- Upgrade to Microsoft Office Pro and Windows 11 Pro with this bundle for 87% off
- Get 3 months of Xbox Game Pass Ultimate for 28% off
- Buy a Microsoft Project Pro or Microsoft Visio Pro license for just $18 with this deal
- How I optimized the cheapest 98-inch TV available to look and sound incredible (and it's $1,000 off)
- The best blood pressure watches of 2024
Cisco boosts security wares with AI-driven access control, identity management
Cisco is updating elements of its overarching Security Cloud platform to help enterprise customers better protect widely distributed resources.
The enhancements include a new service called Identity Intelligence that brings together information from the vendor’s existing security products, such as its Duo authentication software and XDR threat detection platform, and adds AI-based behavioral analytics to help strengthen network authentication and protect against identity-based attacks.
Identity Intelligence sits on top of customers’ disparate directories and identity tools to provide visibility into how identities are being actively used and automatically enforce policies. The idea with Identity Intelligence is that, from a single dashboard, enterprise security operators can see their entire network, spot and fix questionable accounts, detect questionable behaviors, and block access where necessary by utilizing existing products, said Raj Chopra, senior vice president and chief product officer of Cisco’s security group.
Security Intelligence is a pervasive layer that will now permeate through all of Cisco’s portfolio, added Chopra. “Until now, identity and access have been pretty static with regards to what applications or resources users have access to. But that just won’t work anymore – we can now [analyze] behaviors and other network intelligence and automatically determine in real time whether that conduct is deemed too risky for the enterprise to be allowing access.”
According to the Cisco Talos 2023 Year in Review report, compromised credentials were responsible for a quarter of Talos Incident Response engagements.
The ability to control and block access quickly is important, because for enterprise customers, the number of connections – driven by a highly distributed and diverse web of applications, devices, and users – continues to grow exponentially, according to a blog about the news written by Vikas Butaney, senior vice president and general manager, Cisco SD-WAN, multicloud, and industrial IoT , and Joe Vaccaro, vice president of product at Cisco ThousandEyes.