Today’s complex IT environments make protecting the integrity of ecosystems a next-level problem. Patrick Aronson caught up TK Keanini, CTO of Cisco Secure, at #RSAC to find out more about its Security Cloud, an integrated platform to set customers up for security resilience in today’s hybrid world.
Cisco has made a number of security upgrades at RSA Conference 2022 designed to move security operations to the cloud, improve its Secure Access Service Edge offering, and offer new simplified security end-point control.
The biggest piece of the Cisco roll out is a new overarching security platform called the Cisco Security Cloud which will include unified management and policies, and offer open APIs to help grow a multi-vendor security ecosystem.
Securing the future of hybrid work
Cisco defines the Security Cloud as a “multi-year strategic vision for the future of security.” It is an ongoing journey that began several years ago, and Cisco will continue delivering upon the key tenets of this vision with a consistent roadmap. The cloud will be made up of existing products like Umbrella and offerings from Duo, other features will be developed in the future.
While the specifics of that roadmap are a little vague, the design goal of the Security Cloud is to sit horizontally as a layer on top of the infrastructure across a customer’s cloud services — the major ones being Azure, Amazon Web Services (AWS) and Google Cloud Platform (GCP), and then they probably have some level of private data centre – to protect all of the core applications.
“The goal of the Security Cloud is that there’s no lock-in, meaning if the customer were to buy a security service that was native to one of those compute storage vendors, it would work in the Security Cloud," said TK Keanini, CTO of Cisco Secure.
The other goal is to simplify the security experience for end users by including Cisco authentication, threat prevention, detection, response, and remediation all in one place, Keanini said. The goal is to ultimately have networking, policy and other services delivered from the cloud.
“The Cisco Security Cloud will deliver security every time you connect, every time you authenticate, every time you want to use a security service,” says Keanini. “The idea is that we’re trying to simplify that experience at scale and not just simplify a product, Keanini said.
Comstor loves SASE bundles
Cisco also rolled out a turnkey SASE subscription service called Cisco+ Secure Connect Now. The package, available now, features Cisco Meraki SD-WAN technology which includes integrated branch connectivity, security, management, orchestration, and automation support manageable via a single dashboard.
Cisco has been talking about the SASE service since it introduced its overarching Network-as-a-Service plan, Cisco Plus, a year ago. The idea is to offer customers a cloud operating model that makes its simple to buy and consume the necessary components to improve and grow their businesses.
The vendor’s first NaaS offering, Cisco Plus Hybrid Cloud, includes the company’s data centre compute, networking, and storage portfolio in addition to third-party software and storage components all controlled by the company’s Intersight cloud management package. Customers can choose the level of services they want for planning, design and installation.
A single endpoint security agent
Cisco said that early in July it will launch a single endpoint agent to support its AnyConnect, Secure Endpoint, and Umbrella security platforms. Each has its own agent now. “We are looking to simplify the administrative and operational costs of managing the endpoint footprint which can include thousands of devices and products,” sais Keanini.
As part of its RSA rollout, Cisco also debuted the Talos Intelligence On-Demand service that lets customers sign up to get custom security research from the vendor’s security group. The service is available now.
This was in addition to a new security feature called session Trust Analysis that uses the open Shared Signals and Events authentication standard to share information between vendors to evaluate risk after the user logs in by continuously verifying user and device identity.
The goal is that by continuously assessing user risk both before and after login, organisations can respond more dynamically – expediting access in trusted scenarios and stepping up security requirements in risky ones. Cisco said it will demo an implementation the feature with its Cisco Secure Access by Duo and Box at the conference.
Also introduced was a patent-pending Wi-Fi Fingerprint technology that acts as a location proxy to track users without compromising privacy. The Trust Analysis and Wi-Fi features will preview in the second half of calendar 2022.
As Cisco’s leading distributor in EMEA, Comstor is looking forward to rolling out these solutions to our channel partners. Watch this space.
Join the conversation
Follow us on Twitter: @WestconComstor
Follow our live event coverage #WestconRSA