Cisco Systems has expanded its security portfolio, including new next generation firewalls aimed at midsize companies, branch offices and industrial environments.
Threat Grid provides the latest malware threat intelligence and dynamic malware analysis, both on-premise and in the cloud, that strengthens AMP’s continuous analysis and zero-day detection capabilities, Cisco said in a release.
It also introduced Incident Response Services, teams of Cisco information security experts that can be retained to give advice on threat intelligence and best practices for readiness and response from network to endpoint to cloud.
Threat Grid’s capabilities can be bought as a standalone cloud service or via new UCS based on-premise appliances. Its analytics engines provide security teams with breach detection against advanced malware, allowing them to quickly scope and recover from a breach by providing context-rich, actionable threat intelligence, Cisco said.
Also new are enhancements to AMP for Endpoints that brings additional visibility to the extended network by providing a list of hosts that contain vulnerable software, a list of the vulnerable software on each host, and the hosts most likely to be compromised.
AMP for Endpoints can now display files that have been executed across the organization ordered from lowest to highest number of instances, Cisco [Nasdaq: CSCO] said. Customers also have the ability to submit identified low prevalent files for dynamic malware analysis for even greater visibility and context, the company said, either manually or automatically by policy. This set of capabilities can help surface previously undetected and targeted threats that were only seen by a small number of users, Cisco said.
Separately, Cisco announced it has added five more ASA next generation firewalls models. “These next-generation firewall (NGFW) models bring integrated threat defense, low total cost of ownership, and simplified security management to smaller and distributed organizations,” William Mabon, a Cisco senior product manager, said in a blog.
The new models, which start at US$995, are:
–5506-X: Desktop unit for small and home offices as well as small businesses;
–5506W-X: Desktop unit with integrated wireless access point;
–5506H-X: Ruggedized unit for industrial environments;
–5508-X and 5516-X:1RUs for branch offices and midsized businesses.
These devices can be supplemented with Cisco’s optional FirePOWER Services. These include NGIPS (next-generation intrusion protection) ; AMP (advanced malware protection); and reputation-based URL filtering.