Thursday, February 9, 2017

Cisco Umbrella Promises Secure Internet Gateway in the Cloud

Cisco launched a secure internet gateway (SIG) in the cloud to address the new enterprise security challenges of today’s mobile, cloud-era.

Cisco Umbrella is a cloud-delivered security platform that provides a first line of defense to protect employees both on and off the corporate network. Cisco said its Umbrella stops current and emergent threats over all ports and protocols. It blocks access to malicious domains, URLs, IPs, and files before a connection is ever established or a file downloaded. As a cloud solution, there is no hardware to install and software updates are automatic.

Highlights of Cisco Umbrella:

  • Visibility and protection everywhere: Umbrella provides the visibility needed to protect Internet access across all devices on a network, all office locations, and roaming users. By combining Umbrella with Cisco Cloudlock’s Cloud Access Security Broker technology, Cisco can now enable organizations to identify which SaaS apps are being used and enforce policies to block risky or inappropriate apps.
  • Intelligence to stop attacks before they launch: Umbrella resolves over 100 billion internet requests every day and correlates this live data with over 11 billion historical events. This is analyzed to identify patterns, detect anomalies, and create models to automatically uncover attacker infrastructure being staged for the next threat.
  • Broadest coverage for malicious destinations and files: Umbrella leverages powerful tools from across Cisco Security to obtain the most complete view to identify and stop threats earlier. This includes Machine learning models to uncover known and emergent threats, blocking connections to malicious destinations at the DNS and IP layers; Cisco Talos threat intelligence to block malicious URLs at the HTTP/S layer; andCisco Advanced Malware Protection (AMP) to detect malicious files and block them in the cloud.
  • An open platform for easy integration: Umbrella can integrate with existing systems, including security appliances, intelligence platforms or feeds, and custom, in-house tools which enables users to extend protection for devices and locations beyond the perimeter.
  • Discovery and control for Software-as-a-Service (SaaS) apps: Umbrella, together with Cloudlock, enables organizations to discover and control sensitive data in SaaS apps on and off-network.
  • Reliable and fast connectivity for a great user experience: Customers don’t experience broken or slow connections when they use Umbrella. Umbrella uses Anycast routing — every data center announces the same IP address so that requests are transparently sent to the fastest available with automated failover to maintain 100 percent uptime.     

"Mobility has changed the enterprise network. The cloud has changed applications – their development and delivery – and how we think about, access and store data. Traditional security tools that require employees to work from an office, log in to the corporate network, and use corporate-managed devices or corporate-owned applications are no longer sufficient. Our secure internet gateway, Cisco Umbrella, can protect today’s enterprise and beyond as mobility increases and new cloud services are adopted.  It provides the most comprehensive visibility and enforcement for internet traffic, and together with Cloudlock, Cisco’s Cloud Access Security Broker, it enables discovery and control for SaaS apps, both on and off the corporate network," stated David Ulevitch, Vice President, General Manager, Security Business Group, Cisco Systems

See also