Simplifying Everything Security both IT and OT. These videos are my own.
Security continues to be the focus for all organizations and as we continue to defend our assets the solutions become more and more complex. This traditional approach ultimately fragments the solution which increases our time to act. This channel is meant to simplify configuration deployment of Cisco Security technologies.
Please note as time progresses I will be added the analysis part of the portfolio and highlighting the integration pieces throughout.
Hello! great, nice video. A question, it is necessary to install it on each PC separately? Can i install a Server and send it to every pc in the network? Thnaks you so much!
Does the task actually apply the recommendations or just runs a task to scan what's been discovered and make recommendations? I guess I'm a little confused.
It can do both and you can schedule this as well. Some will just run the recommendations and review then do a manual apply while others will update and apply the recommendations.
Thank you. Very important! I did a clean install of ISE 3.2 and there is a bug, you won't get this to work unless installing patch ise-patchbundle-3.2.0.542-Patch1-23011406.SPA.x86_64.tar.gz Then it works fine.
Thanks Jason I have been trying to find information on just how to do this and these videos are such a great resource thank you so much for sharing your knowledge - Daniel :)
I do but agnostically a tool will provide very similar capabilities and one will argue their widget is better than the other widget and vice versa. I think the best approach focuses on removing complexity when it comes to security and ensure that tooling leveraged can integrates with the rest of the ecosystem. EDR is great but it is only as good as the asset it is installed on - consider broadening the discussion to include NDR. Also, Endpoint protection should be simplified this includes EPP, EDR, DNS, Web Proxy, Posture, VPN, ZTNA, IPFix, RBI, DLP to name a few.....this may highlight a bias but I do believe we cannot continue down this path of complexity.
Thank you for this informative video, found it fascinating to learn. I wanted to ask would you recommend doing a MSc in Security Resilience in this digital age? Also, does Security Resilience have any connection with Physics?
Scenario Overview is a great example of what we are facing in today's environments. Contractor access, iOT tags, Web services / SaaS access, user authentication via ISE or Radius/TACACS server for ssh access, user VPN software app installed and trying to gain access to network and iOT application server, and finally Bob is using BYOD. What I like about this scenerio is that this is driven by the BYOD aspect and in the older legacy networks, this type of work was hard to deploy and/or was/had to be handled by employee on company asset. So I'm very interested in Cisco portfolio of security solutions here to accommodate today's work force challenges. Thank you for sharing with the community!
I liked this; took a lot of notes and your breakdown on the Cisco Zero Trust 'guiding' principles. The Airport Analogy makes perfect sense. My mind wants to explode when you detail data center 'Asses the app context - map application and workload communication, and analyze app behavior'. So in my mind a big challenge would be taking a legacy / traditional IP addressing networks to this Zero Trust Network Access, deploying Cisco NAC, Cisco ISE, Cisco DNA, etc BUT ALSO trying to map application behavior in this environment. You touched on this briefly but I had to stop the video and think about that one element and statement; this could be a tremendous undertaking trying to map all the applications, checkpoints, SYSTEM to SYSTEM communications, APP to APP communications......and so on and so on.... Very Interesting!
You certainly need something with intelligence to understand application to application, system to system, and user to application / system. Check out Cisco Secure Workload and application dependency mappings. I am doing a Cisco Live Lab on that topic. Risk reduction and micro-seg.