Organizations lately face the daunting problem of successfully prioritizing and responding to safety dangers and incidents. The mixture of Cisco Safe Endpoint and Cisco Vulnerability Administration kind a strong automated resolution, enabling you to detect, prioritize and handle endpoint vulnerabilities, starting with essentially the most extreme ones. There are two integrations out there to assist handle important elements of safety, each pre- and post-incident, which not solely improve incident response, but additionally fortify preventative measures.
Publish-Incident: Accelerated Response with Threat-Based mostly Context
The primary integration focuses on managing safety incidents post-occurrence with risk-based context. On the coronary heart of this integration is the Cisco Safety Threat Rating, powered by Cisco Vulnerability Administration. It leverages the group’s endpoint knowledge and telemetry, enriched with vulnerability risk intelligence, and is analyzed by way of superior knowledge science algorithms like machine studying and predictive modeling. The result? A quantifiable, granular danger rating for each vulnerability, aiding in prioritizing and addressing essentially the most important points straight from the Safe Endpoint Console. The Cisco Safety Threat Rating is prominently displayed within the Safe Endpoint UI, offering scanner-less visibility into vulnerabilities in key working techniques.
Customers of Cisco Safe Endpoint Benefit or Premier will mechanically achieve entry to the Cisco Safety Threat Rating for every CVE on managed endpoints; permitting them to leverage real-world risk intelligence as a part of their incident investigation. By integrating the Cisco Safety Threat Rating into the Safe Endpoint Console, SOC analysts will simply be capable of establish the riskiest endpoints of their surroundings and drill down to grasp the vulnerabilities which are driving that danger. As soon as the riskiest endpoints are recognized, you’ll be capable of speed up your incident response by prioritizing motion on essentially the most important vulnerabilities.
Pre-Incident: A Holistic Threat-Based mostly Method
Shifting to a extra proactive stance, our new integration between Cisco Safe Endpoint and Cisco Vulnerability Administration extends past a Safety Operations use case to permit IT Operations and vulnerability administration analysts to achieve entry to a risk-based vulnerability administration platform. This integration permits customers of each options to detect endpoint vulnerabilities and prioritize these posing essentially the most danger for environment friendly remediation. With Cisco Safe Endpoint, customers can hunt for hidden threats, detect stealthy malware, and carry out superior investigations with world risk intelligence from Cisco Talos. Cisco Vulnerability Administration can then ingest the Cisco Safe Endpoint knowledge, leveraging a devoted knowledge connector, and prioritize the vulnerabilities primarily based on real-world attacker exercise and enterprise context. This permits organizations to considerably cut back their danger publicity with out rising their useful resource funding in remediation capability.
The mixing of those two options permits customers to totally embrace a risk-based method to endpoint vulnerability administration. This integration unlocks a number of key use instances similar to:
- Detecting and understanding vulnerabilities on endpoints,
- Centralizing vulnerability knowledge from Cisco Safe Endpoint and different safety knowledge sources by way of 50+ out there knowledge connectors,
- Prioritizing vulnerabilities primarily based on exploitation danger and asset context,
- Implementing remediation workflows and enabling IT to self-serve to effectively cut back danger,
- Measuring and reporting on danger posture, trade benchmarks, and progress made.
- Remediation Analytics & Scoring, Zero-Day intelligence powered by Cisco Talos, and Vulnerability Intelligence API and UI with the Cisco Vulnerability Administration Premier tier
The mixing of those two options takes vulnerability administration to a brand new degree, offering a complete, risk-based method to cybersecurity.
See It in Motion
The mixing of Cisco Safe Endpoint and Cisco Vulnerability Administration is greater than only a resolution on paper – it’s a sensible, real-world software that may improve your cybersecurity measures. Don’t simply take our phrase for it, see it for your self. We’ve created a recorded demo showcasing the mixed energy of those two merchandise.
To study extra about how Cisco Vulnerability Administration can improve your group’s cybersecurity efforts, go to https://www.cisco.com/website/us/en/merchandise/safety/vulnerability-management/index.html
We’d love to listen to what you assume. Ask a Query, Remark Beneath, and Keep Related with Cisco Safety on social!
Cisco Safety Social Channels
Share: