In today’s fast-paced world, supporting an ever-growing number of applications across the data center poses significant security management challenges. Managing policies across physical and virtual networks and multivendor security devices requires a delicate balance between ensuring security, reducing risk and provisioning connectivity for critical business applications to increase productivity.
Cisco ACI reduces TCO, automates IT tasks, and accelerates data center application deployments, using a business-relevant software defined networking (SDN) policy model. Through a seamless integration, AlgoSec extends Cisco ACI’s security policy-based automation to all security devices across the enterprise network, both inside and outside the data center.
Join Ranga Rao, Director of Solutions Engineering at Cisco, and Anner Kushnir, VP of Technology at AlgoSec on Wednesday, February 1, at 12pm ET/9am PT for a technical webinar where they will discuss how to leverage the integrated Cisco ACI-AlgoSec solution to process and apply security policy changes quickly, assess and reduce risk, ensure continuous compliance, and maintain a strong security posture across your entire network estate.
Attend this must-see webinar and learn how to:
- Get visibility into the Cisco ACI security environment and extend Cisco ACI policy-based automation across the enterprise network
- Proactively assess risk for the Cisco ACI fabric and recommend changes to eliminate misconfigurations and compliance violations
- Automate the configuration of security devices on the ACI fabric
- Generate audit-ready regulatory compliance reports for the entire Cisco ACI fabric
Unblocking The Main Thread Solving ANRs and Frozen Frames
Cisco aci and AlgoSec webinar
1. ACCELERATING DATA CENTER
APPLICATION DEPLOYMENTS WITH
CISCO ACI AND ALGOSEC
Juan Lage, Principal Engineer at Cisco
Anner Kushnir, VP Technology at AlgoSec
3. Founded 2004
1500+ Enterprise Customers
Serving 20 of the Fortune 50
24/7 Support via 3 Global Centers
Passionate about Customer
Satisfaction
3
ALGOSEC OVERVIEW
4. 4 | Confidential
Security Management
Automation
Single Pane of
Glass
Business Driven
Security
Provide Business
Application context to
Security and Risk
Provide uniform visibility
across the entire network
security infrastructure –
on premise, private cloud &
SDN, and in public cloud
Intelligently enhance and
automate time-consuming
security processes and
activities with business
context
Manage Security at the Speed of Business
5. KEY BUSINESS CHALLENGES THAT ALGOSEC ADDRESSES
Automating
security change
management
Tying cyber
threats to business
processes
Single pane of
glass for network
security policy
management
Securing business
transformation to
the cloud
Ensuring
continuous
compliance
Effectively
managing
application
connectivity
Reducing risk from
misconfigurations
Avoiding
application
outages due to
connectivity issues
Business-Driven
SECURITY
Business-Driven
AGILITY
8. * Cisco Global IT Impact Survey
APPLICATIONS ARE CHANGING
Type
Consumption
Delivery
78% The network is even more critical to delivering
applications than a year ago*
Big Data,
Distributed
Apps, Mobile
Cloud–public,
Private, Hybrid
Anywhere,
Anytime, Any
Device
9. THE NETWORK IS THE BEST PLACE TO PUT POLICY
Because it touches everything, the network never lies
POLICY
DATA CENTER
Public Cloud
APPAPP APP
Edge
11. Security Everywhere9
Analytics Everywhere10
8 Policy Everywhere
POLICY-DRIVEN INTEGRATED INFRASTRUCTURE
ANSWERS CUSTOMERS’ REQUEST
1
Modernize Infrastructure:
Open and Programmable
Network / L4-7
Compute
Storage
Security
Data Center
5
Move Data and
Workloads Securely
6
Self-Service Portal
(IT as a Service)
7
Extend Policy
Model
2
Automate
and Simplify
POLICY
3
Build Your
Hybrid Cloud
Private Cloud
Stack
Integrated Infrastructure
4
Choose any
Other Cloud
Managed
Public
Private
14. CISCO ACI SECURITY
AUTOMATED SECURITY WITH BUILT-IN MULTI-TENANCY
Distributed stateless firewall
Line-rate security enforcement
Open: Integrate any security device
PCI and FIPS (new)
Embedded Security
• Whitelist firewall policy model
• Authenticated northbound API (X.509)
• Encrypted management plane (TLS 1.2)
Microsegmentation
• vDS, Hyper-V, and bare-metal workloads
• Intra-EPG isolation
• Attribute-based isolation and quarantine
Security Automation
• Dynamic service insertion and chaining
• Security policy follows workloads
• Centralized security provisioning and visibility
Cisco ACI™
Services Graph
11
15. • Application-centric policy management
• Automation and agile application delivery
• Built for enterprise customers
• Full support for Cisco firewalls and routers
• Integrated with Cisco CloudCenter (CliQr)
• Full support for all leading security vendors
ALGOSEC AND CISCO ACI – BETTER TOGETHER
16. Data Center
ACI
SOLUTION ARCHITECTURE
Visibility & Compliance
Automatic Provisioning
Business Applications
Data Center FWs (L4-L7 services)
Perimeter & Upstream FWs
17. ALGOSEC & CISCO ACI - KEY VALUE POINTS
• Security policy visibility across the entire network
Within Data Center - Cisco ACI and underlying firewalls
Perimeter and upstream firewalls
Cloud security groups
• Monitor and proactively identify security policy changes
Track changes in application profiles, contracts, EPGs, filters
Verify no out of band changes in underlying firewalls
• Troubleshooting
End-to-end connectivity
• Full multi-tenant support
End-to-End Visibility
18. ALGOSEC & CISCO ACI - KEY VALUE POINTS
Automation & Business Agility
• AlgoSec extends Cisco ACI policy-based automation across
the entire network
Automated security policy change management for
multi-vendor devices
• Avoid misconfigurations and outages
• End-to-end automation
Security is no longer the bottleneck for agile application delivery
• Continuous compliance and documentation is retained
19. ALGOSEC & CISCO ACI - KEY VALUE POINTS
• Risk and compliance analysis for Cisco ACI contracts
alongside firewall security policies
• Significantly simplify and reduce audit preparation efforts
and costs
Supports all the industry regulatory standards
• Automated workflow’s “what-if” risk check assures
continuous compliance
• Full audit trail for all policy changes
Security & Compliance
40. CISCO ACI APP CENTER:
ALGOSEC CONNECTIVITY AND COMPLIANCE APP
41. CISCO ACI APP CENTER: ALGOSEC APP
Risk and Compliance
• Visibility into ACI contracts risk and compliance posture
• Visibility into risk and compliance posture of the underlying
firewalls in the ACI fabric
Network Connectivity
• Automate security policy changes on underlying and upstream
firewalls
• Contract connectivity check
44. SUMMARY
ACCELERATING DATA CENTER APPLICATION DEPLOYMENTS WITH CISCO
ACI AND ALGOSEC
• Security policy visibility across the entire network,
including Cisco ACI
• Automated security policy change management for multi-
vendor devices across the entire estate
• Risk and compliance analysis for Cisco ACI contracts
alongside firewall security policies
• Significantly simplify and reduce audit preparation efforts
and costs - supports all the industry regulatory standards
45. DON’T FORGET!
If you would like more information or a personal demo, please email us
at marketing@algosec.com
Make sure to visit us at Cisco Live in Berlin in a couple of weeks time!