security for the multicloud - cisco€¦ · timothy snow. solutions architect – security group...
Post on 22-May-2020
7 Views
Preview:
TRANSCRIPT
Timothy SnowSolutions Architect – Security Group@TimSnowIT
Security for the Multicloud
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
NetworK
Applications
Compute
Storage
DevicesUsers
2
Change – The new daily challenge
ComputeVast Scale & Containers
Devices / Users
Anywhere / Anything
NetworkSoftware Defined
Networking
ApplicationsDynamic
Instantiation & interconnectivty
requirements
Storage
Data VirtualizationStorage-as-a-Service
© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Financial
Efficiencies
Speed
Scale
Cost Savings
New models moving from CAPEX > OPEX and department billing, Support as a Service
Location, Open Cloud options, App transformation
Fast roll out of new services, DevOps, DevTest
Elastic Scale, Replication, HA
Savings on Space, Power, Cooling, Cabling, IT!
Why are customers moving to cloud(s)
Benefit
© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
4
But Wait… What about
Users/Accounts Data Applications
● Who is doing what in my cloud applications?
● Is that per my policy?
● Do I have a policy?
● How do I detect account compromises?
● Are malicious insiders extracting information?
● Do I have toxic & regulated data in the cloud?
● How do I detect policy violations and data exposures?
● How do I control movement of IP within and outside of any app/SaaS?
● How do I automate incident remediations?
● How can I monitor app usage and risk?
● Do I have security telemetry sources within the cloud?
● Do I have any 3rd party connected apps that carry risk?
● What security controls are available to me?
© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Juice > Squeeze?
© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Forbes CIO Hybrid Cloud study summary
42%Data sovereignty 38%
Security issues or concerns
58%Costs per transaction
have increased
43%Concerned about
lock-in62%Multi-Cloud strategy
was crucial
Why?
Source: Forbes Insights: When Clouds Connect- How Hybrid IT is transforming enterprises
Discontinued or scaled back from public cloud65%
© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public
Source: IDC CloudView, April, 2017, n=8,293 worldwide respondents, weighted by country, company size and industry
Evaluating or usingpublic cloud
85%
Taken steps towards a hybrid cloud strategy
87%
Plan to usemultiple clouds
94%
Among cloud users
Now the tides have turned to taking a calculated risk
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Done Right = Holistic and Multi-Tiered Successes
Innovation
Speed Decision MakingTarget New MarketsLead through disruption
Improve Perceived ValueIncrease confidenceGreater Innovation -Interactions
Interwoven, ubiquitous securityImproved decision making –Risk/CostMature Models - DevSecOps
Operating Cost PerformanceLowered Innovation CostsAligned Priorities to businessBreak perception IT = Cost Center
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Challenges for IT
New apps
Average enterprise hasat least 13 cloud-native
business apps
Connectivity
New users
More Users, More Things
50 Billion by 2020
Compliance & Scalability
New attack surfaces
Average 6 months to detect breach
Security
© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Partner Confidential
Use Case #1 – Securing the End Users
Anywhere Protection
OnPrem and OffPrem Traffic Visibility
Endpoint Protection Services (AV/EPP/URL)
AlwaysOn Containerized VPN for Multicloud
Securing end-users from malware and threats
Proliferation of end-point devices
Growing direct to cloud Users
CloudProtect
© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Partner Confidential
Use Case #2 – Security to the Cloud
Protection to the Cloud
Optimizing Application Performance inter-cloud
Securing branch to the Cloud Services
Configuration and Experience in Cloud
Remote Branches
Public Cloud
CloudConnect
Consistent Experience in Cloud
Web
DatabaseApplication Web
© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Partner Confidential
Use Case #3 – Security within the Cloud
InterCloud Protection
Flow Analytics for threat detection
Application Performance and Protection inter-cloud
Segmentation and System Protection
SaaS
Cloud to cloud
CloudProtect
© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Partner Confidential
Use Case #4 – Securing the applications
Application Services Protection
Trusted Platforms / Secure Boot / VA
Instantiation Protection (Docker/Kubernetes)
API and Gateway Security at HeadEnd
CloudConsume
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco is aggressively building a world class multicloud portfolio
Networking ManagementAnalyticsSecurity
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
Key Takeaways
Cloud Journey is Inevitable as we move towards a Smarter Nation
The Digital Transformation Depends on it
There is definitely benefits to gain from the risk taken. These directly impact our customers (citizens).
Done with the right Security in mind, the risk is reduced.Security should be embedded from the start.
Thank you!
top related