Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
1600
Views
1
Helpful
0
Comments

Introducing Breach Protection

deparent
Cisco Employee
Cisco Employee

on ‎10-31-2023 06:54 AM - edited on ‎07-03-2025 10:20 AM by Cisco Employee

Businesses are hyper-connected, operating in a complex web with their suppliers, partners, and customers. Vulnerabilities that once impacted an individual organization can affect multiple downstream customers and supply chains. It’s vital for every organization to have a robust and multi-layered security strategy in place to avoid direct attacks.

That's why Cisco is introducing the Breach Protection.

The Cisco Breach Protection is a powerful and versatile solution that can integrate with a wide range of security tools, both from Cisco and third-party vendors. This means that organizations can leverage their existing security investments and gain a unified view of their security posture, allowing them to respond quickly and effectively to threats.

Detect and respond to the most sophisticated threats with these enhanced features:

  • Data repository: aggregates data from multiple native and third-party telemetry sources to enable insightful threat correlation and analytics.
  • Threat intelligence: covers evidence-based knowledge, including context, mechanisms, indicators, implications, and actionable advice about known and unknown threats.
  • Asset Context (device, user): inventories devices in the environment and highlights the criticality of those devices to business operations; knowledge of users and importance/connectivity mapped to devices.
  • Analytics and threat correlation engine: uses predictive analytics and machine learning within the threat correlation engine.
  • Response actions with guidance and workflow automation: builds efficiency and applies workflows or automation scripts aligned to processes and procedures.
  • Case management: streamlines the management and documentation across the life cycle of the threat.
  • Incident management: provides clear prioritization based on the criticality of assets and the severity of impact.
  • Incident response ecosystem: captures a set of information security policies and procedures to identify an attack, minimize its effects, contain damage, and remediate the cause to reduce the risk of future incidents.
  • Threat hunting: proactively searches through networks, endpoints, and datasets to hunt malicious, suspicious, or risky activities.
  • Consumption models: meet the needs of your unique environment.

Get started by exploring the uses cases within Breach Protection, click below to navigate to a guided resource:

Extended Detection and Response Guided Resources >

Email Threat Defense Guided Resources >

Endpoint Detection and Response Guided Resources >

Secure Network Analytics Guided Resources >

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents