Converging On-Premises & Cloud Network Security Into a Unified Hybrid Strategy


At Cisco, nearly all clients I’ve met with have a cloud presence — whatever the dimension of their business. While every one in all these organizations has their very own distinctive journey, infrastructure, and safety stack recipes, the most typical query amongst them is:

“How do I bring our on-prem and cloud security closer together?”

At Cisco Live US 2023, we introduced our Cisco Security Cloud imaginative and prescient: a cloud-delivered, AI-driven safety platform that protects throughout hybrid and multicloud infrastructures, with phenomenal consumer experiences. Today, at Cisco Live EMEA 2024, we’re saying additional tangible ends in converging knowledge heart and multicloud safety materials, defending clients from floor to cloud. Two new capabilities — hybrid cloud connectivity and community object sharing — ship a simplified, unified safety expertise throughout environments, serving to organizations save time when creating community safety insurance policies, lowering complexity, and minimizing threat when sharing infrastructure between on-premises and cloud infrastructure.

Hybrid cloud connectivity: Create safe connections from floor to cloud

Imagine your group has a cloud software requiring communication with a selected software residing on-premises or in one other cloud. How would you securely join this infrastructure? In the previous, organizations would look to direct connection, which is expensive, restricted in availability, and will require partnering with middleman organizations to facilitate connections between your environments.

The hybrid cloud connectivity functionality brings collectively Cisco Multicloud Defense, Cisco Secure Firewall, and Cisco Defense Orchestrator to assist organizations securely join cloud purposes to on-premises infrastructure and vice versa. To make these on-ramp connections, you’d deploy Multicloud Defense Gateways and Secure Firewall (each {hardware} and digital home equipment) at first and the top of the tunnel. Afterwards, organizations would leverage Cisco Defense Orchestrator to orchestrate an IPsec tunnel for “site-to-cloud” infrastructure connectivity and “cloud-to-cloud” infrastructure connectivity. This is crucial for organizations:

  • When devoted cloud service supplier connection (e.g. AWS Direct Connect or Azure ExpressRoute) or safe connection isn’t out there
  • Who want to save lots of time by conserving operations in-house
  • Looking to mitigate threat by staying answerable for their connections between environments

Network object sharing: Simplify coverage creation throughout on-premises and the cloud

All too usually, organizations really feel the ache of working safety instruments in silos when defending each on-premises and cloud infrastructure. An incredible instance of those silos will be seen in hybrid cloud deployments the place a company has each a firewall to guard on-premises infrastructure and cloud community safety controls to guard their cloud environments. Each of those options would require their very own remoted set of community objects for coverage enforcement and upkeep of objects, leading to elevated administration complexity and overhead for organizations.

The launch of community object sharing from Cisco alleviates these silos for organizations, simplifying coverage creation and lowering complexity throughout their hybrid cloud by eradicating duplicative processes and ongoing upkeep of working separate community safety options. With the assistance of Cisco Defense Orchestrator’s object administration characteristic, organizations can discover and share already created objects between Secure Firewall Threat Defense (by means of Firewall Management Center and Cloud-delivered Firewall Management Center), Secure Firewall ASA, and Multicloud Defense.

"The release of network object sharing from Cisco alleviates these silos for organizations, simplifying policy creation and reducing complexity across their hybrid cloud." - Christopher Consolo, Product Marketing Manager, Cisco Security

This means if a community object was already created for Secure Firewall Threat Defense, organizations can use that very same object when making a safety coverage inside Multicloud Defense. The capacity to share community objects:

  • Saves organizations time and reduces overhead value by eradicating redundant processes
  • Reduces threat by simplifying safety coverage creation
  • Removes complexity by permitting organizations to consolidate objects to a single set
  • Gives organizations larger flexibility and resolution alternative when fixing community safety use instances

Today’s launch is one other instance of how Cisco is converging the materials of best-in-class knowledge heart and multicloud safety to guard clients from floor to cloud. By introducing hybrid cloud connectivity and community object sharing within the community safety platform, organizations will take pleasure in a extra simplified, unified safety expertise throughout their hybrid cloud.

To study extra about how Cisco is bringing your on-premises and cloud safety nearer along with these capabilities, attain out to your Cisco gross sales consultant.

We’d love to listen to what you suppose. Ask a Question, Comment Below, and Stay Connected with Cisco Security on social!

Cisco Security Social Channels




Please enter your comment!
Please enter your name here