The security landscape is becoming increasingly sophisticated and elusive. These dynamic attacks can evade even the best point-in-time tools, such as legacy next-generation firewalls, unified threat management (UTM) solutions, and intrusion prevention systems (IPS).
Aging infrastructure is another growing area of concern addressed in the Cisco 2016 Annual Security Report. Last year, for example, the Cisco Security Research team analyzed 115,000 Cisco devices on the internet and across customer environments as a way to bring attention to the security risks and lack of attention to patching vulnerabilities present. The results were startling — 92% of the devices were found to be susceptible to an average of 26 known vulnerabilities.
Cisco’s ASA (Adaptive Security Appliance) with FirePOWER Services is a family of network security devices designed to help channel partners minimize vulnerabilities and provide managed security service offerings to their customers. The devices incorporate firewall, IPS and VPN (virtual private network) capabilities in a single appliance.
Unlike traditional security solutions that often are siloed, labor-intensive and lack threat visibility, Cisco ASA with FirePOWER Services offers an adaptive and threat-focused next generation firewall, which includes Sourcefire’s next-gen IPS (NGIPS). It provides in-depth protection and shares telemetry and intelligence across the entire attack continuum. Additionally, its advanced malware capabilities identify and safeguard against emerging and unknown threats. The solution features integrated layers of security, such as intrusion prevention, firewall routing and switching, URL filtering, identity-policy control and VPN. Working in harmony, these features make it easier to detect emerging and unknown threats that other security products miss.
One of Cisco ASA with FirePOWER Services’ key differentiators is the Cisco FireSIGHT Management Center. From there, users can see client applications, operating systems, mobile devices, virtual machine-to-machine communication, VoIP phones, command and control servers, routers and switches, and malware. In addition to receiving far more information than other management systems, security automation reduces labor and cost to prioritize, tune and triage incident responses. Cisco ASA with FirePOWER Services can be used for branch offices, internet edge sites or large data centers.
Cisco offers two security-as-a-service consumption models, too, including:
- Cisco Managed Security Cloud Service. This model provides web and email security hosted in Cisco data centers with the option to be co-hosted in your data center and delivered to your customers over the internet. Partners can also attach subscription-based services to existing Cisco Integrated Services Router and Cisco Adaptive Security Appliance installed-base customers, and retain market share by adding security services.
- Cisco Powered Service Provider Hosted Security Cloud Services. This model uses Cisco virtual appliances hosted in the service-provider cloud to deliver managed security services to business customers. Multiple services can be offered to a single customer, including VPN, firewall, email security, and web security services. Partners can provide these services for all customers from a multitenant service delivery platform, which delivers economies of scale, competitive pricing and new revenue models.
Join Ingram Micro on Thursday, July 21 at 11 a.m. PDT for “Selling Cisco ASA with FirePOWER Services.” This educational one-hour presentation is geared toward account executives and pre-sales engineers and will demonstrate the basic configuration of Cisco ASA with FirePOWER Services. It also will highlight the value of Cisco FireSIGHT Management Center.