Cisco is taking aim at closing up security attack vectors by adding 15 new partners and 20 new integrations to its Cisco Security Technology Alliance (CSTA).
CSTA is Cisco’s security development, integration and certification framework that's focused on enabling product integrations that deliver easier and better security in multi-vendor deployments, according to a Wednesday blog post by Cisco's Scott Pope, director, product management and business development for the security technical alliances ecosystem.
"There are now over 175 development partners representing 300 plus product-to-product integrations in CSTA," Pope said in his blog. "Customers can integrate existing technology with Cisco security products to improve security telemetry, prioritize the urgent alerts, streamline workflows and get better security outcomes. "No two customer environments are alike and that’s why we have built a customizable integration framework for nearly every product in the Cisco security portfolio."
Cisco also has a services team that can help implement all of the security measures, from a small integration to a turnkey solution, according to Pope.
Cisco announced two security integrations with IBM Security, which is a new security partner. The Cisco Advanced Malware Protection for Endpoints (AMP4EP) integration with IBM Big Fix enables customers to deploy, manage and upgrade AMP connectors quickly in one unified solution for deeper visibility and control of endpoints.
Security and infrastructure teams can track and upgrade AMP4EP across the environment and multiple operating systems while performing service-related tasks such as rebooting computers, start and stop services, enable debug logging, cache clearing and creating support packages, according to Pope.
The Cisco AMP4EP integration with IBM Resilient combines enrichment and containment into one tool to provide the actionable insights that are needed to accelerate threat detection and incident response. Analysts within Resilient can check AMP4EP events for possible malicious activities. Security teams can then automatically pull findings into an incident report to drill down on a threat detected for further analysis and quickly quarantine any malware detected.
In addition to IBM, Cisco has added Panaseer and JASK integrations to AMP for Endpoint for customers to integrate with. These integrations collect all AMP for Endpoint event data via the streaming API for correlation or other uses.
On the cloud front, the Cisco Cloud Security ecosystem has expanded with more integrations as well. BlueCat and NS1 are DDI solutions that integrate and share DNS (domain name system) context with Cisco Umbrella, which is Cisco's cloud security platform. EclecticIQ and JASK now integrate with Umbrella to enrich their domain context.
Using the Cisco Threat Grid API, a new integration in the Cisco Threat Grid ecosystem was announced with Minerva. Pope said the integration simplified threat investigation for joint customers by incorporating Threat Grid threat intelligence directly into the Minerva platform.
Among the rest of the new integrations and partnerships, Cisco Security Connector (CSC) has added support for InventIT’s MobiConnect. Pope said CSC was the only Apple approved security application for supervised iOS devices.
New partners also included NSI, Secylytics, AppView Xm Firesec, Picus, CyberX, Nyansa, Noovus, Smokescreen, and Signal Sciences.