2. Use SecOps to Achieve a Security-by-Design Approach
Rather than apply security as a post-deployment layer, embed SecOps capabilities directly into the platform. Experts said this ensures that security controls are built into every step of the pipeline, including automated security scanning in continuous integration/continuous delivery workflows, role-based access controls and runtime policy enforcement.
Developers work within a framework that ensures all deployments meet enterprise security and compliance requirements by default. Abbott also noted that with a security-first design, there are fewer audit delays and less back-and-forth between development and security teams.
And since security breaches frequently occur along networking endpoints, Cisco has brought the two together with its new XDR Security and Network Operations Center, which integrates with Meraki MX appliances. The platform unifies security and networking operations under one roof for faster threat detection and greater visibility across the entire network.
“The SNOC brings these teams together. I can take Meraki networks flows, send them into XDR, and now I’m able to see the different types of security events in Meraki again. The network team sees this, and the security team can take action immediately,” said Dave Abbott, security engineering leader at Cisco.
This speed makes a difference, especially since it only takes an adversary “51 seconds from initial access to lateral movement,” to move deeper into the network, noted Todd Felker, executive healthcare strategist at CrowdStrike.
It also improves overall cyber resilience. A unified, role-based approach helps teams operate from a central command center and adapt to adversaries’ tactics in real time. Compare this with the fact that “55% of security teams say critical alerts are missed,” due to managing more than 76 disparate security tools that lack context and direction, according to a Cisco infographic.
Click the banner below to become an Insider and gain exclusive insights after the CDW SummIT.