Security Everywhere - A layered defense approach
Please join the West Michigan Cisco Users Group for our July 26 event! Be sure to forward this information to anyone who may be interested in learning more about technology, all are welcome!
Today, attackers and threats are more persistent and smarter than ever. Having an extremely thorough, well thought out, layered security model is necessary to protect against many different kinds of threats. The question is, how does your security solution handle everything before an attack, during an attack, and after an attack? All three of these phases of the attack continuum are vitally important. In this demo, an attacker starts by launching a simple phishing attack. As the demo progresses, you will see how Cisco security protects the network at every step of the way, while at the same time the attacker and her methods evolve to be more and more complex.The Cisco Security Everywhere demonstration follows the user and security analyst before, during and after attacks as they fight off a series of targeted malware attacks using Cisco Security products including WSA, ESA, ISE, Umbrella, Firepower and more. The demo provides an opportunity to see the Cisco Security products interact in a unified fashion to provide a multi-layered ‘Cisco on Cisco’ security solution to protect the network against advanced malware threats. Before the attack, Security Everywhere shows how Cisco Security maintains a constant state of network protection with products working together to predict and prevent attacks. During the attack, Security Everywhere shows how the products unite to identify, repel and quarantine threats as they happen. Finally, Security Everywhere showcases the tools provided for the network analyst to connect, analyze and understand attacks after they occur, and return the network and users to normal functionality as quickly as possible. The demo follows a typical business traveler, Bob, who uses his company laptop for web, email and network access. By demonstrating the threats ready to attack during these everyday business tasks, we see how Cisco Security is already in place in the present state of the network infrastructure.
Joe Astorino is Cisco Certified Internetwork Expert (CCIE) #24347. He has 15 years experience working in the networking industry as a key part of several high profile, highly visible network teams. Joe is currently a systems engineer with Cisco, where he works on the dCloud security team as a member of Cisco's POV services organization. Joe specializes in global enterprise Cisco routing, switching and security environments, and is also a recognized instructor with experience teaching and developing CCNA through CCIE level courses and training materials.
Cisco Security Components
- Cisco Identity Service Engine 2.2
- Cisco Web Security Appliance 10.1
- Cisco Email Security Appliance 10.0.1
- Cisco Content Security Management Appliance 10.1
- Cisco Firepower Management Center 6.2
- Cisco Firepower Threat Defense 6.2
- Scenario 1. Before the Attack: Demonstrate Umbrella
- Scenario 2. Before The Attack: Demonstrate Security Intelligence
- Scenario 3. Before The Attack: Demonstrate WSA Blocking Known Malware
- Scenario 4. Before The Attack: Demonstrate ESA Blocking Known Malware
- Scenario 5. During the Attack: Demonstrate Defending Against 0-Day Malware
- Scenario 6. After The Attack: Analysis and Cleanup
- Appendix A. Demo Cleanup
5:30 - 5:45: Registration and Networking
5:45 - 6:00: Sponsor
6:00 - 7:00: Discussion
7:15 - Room closes, After-Meeting Social
Please use this form to help us get an accurate count for food.
4Front is a technology company offering IT consulting and managed services to the small/medium business markets. Our offerings range from on-site service and support of all networking, server, and desktop eco-systems, to cloud based hosted offerings. 4Front focuses on customer experience as well as providing leading edge technologies and solutions.
6191 Kraft Ave SE
Caledonia, MI 49512
Sneden Hall Meeting Room 1/2/3 (Across from Auditorium)
Please remember to park in an E (Event) parking lot. We suggest section F, as identified on our Location page