Today, 82% of global IT professionals have adopted hybrid cloud and 47% of organizations use between two and three public IaaS clouds.2 Hybrid and multicloud environments offer organizations greater agility and flexibility, but the hyper-distribution of resources and applications across these environments makes it difficult for NetOps, SecOps, and DevOps teams to keep up. Additionally, the unforeseen byproduct of hybrid and multicloud adoption is complexity — limiting critical security functions including visibility, control, and the ability to gain context.
Cisco Secure Firewall Management Center (FMC) reduces up to 95% of network operation workstreams (www.cisco.com/go/firewallTEI) by helping organizations correlate and prioritize threats, as well as quickly act on them in a single pane of glass. It also gives teams the freedom and choice for administering firewalls with a consistent experience across its cloud-delivered, virtual, and on-premises form factors. Secure Firewall Management Center also helps SecOps teams save time by speeding up incident response with a built-in ribbon that pivots you to the Cisco SecureX™ open platform. And for organizations looking for flexibility to migrate their firewall from on-premises to the cloud, or vice versa, Cisco offers a migration tool to assist with policy carryover.
Integrating Secure Firewall with Secure Workload brings security closer to your applications. Secure Workload provides visibility, dynamic policy automation, and enforcement of a zero-trust approach through microsegmentation — across the entire application environment. This eliminates unauthorized lateral movement, minimizing the risk of ransomware and other distributed attacks.
To pinpoint changes in your dynamic application environments, Secure Workload offers real-time monitoring, vulnerability management, and automation so your teams can assess and act on anomalies and threats quickly. Secure Workload supports any application, any workload, anywhere—including Amazon EKS managed Kubernetes environments.
Cisco Secure Firewall Threat Defense Virtual helps drive stronger security by seeing more, detecting faster, and streamlining operations. It combats complexity with consistent policy enforcement, promotes visibility and control with deep packet inspection, as well as ingress and egress traffic inspection — all within a virtualized form factor.
Protect your hybrid and multicloud environment against known and unknown threats with advanced threat defense options including malware defense and URL filtering. And with the Snort 3 IPS, you can obtain hourly threat intelligence updates from Cisco Talos, enabling faster inspection without slowing down your network.
Secure Firewall’s Encrypted Visibility Engine protects against malicious applications embedded in encrypted traffic, maintains Layer 7 policies on encrypted traffic, and delivers insights into application behavior. Only Cisco is addressing this critical concern for networking and security professionals, 65% of whom reported loss of IPS and Layer 7 efficacy with new protocols like TLS 1.3 and QUIC.
Reduce policy maintenance and complexity in the cloud with dynamic attribute support for AWS tags. As workloads spin up and down in your AWS environment, your organization can keep policies current without redeploying with dynamic objects.
Cut incident response time by 70% with Cisco SecureX, our open security platform included with every Cisco Secure Firewall. It accelerates the time to detect, investigate, and remediate threats by aggregating and correlating global intelligence and local context in one centralized view. SecureX also integrates with Amazon GuardDuty to monitor your AWS accounts and workloads for malicious activity.
|Introduce AWS services for added benefits||
|Transport Layer Security (TLS) Server Identity and Discovery||
|Cisco Security Analytics and Logging||
|Cisco Talos threat intelligence||
Download the Cisco Secure Firewall Threat Defense Virtual on AWS (PDF).