Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
703
Views
1
Helpful
0
Comments

Introducing Breach Protection

deparent
Cisco Employee
Cisco Employee

on ‎10-31-2023 06:54 AM

Businesses are hyper-connected, operating in a complex web with their suppliers, partners, and customers. Vulnerabilities that once impacted an individual organization can affect multiple downstream customers and supply chains. It’s vital for every organization to have a robust and multi-layered security strategy in place to avoid direct attacks.

That's why Cisco is introducing the Breach Protection.

The Cisco Breach Protection is a powerful and versatile solution that can integrate with a wide range of security tools, both from Cisco and third-party vendors. This means that organizations can leverage their existing security investments and gain a unified view of their security posture, allowing them to respond quickly and effectively to threats.

Detect and respond to the most sophisticated threats with these enhanced features:

  • Data repository: aggregates data from multiple native and third-party telemetry sources to enable insightful threat correlation and analytics.
  • Threat intelligence: covers evidence-based knowledge, including context, mechanisms, indicators, implications, and actionable advice about known and unknown threats.
  • Asset Context (device, user): inventories devices in the environment and highlights the criticality of those devices to business operations; knowledge of users and importance/connectivity mapped to devices.
  • Analytics and threat correlation engine: uses predictive analytics and machine learning within the threat correlation engine.
  • Response actions with guidance and workflow automation: builds efficiency and applies workflows or automation scripts aligned to processes and procedures.
  • Case management: streamlines the management and documentation across the life cycle of the threat.
  • Incident management: provides clear prioritization based on the criticality of assets and the severity of impact.
  • Incident response ecosystem: captures a set of information security policies and procedures to identify an attack, minimize its effects, contain damage, and remediate the cause to reduce the risk of future incidents.
  • Threat hunting: proactively searches through networks, endpoints, and datasets to hunt malicious, suspicious, or risky activities.
  • Consumption models: meet the needs of your unique environment.

Get started by exploring the uses cases within Breach Protection, click below to navigate to a guided resource:

Extended Detection and Response Guided Resources >

Email Threat Defense Guided Resources (Coming Soon)>

Endpoint Detection and Response Guided Resources >

Secure Network Analytics Guided Resources

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents