How difficult is it to manage an IT security architecture? 91% of IT managers consider that due to complexity reasons, this activity has become very difficult. Moreover, 42% of participants in the Cisco 2020 CISO Benchmark say that their organizations suffer from “Cyber Fatigue”, which is manifested by a reluctance to apply IT security measures and resignation on exposure to computer risks. The symptoms of this modern disease are easy to detect:

  • higher operating costs;
  • low visibility and reaction speed in the event of a computer security incident;
  • difficulties in managing licenses (which can lead to a waste of up to 25% of the budget allocated to software purchases – according to IDC).

These challenges arise especially in the case of companies that operate several IT security solutions, from different manufacturers. However, they can be treated with the help of the Cisco SecureX platform, which entered the market at the beginning of 2020.

 

 

Novelties brought by SecureX

 

The SecureX project was launched two years ago. Cisco has begun developing an open platform that connects solutions in the company’s and customers’ security portfolios. The objective was to simplify and streamline IT security operations, by aggregating and correlating data in a single cloud management console. The platform was officially launched in February 2020. After three months, SecureX already had 9,000 customers, becoming the fastest-adopting technology in the company’s history.

The increased attractiveness of SecureX is ensured by the fact that the platform responds to concrete market needs:

  • Unified Visibility – SecureX provides companies with extended, single-point visibility across their entire portfolio of security solutions (both Cisco and other vendors). Thus, organizations benefit from a single console of metrics and data about the latest threats (via Cisco Talos). This information, correlated and delivered in real-time, ensures the reduction of detection and remediation times.
  • Multi-domain automation and orchestration – SecureX emphasizes simplicity of use, providing an intuitive, easy-to-use interface with drag-and-drop actions, as well as numerous automation options that do not require advanced programming skills. The platform uses adapters (currently over 50) to cover everything from the company’s security and network architecture to cloud environments, data centers and IoT networks.
  • Various work scenarios. SecureX comes with a series of preconfigured work scenarios, but also allows them to be defined based on the particularities and needs of each company. For example, if the end-user suspects an incoming email, he can use the predefined phishing scenario, through which SecureX processes the message, extracts and analyzes the information, establishes a verdict, takes the necessary blocking / remedial measures, and provides the user with the necessary recommendations.

 

Integrated security architecture

 

The ability of the SecureX platform to meet the above needs is complemented by a number of differentiators aimed at including it in an integrated IT security architecture:

  • Cost predictability and investment protection. Cisco uses the True Forward licensing system to allow companies to grow in a controlled and accessible way, taking into account 20% annual growth.
  • Use without the purchase of specific licenses by companies that have purchased one of the following Cisco solutions: Stealthwatch, AnyConnect, Firepower, ISE, Web Security, Meraki MX or SM, AMP for Endpoints, Email Security, Umbrella, Cloudlock or Tetration
  • Availability of numerous integration options:
    • Built-in (for example with the above-mentioned Cisco solutions, with Google VirusTotal, IBM Security QRadar SIEM, ServiceNow Security Operations, Splunk Enterprise Security and Phantom);
    • Pre-packaged (e.g. with AlienVault OTX, Auth0 Signals, Cyberprotect Threatscore, Gigamon ThreatINSIGHT, Google Chronicle and Safe Browsing, Have I Been Pwned, Microsoft Graph Security, Qualys IOC, Radware WAF and DDoS, ServiceNow Security Operations, SpyCloud);
    • Custom – by integrating with Cisco technology partners such as Datanet Systems. This way you can connect SecureX with the existing IT security solutions in the companies’ portfolio, taking into account their specific requirements.

Datanet specialists cans help you configure and use custom work scenarios and take advantage of the automation options provided by the platform. This gives you the desired simplification and streamlining of security operations.

If you would like more details about the benefits of the Cisco True Forward licensing system, as well as the technical aspects of the SecureX platform, please contact us at sales@datanets.ro.