The proliferation of purposes throughout hybrid and multicloud environments continues at a blistering tempo. For probably the most half, there is no such thing as a fastened perimeter, purposes and environments are woven collectively throughout datacenters and public cloud suppliers. The assault floor has expanded. Organizations battle with a scarcity of visibility, and vulnerabilities are a continuing challenge for software and safety groups alike. In some instances, the vulnerability is understood and flagged, however there is no such thing as a patch out there, and the group merely can not afford the appliance downtime. And unsurprisingly, dangerous actors are making the most of these challenges, with ransomware assaults surging in 2023 and an estimated $1.1 billion1 paid out by victims. Designed to guard the purposes that enterprise depends on, Cisco Safe Workload 3.9 supplies larger flexibility for deploying microsegmentation, new capabilities to mitigate threats and vulnerabilities, and enhances the effectivity for blocking malicious domains and site visitors.
Safe Workload protects software workloads in an infrastructure, location, and kind issue agnostic method. It supplies deep visibility into each workload interplay and makes use of highly effective AI/ML-driven automation to deal with duties which are past human scale, delivering correct and constant zero belief microsegmentation whereas repeatedly monitoring compliance throughout the appliance panorama.
Safe Workload 3.9 provides clients larger operational effectivity and adaptability for implementing microsegmentation with help for NVIDIA information processing models (DPU). The brand new model helps scale back threat posed by vulnerabilities and threats by integrating with Cisco Vulnerability Administration, supplies built-in menace feed intelligence, and affords container vulnerability scanning. It additionally delivers elevated efficacy with domain-based coverage enforcement.
Extra methods to implement microsegmentation
Fueled by the necessity for extra processing energy for complicated cloud architectures, synthetic intelligence, IoT, and even safety, DPUs have gotten an important ingredient to assist enhance efficiency and effectivity in datacenters by offloading these capabilities from the CPU. With NVIDIA DPU help, brokers could be put in on server DPUs, in entrance of the digital machines operating purposes, decreasing the variety of brokers required for enforcement.
Solely Safe Workload affords an agent and agentless method with native firewall integration and DPU help, giving clients the flexibleness to leverage a number of approaches in the identical structure based mostly on their wants and organizational construction.
Determine 1: Safe Workload brokers operating on NVIDIA DPU
Prioritize the dangers that matter most
Final yr, Safe Workload expanded its CVE scanning capabilities by delivering the strongest Kubernetes container safety out there. Safe Workload 3.9 raises the bar additional by together with CVE threat scoring as a part of its basis for visibility and coverage creation. The mixing between Safe Workload and Cisco Vulnerability Administration supplies clients with a strong instrument to prioritize their most important vulnerabilities. Safe Workload leverages information science, machine studying, and patented predictive modeling engine from Vulnerability Administration and components that info into its understanding of the shopper’s purposes and dependencies. This functionality additionally supplies extra intelligence for the digital patching characteristic that may be leveraged when utilizing Safe Workload and Safe Firewall to guard in opposition to a identified vulnerability current within the atmosphere, with out breaking the appliance.
Determine 2: CVE threat rating in Safe Workload dashboard
Enhanced coverage efficacy and built-in menace intelligence
In our continued effort to extend coverage efficacy, Safe Workload 3.9 contains domain-based coverage enforcement. Safety groups can now implement insurance policies by merely specifying the area identify to dam malicious site visitors or enable communication with particular API endpoints. As well as, built-in menace intelligence supplies visibility into malicious IP addresses in addition to detailing which purposes have interacted with the malicious IP – previous and current. Insurance policies can now be created utilizing the menace feed intelligence to dam malicious site visitors.
In distinction to different choices, Safe Workload 3.9 supplies extra methods to deploy and notice the advantages of zero belief microsegmentation. It affords unparalleled worth and efficacy by incorporating important info and instruments which are important for decreasing threat and defending software workloads throughout hybrid and multicloud environments. Safe Workload is a core providing throughout the Cisco Cloud Safety Suite. Trying ahead, we’ll provide new integrations, broaden protection, and add new methods to raised defend in opposition to vulnerabilities.
Study extra about Cisco Safe Workload
Join a Safe Workload workshop
For demos on Safe Workload 3.9 be a part of the Safe Workload YouTube channel
Dive deeper into microsegmentation: Safe.Cisco.com
Study extra about Cisco Cloud Safety Suite
1Forbes, February 9, 2024 Large Sport Hackers Smash $1 Billion Ransomware Barrier
We’d love to listen to what you suppose. Ask a Query, Remark Under, and Keep Related with Cisco Safety on social!
Cisco Safety Social Channels
Share: