The proliferation of purposes throughout hybrid and multicloud environments continues at a blistering tempo. For probably the most half, there isn’t any fastened perimeter, purposes and environments are woven collectively throughout datacenters and public cloud suppliers. The assault floor has expanded. Organizations wrestle with an absence of visibility, and vulnerabilities are a continuing difficulty for software and safety groups alike. In some circumstances, the vulnerability is thought and flagged, however there isn’t any patch obtainable, and the group merely can not afford the appliance downtime. And unsurprisingly, unhealthy actors are making the most of these challenges, with ransomware assaults surging in 2023 and an estimated $1.1 billion1 paid out by victims. Designed to guard the purposes that enterprise depends on, Cisco Safe Workload 3.9 supplies higher flexibility for deploying microsegmentation, new capabilities to mitigate threats and vulnerabilities, and enhances the effectivity for blocking malicious domains and site visitors.
Safe Workload protects software workloads in an infrastructure, location, and type issue agnostic method. It supplies deep visibility into each workload interplay and makes use of highly effective AI/ML-driven automation to deal with duties which can be past human scale, delivering correct and constant zero belief microsegmentation whereas constantly monitoring compliance throughout the appliance panorama.
Safe Workload 3.9 provides clients higher operational effectivity and adaptability for implementing microsegmentation with assist for NVIDIA information processing models (DPU). The brand new model helps scale back danger posed by vulnerabilities and threats by integrating with Cisco Vulnerability Administration, supplies built-in menace feed intelligence, and gives container vulnerability scanning. It additionally delivers elevated efficacy with domain-based coverage enforcement.
Extra methods to implement microsegmentation
Fueled by the necessity for extra processing energy for complicated cloud architectures, synthetic intelligence, IoT, and even safety, DPUs have gotten a necessary ingredient to assist enhance efficiency and effectivity in datacenters by offloading these capabilities from the CPU. With NVIDIA DPU assist, brokers might be put in on server DPUs, in entrance of the digital machines working purposes, lowering the variety of brokers required for enforcement.
Solely Safe Workload gives an agent and agentless strategy with native firewall integration and DPU assist, giving clients the flexibleness to leverage a number of approaches in the identical structure based mostly on their wants and organizational construction.
Determine 1: Safe Workload brokers working on NVIDIA DPU
Prioritize the dangers that matter most
Final 12 months, Safe Workload expanded its CVE scanning capabilities by delivering the strongest Kubernetes container safety obtainable. Safe Workload 3.9 raises the bar additional by together with CVE danger scoring as a part of its basis for visibility and coverage creation. The combination between Safe Workload and Cisco Vulnerability Administration supplies clients with a robust device to prioritize their most important vulnerabilities. Safe Workload leverages information science, machine studying, and patented predictive modeling engine from Vulnerability Administration and components that data into its understanding of the shopper’s purposes and dependencies. This functionality additionally supplies further intelligence for the digital patching function that may be leveraged when utilizing Safe Workload and Safe Firewall to guard in opposition to a recognized vulnerability current within the surroundings, with out breaking the appliance.
Determine 2: CVE danger rating in Safe Workload dashboard
Enhanced coverage efficacy and built-in menace intelligence
In our continued effort to extend coverage efficacy, Safe Workload 3.9 contains domain-based coverage enforcement. Safety groups can now implement insurance policies by merely specifying the area identify to dam malicious site visitors or permit communication with particular API endpoints. As well as, built-in menace intelligence supplies visibility into malicious IP addresses in addition to detailing which purposes have interacted with the malicious IP – previous and current. Insurance policies can now be created utilizing the menace feed intelligence to dam malicious site visitors.
In distinction to different choices, Safe Workload 3.9 supplies extra methods to deploy and understand the advantages of zero belief microsegmentation. It gives unparalleled worth and efficacy by incorporating important data and instruments which can be important for lowering danger and defending software workloads throughout hybrid and multicloud environments. Safe Workload is a core providing inside the Cisco Cloud Safety Suite. Trying ahead, we’ll supply new integrations, broaden protection, and add new methods to higher defend in opposition to vulnerabilities.
Study extra about Cisco Safe Workload
Join a Safe Workload workshop
For demos on Safe Workload 3.9 be part of the Safe Workload YouTube channel
Dive deeper into microsegmentation: Safe.Cisco.com
Study extra about Cisco Cloud Safety Suite
1Forbes, February 9, 2024 Large Recreation Hackers Smash $1 Billion Ransomware Barrier
We’d love to listen to what you suppose. Ask a Query, Remark Beneath, and Keep Related with Cisco Safety on social!
Cisco Safety Social Channels
Share:
