary took advantage of software complexity to deliver a highly refined attack … [Read more...] about Cisco Secure Workload Immediate Actions in Response to “SUNBURST” Trojan and Backdoor
A Handy Guide for Choosing a Managed Detection & Response (MDR) Service
Every company needs help with cybersecurity. No CISO ever said, "I have everything I need and am fully confident that our organization is fully protected against breaches." This is especially true for small and mid-sized enterprises that don't have the luxury of enormous cybersecurity budgets and a deep bench of cybersecurity experts. To address this issue, especially for small … [Read more...] about A Handy Guide for Choosing a Managed Detection & Response (MDR) Service
Automated response with Cisco Stealthwatch
Cisco Stealthwatch provides enterprise-wide visibility by collecting telemetry from all corners of your environment and applying best in class security analytics by leveraging multiple engines including behavioral modeling and machine learning to pinpoint anomalies and detect threats in real-time. Once threats are detected, events and alarms are generated and displayed within … [Read more...] about Automated response with Cisco Stealthwatch
Pandemic Response Presents “Good Timing” for a Security Review
The global pandemic has security pros everywhere grappling with a “new normal.” As if more staff suddenly working remotely hasn’t been enough to deal with, many infosec conferences have gone virtual, eliminating the in-person networking and tech demos many security pros have come to rely on for informing their strategy. Yet being unable to physically attend conferences can be a … [Read more...] about Pandemic Response Presents “Good Timing” for a Security Review