Cisco Cisco AMP Threat Grid 5004 Appliance Getting Started Guide
At-A-Glance
Figure 1. How Security Teams Can Use Cisco AMP Threat Grid
Cisco® AMP Threat Grid benefits security functions across the organization
Security Operations
Center Team
Incidence Response
Team
Threat
Intelligence Team
Security Infrastructure
Engineering Team
• Get more accurate,
actionable data
• Use forensically
sound information to
understand suspicious
behavior faster
• Proactively improve
security infrastructure
• Consume and act on
threat information
faster, and in an
automated manner
More and more companies today are finding themselves under a
multitude of common and advanced malware attacks. As a security
professional or IT manager, you are likely struggling to effectively identify
attacks, let alone prioritize the most dangerous ones that should be
addressed first.
multitude of common and advanced malware attacks. As a security
professional or IT manager, you are likely struggling to effectively identify
attacks, let alone prioritize the most dangerous ones that should be
addressed first.
Struggle no longer. With the Cisco® Advanced Malware Protection
(AMP) Threat Grid, unified malware analysis and threat analytics
features become integrated with your existing network and security
infrastructure, including mail gateway, security information and
event management (SIEM), and governance, risk management, and
compliance (GRC) platforms. Drawing on a very large static and dynamic
malware analysis solution, you get timely, context-rich, actionable
intelligence to identify and mitigate malware.
(AMP) Threat Grid, unified malware analysis and threat analytics
features become integrated with your existing network and security
infrastructure, including mail gateway, security information and
event management (SIEM), and governance, risk management, and
compliance (GRC) platforms. Drawing on a very large static and dynamic
malware analysis solution, you get timely, context-rich, actionable
intelligence to identify and mitigate malware.
Cisco AMP Threat Grid is deployed in multiple locations around the
world, where it has helped security operations center and incident
response teams take more effective and consistent action (Figure 1).
world, where it has helped security operations center and incident
response teams take more effective and consistent action (Figure 1).
Two Crucial Weapons to Fight Malware: Unified Malware
Analysis and Threat Intelligence
Cisco AMP Threat Grid delivers context-driven analytics to accurately
identify attacks in near real time. The product analyzes millions of files
and correlates them against hundreds of millions of other analyzed
malware artifacts. Customers gain a global view of malware attacks,
campaigns, and their distribution.
identify attacks in near real time. The product analyzes millions of files
and correlates them against hundreds of millions of other analyzed
malware artifacts. Customers gain a global view of malware attacks,
campaigns, and their distribution.
Cisco Advanced
Malware Protection
Threat Grid
Benefits
• Defeat advanced attacks with
existing security technologies
and resources
• Improve the effectiveness of
security and response teams
• Discover breaches faster and
respond quicker to security
incidents
“AMP Threat Grid is
revolutionizing the way that
organizations use accurate
and context-rich malware
analysis and threat intelligence
to defend against advanced
cyberattacks.”
Jon Olstik,
ESG Group
ESG Group
© 2014 Cisco and/or its affiliates. All rights reserved.