Cisco AMP for Endpoint Security Combines Prevention, Detection and Response

Cisco recently unveiled its new approach to endpoint security at the company’s annual Cisco Partner Summit. Cisco AMP for Endpoint Security not only prevents threats but detects them as well. Unlike most products that focus only on prevention, AMP for Endpoints allows customers to see and stop more threats, faster.

Endpoint security focuses on securing corporate networks when accessed via remote devices, such as laptops and other mobile devices. These devices connecting to the network can be entry points for potential security threats. Most companies use endpoint security that only focuses on prevention, not detection, proving ineffective against modern malware.

The company then layer additional products onto their endpoint security to aid in detection and response, but this method creates significant operational complexity and inefficiency. On average it takes companies over 100 days to detect a threat, proving a need for better endpoint security.

Cisco AMP or Endpoints offers a simpler solution by combining prevention, detection and response, reducing complexity and stopping more threats. AMP for Endpoints is a SaaS-deployed, cloud-managed solution.

AMP for Endpoints offers built-in sandboxing technology to quarantine and analyze unknown files using Cisco Talos, the industry-leading threat intelligence organization dedicated to providing protection before, during and after cybersecurity attacks.

AMP also offers greater visibility and faster detection of threats through continuous monitoring and shared analytics. It records all file activity to monitor and detect malicious behavior. It shares and correlates threat information in real time, reducing time to detection (TTD) to minutes.

AMP for Endpoints also offers a more effective response. It accelerates investigations and reduces complexity through a simple cloud-based user interface, searching across all enterprise endpoints for Indicators of Compromise. Malware can be removed with just a few clicks.

AMP for endpoints shares and correlates threat information across the entire architecture, meaning Cisco customers can see more threats, faster. In recent testing by NSS labs, Cisco achieved the fastest time to detection with 91.8 percent of threats detected in less than three minutes.

Cisco is also extending its successful software licensing program, Cisco ONE Software, to security software, simplifying purchase and deployment of security software.

“Cisco continues the relentless evolution of our security architecture from the network to the endpoint to the cloud,” said Scott Harrell, Vice President of Product Management at Cisco Systems. “Today’s AMP for Endpoints launch is a critical milestone. Customers now have the opportunity to simplify their endpoint security strategy, securing mobile users, servers and desktops by leveraging Cisco’s threat-centric security architecture.”

Key Takeaways:

– Cisco AMP or Endpoints offers a simpler solution by combining prevention, detection and response, reducing complexity and stopping more threats.

– AMP offers greater visibility and faster detection of threats through continuous monitoring and shared analytics.

– In recent testing by NSS labs, Cisco achieved the fastest time to detection with 91.8 percent of threats detected in less than three minutes.

Jessica Hundley

Jessica is a graduate of the University of Florida College of Journalism and Communications. She has written for multiple publications in the Gainesville, Fla. and South Florida regions specializing in in-depth feature reporting. She is currently a teacher and the Marketing Manager at Bricks4Kidz Atlanta, an after-school STEM program teaching Lego robotics to elementary and middle school students. Jessica is originally from South Florida and loves to spend her free time reading, writing, cooking and finding new state parks to explore. Contact Jessica at [email protected]