The proliferation of purposes throughout hybrid and multicloud environments continues at a blistering tempo. For probably the most half, there is no such thing as a fastened perimeter, purposes and environments are woven collectively throughout datacenters and public cloud suppliers. The assault floor has expanded. Organizations battle with an absence of visibility, and vulnerabilities are a relentless difficulty for software and safety groups alike. In some circumstances, the vulnerability is understood and flagged, however there is no such thing as a patch accessible, and the group merely can not afford the applying downtime. And unsurprisingly, unhealthy actors are making the most of these challenges, with ransomware assaults surging in 2023 and an estimated $1.1 billion1 paid out by victims. Designed to guard the purposes that enterprise depends on, Cisco Safe Workload 3.9 supplies higher flexibility for deploying microsegmentation, new capabilities to mitigate threats and vulnerabilities, and enhances the effectivity for blocking malicious domains and site visitors.
Safe Workload protects software workloads in an infrastructure, location, and type issue agnostic method. It supplies deep visibility into each workload interplay and makes use of highly effective AI/ML-driven automation to deal with duties which are past human scale, delivering correct and constant zero belief microsegmentation whereas repeatedly monitoring compliance throughout the applying panorama.
Safe Workload 3.9 provides clients higher operational effectivity and adaptability for implementing microsegmentation with assist for NVIDIA information processing items (DPU). The brand new model helps cut back danger posed by vulnerabilities and threats by integrating with Cisco Vulnerability Administration, supplies built-in risk feed intelligence, and presents container vulnerability scanning. It additionally delivers elevated efficacy with domain-based coverage enforcement.
Extra methods to implement microsegmentation
Fueled by the necessity for extra processing energy for complicated cloud architectures, synthetic intelligence, IoT, and even safety, DPUs have gotten an important ingredient to assist enhance efficiency and effectivity in datacenters by offloading these capabilities from the CPU. With NVIDIA DPU assist, brokers will be put in on server DPUs, in entrance of the digital machines working purposes, decreasing the variety of brokers required for enforcement.
Solely Safe Workload presents an agent and agentless method with native firewall integration and DPU assist, giving clients the flexibleness to leverage a number of approaches in the identical structure based mostly on their wants and organizational construction.
Determine 1: Safe Workload brokers working on NVIDIA DPU
Prioritize the dangers that matter most
Final 12 months, Safe Workload expanded its CVE scanning capabilities by delivering the strongest Kubernetes container safety accessible. Safe Workload 3.9 raises the bar additional by together with CVE danger scoring as a part of its basis for visibility and coverage creation. The mixing between Safe Workload and Cisco Vulnerability Administration supplies clients with a strong instrument to prioritize their most crucial vulnerabilities. Safe Workload leverages information science, machine studying, and patented predictive modeling engine from Vulnerability Administration and components that info into its understanding of the client’s purposes and dependencies. This functionality additionally supplies extra intelligence for the digital patching function that may be leveraged when utilizing Safe Workload and Safe Firewall to guard in opposition to a recognized vulnerability current within the setting, with out breaking the applying.
Determine 2: CVE danger rating in Safe Workload dashboard
Enhanced coverage efficacy and built-in risk intelligence
In our continued effort to extend coverage efficacy, Safe Workload 3.9 consists of domain-based coverage enforcement. Safety groups can now implement insurance policies by merely specifying the area identify to dam malicious site visitors or permit communication with particular API endpoints. As well as, built-in risk intelligence supplies visibility into malicious IP addresses in addition to detailing which purposes have interacted with the malicious IP – previous and current. Insurance policies can now be created utilizing the risk feed intelligence to dam malicious site visitors.
In distinction to different choices, Safe Workload 3.9 supplies extra methods to deploy and understand the advantages of zero belief microsegmentation. It presents unparalleled worth and efficacy by incorporating important info and instruments which are important for decreasing danger and defending software workloads throughout hybrid and multicloud environments. Safe Workload is a core providing inside the Cisco Cloud Safety Suite. Wanting ahead, we’ll supply new integrations, develop protection, and add new methods to higher shield in opposition to vulnerabilities.
Be taught extra about Cisco Safe Workload
Join a Safe Workload workshop
For demos on Safe Workload 3.9 be part of the Safe Workload YouTube channel
Dive deeper into microsegmentation: Safe.Cisco.com
Be taught extra about Cisco Cloud Safety Suite
1Forbes, February 9, 2024 Huge Recreation Hackers Smash $1 Billion Ransomware Barrier
We’d love to listen to what you assume. Ask a Query, Remark Under, and Keep Related with Cisco Safety on social!
Cisco Safety Social Channels
Share:
