https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564678#M3342 <HTML><HEAD></HEAD><BODY><P>OpenDNS Umbrella has an integration with AMP Threat Grid. As hundreds of files are analyzed by Threat Grid every minute, any newly discovered malicious domains related to high-severity/confidence IOCs are pulled every few minutes by Umbrella. All Internet activity over any port or protocol destined to these domains can be now logged and blocked--both on and off the network. So as compromised systems are attempting to exfiltrate data, Umbrella is able to contain the command &amp; control callbacks. And Umbrella can identify exactly which systems are compromised--whether they are minor or critical. Now your incident response team can prioritize remediating critical compromised systems with high-severity malware. You can learn more here: <A href="https://www.opendns.com/partners/technology-partners/cisco/" title="https://www.opendns.com/partners/technology-partners/cisco/">https://www.opendns.com/partners/technology-partners/cisco/.</A></P><P></P><P>Plus, while AMP Threat Grid shows the creation &amp; evolution of malicious payloads and its relationships to other files, OpenDNS Investigate shows the creation &amp; evolution of malicious infrastructures and its relationship to other domains.</P></BODY></HTML> Tue, 17 Nov 2015 22:20:18 GMT barfishe 2015-11-17T22:20:18Z https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564676#M3340 <HTML><HEAD></HEAD><BODY><P>Hey everyone. I'm Barry Fisher and part of OpenDNS's product team based in San Francisco. I can help answer any questions about OpenDNS Umbrella as well as how it fits in Cisco's security portfolio and your security stack. I can also help you compare Umbrella with other Cisco or 3rd-party products you may be considering. <SPAN style="color: #3d3d3d; font-family: arial; font-size: 12px;">To ask a question in the community, simply click on the “start a discussion” link in the blue Actions box to your left. Looking forward to virtually meeting everyone!</SPAN></P></BODY></HTML> Fri, 21 Feb 2020 05:00:19 GMT https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564676#M3340 barfishe 2020-02-21T05:00:19Z https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564677#M3341 <HTML><HEAD></HEAD><BODY><P>How does OpenDNS add value to the Threatgrid solution that we already have?</P></BODY></HTML> Tue, 17 Nov 2015 22:07:21 GMT https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564677#M3341 atnitto 2015-11-17T22:07:21Z https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564678#M3342 <HTML><HEAD></HEAD><BODY><P>OpenDNS Umbrella has an integration with AMP Threat Grid. As hundreds of files are analyzed by Threat Grid every minute, any newly discovered malicious domains related to high-severity/confidence IOCs are pulled every few minutes by Umbrella. All Internet activity over any port or protocol destined to these domains can be now logged and blocked--both on and off the network. So as compromised systems are attempting to exfiltrate data, Umbrella is able to contain the command &amp; control callbacks. And Umbrella can identify exactly which systems are compromised--whether they are minor or critical. Now your incident response team can prioritize remediating critical compromised systems with high-severity malware. You can learn more here: <A href="https://www.opendns.com/partners/technology-partners/cisco/" title="https://www.opendns.com/partners/technology-partners/cisco/">https://www.opendns.com/partners/technology-partners/cisco/.</A></P><P></P><P>Plus, while AMP Threat Grid shows the creation &amp; evolution of malicious payloads and its relationships to other files, OpenDNS Investigate shows the creation &amp; evolution of malicious infrastructures and its relationship to other domains.</P></BODY></HTML> Tue, 17 Nov 2015 22:20:18 GMT https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564678#M3342 barfishe 2015-11-17T22:20:18Z https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564679#M3343 <HTML><HEAD></HEAD><BODY><P>Hi Barry - Can you help me understand how Umbrella connects with AMPs Beta Feature Visibility?</P></BODY></HTML> Wed, 07 Mar 2018 17:03:23 GMT https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564679#M3343 trmclamb 2018-03-07T17:03:23Z https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564680#M3344 <HTML><HEAD></HEAD><BODY><P><SPAN>Hi Leamon - Umbrella integrates as one of the modules for Visibility, therefor it can help enrich the data displayed to a security investigator. Users are also provided with a response capability and can enforce custom domain blacklists from Visibility and pivot from Visibility to Investigate. Please feel free to review Visibility preview video at </SPAN><A class="jive-link-external-small" href="http://cs.co/ats-youtube" rel="nofollow" target="_blank">http://cs.co/ats-youtube</A><SPAN> </SPAN></P></BODY></HTML> Sun, 18 Mar 2018 18:46:42 GMT https://community.cisco.com/t5/endpoint-security/opendns-ask-the-expert-intro-barry-fisher/m-p/3564680#M3344 emirolyu 2018-03-18T18:46:42Z