Cisco Cisco Security Manager 4.0 Hoja De Datos
© 2010 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 1 of 7
Data Sheet
Cisco Security Manager Overview
Cisco
®
Security Manager is an enterprise-class security management application that provides insight into
and control of Cisco security and network devices. Cisco Security Manager offers comprehensive security
management (configuration and event management) across a wide range of Cisco security appliances,
including Cisco ASA 5500 Series Adaptive Security Appliances, Cisco IPS 4200 Series Sensor
Appliances, Cisco Integrated Services Routers (ISRs), Cisco Firewall Services Modules (FWSMs), and
Cisco Catalyst
®
6500 Series Switches. Cisco Security Manager allows you to manage networks of all
sizes efficiently-from small networks to large networks consisting of hundreds of devices.
Cisco Threat Defense
Cisco Threat Defense helps organizations secure and manage their borderless network environment. Organizations
are protected from today's complex and dynamic threat environment using proactive intelligence from Cisco Security
Intelligence Operations (SIO), market-leading network security devices, and a single, integrated security
management platform.
Simplified Security Management
●
Next-generation Cisco Security Manager enables organizations to gain insight into and control of the entire
security topology through a single, integrated user interface (Figure 1), including:
◦
Global policies for Cisco ASA and IPS appliances
◦
Single console for configuration and event management
●
Next-generation Cisco Security Manager increases visibility into the security environment so you can better
understand and respond to threat patterns and risk. Features include:
◦
Single view of events that are thwarted by Cisco IPS with the Global Threat Correlation engine and the
Cisco ASA appliance
◦
Historical traffic pattern information
◦
Powerful filtering and drill-down capabilities
◦
Integration of reputation data into IPS events
◦
Dynamic policy tuning based on actionable events
●
Cisco IPS with the Cisco Global Threat Correlation engine reduces the time needed to manage IPS by
providing more accurate detection and automated rule sets
●
Support for event-to-policy linkages and cross-launching (Figure 2)
●
Integrated troubleshooting tools such as Cisco Packet Tracer and the traceroute command
●
Detection of out-of-band (OOB) changes and selective ASA policy management for heterogeneous
operational IT environments
●
Simplified policy definition paradigms for ASA appliances (providing Network Address Translation [NAT]
services) (Figure 3) and global access rules for improved management efficiency
●
Enhanced support for Cisco's latest IPS and firewall features, such as the Botnet Traffic Filter and the Global
Threat Correlation engine, for an improved threat response experience