Inssec 2003

What Is the Future
of the Firewall?
The Answer: Very Bright –
and Deployed Everywhere!
Jeff Reed, SVP of Product, Cisco Security

Business Group
New perimeter
Remote employees Hybrid cloud
Old perimeter
Cloud applications Traditional Network: Personal devices
Endpoints, On-site
Users, Servers, Apps
Mobile devices Vendors and

contractors
INSSEC-2003 © 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
Is the perimeter dead?
Where do
we put security
controls??
Cloud DNS as Multicloud SD-WAN Identity
Cisco’s security strategy evolution “Classic”
cometh added layer security and DIA and SDP
Internet
DMZ
NGFW (Firepower), SWG (Web Security Appliance)
CORE
Security Analytics
VPN (Stealthwatch)
Roaming Campus Branch
SaaS Internet IaaS/PaaS Private Cloud
CLOUD EDGE
DMZ
NGFW, SWG
CORE
Security Analytics
VPN
CLOUD EDGE
DNS/web-layer Security (Umbrella)
DMZ
NGFW, SWG
OFF-VPN
CORE
Security
VPN Analytics
Security Analytics (Stealthwatch)

CASB Workload Protection (Tetration)
(Cloudlock) Virtual Firewall (ASAv, FTDv)
CLOUD EDGE
DNS/web-layer Security
DMZ
NGFW, SWG
OFF-VPN
CORE
Security
VPN Analytics
Cloud Security Analytics

CASB Cloud Workload Protection
CLOUD EDGE
Secure Internet Gateway with Cloud Firewall & SWG (Umbrella)
DMZ
NGFW, SWG
OFF-VPN
CORE Cloud-Managed Router
DIA (ISR + vManage) with
Security Enterprise Firewall, IPS
VPN Analytics SD-WAN
Malware Protection
Encrypted Traffic
Analytics, URL Filtering
(Multiple Cisco security
Roaming Campus Branch technologies)

CLOUD EDGE
MFA & Device Visibility (Duo) Secure Internet Gateway
DMZ
Web, SSH SDP (Duo), NGFW, SWG
OFF-VPN
CORE
Security

Identity Identity Identity
Networking
Security
Even better
together
Network security: Our goal
World class security In every place With unified policy and

controls you need them threat visibility
Consistent, world class
security controls
Gartner named Cisco a Leader in

Snort the 2018 Intrusion Detection and
IPS
Prevention Systems Magic Quadrant
– and every year since 2014
AMP Talos AMP Cloud

Threat Grid
malware detection
and response
You see once,

block everywhere
NGFW NGIPS ISR Endpoint CES/ESA WSA/SIG
Deeper More Better
data content security
We analyze massive
amounts of data —
19.7 billion threats
blocked daily 600 Billion 16 Billion 3.4 Billion
Email samples Web requests AMP queries
Our real-time
datasets are diverse,
global, and live 170 Billion 80 Million 12,000 160
Internet Daily active Enterprise Countries
requests users customers worldwide
Lower Austria
Firefighters
Administration “We chose Cisco because
The largest firefighting administration of their seamless
in Austria with 300,000 employees
and firefighters integration of all security
Solution
products and to have a
• Cisco Firepower 2130 NGFWs with FTD
smaller vendor footprint.”
• Firepower Management Center
• Cisco AnyConnect Markus Durauer, Network Technology, CMS
Specialist, Lower Austria Firefighters
Outcomes
• Uncovered existing malware infections and
blocked immediately
• Stopped a zero-day attack on edge of
network
• Saved time on configuration; daily tasks
became easier
Security controls…In every place you need them
WeControls...In
2. offer choice -the
security
placescontrols
you wherethem
need it
makes sense for your environment
CLOUD EDGE
DMZ
NGFW, SWG
OFF-VPN
Malware Protection
Encrypted Traffic
(Multiple Cisco security
WeControls...In
2. offer choice -the
security
placescontrols
you wherethem
need it
makes sense for your environment
FTDv
ASAv
CLOUD EDGE
Umbrella -SIG
FirePower: 2K, 4K, 9K DMZ

NGFW, SWG
OFF-VPN
Malware Protection
Meraki MX Encrypted Traffic
FirePower: 2K, 55xx ISR 4K Cisco security
(Multiple
Umbrella–Secure Internet Gateway
Cloud-delivered SaaS usage
Firewall Controls/Data
Secure Web Loss Prevention
Gateway (CASB)
Correlated
DNS-layer Threat
Security Intelligence
Cisco
Umbrella
Secure Internet Gateway
Demo #1
Umbrella
New Cisco SD-WAN security
Broadest SD-WAN Platform Centralized Management Integrated Security
Enterprise Firewall
Classification of +1400 layer 7 apps
ISR 1000 ISR 4000
Series Series
Intrusion Protection System
Most widely deployed IPS engine
in the world
URL-Filtering
vEdge ASR 1000 Web reputation score using
Series 82+ web categories
Cisco SD-WAN
vManage Powered by Viptela Simplified Cloud Security
ENCS Easy deployment of Cisco Umbrella
(ISRv) CSR
Security controls…with unified policy and
threat visibility
Cisco’s integrated security
solutions
Unified policy Unified threat visibility

(ALL Security)
Cisco Defense Orchestrator
(CDO) Cisco Threat Response
Cisco’s integrated security
solutions
Unified policy
(CDO)
Cisco Defense Orchestrator (CDO)
Common capabilities across the network control point
Links the network High quality detection

edge together and inspection in all areas
Secure Internet Gateway
(Umbrella)
AMP/TG
Snort SSL Decryption
Common
Common Policy Dedicated Appliance Elements
(CDO) (Firepower) Stealthwatch/CTA
TALOS
Network Embedded
(Meraki, ISR)
Demo #2
CDO
Cisco’s integrated security solutions
Unified policy Unified threat visibility

(ALL Security)
(CDO) Cisco Threat Response
Cisco’s integrated security solutions
Unified threat visibility

(ALL Security)
Cisco Threat Response
Introducing Cisco Threat Response
Unleashing the power of the Cisco Integrated Security Architecture
Key pillar of our integrated

security architecture
• Automates integrations across Cisco
security products
• Reduces the time and effort spent on
key security operations functions:
Detection Investigation Remediation
• Included as part of Cisco Security product licenses
Demo #3
Cisco Threat Response
Cisco Threat Response in the real world
Join Cisco Security customers who are gaining value from it now
3000+ Organizations are

using it today
“I like quickly being able to see “You cannot hit a target you
infections on my network, and cannot see. Cisco Threat
this presents them in a really Response really simplifies
nice fashion…” security analysis...”
Security Operations lead at a Cyber Security Specialist
large manufacturing company at MSSP
Unmatched breadth of portfolio
Customer Cisco
Security that works together SOC Threat Intel
NGFW
Software- (FIREPOWER) Security Analytics
Defined NAC (STEALTHWATCH)
Network (IDENTITY SERVICES UTM
(MERAKI MX) NGIPS
ENGINE) (FIREPOWER)
Web Security Incident
Response
(THREAT RESPONSE)
Auth/SSO
(DUO MFA)
Internet
User/ VPN RA and BYOD
EPP/EDR
Investigations
Device Visibility (AMP FOR ENDPOINTS)
Endpoint (ANYCONNECT)
(DUO ACCESS)
Email Security
(UMBRELLA
SDP INVESTIGATE)
(DUO BEYOND)
File
SIG/SWG Investigations
(UMBRELLA) (THREAT GRID)
Cloud CASB Security Analytics

(CLOUDLOCK) (STEALTHWATCH)
Workload Protection
(TETRATION)
Secure Access Threat Defense
Cisco security leadership
5K Largest 100x 19.7B 99%

People Threat detection Faster finding Threats Security
strong network breaches blocked daily effectiveness
250K 30% 170+ $2+ Billion 88%

Customers Cost savings Ecosystem Product Fortune 100 use
partners revenues Cisco security
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Network Security: Our goal
World class security In every place you With unified policy and
controls need them threat visibility
Snort, AMP, Talos FirePower, FTDv, Meraki MX, Cisco Defense Orchestrator,
ISR, Umbrella Cisco Threat Response
The FUTURE of the
FIREWALL is very
bright and it will be
deployed everywhere.
Cisco Webex Teams
Questions?
Use Cisco Webex Teams (formerly Cisco Spark)
to chat with the speaker after the session
How
1 Find this session in the Cisco Events Mobile App
2 Click “Join the Discussion”
3 Install Webex Teams or go directly to the team space
4 Enter messages/questions in the team space
cs.co/ciscolivebot#INSSEC-2003
Complete your online
session survey
• Please complete your Online Session
Survey after each session
• Complete 4 Session Surveys & the Overall
Conference Survey (available from
Thursday) to receive your Cisco Live T-
shirt
• All surveys can be completed via the Cisco
Events Mobile App or the Communication
Stations
Don’t forget: Cisco Live sessions will be available for viewing

on demand after the event at ciscolive.cisco.com
Continue Your Education
Demos in Meet the Related

Walk-in
the Cisco engineer sessions
self-paced
Showcase labs 1:1
meetings
Thank you

Inssec 2003

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Inssec 2003

Uploaded by

Copyright:

Available Formats

What Is the Future

Jeff Reed, SVP of Product, Cisco Security

Remote employees Hybrid cloud

Mobile devices Vendors and

Roaming Campus Branch

SaaS Internet IaaS/PaaS Private Cloud

Roaming Campus Branch

SaaS Internet IaaS/PaaS Private Cloud

Roaming Campus Branch

Security Analytics (Stealthwatch)

SaaS Internet IaaS/PaaS Private Cloud

Roaming Campus Branch

Cloud Security Analytics

SaaS Internet IaaS/PaaS Private Cloud

Cloud Security Analytics

SaaS Internet IaaS/PaaS Private Cloud

Roaming Campus Branch

World class security In every place With unified policy and

Gartner named Cisco a Leader in

AMP Talos AMP Cloud

You see once,

SaaS Internet IaaS/PaaS Private Cloud

FirePower: 2K, 4K, 9K DMZ

Broadest SD-WAN Platform Centralized Management Integrated Security

Unified policy Unified threat visibility

Links the network High quality detection

Snort SSL Decryption

Unified policy Unified threat visibility

Unified threat visibility

Key pillar of our integrated

3000+ Organizations are

Cloud CASB Security Analytics

Secure Access Threat Defense

5K Largest 100x 19.7B 99%

250K 30% 170+ $2+ Billion 88%

Don’t forget: Cisco Live sessions will be available for viewing

Demos in Meet the Related

You might also like