25. Rapid Threat Containment (RTC)
With Firepower Management Center (FMC) and ISE
Initial compromise Detection
Protect critical data, by stopping attacks faster, based on real-time threat intelligence
Internet
Enterprise
Network
Monetize theft
Time To Detection (TTD): 100-200 days - http://bit.ly/cisco-asr-2016Problem
Infection spread
Data hoarding
Data exfiltration
100 – 200 days Initial compromise Containment
Internet
Solution
PxGrid
Enterprise
Network
Sensor
- AMP/
- NGIPS/
- ASA
(wFirePOWER)
EPS: Quarantine
(over PxGrid)
COA
Minutes
FMC
ISE
TrustSec
segmentation
Rapid Threat Containment
34. Summary
• Threats has become more
sophisticated
• We cannot solve this problem using
point product approach
• It will only increase complexity
• Cisco Security Approach
• Best of Breed Portfolio
• Integrated Architecture