The proliferation of purposes throughout hybrid and multicloud environments continues at a blistering tempo. For essentially the most half, there isn’t any fastened perimeter, purposes and environments are woven collectively throughout datacenters and public cloud suppliers. The assault floor has expanded. Organizations battle with a scarcity of visibility, and vulnerabilities are a relentless situation for software and safety groups alike. In some circumstances, the vulnerability is thought and flagged, however there isn’t any patch accessible, and the group merely can not afford the applying downtime. And unsurprisingly, unhealthy actors are profiting from these challenges, with ransomware assaults surging in 2023 and an estimated $1.1 billion1 paid out by victims. Designed to guard the purposes that enterprise depends on, Cisco Safe Workload 3.9 supplies higher flexibility for deploying microsegmentation, new capabilities to mitigate threats and vulnerabilities, and enhances the effectivity for blocking malicious domains and visitors.
Safe Workload protects software workloads in an infrastructure, location, and type issue agnostic method. It supplies deep visibility into each workload interplay and makes use of highly effective AI/ML-driven automation to deal with duties which are past human scale, delivering correct and constant zero belief microsegmentation whereas repeatedly monitoring compliance throughout the applying panorama.
Safe Workload 3.9 provides prospects higher operational effectivity and suppleness for implementing microsegmentation with assist for NVIDIA information processing items (DPU). The brand new model helps cut back threat posed by vulnerabilities and threats by integrating with Cisco Vulnerability Administration, supplies built-in menace feed intelligence, and gives container vulnerability scanning. It additionally delivers elevated efficacy with domain-based coverage enforcement.
Extra methods to implement microsegmentation
Fueled by the necessity for extra processing energy for advanced cloud architectures, synthetic intelligence, IoT, and even safety, DPUs have gotten a vital ingredient to assist enhance efficiency and effectivity in datacenters by offloading these capabilities from the CPU. With NVIDIA DPU assist, brokers will be put in on server DPUs, in entrance of the digital machines operating purposes, decreasing the variety of brokers required for enforcement.
Solely Safe Workload gives an agent and agentless method with native firewall integration and DPU assist, giving prospects the flexibleness to leverage a number of approaches in the identical structure primarily based on their wants and organizational construction.
Determine 1: Safe Workload brokers operating on NVIDIA DPU
Prioritize the dangers that matter most
Final 12 months, Safe Workload expanded its CVE scanning capabilities by delivering the strongest Kubernetes container safety accessible. Safe Workload 3.9 raises the bar additional by together with CVE threat scoring as a part of its basis for visibility and coverage creation. The combination between Safe Workload and Cisco Vulnerability Administration supplies prospects with a strong software to prioritize their most crucial vulnerabilities. Safe Workload leverages information science, machine studying, and patented predictive modeling engine from Vulnerability Administration and elements that info into its understanding of the client’s purposes and dependencies. This functionality additionally supplies further intelligence for the digital patching function that may be leveraged when utilizing Safe Workload and Safe Firewall to guard in opposition to a identified vulnerability current within the atmosphere, with out breaking the applying.
Determine 2: CVE threat rating in Safe Workload dashboard
Enhanced coverage efficacy and built-in menace intelligence
In our continued effort to extend coverage efficacy, Safe Workload 3.9 contains domain-based coverage enforcement. Safety groups can now implement insurance policies by merely specifying the area title to dam malicious visitors or permit communication with particular API endpoints. As well as, built-in menace intelligence supplies visibility into malicious IP addresses in addition to detailing which purposes have interacted with the malicious IP – previous and current. Insurance policies can now be created utilizing the menace feed intelligence to dam malicious visitors.
In distinction to different choices, Safe Workload 3.9 supplies extra methods to deploy and understand the advantages of zero belief microsegmentation. It gives unparalleled worth and efficacy by incorporating important info and instruments which are important for decreasing threat and defending software workloads throughout hybrid and multicloud environments. Safe Workload is a core providing throughout the Cisco Cloud Safety Suite. Trying ahead, we’ll supply new integrations, develop protection, and add new methods to higher defend in opposition to vulnerabilities.
Study extra about Cisco Safe Workload
Join a Safe Workload workshop
For demos on Safe Workload 3.9 be part of the Safe Workload YouTube channel
Dive deeper into microsegmentation: Safe.Cisco.com
Study extra about Cisco Cloud Safety Suite
1Forbes, February 9, 2024 Huge Recreation Hackers Smash $1 Billion Ransomware Barrier
We’d love to listen to what you assume. Ask a Query, Remark Under, and Keep Related with Cisco Safety on social!
Cisco Safety Social Channels
Share: