We are replacing our ASA's with Cisco FTD which includes AMP for Networks. We currently have a Bluecoat Prox y SG200 for forward proxy ? Do I need Kaspersky AV on bluecoat while I already have Cisco AMP.
Appreciating any suggestions
Every organization has its own requirements and risk profile, so a categorical yes/no answer is not possible here. However, I will make a few general observations:
1. AMP provides highly effective protection against malware, as validated by independent 3rd-party testing (e.g., NSS Labs).
2. The best defense is usually a multi-layered one. See, for example, Cisco's validated design guide for defense against ransomware. (www.cisco.com/go/ransomware)
3. If you are inspecting encrypted traffic with TLS intercept, consider where this inspection is taking place.