After an Attack
Scope, contain, and remediate security threats
Prevent breaches, continuously monitor for malicious behavior on your network, and rapidly detect and redmiate the most advanced malware.
Advanced Malware Protection (AMP)
Cisco Advanced Malware Protection (AMP) provides you with global threat intelligence, advanced sandboxing, and real-time malware blocking to prevent breaches. But because you can't rely on prevention alone, AMP also continuously analyzes file activity across your extended network, so you can quickly detect, contain, and remediate advanced malware.
- Highest Security Effectiveness – 99.2%
- Breach Detection Time – Cisco < 1 Day vs. Industry ~ 100 Days
- Million Malware Sample per Day
AMP Core Capabilities
- Threat Intelligence
- Advanced Sandboxing
- Point-in-time malware detection and blocking
- Continuous analysis and retrospective security
What is the right deployment option for me?
Protect Your Endpoints
Protect PCs, Macs, Linux systems, and mobile devices, whether connected to a protected network or roaming on the internet. With AMP for Endpoints, you get the visibility and control you need to prevent breaches. And, if something gets in, AMP can quickly detect, contain, and remediate malware before damage is done.
How to Deploy
It's simple. AMP is a cloud-based "software-as-a-service" solution. You deploy AMP's lightweight connector on your endpoints, and then set up your account. Work with your Zones account manager and follow these easy steps.
- Choose the number of endpoints. 50? 1000? 100,000? There's no limit. The choice is yours.
- Choose a subscription term. Terms are available for 1, 3, or 5 years.
- Deploy the connector. Deploy AMP's lightweight connector on your endpoints and sync with your account.
- High privacy restrictions? If so, deploy AMP for Endpoints as an on-premises, air-gapped AMP Private Cloud Virtual Appliance.
Protect your Network
AMP on a Next-Generation Intrusion Prevention System
Get the market's only network-based malware defense that goes beyond point-in-time detection to protect across the entire attack continuum. Designed for our network security appliances, specifically the Next-Generation Intrusion Prevention System (NGIPS), AMP for Networks provides visibility and control to protect against highly sophisticated and targeted advanced malware.
AMP on a Next Generation Firewall
Block more threats and quickly mitigate those that do breach your defenses with the industry's first threat-focused NGFW. Cisco's Firepower NGFW appliances combine our proven network firewall with the industry's most effective next-gen IPS and advanced malware protection. All so you can get more visibility, be more flexible, save more, and protect better
AMP on a Branch Router (ISR)
Secure your Branch and Remote Offices with Cisco Firepower Threat Defense for ISR
Choose your AMP for Networks options:
AMP for Networks is available in a variety of configurations that you can tailor to meet your needs. Talk to a Zones account manager to choose what works best for you.
- Throughput options. AMP is available on appliances with throughput from 500 Mbps to 20 Gbps with many options in between.
- Software capabilities.
* AMP only
* AMP + URL filtering
* AMP + URL filtering + app control - Software license terms. Terms are available for 1year, 3 years, or 5 years
- High-privacy restrictions? If so, deploy AMP for Networks as an on-premises, air-gapped AMP Private Cloud Virtual Appliance.
Protect your email and web traffic
Cisco AMP Threat Grid combines static and dynamic malware analysis with threat intelligence into a single solution delivered through the cloud or as an on-premises solution. It integrates behavioral analysis and up-to-the-minute threat intelligence feeds with your existing security infrastructure. With AMP Threat Grid you can understand what malware is doing or attempting to do, how large a threat it poses, and how to defend against it.
Cognitive Threat Analytics
Now you can automatically investigate suspicious web traffic. Cognitive Threat Analytics quickly detects and responds to attempts to establish a presence in your environment and to attacks that are already under way. All without additional hardware or software to deploy.
- AMP Threat Grid combines static and dynamic malware analysis with threat intelligence into one unified solution. You get timely, in-depth information you need to protect your business from malware of all types. It integrates real-time behavioral analysis and up-to-the-minute threat intelligence feeds with existing security technologies, protecting you from both known and unknown attacks.
- AMP Threat Grid analyzes suspicious behavior in your network against more than 450 behavioral indicators and a malware knowledge base sourced from around the world. As a result, AMP Threat Grid provides more accurate, context-rich analytics into malware than ever before.
- AMP Threat Grid is delivered as a cloud-based or on-premises solution. It helps organizations understand what malware is doing or attempting to do, how large a threat it poses, and how to defend against it.
Open DNS
Malware and breach protection
Cisco delivers security at the DNS layer, using the internet's existing infrastructure, to keep malware from compromising your systems and to stop botnets or phishing from exfiltrating your data.
Predictive intelligence
Leverage Cisco's up-to-the-minute view and analysis of 2% of the world's internet activity to stay ahead of attacks. Enhance your threat intelligence by seeing where attacks are being staged on the internet.
Security visibility
In seconds, Cisco's cloud platform displays your global activity from all locations. Instantly, identify targeted attacks by comparing your activity – over any port, protocol, or app – to the rest of the world.
It just works
By just pointing DNS to us, security is simple to deploy. By enforcing security in the cloud, Umbrella is easy to manage. No hardware to install. No software to maintain. Nothing you need to update.