Cisco security exec has big plans for Ironport technology

Upgrades possible for firewalls, VPNs and IPSs

By Tim Greene

Tue, April 22, 2008Network World Cisco is looking to aggressively incorporate its reputation and monitoring gear into security gear, all under the direction the former CEO of Ironport, the company Cisco bought for its reputation technology.

Scott Weiss, recently promoted to vice president of Cisco's security technology business unit, says reputation could improve the effectiveness of classic security gear starting as soon as year-end.

As head of the security technology unit, Weiss oversees all Cisco firewalls, VPNs, intrusion protection/detection system gear,  Security Manager software, Monitoring, Analysis and Response system (MARS) as well as all the Ironport product line of antispam and Web-filtering products. (Compare firewall, VPN and IPS products.)

"I have a lot of early thoughts about synergies from the Ironport product line, and some of the threat prevention and interrogating of anonymous traffic that we've really built up an expertise with, and how to tie that better in with the firewall and [intrusion-protection system]," Weiss says. "These are things we have hypothesized about before but now we are really putting those product plans into action."

Weiss says he also wants to incorporate a behavioral monitoring feature of Ironport S-Series Web security appliances into Cisco firewalls. The monitoring could alert firewalls to block malicious traffic in and out of the network based on known exploits.

"A lot of silent threats that were not seen could be eliminated on a large-scale basis. That's an early charter we have for the organization," he says. "We've had some meetings of these groups and we've actually put some project plans in place. I think that you could see it as early as eight to 12 months as some of these cross-pollenization efforts."

The monitoring capabilities would help businesses by giving them better data about what traffic is moving across network boundaries. "You have to illuminate what information is leaving the corporation before folks are going to be willing to invest in [security] and some of the Ironport technology will allow us to do that," Weiss says.

He says the capability of Ironport gear to detail traffic in and out of networks and peform threat assessment could help boost the capabilities of IPS products. "IPS as a technology is not that dissimilar from what we do at Ironport, which is interrogating anonymous traffic, things that are coming into the network," Weiss says.

To that end he says he hopes to swap engineers between Cisco's Ironport division and its IPS team to see what improvements they can come up with. "We've not put those two groups together to see what synergies there really are, but we've hypothesized quite a few of them," he says.

Cisco
Loading...
Security MarketSpace
Email and Web Threats Require a Layered Defense
Email and Web Threats Require a Layered Defense
Learn how web threats are changing and how using a layered defense strategy can give you the security you need. Learn more »
Practical Approaches for Securing Web Applications
Enterprises understand the importance of securing web applications to protect critical corporate and customer data. What many don't understand, is how to implement a robust process for integrating security and risk management throughout the web application software development lifecycle. Learn more »
Smart techniques for application security: whitebox + blackbox security testing.
An Executive's Guide to Web Application Security
Since so many Web sites contain vulnerabilities, hackers can leverage a relatively simple exploit to gain access to a wealth of sensitive information, such as credit card data, social security numbers and health records. It's more important than ever to examine your Web application security, assess your vulnerability and take action to protect your business. Learn more »
Web Application Vulnerabilities
Security managers may work for midsize or large organizations; they may operate from anywhere on the globe. But inevitably, they share a common goal: to better manage the risks associated with their business infrastructure. Increasingly, Web application security plays a significant role in achieving that goal. Learn more »
Lower the Cost and Complexity of a Mobile Workforce through Automation
 Lower the Cost and Complexity of a Mobile Workforce Learn more »
Retooling IT for a Mobile Workforce
Check out this research note from IDC for guidance. Learn more »
 
SPONSORED LINKS
 

Making Consumer Two-Factor Authentication Simple and Cost-Effective

Mining the Cloud to Ease the Enterprise Compliance Burden

Solve Five Key IT Security Challenges with Cloud-Based Authentication

White Paper: Managed Security for a Not-So-Secure World

Secure Email and Web-Based Communication from Evolving Attacks

WagerWorks Takes Fraudsters Out of the Game using iovation

White Paper: A Security Blueprint Delivered From within the Network

Return on Information: Google Enterprise Search pays you back

Cut Costs & Green Your IT Operations with PC Power Management

White Paper: 4 Customer Service Myths

White Paper: Improve Agility with Operational Responsiveness

White Paper: Legacy Tools: Not Built for the Helpdesk

Taking a Seat at the Executive Table: The Reality of Virtualization

White Paper: Next Generation Remote Infrastructure Management

Seven Design Requirements for Web 2.0 Threat Protection

Increase UPS efficiency without sacrificing protection.

Learn how advanced forecasting tools can deliver significant business results for global corporations.

Lower IT Costs with Oracle Database 11g Release 2

White Paper: Visibility and the New Normal of Mobile Work

Taking the Service Desk to the Next Level

Learn about The Information Technology Infrastructure Library.

Return on Information: Google Enterprise Search pays you back. Get the facts.

VMware. The source for Business Infrastructure Virtualization.

ShoreTel tells businesses to untangle from competitors' complexity and turn to its brilliantly simple UC solution

Top Five CIO Challenges

Authentication as a Service by Forrester Research

Cloud-Based Authentication for Next-Generation Extranets

Mobile Security: The Essential Ingredient for Today's Enterprise

IDC White Paper: CCM for IT Compliance and Risk Management

Keeping Your Members Safe from Online Scams and Predators

Learn about the growing threat of insider data theft.

Upgrading to VMware vSphere with vWire

Maximizing website Return on Information with high-quality search

See how AT&T can help protect your network.

Webcast: Unleashing the Power of Customer Data

White Paper: 5 Best Practices for Smartphone Support

Global Research: CIOs Weigh In On Virtualization

5 Key Virtualization Management Challenges

The Total Economic Impact of Network Security Intrusion Prevention

Generation Remote Infrastructure Management - Changing the Paradigm

Cloud-Based Email Management: Opinion Shifts In Favor

eBook: How Can You Make Your People Productive Anywhere?

Achieving Business Agility with Application Grid

Ready to virtualize tier one applications? Check your virtualization maturity.

Seven Ways ITIL Can Help You in an Economic Downturn

Tips for successful virtualization management.

AT&T Synaptic Storage as a Service. Expand on demand

Trend Micro ranked #1 against real-world malware. Read more.

Webinar: Jump-start your in-house e-discovery with Ringtail QuickCull from FTI Technology

Streamline IT Costs. Boost Performance with WAN Optimization.

 
 
RESOURCE CENTER
 
buy a link »
Ads by TechWords