printer friendly version

Innovation in AI-first security cloud

Jeetu Patel.

Cisco is delivering on its promise of the AI-driven Cisco Security Cloud to simplify cybersecurity and empower people to do their best work from anywhere regardless of the increasingly sophisticated threat landscape. Cisco is investing in cutting-edge innovations in artificial intelligence and machine learning that will empower security teams by simplifying operations and increasing efficacy.

Today’s IT environment has dramatically shifted. Cloud adoption is accelerating. Remote and hybrid users are now the majority. Most organisations rely on a complex web of point products that weren’t designed to support today’s highly distributed environment. Users are forced to navigate inconsistent access experiences and reauthenticate throughout the day—disrupting productivity. With Cisco Secure Access, Cisco’s new SSE solution, decisions about how users connect to applications are handled behind the scenes, so they get to what they want quickly. The result is users who are more secure with less hassle.

“With Cisco Secure Access, we are removing the burden from the user and providing a superior experience with frictionless access to all applications—not just some—to enable secure, hybrid work,” said Jeetu Patel, Executive Vice President and General Manager of Security and Collaboration at Cisco. “Our unmatched visibility of the network gives us an advantage that no other company has—and we truly believe that where security meets the network, Cisco is the best in the world.”

Highlights of Cisco Secure Access include:

Common access experience: Delivers a single, easy way to access all applications and resources (not just some) by intelligently and securely steering traffic to private and public destinations without end-user intervention.

Single, cloud-managed console: Simplifies security operations by converging multiple functions into one easy to use solution that protects all traffic. Instead of managing a broad set of tools, administrators, and analysts can go to one place to see all traffic, set all policy, and analyse security risks. This translates into efficiency gains, cost reductions, and a flexible IT environment.

Faster detection and response: Provides analysis to speed up investigations and is backed by Cisco Talos AI-driven threat intelligence to detect and block more threats.

Cisco Secure Access is taking a hybrid Points of Presence (POP) approach with Cisco Data Centres and public cloud providers to rapidly extend global reach for our customers. As part of the Cisco Security Cloud, it leverages capabilities from the rest of the Cisco security and networking portfolio, including embedded network visibility from Cisco ThousandEyes, and can be easily integrated with solutions from third-party vendors. Cisco Secure Access will be in limited availability starting in July 2023 and will be generally available in October 2023.

Generative AI to improve threat response & simplify security policy management

Further delivering on its strategic vision, Cisco is previewing the first generative AI capabilities in the security cloud. Today, most organisations have a patchwork of security products, forcing teams to set and maintain extremely complex security policies as well as track and remediate threats across numerous solutions.

• Reduce policy complexity: The Cisco Security Cloud will leverage a generative AI-powered Policy Assistant that enables security and IT administrators to describe granular security policies and evaluate how to best implement them across different aspects of their security infrastructure.

• For the first implementation, customers will be able to reason with Cisco’s AI Assistant to evaluate and produce more efficient firewall policies. It will leverage customers’ existing rulesets in Cisco Secure Firewall Management Centre to drive unmatched efficiency without sacrificing granular control and will be available later this year.

• Quickly detect and remediate threats: Cisco’s SOC Assistant will support the security operations centre (SOC) to detect and respond to threats faster. When an incident occurs, the assistant will contextualise events across email, the web, endpoints, and the network to tell the SOC analyst exactly what happened and the impact. Analysts can then interact and reason with the assistant to determine the best remediation approach leveraging an extensive knowledgebase of potential actions while also taking into account the analyst’s input. The event summarisation feature will be available by the end of calendar 2023 with the remaining capabilities in the first half of calendar 2024.

Network security bolstered for hybrid work

The world is hybrid, and users require seamless connected experiences at the office and on the road. As the demands of the firewall as the foundation of the security stack continue to expand, the new Cisco Secure Firewall 4200 Series raises the bar for performance and flexibility with cryptographic acceleration, clustering and modularity.

Running the new 7.4 version of the operating system, Secure Firewall 4200 features:

• AI and ML-based encrypted threat blocking without decryption.

• An evolution of Zero Trust Network Access (ZTNA) with complete threat inspection and policy for each individual application.

• Simplified branch routing that brings security, control, and visibility to traffic from remote offices, to applications in hybrid data centres.

Share this article:

Further reading: