Monday, 6 July 2020

Enhancing the Single Pane for Webex Edge for Devices

Bringing the Most Modern Experience of Webex to any Device with Webex Edge for Devices


Earlier this year, we released Webex Edge for Devices with our CE 9.10 software release for Webex Rooms. This enabled administrators to easily link their on-premises registered devices to the Webex Platform, delivering an enhanced feature set which included device analytics and diagnostics for on-premise deployed rooms.

Webex Edge for Devices is bringing the most modern experience of Webex to any device regardless of how it is provisioned today. We have had an amazing uptake of this new deployment model, which has in turn generated a wide range of feature requests, and I couldn’t be more excited to announce a new set of features that Webex Edge for Devices customers will receive from the Webex platform.

Creating a Better Experience for Administrators and End-Users


With the 9.12.3 release, we released the ability to use a HTTPS proxy on the device to connect to the Webex Platform. This gives more flexibility for administrators to allow traffic to flow through proxies as it leaves their corporate network!

For Webex Meetings 


The next two features are related to Webex Meetings. Now, customers can search for a PMR (Personal Meeting Rooms) directly on devices which have been linked with Webex Edge for Devices through the “Join Webex” button. This makes it even easier to join Webex Meetings!

Cisco Tutorial and Material, Cisco Exam Prep, Cisco Tutorial and Material, Cisco Guides

For Administrators


The other Webex Meetings feature is for the administrators. When you need to troubleshoot a device, you can now get access to the same data our full cloud registered systems have. This includes drill down minute by minute diagnostics over packet loss, jitter, latency and even resolution for all Webex Meetings!

Cisco Tutorial and Material, Cisco Exam Prep, Cisco Tutorial and Material, Cisco Guides

For Configurations


The next one is a big one. Our customers have been asking for a while when they will be able to configure devices from Control Hub? Well, now is the time! With CE 9.13, customers can opt into configurations controlled from Control Hub instead of UCM or TMS. This truly makes Control Hub the single pane of glass to manage every workflow. The ability to bulk edit configurations for Control Hub is also just around the corner. This paired with the upcoming configuration API means it is possible to add programmability if you want to make large sweeping changes.

Cisco Tutorial and Material, Cisco Exam Prep, Cisco Tutorial and Material, Cisco Guides

Workspaces


The final feature I want to mention is something we just recently released, namely Workspaces! People have been asking me if this works for both cloud registered and Webex Edge for Devices linked workspaces? The answer is Yes! Workspaces delivers real time metrics directly from your workspaces into Control Hub and brings value for every activity in the space.

Saturday, 4 July 2020

Fukui-ken Saiseikai Hospital deploys Cisco DNA Center for IT transformation

Cisco Exam Prep, Cisco Certification, Cisco Learning, Cisco Prep, Cisco Guides

The acceleration of medical device digitization has led to an explosion in the number of new devices on the Fukui-Ken Hospital network. Cisco DNA Center provides the solution for policy, security, and assurance.

IT departments everywhere are dealing with the explosion of new devices and users on the campus network. Provisioning, securing, and maintaining performance of constantly growing networks is daunting for us all. Hospitals are probably the most affected by this because of the sheer number of healthcare and life-saving devices that they require. The Fukui-ken Saiseikai Hospital, located in Fukui City, Japan has deployed Cisco DNA Center in order to accelerate their digital transformation with greater efficiency.

Mr. Masaru Takeuchi, Medical Information Division Section Leader, defined the hospital’s challenges as a lack of visibility and control over network access as well as inconsistent IT staff proficiency in managing complex network issues and troubleshooting. Mr. Takeuchi outlines that Cisco DNA Center, with Cisco Identity Services Engine (ISE) addressed all of their challenges from policy and security, to automation and orchestration and, of course, assurance. He knew that automating the lifecycle management would result in greater IT efficiencies, but he wanted to first focus on a stable, well performing infrastructure: “First we are going to build the reliable infrastructure that is necessary for automation. The implementation of Cisco DNA Center provides real-time visualization. By constantly monitoring and analyzing the health of the entire network to quickly identify signs of trouble, it is possible to take proactive measures, thereby enhancing assurance.

The Fukui-ken hospital IT staff focused on setting up network access controls and threat detection, in compliance with their security policies. This is done via the policy section of Cisco DNA Center where endpoints are categorized into groups and each group is given a set of policies that determine what types of data traffic and network resources that endpoint can access. Once their policies were set up, Cisco DNA Center simply updates policies in all switches, wireless controllers, access points, and routers. Policies follow users and endpoints, so there is no more need for ultra-complex QoS and IP-based segmentation.

Now the team can focus on operating a policy-based, zero-trust infrastructure. Doing this is a cinch with Cisco DNA Assurance, one of the main features in Cisco DNA Center. As I noted above, there was inconsistency in the IT staff proficiency in managing complex network issues and troubleshooting. Meaning that some of the level-one engineers did not have the experience to diagnose complex issues without consulting a more experienced staff member. When Cisco DNA Assurance raises a network “Issue” it then offers guided remediation on steps to resolve that issue (see screenshot below). Any suggestion that can be resolved through a Cisco DNA Center configuration will have a “RUN” button next to it, for one-click resolution. This allows level-one engineers to fix complex network challenges quickly and independently. It also serves as a platform for learning as each issue that is remediated provides greater experience and, ultimately, improved network literacy.

Cisco Exam Prep, Cisco Certification, Cisco Learning, Cisco Prep, Cisco Guides

Cisco Exam Prep, Cisco Certification, Cisco Learning, Cisco Prep, Cisco Guides
As the Fukui-ken hospital IT team grow their network they plan on implementing more capabilities within Cisco DNA Center. Enabling AI/ML analytics will allow them to compare wireless service areas and locate opportunities for Wi-Fi service improvement. Cisco DNA Automation will provide time savings for device lifecycle management and improve consistency in device configuration. Cisco DNA Center is a full-featured intent-based network controller that brings the elements of security, automation, and assurance together for a complete operations and management platform. As Fukui-ken Hospital decides to integrate these additional capabilities into Cisco DNA Center their existing Cisco DNA Advantage subscription gives them immediate access to deploy and use those new capabilities on their existing hardware.

The trend in modern hospitals is the acceleration of medical device digitization and the reduction in on-site operational staff. The Fukui-ken hospital IT team is building a campus network to support this trend and take them into the next phase of healthcare.

Cisco Exam Prep, Cisco Certification, Cisco Learning, Cisco Prep, Cisco Guides

Source: cisco.com

Friday, 3 July 2020

Three requirements to securely connect your industrial network

Digital transformation initiatives are driven by the desire to make data-driven business decisions. Whether you’re looking to increase production, reduce waste, or improve safety, the answer resides in your data: collecting it, analyzing it, and learning from it. But what happens when your data lives in extreme locations? Perhaps in places of severe heat, cold, humidity, salinity, or dust? How do you gather information with such harsh conditions? And how do you do it securely?

The first step is to converge to a single IP network. Network convergence is a proven formula for pulling together all the data in your environments. Cisco has been helping hundreds of thousands of organizations to converge their voice, video, data, and IoT networks to a single IP network. We’ve been doing this for over 30 years, and we know it works. A single network is easy to manage and operate and reduces your total cost of ownership. However, the primary challenge with a converged network is that it needs to be secure. There are three elements you need to securely connect an industrial network: 1) purpose-built hardware, 2) digitally signed and authentic security software, and 3) extensible architectures.

1. Choosing the right hardware


Start with the right hardware. For industrial internet of things (IIoT), the network hardware must satisfy the requirements of both the operational technology (OT) department and the IT department. At a high level, OT runs point on operations and understands how the organization produces its goods or services. IT connects the network and wants to make sure it’s done securely. OT and IT each have different priorities, goals, and concerns, yet the hardware has to meet both sets of requirements.

Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Learning, Cisco Prep

In addition to meeting the requirements of both OT and IT, the network hardware you select for connecting the industrial network should have a hardware trust anchor. A hardware trust anchor ensures that whatever software runs on the hardware will do so in a secure manner. To this end, the hardware should have an anti-theft, anti-counterfeiting, and anti-tamper chip that is completely immutable, meaning that it cannot change. Also look for built-in cryptography functions, secure storage for certificates and objects, and certifiable entropy for random number generators.

2. Selecting the right software


Going up the technology stack, the next component you need to securely connect the industrial network is the right software. Complement the secure hardware with digitally signed images, a secure boot process, and runtime defenses to ensure the software is secure and hasn’t been tampered with.

What is meant by digitally signed images? When we compile an image at Cisco, we execute a hash function on the binary code. The result of that hash function is encrypted using Cisco’s private key, and that signature is embedded right within the software image. At boot time, two things happen: 1) the local machine computes its own hash based on the binary of the software image, and 2) it decrypts the information they’re in, looking for that signature and making sure the two match. This process provides reassurance that the software hasn’t been tampered with and that it’s safe to boot up. Digitally signed images are an important component to a secure boot process.

Now that the software has securely loaded on the device, the network administrator has at his or her disposal the most powerful and secure networking operating system in the industry: Cisco IOS XE, which contains over 1,300 security feature commands and keyword options.

Cisco IOX XE also supports application-hosting in containers so that they can run on networking devices. Leveraging this application-hosting capability, Cisco has recently delivered an OT-specific security solution, namely Cisco Cyber Vision.

Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Learning, Cisco Prep

Cisco Cyber Vision provides innovation in OT security. For example, Cisco doesn’t require customers to install dedicated hardware sensors, but rather virtualizes their sensor to run as an application on network infrastructure, such as Cisco Catalyst Industrial Ethernet (IE) switches or Cisco ISR Industrial Routers (IR) or even Cisco Catalyst 9300 switches (which may be found in some industrial environments, albeit in temperature-controlled cabinets/rooms). Cisco’s unique approach of using a software sensor for OT protocols is not only an industry-first, but also the most scalable solution in this space, as it allows for the security solution to simply scale with the network infrastructure itself.

Another innovation that Cisco brings to OT security is the use of distributed analytics and OT flow metadata to minimize bandwidth impact. The Cyber Vision sensors running on the network devices perform deep packet inspection (DPI) on all OT flows. However, rather than mirroring these flows to a central analytics engine (i.e. the Cisco Cyber Vision Center) these sensors summarize OT flows as metadata, similar to NetFlow records (though the metadata Cyber Vision uses far exceeds the data contained in NetFlow records). Cisco Cyber Vision goes beyond NetFlow by detailing attributes of the devices sending and receiving the flows, the OT protocols used, the commands sent and received, and even the specific variables that these commands reference. As an analogy, while NetFlow can tell you who is talking to who, Cyber Vision metadata can tell you not only who is talking to who, but also the languages they are speaking, as well as specific details of their conversation. And the summary of these flows is highly efficient, typically consuming only 2-5 percent of incremental bandwidth.

3. Architectural integrations


The third piece in the tech stack is architectural integrations. Look for security solutions that leverage the existing network hardware to provide visibility into network traffic, and to identify and stop potential threats. Both IT and OT can benefit from having complete visibility of the OT environment, but IT cannot afford the operational overhead required to support a separate SPAN network. By integrating sensors into network hardware, IT can see anomalous behavior anywhere in the environment, while OT can obtain new and deeper insights into operations.

Ideally, the security solution also integrates with the technology used by the Security Operations Center (SOC) to monitor, investigate, and remediate security incidents in the IT environment. This way, the SOC has all the information it needs in one location to reduce the time to detect and respond to a security incident. Security analysts can see, for example, whether an attack originated in the IT environment and moved laterally to the OT environment, or if an attack entered the OT environment via something like a vulnerable device.

How Cisco can help


Cisco’s industrial-grade network hardware and Cisco Cyber Vision are designed to work together to meet the three requirements for securely connecting an industrial network. Our ruggedized networking switches and routers are built to withstand the harshest environmental conditions while delivering enterprise-level networking capabilities, including a hardware trust anchor. Our software uses digitally signed images to validate that software has not been tampered with, and Cisco Cyber Vision leverages the network architecture to deliver visibility and control over the OT environment. Cyber Vision also provides real-time threat detection and integrates with the SOC.

Wednesday, 1 July 2020

Cisco Network Upgrades Prepare Businesses for Grand Reopen

Cisco Prep, Cisco Tutorial and Material, Cisco Learning, Cisco Exam Prep

Cisco Systems is proud to announce new network products and upgrades to help businesses across all sectors plan for grand re-opens and move toward a more digital model. Pluggable switching modules (SM-X) for the ISR 4000 imbue the popular branch router with the same Unified Access Data Plane (UADP) programmable ASIC that is the powerhouse of the Catalyst 9000 family; while the pluggable Embedded Services Process module (ESP-X) enables better cloud performance for businesses equipped with ASR 1000s via much greater throughput capabilities and accelerated crypto performance. Finally, the new Cisco 1100 Series Terminal Services Gateway (1100 TSG) gives businesses with growing on-premise hardware footprints—such as cloud service providers and sensitive enterprises—a secure remote console for better Out of Band Management (OOB).

Whether a business is prepared to open or still planning a modified experience—Cisco is there with the right technology.

Supporting a New Edge


Efforts to reopen businesses and resume economic operations are not simple but can be executed with proper connectivity, automation and a transformed layout. Inevitably, these grand re-opens will create a new edge where throughput and privacy needs are enormous; where connectivity must be simple and consistent; and where networking is intent-based.

The places we used to go to work, travel, watch, consume, shop and unwind will transform with richer digital experiences, such as custom shopping offers delivered to the user device, or smart check-out and debit where all a shopper needs to do is grab the item and leave. These are places where we carry phones, use touch screen kiosks, swipe tablets, check smart-watches and rely on anything and everything else that connects to the internet. Meanwhile, a larger, more distributed workforce operating from home and accessing sensitive data over a hybrid WAN create challenges.

Cisco Prep, Cisco Tutorial and Material, Cisco Learning, Cisco Exam Prep

How IT teams equip and manage these edge locations will define their success—whether or not the experience is good or the end-user opts for a competitor as a result. Ensuring that successful experience requires more than routing. Only Cisco offers branch and cloud edge locations true network intelligence—dynamic routing over the most accurate internet map at consistent and incredible speeds. Cisco knows these locations need to host applications, pack compute and run services on location in a single platform. They need built in security no matter what their architecture looks like. Resilience is a must. Cisco offers it all with a quality customers trust.

The Cisco SM-X and ESP-X prepare your business for the future with a better network fabric, while the 1100 TSG provides simpler, more secure management.

ISR 4000 SM-X


When building out a network solution for a transformed branch, physical space restrictions can hinder plans. It’s impossible to fit a whole rack in the branch and stack whatever solutions are necessary—much as one does at headquarters or a campus. A single platform for each branch location must provide a variety of “full-stack” virtualized services from dynamic link selection to security, and be small enough to fit under a desk or in a closet.

The ISR 4000 is the world’s leading branch router, containing flexible technology for a variety of services and a trustworthy design. The latest SM-X release extends your ISR 4000 performance and investment even further to include switching capabilities on par with the Cisco Catalyst 9000 Series, and extends your network fabric to include Layer 2 to Layer 7 control—MAC to application. The SM-X also provides a variety of PoE options for Wireless support, along with access switching and Inter-VLAN routing.

ASR 1000 ESP-X


Cloud applications are prized for their simplicity, yet the IT teams responsible for their delivery now face greater complexity in an emerging network region called the cloud edge. This new region consists of anything from core locations to high-volume branches with Dedicated Internet Access (DIA), and any other location in a WAN where the network is opened to the internet.

Success in the cloud edge is by performance and security converging. The ASR 1000 ESP-X includes the 3rd Generation Cisco Quantum Flow processor, a powerful Layer 3 forwarding ASIC. The ESP-X provides customers more than 265 Gbps of both IPv4 and IPv6 throughput, along with IPSec that is more than 2X better performing than previous generations and QoS performance impact for total encryption and reliable application delivery at the edge. Reach more than 2X better scale compared to previous generations for classic NAT, Carrier-Grade NAT and Zone Based Firewall, an important capability for edge locations that experience bandwidth demands in great bursts or waves.

1100 TSG


Businesses with large hardware footprints, such as IaaS providers, Telcos, and sensitive enterprises such as finance and governmental organizations, need a simple way to manage their environment. The global nature of these businesses demands that they do it from half-way across the world. With so much data, connectivity and compliance regulations at stake, such convenience must never sacrifice build quality and security.

Enter the Cisco 1100 TSG.

The Cisco 1100 Terminal Services Gateway is a console server that provides simpler and more remote and out-of-band (OOB) management with the trustworthy build quality our customers expect. The top-of-rack solution offers integrated asynchronous ports, optional switching, and simplified Ethernet. It also supports secure tunnels, such as IPSec, generic routing encapsulation (GRE), and Cisco Dynamic Multipoint VPN, all at scale.

The 1100 TSG also supports Advanced LTE modules that can use the latest in wireless technology for backup connectivity when managing the WAN.

Together, the Cisco ISR 4000 SM-X, ASR 1000 ESP-X and 1100 TSG show that Cisco is prepared to transform business in their grand re-open into a new edge. Only Cisco offers powerful, reliable products with a build quality customers trust.

Tuesday, 30 June 2020

As the landscape evolves, so must the enterprise backbone

Most organizations today take advantage of cloud services. From software as a service (SaaS) to infrastructure as a service (IaaS), these cost-effective solutions help accelerate business and offer new opportunities for innovation.

Within the Cisco network, we’ve seen an impact from changing traffic patterns as our clients adopt to Cloud Services. We see more and more traffic going to the Internet and cloud services, and this level of traffic is growing at a very fast rate. This change meant we saw a 200 percent increase in peak Internet and cloud traffic within just 12 months. During that time, growth across our internal, private enterprise backbone also rose steadily, primarily due to large transfers between data centers. We quickly realized the traditional enterprise network is not ready to deliver the scale and resiliency needed to support this drastic shift in traffic patterns.

Technologies such as cloud, bring your own device (BYOD), and Internet of Things (IoT) require us to think differently about security. The enterprise network is becoming more segmented and each segment has different connectivity and security needs. Previously, the private backbone was a single, flat network; it now needs to deliver multi-tenancy and the ability to extend security segments across the globe.

These challenges have put us on an evolutionary path from a traditional enterprise backbone design to a software-defined and cloud-ready backbone. (Figure 1)

Cisco Tutorial and Material, Cisco Learning, Cisco Certification, Cisco Exam Prep, Cisco Study Material

Figure 1. New software-defined design in the Cisco Cloud Backbone

From an enterprise-like backbone to a service-provider-like backbone


Cisco IT is deploying a new global backbone powered by Cisco ASR 9000 Series Aggregation Services Routers running Cisco IOS-XR software. This highly scalable and programmable platform provides a strong foundation for the new backbone and will allow us to operate more like a service provider for our internal clients.

Although our initial priority is to address Internet and backbone scalability challenges, we also need to offer more advanced services to support our users. For example, can you imagine a day, a few hours, or even a couple of minutes without access to the Internet and your business-critical SaaS apps? To avoid this potential disruption, our new backbone needs to deliver an always-on and excellent user experience. It needs to detect failure conditions and automatically steer traffic over resilient peering connections across the globe.

By more intelligently routing traffic over the new backbone and augmenting it with cheaper bandwidth, we hope to increase capacity without affecting our telecom budgets. By supporting multi-tenancy, the new backbone will be able to deliver customized services for each of our internal tenants and extend security zones globally.

From the beginning, we are taking a “no command line interface” approach, which will allow us to deploy and operate the new backbone through software. The goal of this approach is to translate the user’s intent and program it into the network within minutes instead of days.

Where Are We in our Journey?


Although standardization and simplification has always been top of mind for Cisco IT, over the 20 years of its existence our backbone has become a complex environment. This complexity makes the transition to a new backbone design a high-risk and cumbersome effort. Before using the new backbone design to deliver more advanced services, we know that it’s key to take the time to build a rock-solid foundation. This foundation work includes:

◉ Deploying Cisco ASR 9900 Series routers in 13 colocation facilities and Cisco campus buildings globally

◉ Addressing challenges of Internet route table growth

◉ Implementing a hierarchical Global Border Gateway Protocol (BGP) AS109 network

◉ Migrating existing tenants onto the new backbone

When the foundation work is completed, we will evaluate user needs in order to focus on deploying network capabilities that deliver the most business value.

Future objectives include improvements for:

◉ Delivering global network as a service

◉ Speed of delivery through programmability and automation

◉ Assurance through streaming telemetry

◉ Multi-tenancy and traffic steering through multiprotocol label switching (MPLS) and segment routing

IT needs to assure the enterprise backbone evolves to support internal business users. Cisco IT has started this transformation. Our users expect ordering IT network services to be as simple as shopping online. This new backbone will enable us to more efficiently connect our clients to Internet and SaaS applications, extend security zones globally, and interconnect sites, private clouds, and public clouds.

Sunday, 28 June 2020

Webex Meetings June 2020 Update: Transcriptions, Background Blur and Mobile Grid View

Webex Meetings Updates


June brings some good news, which is something we can all use! This month’s edition will provide you with updates on Webex Assistant, blurred backgrounds, and VDI support as well as insights to improved user experience with Webex Meetings on desktop and mobile. We are continuously working to keep Webex Meetings a user friendly and intuitive platform which is why I am excited to share these updates with you.

Webex Assistant Trials Have Started + Webex Assistant Edits on iOS and Android


You can now use just your voice with Webex Assistant to handle some of the mundane meeting tasks and enhance your Webex Meetings experience. Now, in trial, Webex Meetings gives you live transcription, automated closed captioning and highlights, voice commands, recorded transcripts and post-meeting support such as keyword search across your recording meetings. The 90-day free trial is available and to all Cisco customers*. Contact your collaboration sales specialist or account manager for more information on how to sign up.

Webex Assistant is officially supported on this month’s update and will be orderable toward the end of the month. Webex Assistant is also coming to the Webex Meetings mobile app. For iOS and Android users, after a meeting, mobile hosts and content owners will be able to:

- Edit transcript

- Edit/remove the highlights/title of the record

- Share highlights/transcript to others

For the Desktop


MAC background blur – You can already do this today on iOS devices, but we’re now bringing it to Mac users. And just in time, because this feature will be very useful while working from home or from an open workspace. You can now blur the background of your webcam video when joining Webex Meetings and Webex Events from a Mac. The blur capability can help clean up a messy or unprofessional background and quickly get you ready for your video call.  It offers privacy and removes items from your background that may detract from your meeting. So, go ahead and join a video meeting from anywhere without worrying about what others might see behind you. And very soon, you’ll be able to choose a different background altogether. Stay tuned for that!

Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Learning

Choose Scheduler for Webex Meetings Desktop App – Webex site meeting scheduler has been added as a customization option to the Schedule button in the desktop app. This is a great benefit for those who do not use Outlook as their scheduling tool. IT administrators can choose the setting and deploy it to all users on their site.

Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Learning

VDI supporting VMWare and Citrix with Ubuntu and eLux – I am excited to announce the availability of the early field trials (EFT) of Cisco Meetings VDI now being supported on VMWare with Windows thin clients and Citrix with Ubuntu and eLux thin clients. Now end users can experience optimized audio and high definition video on their VDI desktops in the same way as laptop devices with minimal latency and high fidelity.  Administrators can download the VDI plug-in for these thin-client platforms from their Webex site to easily deploy to their end-users.

Improved Call Me option – Put this in the no brainer category. Whether connecting to your meeting audio from your computer or from your mobile/desk phone, we want the experience to be as simple as possible. With the June update, you now can very easily add or edit a phone number more intuitively when dialing in from mobile using the Call me feature. It is now more clear where a user needs to add (or edit) their phone number.

Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Learning

Mobile Updates

Increased grid view: iOS and Android

Want to see everybody in the meeting when you’re on mobile? With this month’s update, we’ve added the number of videos and made a video grid view the default layout for meetings! This enhances the quality of mobile meetings by allowing you to see more of your meeting participants at the same time, including your own self-view in the grid.

Android:

◉ phone user’s default meeting setting will be a 3×2 grid view for landscape mode
◉ tablet user’s default setting will be a 3×3 grid view in landscape mode
◉ Tablet user’s default setting will be a 4×2 grid view in portrait mode

iPhone:

◉ (Beta) a 3×2 grid view for landscape mode
◉ 2×2 grid view will be the default setting for portrait mode
◉ An additional 3×3 grid view is available for iPhone landscape mode that can be turned on in-app settings.

Both Android and iOS users can revert to their original grid view via their in-app settings.

Smart Meeting Bandwidth detection – Your mobile meetings will no longer be interrupted when you experience poor network connections. Mobile users will be prompted to turn off video when they are experiencing low bandwidth so that the audio quality remains strong. This feature is available for iOS and Android.

Mute/Unmute from the lock screen – When you are walking to your car while in a meeting, you will be able to mute and unmute your audio from your lock screen. No more awkward pauses while fumbling with things in your hand, trying to type in your passcode to answer a question in a meeting.

One Tap to Join for Android users – Android users now only have to touch one button to join a meeting. No more being late to your meetings because you are searching emails for access codes and passwords.

Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Learning

Saturday, 27 June 2020

When it comes to security, how many vendors is too many?

Cisco Security, Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Prep

How many security vendors do you have in your environment? 10? 25? 50? Are you finding this number manageable, or is it difficult to monitor and maintain solutions from so many different companies? And what about security alerts? Are you able to investigate all the alerts you’re receiving, or are there just too many to address?

If you’re like many other organizations today, you’re getting inundated with alerts, have too many interfaces to pay attention to, and therefore wish to secure your environment with fewer products and vendors. According to the below figure from our 2020 CISO Benchmark Report, in 2017, 50% of organizations were receiving 5,000 or fewer daily security alerts. Now, only 36% of organizations fall into this category. And the amount of organizations that receive 100,000 or more daily alerts has grown from 11% in 2017 to 17% in 2020 – an albeit small, but still troubling rise. This number should be going down, not up.

Cisco Security, Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Prep

Not surprisingly, 81% of respondents in our survey said they find managing a multi-vendor environment to be challenging. And 28% find it ‘very challenging.’

Does any of this sound familiar? Are you struggling to manage a constant deluge of security alerts from multiple products? Are you spending more time being reactive than proactive when it comes to security?

An intricate spider web versus tangled shoelaces


What if instead of stringing various security solutions together, they were all intertwined into a single, unified platform? What if instead of resembling a pile of tangled up shoelaces, your security infrastructure looked more like an intricately woven spider web? A spider web whose various threads connect and work together as a system to efficiently catch prey (aka attackers).

Webs enable a spider to catch prey more effortlessly, without having to chase it down. This serves as a great metaphor for what we’re trying to do with Cisco SecureX. Recently launched at our Cisco Live digital event, Cisco SecureX is a platform designed to help security teams more holistically combat threats while saving time.

Cisco Security, Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Prep

Cisco SecureX – A platform approach to security


Cisco SecureX provides integration between our security portfolio, third-party offerings, and customers’ core infrastructure to dramatically streamline protection. The integrated approach strengthens defenses by fostering automation and reducing the need to manually toggle between various security technologies to figure out what’s going on. Cisco SecureX delivers pervasive visibility across the enterprise to allow for faster threat detection and mitigation, simplified workflows, and better collaboration – without you first having to untangle a pile of mismatched shoelaces.

Embedded and included with all of our security products, Cisco SecureX is not a new offering that you have to buy. Instead, it unites your existing security stack to make each product work better as they share intelligence and automate remediation. And, it provides one view into these products from a single interface to make things clearer and minimize complexity, thus freeing up time for your team to better understand and utilize each of your security products. That way, you can finally get the full benefits from your investments.

Cisco Security, Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Prep

Vendor consolidation on the rise


With Cisco SecureX, we are responding to our customers’ challenges of having too many alerts and products to manage, and a subsequent desire for simplification. Through our CISO Benchmark Report, we see that the trend of reducing the number of security vendors within the enterprise environment is growing. Today, 86% of organizations are using between 1 and 20 security vendors, and only 13% are using over 20. According to the below chart, organizations continue to use fewer vendors each year.

Cisco Security, Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Prep

The Cisco SecureX platform provides broad coverage across your entire network and all threat vectors. It can help reduce redundancies among your security infrastructure and decrease the need to continuously add new vendors and products to the mix. Instead, the open, scalable platform can enable you to simply add new functionality as it becomes available or as new threats arise.

Addressing cyber fatigue


This new approach couldn’t come at a better time, as 42% of respondents in our CISO Benchmark survey say they are suffering from cyber fatigue (defined as virtually giving up on proactively defending against malicious actors). Of those suffering, 93% receive more than 5,000 alerts every day, indicating that complexity appears to be one of the main causes of security burnout.

In fact, our data shows that due to a lack of time and resources, today’s organizations are only able to remediate 50% of legitimate security threats. Think about that. Fifty percent! That’s not a great number.

Here are some better numbers:

◉ 95% of customers say that our security platform helps them take action and remediate.
◉ 98% of customers find that the unified view provided by Cisco SecureX enables rapid threat response.
◉ 91% of customers say that our security platform helps their teams collaborate more.

All of this leads to stronger, less complicated security.

Cisco Security, Cisco Exam Prep, Cisco Tutorial and Material, Cisco Certification, Cisco Prep

According to Steve Martino, Cisco’s own CISO, “I need visibility to help my team understand what’s happening in our environment, whether it’s on prem, in the cloud, or wherever it is. If I have to do it through 20 or more vendors, I’m never going to get that visibility across all of it.” Providing that visibility, and more systematic security, is exactly what Cisco has set out to do.