Micro-segmentation protects your workloads and applications against lateral movement of malware and limits the spread of insider threats, yet successfully implementing a defense-in-depth strategy using micro-segmentation is complicated. In this technical webinar, Jothi Prakash Prabakaran, Senior Product Manager at Cisco, and Yoni Geva, Product Manager at AlgoSec, will provide a step-by-step blueprint to implementing this strategy using the micro-segmentation capabilities of Cisco Tetration and network security policy management capabilities of AlgoSec. They will demonstrate how to tighten your security posture within the data center using an allow-list approach. They will also show how to enforce these granular micro-segmented policies enforced on the workloads with Cisco Tetration and a coarse grain policy enforced across the infrastructure through AlgoSec network security policy management. Join our live webinar to learn how to: • Understand your business applications to create your micro-segmentation policy • Validate your micro-segmentation policy is accurate • Enforce these granular policies on workloads and summarized policies across your infrastructure • Use risk and vulnerability analysis to tighten your workload and network security • Identify and manage security risk and compliance in your micro-segmented environment Save your seat!

1. BUILD AND ENFORCE
DEFENSE IN-DEPTH
Yoni Geva
Product Manager
AlgoSec
Jothi Prakash
Sr. Product Manager
Cisco systems

2. WELCOME
Comment through the Live Chat
Have a question?
This webinar will be available On-demand and as Podcast
Connect with AlgoSec online!
2
marketing@algosec.com
• https://www.algosec.com/resources
• https://www.algosec.com/webinars
• https://www.algosec.com/podcasts

3. AGENDA Cisco Tetration Overview
AlgoSec Security Management Overview
& Tetration Integration
DEMO - Tetration-AlgoSec
Q&A
AGENDA

4. 4© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Next generation security threats…

5. 5© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Vision
Secure your application workloads
across any infrastructure, any cloud,
any technology from baremetal to
serverless

6. 6© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Security enables you to go faster
Closer to the application
Adaptive for the application
Continuously automates security
Run anywhere
Are unique
Change constantly
New applications Require new protections

7. 7© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
There are four key use cases for Tetration
Minimize the lateral
movement of threats
Ensure policy
compliance
Identify process behavior
anomalies
Understand software
inventory and
vulnerabilities

8. 8© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Containing lateral movement through
microsegmentation
Autogenerate granular microsegmentation
policy [using allow list]
Keep the policy up to date as application
behavior changes
Enforce the microsegmentation policy
consistently across any type of workload,
anywhere

9. 9© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Microsegmentation policy lifecycle
Generate microsegmentation policies based on
application and workload behavior
App behaviors and
interdependencies
Enhance the segmentation policies based on
workload context, endpoint device postures
and end user profiles
Context based policy
definitions
Cisco
Anyconnect
Cisco ISE

10. 10© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Consistent policy enforcement
Workload Microsegmentation Key
Universal app access
Access to some apps
No external app access
On premises Public cloud
Bare-metal servers Virtual machines Containers

11. 11© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Filter Enter flow attributes
Tetration Analytics Group. All rights reserved
Ensure policy compliance
Continuously monitor app behavior
Quickly detect behavior anomalies and
communication path deviations
Automatically update policies as workloads
migrate between servers or environments
Nov 16 11:10:00pm (PST)
Granularity: 1 minute
Non-Complaint: 564 (5.95%)
Permitted Flows: 8.92K (34.05%)
Rejects 0 (0%)

12. 12 | Confidential
ALGOSEC SECURITY MANAGEMENT
OVERVIEW & TETRATION INTEGRATION

13. CORPORATE OVERVIEW
2 | Confidential
13
Founded 2004
1800+ Enterprise Customers
Serving 20 of the Fortune 50
24/7 Support via 3 Global Centers
ISO 27001 Certified
Passionate about Customer Satisfaction
FORTUNE
50
ISO
27001
2004

14. BUSINESS-DRIVEN SECURITY MANAGEMENT
14 | Confidential
AlgoSec enables
companies to align
security with their
business processes
Uniform Visibility
Tighten Network Security Posture
Business-Driven Intelligent
Automation
Across Cloud, SDN & On-Premise Enterprise Network

15. Operational
Framework Layer
Security LayerFirewalls Routers Web
Proxies
Load
Balancers
Security
Groups
Physical Networks Private Cloud/SDN Public Cloud
Implementation Integration
Vulnerability
ScannersTicketing
Systems
GRC
Systems SIEM/SOAR
Systems
ALGOSEC FRAMEWORK
Application
Framework Layer
Implementation Integration
Syslog &
Traffic Data
Authentication
Authorization
CMDB Data Orchestration

16. Security Layer
Physical Networks Private Cloud/SDN Public Cloud
ALGOSEC FRAMEWORK
Application
Framework Layer
Implementation Integration
Operational
Framework Layer
Implementation Integration
Analyze, Monitor
& Visualize
Automate, Integrate
& Manage
Discover &
Understand
Operational Efficiency and Accuracy

17. Integrate
Business Process
For a complete list of supported devices visit www.algosec.com
Manage
THE ALGOSEC
ECOSYSTEM

22. MICRO-SEGMENTATION
✓ Single pane of glass
✓ End-to-end automation
✓ Continuous compliance
✓ Business context
Define
Enforce
AppViz
FireFlow
Discover

23. Application Workloads
On Prem/Cloud
ISE
Users/Endpoints
PxGrid
Firewalls Network Infrastructure
Firewall Analyzer
(AppViz)
FireFlow
(AppChange)
Policy Analysis Policy Change Automation
(Infrastructure)
Dynamic
Policy
Infrastructure Policy
Enforcement
Workload Policy
Enforcement
Complete Workload Protection Infrastructure Security
Network
incl ADCs
Flow Data Flow Data
Radius

24. 24 | Confidential
DEMO:
TETRATION - ALGOSEC

25. 25© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Tetration - Baseline workload profile

26. 26© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Tetration - Baseline workload profile

27. 27© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Tetration - Baseline workload profile

28. 28© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Tetration - Baseline workload profile

29. 29© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Tetration – Application dependency mapping

30. 30© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Tetration – Microsegmentation policy

31. 31© 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Tetration – Policy extension based on vulnerability

32. TETRATION DATA COLLECTION
AlgoSec AppViz collects all Enforced Policies, which will
become Application Flows in AppViz

33. APPVIZ TETRATION DATA OPTIMIZATION

34. TETRATION DATA COLLECTION

35. ALGOSEC BUSINESS OWNER VIEW
AlgoSec AppViz provides a concise & human-readable business owner view
into business application connectivity, including:
• Automated application architecture pdf
• Security governance zone overlay & diagramming
• Business application flows optimized for viewing
• Automated mapping of business applications to downstream device changes

36. Intelligent Automation is about connectivity fulfillment vs point policy creation
ALGOSEC INTELLIGENT AUTOMATION
Intelligent Automation is about
intelligently enhancing and automating
the implementation of security policies
Much more than “create rule on this device”:
• Algorithms augment human known-how
• Actionable & intelligent analysis added
throughout the workflow
• Policy-Push is just the tip of the iceberg!

37. PRO-ACTIVE RISK ASSESSMENT
Automatic assessment of
every proposed change –
before it is implemented –
to ensure compliance with
regulatory and corporate
standards, and identify any
changes in risk levels.
This process is proactive &
tailored to suit individual
specific compliance &
enterprise security
standards

38. INTELLIGENT POLICY DESIGN
Automatic & intelligent design of technical implementation steps for all requests, to
ensure they are designed in the most efficient method possible avoiding future policy
cleanup efforts & optimization challenges.
Automated implementation of policy changes directly on the device, cloud platform, or
firewall management platform, to save time and remove manual errors.

39. MICRO-SEGMENTATION
✓ Single pane of glass
✓ End-to-end automation
✓ Continuous compliance
✓ Business context
Define
Enforce
AppViz
FireFlow
Discover

40. 40 | Confidential
QUESTIONS?
Request a Free Evaluation
marketing@algosec.com
youtube.com/user/AlgoSec
linkedin.com/company/AlgoSec
facebook.com/AlgoSec
twitter.com/AlgoSec
www.AlgoSec.com/blog

41. THANK YOU!
Yoni Geva
Product Manager
AlgoSec
Jothi Prakash
Sr. Product Manager
Cisco Systems