Enterprise security is a constant battle between good and evil which means that businesses can't afford to be complacent when it comes to guarding against threats.
Networking specialist Cisco is unveiling a number of new capabilities and services designed to give security professionals the edge in protecting against and dealing with attacks.
These changes come from the addition of AMP Threat Grid to the Cisco Advanced Malware Protection (AMP) portfolio. This integrates innovation gained through the company's acquisition of ThreatGRID last year. It provides the latest malware threat intelligence and dynamic malware analysis capabilities, both on‐premise and in the cloud, to strengthen Cisco AMP's continuous analysis and zero‐day detection capabilities.
Plus to help bridge the gap between the availability of security practitioners and industry needs, Cisco is introducing Incident Response Services. This aims to equip organizations with teams of information security experts who can leverage threat intelligence and best practices for readiness and response.
"Every day, organizations are faced with advanced threats that infiltrate and persist in company environments for months before they are discovered," says Marty Roesch, Vice President and Chief Architect of Cisco Security Business Group. "We believe that the most effective way to address these real‐world challenges is continuous threat protection against these attacks. Further enhancements like advanced correlation of indicators of compromise, vulnerability mapping and expanded retrospective security further differentiate Cisco AMP and strengthen security teams’ responses before, during and after an attack".
As well as providing intelligence at a high level with AMP Threat Grid the company aims to protect at all levels. AMP for Endpoints provides a list of hosts that contain vulnerable software, a list of the vulnerable software on each host, and the hosts most likely to be compromised. AMP identifies vulnerable software being targeted by malware and the potential exploit, and provides customers with a prioritized list of hosts to patch. It also continuously monitors file activity allowing it to pick up suspicious behavior and track back to the origin of potential threats.
AMP Threat Grid will be demonstrated at the RSA Conference in San Francisco on April 20-24 or you can find out more on the Cisco website.
Image Credit: alphaspirit/Shutterstock