Cisco: Tips for Securing Your Network
Cisco Stealthwatch and Identity Services Engine (ISE) are key components required to transform your network into a sensor capable of enforcing your security policies. But how do you incorporate automation on your network to full advantage? How do you validate that the existing policy aligns with the company’s overall security posture? And how can you utilize ISE and Stealthwatch to simplify your security in an ever-growing network of devices, IoT, and applications?
After many years deploying these products for our top clients, here’s an inside look from Cisco Security Services and our best practices for implementing a Cisco Digital Network Architecture (DNA):
You can’t protect what you don’t know, so know what’s on your network
As more devices enter the enterprise, the requirement for visibility into the environment is more important than ever. We are far removed from the days of simple device characteristics as profile criteria. The benefit of ISE, combined with Stealthwatch, allows you to increase the fidelity of profile characteristics of devices in your network. However, if you don’t know your network and the devices accessing it, you can’t write good policies for those profiles. In order to understand how assets should communicate, you need, with a high degree of certainty, to be able to classify it.
Read the entire article here, Tips for Securing Your Network
Via the fine folks at Cisco Systems.