Cisco SecureX

So how we use it in our organization is we mainly demonstrate the product. We do have it integrated with other products, be it Cisco or other third parties. My main thing with this product is I demonstrate it to other partners and I demonstrate to other end users of those partners showing them the value that it can add to the Cisco and third-party security environments.

We use Cisco SecureX as a key system both internally and for our MSSP customers. The entire platform, especially with its Threat Response and Orbital modules, helps us get a grip on threats faster and has really helped us reduce response times. Getting everything up and running needs a bit of planning, and you need to familiarise yourself with the different modules, but once you do, you really get the most out of the platform. For example, we can detect a threat in one customer environment and then query our other environments for the same threat.

The real hidden gem in the platform, however, is the orchestration element. We use it to not only alert our engineers of threats but also inform our customers via integrations with collaboration tools such as Webex that we are responding to it. Our integrations with Secure Endpoint, Duo, Umbrella, etc., also make our response actions more streamlined. One example is blocking a user in Duo if we detect a threat on their endpoint as part of our Zero Trust setup.

The platform is constantly evolving, and hopefully, the new ‘Cisco Secure’ branding will help with messaging about their XDR offering.

Sophos Intercept X, CrowdStrike Falcon Endpoint Protection and Palo Alto Networks Cortex XDR (Traps)

Cisco Secure Endpoint (formerly Cisco AMP), Cisco Secure Access by Duo, Cisco Umbrella

Cisco SecureX is a valuable solution for our company because since we use it it is easier to visualize all our infrastructure and its security, that is why we use said software at the level of all our infrastructure because it not only helps us to have better visibility of its security, but it also guarantees us analysis and automation in the presence of suspicious movements, giving us the advantage of high detection and quick and precise responses in the event of a threat.

Palo Alto Networks Cortex XDR (Traps)

Cisco Umbrella, Cisco Cloud Email Security, Cisco Secure Email, Cisco Secure Endpoint

Currently the people security market it’s suffering from a lack of trained people. On the other side, we’re seeing robots hacking globally. Cisco SecureX came to resolve some of those issues by helping the automatization of many playbooks, which are daily activities that used to consume a lot of hours from analysts. The product has also a single pane of glass to bring visibility for the team, so they don’t need to look into multiple sources to have the information from each Security product. Recently in Cisco SecureX, we’re using device insights and now we know what computers are compliant or not and it’s helping more and more visibility. The analysts share cases using the Cisco SecureX ribbon, so they can contribute to each other all incidents and cases.

Splunk SOAR, Exabeam Fusion, IBM Resilient Security Orchestration, Automation and Response (SOAR) and Microsoft Sentinel

Cisco Secure Endpoint, Cisco Secure Network Analytics (Stealthwatch), Cisco Umbrella, Cisco Secure Firewall

In our company, we have been using Cisco SecureX to manage and protect each site in Argentina and Brazil (+160 locations) for more than 2 years and in more than 2500 roaming clients. The management of this environment (more than one thousand devices) is so complex and we need a tool to unify the observability.

FortiManager

Cisco DNA Center, Microsoft 365