The first is designed to provide visibility and data security for cloud-based applications, the second for extending visibility and control for network and endpoints with new location access controls; and the third which provides network threat visibility.
The three solutions are part of Cisco’s Security Everywhere strategy, the company said.
“The value of Cisco architecture is its emphasis on embedding security spanning the extended network — including routers, switches and the data center,” the company said in a statement.
Cloud Access Security
Cisco argued that Shadow IT continues to be a problem, with unauthorized cloud applications reaching 15 to 20 times higher than organizations predicted. It’s an area that Cloud Access Security (CAS) hopes to address by detecting hidden applications, malicious behaviour, setting security policies and aligning user behaviour with corporate policies. The solution restricts the upload sharing of sensitive information and to and within cloud applications such as Dropbox and Salesforce.com.
Cisco Cloud Web Security also integrates with CAS.
Identity Services Engine
In this area, Cisco points to the risk posed by changing endpoints such as the use of personal devices as a challenge to an organization making security changes.
ISE brings software-defined business policies to specific endpoints, and in user and location-based access (down to specific rooms), while also integrating with the Mobility Services Engine offering. This is meant to reduce the overall attack surface.
The solution also extends into the pxGrid partner ecosystem with new partners including Check Point, Infoblox, Invincea, E8 Security, Hawk Defense, Huntsman Security, LogRhythm, SAINT, and SOTI.
Threat Awareness Service
Lastly, the Threat Awareness Service uses Cisco’s threat intelligence telemetry to increase visibility of network activity and identify threats.
It is offered either with purchases of the SMARTnet Total Care Service, or as a premium service through a yearly subscription.