Date post: | 18-Nov-2014 |
Category: |
Documents |
Upload: | securitycrunch |
View: | 777 times |
Download: | 0 times |
Cybersecurity: Secure Mobility
Empowering a Mobile Workforce
What is Cisco’s Role?
Federal Secure Mobility
The Problem Enterprise Mobility: The power of the smart phone and our ability to securely
connect to the network and information needed to perform our jobs is expanding exponentially. This is freeing our workforce from the Industrial Age model of the "desk" and allowing us to securely work from anywhere. (Rob Carey, DON CIO, Blog)
Continuity of Operations across the Navy Pandemic / Humanitarian Relief Efforts Productivity (work anywhere, anytime securely) Across branches and coalitions Sharepoint, OWA, citrix services back to cloud Any device
Compliance Increased threat via the web Access to DoD resources from non-DoD systems
The Solution – Cisco Secure Mobility
Traditional Remote Access VPN
LimitedPredominantly PC-based
Client Support
ManualNumerous “clicks”
Non-persistent Connection
Rarely-OnOnly connected if / when
absolutely necessary
No Security or Visibility Security
Intranet
Corporate File Sharing
Traditional Mobile Web Security
Limited ClientsPredominantly PC-based
Client Support
Limited SecurityURL-filtering client unable to address key use cases
No AccessNot integrated, requires
separate VPN client
Data Loss Prevention
Threat Prevention
– Acceptable Use Access Control–
No AccessAccess
Intranet
Corporate File Sharing
ChoiceDiverse Endpoint
Support for Greater Flexibility
SecurityRich, Granular Security
Integrated Into the network
ExperienceAlways-on Intelligent
Connection for SeamlessExperience and
Performance
Cisco AnyConnect Secure Mobility Web Security with Next Generation Remote Access
Acceptable Use
Access Control
Intranet
Corporate File Sharing
Access Granted
Data Loss Prevention
Threat Prevention
Cisco AnyConnect Secure MobilityA Next Generation Solution
Simplified remote access Connection and app persistence Always-on VPN enforcement Enhanced device support
Remote-specific policy Application controls SaaS Access Control Multi-Layer Threat Defense
Web Security Appliance Richer Web Controls
AnyConnect Secure Mobility Client1 2
Cisco Web Security Appliance
Information Sharing Between Cisco ASA and
Cisco WSA
Corporate AD
ASAAnyConnect
News Email
Social Networking Enterprise SaaS
3 Combined SolutionEnd-to-End Seamless Security
Web Application Controls
Access Control Policy
Granular Control over Application Usage
Access Control Violation
Soldier stateside Instant Messaging File Transfer over IM
Breadth of Applications: Collaboration | Evasive | Media
Secure MobilityWSA Remote/Mobile User Reports
Remote Access SpecificURL Categories
Secure MobilityWSA Remote/Mobile User Reports
Remote Access SpecificURL CategoriesBlocked URL Categories
Case Study – Secure Remote AccessUS Government Customer
Customer Problem – Customer is a service provider and required a VPN architecture that offered multiple options for their customerso Site-to-Site for branch office connectionso Traditional IPSec VPN for managed deviceso SSL VPN for unmanaged assets (home PC’s, etc)o Required single management option for all solutions – one vendor solution preferred
Cisco Solution – Secure Remote Accesso Utilize Cisco routers for Dynamic Site-to-Site secure connectivityo Cisco Adaptive Security Devices for both Client based and Clientless accesso Secure Access to resources from unmanaged assets (home PC’s, SmartPhones)o Built in Policy checks prior to access (Cisco NAC, ASA Hostchecker, Secure Vault)o Cisco Security Manager serves as single console for all options
Cisco Benefits– Customer is replacing competitor as the standard for all VPN requirements– Cisco NAC and Profiler solutions being considered for future use– With successful deployment we are viewed as a trusted partner for additional
requirements (Identity and potential replacement of all Foundry)– Estimated Revenue ($1.5M initial and will continue to grow each year