Cisco Threat-Centric Security Solutions

Healthcare organizations need security solutions that help them drive favorable business outcomes:

  1. Complete Protection
    • Delivering threat-centric defense against emerging and persistent threats faster and more effeciently than any toher solution on the market.
  2. Visability and Control
    • Providing robust management throughout the entire environment gaining broad visability across the network, users, devices, applications, data and the cloud.
  3. Enabled Business
    • Facilitating greater flexibility for organizations to choose from a variety of hardware-driven, software-driven, or hybrid security solutions, on-premise, the cloud, or a combination of both.

How these key customer business outcomes and Cisco Security Solutions come together is best understood through the Cisco Security Solutions portfolio.

Seven Attack Vectors

In order to achieve their key business outcomes, organizations need to overcome a set of security challenges. These challenges expand across seven attack vectors::

  1. Email.
  2. Web
  3. Cloud Apps
  4. Endpoints
  5. Mobile
  6. Campus & Branch
  7. Data Center

Cisco's threat-centric solutions can help overcome threats that drive security challenges in these areas.

Cisco Email Security

Email is one of the main communications tools organizations use to conduct daily operations. Email is also the number one attack vector across the current threat landscape. Threats are from:

  • Phishing
  • Spoofing
  • Ransomware
  • Viruses
  • Spam
  • Malware
  • Data loss
  • Data Exposure

The pain point: How do we keep our communications secure and private? Healthcare organizations must meet HIPAA security and privacy requirments. To be able to operate, staff and patients must be protected from threats without decreasing productivity. The management burden must be reduced.

Challenges:

  • Protect staff and patients against threats
  • Decrease spam to boost productivity
  • Reduce managment workload

Cisco threat-centric solutions help organizations meet these requirements and much more.

Solutions

  • Cisco Email Security
  • DNS-Layer Security
  • Malware Protection

Features

  • Anti-Spam Defense
  • Outbreak Filters
  • Antivirus Defense
  • Advanced Malware Protection
  • Data Loss Prevention
  • Encryption

Cisco Email Security, DNS-Layer Security and Malware Protection come together to form a powerful security, communication and privacy solution for customers. As a result, healthcare organizations gain improved threat protection, increased staff and network productivity and simpler management among other benefits.

Cisco Email Security drives business outcomes by working in unison across the entire communications framework. Cisco Email Security provides customers consumption options to give them flexibility and feature parity in the cloud,on premises, or both.

Cisco Umbrella and Investigate help customers secure their data against phishing and spoofing across users, devices, campuses, and branches.

AMP for Endpoints provides customers with advanced threat protection against malware and spam before messages are received, while messages are read or shared inside the network.

CRES (Cisco Registered Envelope Service) can be used to satisfy business privacy needs or encryption regulatory requirements without being a burden on the senders, recipients, or email administrators preventing data exposure.

Block more threats than just ransomware and viruses and quickly mitigate those that do breach your defenses with the Industry's first threat-focused Next Generation Firewall (NGFW).

Through Cisco Email Security Appliances, customers can prevent data loss, enabling high availability email protection against the constant, dynamic and rapidly changing threats effecting email today.

ESA and WSA (Email Security Appliance and Web Security Appliance) integrate with powerful anit-virus engines Sophos and MacAfee to ensure that customer communications are threat free.

Talos provides healthcare organizations with the most advanced threat intelligence on the planet, constantly delivering the latest information and protection against spam, malware and trojans.

Products

  • Umbrella
  • Investigate
  • ESA
  • NGFW
  • AMP for Endpoints
  • CRES
  • Talos.

Cisco Web Security

While Cisco Email Security enables secure and private communications for customers, Cisco Web Security ensures that organiztions can leverage the power of online transactions in a secure and reliable manner.

The Worldwide Web is intrinsically insecure, growing and continuously becoming more complex. However, modern healthcare organizations must transact through online sites and web applicatios daily, widening the opportunity for malware and data breaches to occur. These challenges become increasingly more complicated as organizations mature. They ask themselves: "How do we grow without compromising online security?"

Controlling access to networks, apps and websites while visualizing user, data and device behavior to protect key resources is imperative for these types of organizations. Cisco threat-centric solutions help healthcare organizations leverage the power of online transactions, communications and collaboration through Cisco Web Security, DNS-Layer Security, Cognitive Threat Detection and Network Analytics, and Malware Protection.

Outcomes

  • Enabled access-management to needed resources
  • Improved control across the network
  • Enhanced malware protection for users, data and devices

Cisco Web Security

The World Wide Web is intrinsically insecure

  • URL Spoofing
  • Malicious Sites
  • Rogue Web Applications
  • Malware
  • Data Loss
  • Data Exposure

The World Wide Web is growing and continues to become more complex. However, healthcare organizations must transact through online sites and web application daily, widening the opportunity for malware and data breaches to occur.

The challenges become increasingly more complicated as organizations mature. They ask themselves: "How do we grow without compromising online security?" Controlling access to networks, apps and websites while visualizing users, data, and device behavior to protect key resources is imperative for these types of organizations.

Challenges

  • Control access to networks, apps and websites
  • Visualize user data and device behavior
  • Protect resources against growing threats

Solutions

  • Web Security
  • DNS-Layer Security
  • CTD (Cognitive Threat Detection) & Network Analytics
  • Malware Protection

Cisco Threat-Centric Solutions help organizations leverage the power of online transactions: Communications and collaboration through Cisco Web Security, DNS-Layer Security, Cognitive Threat Detection (CDT) & Network Analytics, and Malware Protection. As a result, customers enable comprehensive access managment to needed online resources for their users, improved control across their network, and enhanced protection for their data and devices.

Outcomes

  • Enabled access management to needed resources
  • Improved control across the network
  • Enhanced malware protection for users, data and devices

Cisco Web Security

Cisco enables safe and reliable online access.

With advanced threats hiding in plain sight on legitimate websites or on enticing pop-up ads, employees or guests may put organizations at risk by clicking where they shouldn't. Cisco Web Security protects customers wherever they go on-line, empowering them to focus on driving organizational initiatives that enable them to grow.

Healthcare organizations benefit from policy-driven URL filtering and content analysis supported by security intelligence from Talos, reducing risks from URL spoofing across their network.

CTA (Cognative Threat Analytics) equips customers with enhanced threat visibility by automatically identifying and investigating suspicious or malicious web-based traffic.

Malware and other malicious files are blocked by Advanced Malware Protection in real-time resulting in faster time to detection and more efficient remediation.

With Dynamic Reputational Capabilities from Web Security Appliance (WSA & WSAv), organizations can block and test malicious sites before allowing users to link to them resulting in less threats entering the network, reducing costs over time.

Cloud Web Security is driven by analysis engines that deliver continual industry-leading anti-malware and zero-day threat protection reducing lost data in the event of a breach.

Security administrators can implement strong web usage controls and content analysis with Umbrella, enabling their users to access online resources in a secure manner without exposing data.

Products

  • AMP
  • CWS
  • WSA
  • WSAv
  • CTA
  • Umbrella
  • Talos

Cisco Cloud App Security

How can you safely use Cloud Applications?

While Cisco Web Security protects user activity online, organizations also need to be wary of security risks presented by the widespread adoption of cloud applications. Cloud applications are one of the most widely used resources across modern healthcare organizations.

More and more applications are developed and launched in the marketplace at incredible speed. This growth creates deep security challenges for healthcare organizations exposing their data, users and infrastructure to complex threats. Organizations ask themselves: "How do we safely use cloud applications?"

Protecting data across multiple cloud applications, understanding user online behavior, and creating easy-to-manage access policies serves to keep organizational decision-makers up at night.

Challenges

  • Protect data across multiple cloud applications
  • Understand what users are doing online
  • Create easy-to-manage access policies

Through Cloud App Security, DNS-Layer Security, and Malware Protection, Cisco provides heathcare organizations with the right solution to fully utilize cloud resources. As a result, organziations can provide their users with secure access to needed applications, while enhancing deep visibility and control of user and transaction behavior, and simplified management.

Solutions

  • Cloud App Security
  • DNS-Layer Security
  • Malware Protection

Cisco Cloud Security provides seamless and secure access to cloud applications.

Outcomes

  • Enabled cloud app usage across users and devices
  • Enhanced visibility of user behavior
  • Simplified access and control management

Healthcare organizations can adopt the cloud securely with Cloud Apps Security Solutions from Cisco. Cisco defends users from threats anywhere the access the Internet and protects data and applications in the cloud.

Cloudlock protects users, data and apps in the cloud against compromised accounts, malware and data breaches, empowering healthcare organizations to utilize business applications.

With self-provisioning capability, Cisco Meraki appliances automatically pull policy and configuration settings from the cloud, enabling organizations to manage multiple locations from a single pane of glass.

Security teams can pinpoint sensitive information within cloud environments to prevent data leakage with Data Loss Prevention (Cloud DLP).

Investigate provides insight into current and future threats that help businesses accelerate their attack response and remediation efforts.

Cisco Umbrella provides the first line of defense against threats on the Internet. With Umbrella, healthcare organizations can see exactly where attacks are staged on the Internet, enabling them to contain threats such as malware in the cloud before they can cause damage.

Whether using public, private or a hybrid deployment, Cisco Defense Orchestrator (CDO) makes it easy to ensure the the same policies are at all locations within the cloud environment, resulting in a more secure network infrastructure.

Products

  • Cloudlock
  • Umbrella
  • Talos
  • Investigate
  • CDO
  • Meraki

Cisco Endpoint Security

In addition to securing user activity in the cloud, healthcare organizations need tools to prevent breaches and block malware at every point of entry. Over the next few years, the total number of devices will expand to over 20 billion including IOT devices such as printers, vending machines, and IV Pumps. And according to the 2017 Cisco Security Report, 75% of organizations confirm that their devices have been targeted by malware at some point during the past 12 months.

When an organization's network has unprotected devices, they open themselves up to malware and other malicious files resulting in data exposure and loss of revenue. More and more organizations ask: "How do we continuously protect all of our endpoints?"

Challenges

  • Monitoring file behavior across a large set of endpoints
  • Detect and quarantine malware automatically
  • Protect devices running a variety of operating systems

Solutions

  • Identity and Access Control
  • Cloud App Security
  • Malware Protection

Monitoring file behavior across a large set of endpoints, effectively detecting and remediating malware in a variety of operating systems is a monumental challenge for healthcare organizations. Through Cisco Identity and Access Control, Cloud App Security and Malware Protection, Cisco helps organizations enable complete protection against advanced endpoint attacks.

Outcomes

  • Enhanced and constant attack protection
  • Reduced management workload
  • Increased flexibility across device environments

Features

  • Advanced Malware Protection
  • Global Intelligence
  • Big Data Analytics
  • Machine-Learning
  • Fuzzy Fingerprinting
  • Antivirus Defense
  • Rootkit Scanning

As a result, customers gain an enhanced and constant attack protection, reduced management workload, and increased flexibility across device environments. Cisco Endpoint Security products drive organizational outcomes by working across all devices in any environment.

Endpoint Products

  • AMP for Endpoints
  • CTA
  • Umbrella
  • Talos
  • ISE
  • AnyConnect

Cisco Endpoint Security provides customers with enhanced and constant attack protection, reduced management workload and increased flexibility across device environments. Cisco Endpoint Security products drive organizational business outcomes by working across all devices in any environment.

AMP for Endpoints provides organizations with advanced threat protection and data loss prevention for their devices before messages are received, and while messages are read or shared inside their network.

Cognative Threat Analytics (CTA) quickly detects and responds to attempts to establish a presence in their environment, and to attacks that are already underway.

Through AnyConnect, healthcare organizations can simplify secure endpoint access, and provide the security necessary to keep their infrastructure and devices safe and protected.

AMP Private Cloud Virtual Appliance delivers advanced malware protection using static analysis, malware analysis, continuously monitoring file activity, and providing intelligence across the local environment.

With Identity Services Engine (ISE), organizations gain awareness of any activity hitting their network, providing them with consistent and efficient access managment.

Talos tracks threats across networks, endpoints, cloud environments, virtual systems, web and email, providing a comprehensive understanding of cyberthreats, their root causes, and scopes of outbreaks.

 

Cisco Mobile Security

While Cisco Endpoint Security protection provides reliable connections for all users and endpoints, Cisco Mobile Security ensures that employees can work from anywhere in a secure and reliable manner.

We live in a mobile world, with more and more people working, collaborating and communicating with each other from wherever they are, whenever they need. Having a strong mobile business operational framework is of the greatest importance. Organizational members need access to key resources from any device, from any network, and using any application that better enables them to perform at their best.

These needs create a set of key security threats such as unprotected devices, network intrusions, and data loss across organizations.

Challenges

  • Botnets
  • Phishing
  • Unprotected devices
  • Off-network usage
  • Uncontrolled access
  • Malware
  • Data loss

Healthcare organizations ask themselves: "How do we provide our users secure access, whenever, wherever? Securing a growing number of mobile users and devices, while providing a consistent user experience on and off premises can be a big and costly administrative challenge.

Cisco Threat-Centric Solutions help organizations strengthen their mobile workforce through DNS-Layer Security, Indentity and Access Control, Remote Access VPN, Cloud App Security and Malware Protection.

Solutions

  • DNS-Layer Security
  • Identity and Access Control
  • Remote Access VPN
  • Cloud App Security
  • Malware Protection

As a result, organizations can achieve this most needed mobile security across their users, enhancing productivity, agaility and resource access while simplifying policy enforcement and security mangement.

Cisco Mobile Security enables secure access across devices, users and applications anytime and anywhere. Cisco enables users to work from anywhere on organizational laptops or personal mobile devices, and access key resources and applications at any time.

Through Cisco's secure mobility prodcuts, secure end-point access becomes a competitive advantage. AnyConnect provides organizations with NextGeneration VPN capability to enable users to connect to network-driven resources at all times. In addition, AnyConnect ensures that connections to the network are always protected against the latest online and off-line security threats.

Off-VPN protection through Umbrella protects employees even when they are off the VPN. With no additional agents required, Umbrella functionality and the Cisco AnyConnect client provide seamless protection against malware, phishing and command and control call-backs on all devices wherever the users go.

Enforced device security policies with Meraki support organizational efforts to specify what, when and who can access network resources through comprehensive device, application, content and identity managment.

Cisco Identity Services Engine (ISE) and Cloudlock provide comprehensive protection to defend against threats, no matter where they are. Moreover, ISE is a great tool to prevent non-compliant devices from accessing the network.

AMP for Endpoints provides complete protection against the most advanced attacks such as malware; prevents data loss and blocking malware at the point of entry, rapidly detecting, containing and remediating advanced threats

Network Visibility and Security Analytics is best managed through Cisco Stealthwatch. Stealthwatch uses Netflow to provide visibility across the network, data center, branch offices and cloud, helping organizations to provide users with protected access at all times.

Mobile Threat-Centric Products

  • AnyConnect
  • Umbrella
  • ISE
  • Cloudlock
  • Meraki
  • AMP for Endpoints
  • Stealthwatch
  • Talos

Cisco Campus and Branch Security

Once mobile users are empowered to work where and when they need, healthcare organziations must also focus their attention to securing their infrastructure across campuses and branches. As modern networks evolve, the attack surface expands and financially motivated attackers are adopting increasingly sophisticated methods to infiltrate networks and compromise digitized assets. Once inside the network, these malicious entities are difficult to detect.

Healthcare organizations ask themselves: "How do we protect and enable all of our physical locations?" How do we enable safe and simple managment across our campuses and branches?

When a newly appointed Chief Information Officer is talked with stopping data breaches across campuses and branches, securing the entire infrastructure, and understanding user, data, and device behavior, he does't know where to start.

Challenges

  • Stop data breaches across campuses and branches
  • Secure the entire infrastructure
  • Understand user, data, device and machine behavior

Cisco Campus and Branch Security can provide a complete set of solutions. Through DNS-Layer Security, NGFW, NGIPS, Email Security, Web Security, Identity and Access Control, Remote Access VPN, Network Analytics, AMP, Cloud App Security and Malware Protection, Cisco enables businesses to protect the entire physical footprint.

Threat-Centric Campus and Branch Solutions

Features

  • Firewalling
  • Intrusion Prevention
  • Malware Protection
  • Data Loss Prevention
  • Remote VPN
  • Analytics

Solutions

  • DNS-Layer Security
  • NGFW
  • NGIPS
  • Email Security
  • Web Security
  • Identity and Access Control
  • Remote Access VPN
  • Network Analytics
  • Cloud App Security
  • Malware Protection

As a result, infrastructure investments across all physical locations can securely operate in a controlled and agile environment. Cisco Campus and Branch Security enables safe and comprehensive security managment across all locations. Cisco Campus and Branch Security protects against threats while maintaining the high throughput required by campus distribution.

Outcomes

  • Secure operations across all physical locations
  • Enabled and protected investments
  • Controlled acess across the entire environment

Next Generation Firewall DDos Mitigation detects and mitigates Zero Day network and application DDos attacks in real time. It eliminates the need for human intervention and does not block legitimate user traffic when under attack.

Healthcare Organizations can enable agile operations across their organization with Cisco Advanced Malware Protection which continuously monitors, analyzes and records all file activity regardless of disposition, even after initial inspection.

Cisco NGIPS provides contextual awareness organizations need to properly evaluate users, hosts, files and applications running on their network.

By leveraging the existing network as a security sensor and enforcer, Stealthwatch dramatically improves customer threat defense.

Organizations can gain awareness of everything hitting their network and provide access consistently with Identity Services Engine (ISE) and TrustSec.

Umbrella with Talos provides organizations with the most advanced threat intelligence on the planet, constantly delivering the latest information and protection against span, malware and trojans.

Campus and Branch Security Products

  • NGFW
  • NGIPS
  • AMP
  • ISE
  • TrustSec
  • Stealthwatch
  • Umbrella
  • Talos

Cisco Security for Data Centers

Beyond Campus and Branch Security, Cisco provides comprehensive protection for data centers. The use of data centers for data storage, transfer of data, or server-side transactions has become a great competitive advantage for organizations. Healthcare organizations can leverage the incredible power data centers can provide to them to deliver application services and extract business intelligence for their incredibly large sets of data, and to create innovative digital solutions.

Security threats such as Redirect, Application Exploits, and DDos attacks can hinder this resource. Healthcare organizational leaders ask themselves: "How do we securely leverage data centers, maintaining secure connections between offices and data centers?"

Understanding data center and user behavior and stopping intrusions in real-time are some of the key security challenges organizations face.

Challenges

  • Maintain secure connections between offices and data centers
  • Understand the data center transfer behavior
  • Stop intrusions in real-time

Cisco threat-centric solutions enable organziations to leverage data center capability, transforming their security investments into growth engines or new opportunities. Through DNS-Layer Security, NGFW, NGIPS, Web, Email, Cloud Security, Remote Access VPN, Network Analytics, Malware Protection, data center capabilities are ready to produce business value for heathcare organziations.

Solutions

  • DNS-Layer Security
  • NGFW
  • NGIPS
  • Email Security
  • Web Security
  • Identity and Access Control
  • Remote Access VPN
  • CTD & Network Analytics
  • Cloud App Security
  • Malware Protection

As a result, organizations gain business scalability, user, data and device-behavior visibility and control and constant threat protection at all levels.

Cisco Secure Data Center enables customer usage of data center capabilities. Data centers are critical to the success of an organization. Cisco's secure data center solution provides organizations integrated protection and dynamic, intelligent control to defend against today's sophisticated attacks.

Rapid threat detection and mitigation through NGFW enhances application and user security across the network providing increased management flexibility, that not only protects better, but saves more.

Cisco NGIPS protects organizational digital business initiatives combining superior visibility, embedded security intelligence, automated analysis, and industry leading threat effectivness.

Purpose-built for data center, Adaptive Security Appliance Virtual (ASAv) provides customers with agile security for virtual and cloud environments, providing automation of policy enforcement and threat protection across heterogenous multi-site environments, reducing cost and complexity.

Virtual Workload Control and Cloud Security are reinforced with AMP. AMP provides customer data centers with the ability to filter botnet traffic, enabling organizations to fully utilize their resources when they need them most.

Deep visibility and data analytics through Cisco Stealthwatch speeds up incident response and forensics, quickly detecting issues including malware, insider threats, and sophisticated attacks resulting in better, and much faster investigations and threat controm management.

Cisco TrustSec helps organization administrators to efficiently segment business networks to protect critical assets. While traditional aproaches are complex, Cisco TrustSec software-defined segmentation is executed through simple policy, reducing risk, lowering operational expenses and streamlining compliance.

Data Center Products

  • NGFW
  • NGFWv
  • ASAv
  • NGIPS
  • AMP
  • ISE
  • TrustSec
  • Stealthwatch

Cisco Threat-Centric solutions enable healthcare organizations to drive business outcomes through:

  1. Complete Protection
  2. Deep Visibiltiy and Control
  3. Flexible options across Email, Web, Cloud Apps, Endpoints, Mobile, Campus and Branches and Data Centers