Network Security
with Cisco Umbrella
Comprehensive first line of defence against threats on the Internet.
Cisco Umbrella
Cisco Umbrella is a cloud-based security platform that secures your network against incoming and potential threats and allows you to closely monitor your network onsite and when you're at home.
It acts as the first line of defense as it operates at the DNS level, meaning malicious traffic is blocked before it even reaches your network. Because it is cloud-delivered, Umbrella uses live threat intelligence versus static feeds meaning it can potentially block attacks before they even start.
With Cisco Umbrella you get the protection you need to defend against malware infections and breaches across all ports and protocols for the most comprehensive coverage.
Intelligence to uncover current and emerging threats.
Visibility for activity across all devices and ports, anywhere.
Stop phishing, malware, and ransomware earlier.
How does it work?
Cisco Umbrella offers protection at the DNS layer by redirecting DNS requests to Umbrella's DNS servers instead of your ISPs. This means that Umbrella can offer tight control over what traffic is allowed to enter the network and what gets blocked long before it even reaches the network.
Since the DNS requests are done in the cloud, it means that Cisco Umbrella can offer protection to any device, anywhere where there is an Internet connection, no matter if you're at work or at home. This also means that you have the ability to closely monitor traffic going in and out of your network where ever you are.
Intelligent Proxy
Features
Instead of proxying all web traffic, Umbrella routes requests to risky domains for deeper URL and file inspection. Effectively protect without delay or performance impact.
Threat Intelligence
Cisco Umbrella utilises machine learning in order to detect anomalies and malware. In addition, it can analyse Internet activity in order to preemptively stop attacks before they are launched.
Command & Control Callback Blocking
Cisco Umbrella runs in the cloud, this means that you can monitor network activity across all devices, over all ports and protocols no matter where you are. You can even retain the logs forever.
Protection Beyond the Network
Utilise Umbrella’s light weight roaming client or built-in Cisco AnyConnect integration for comprehensive protection even when you are far away from the corporate network.
Offsite Monitoring
Stop data exfiltration and execution of ransomware encryption. If a device becomes compromised, Umbrella can prevent connections to the attacker’s servers and prevent further damage.
Easy to Deploy
Umbrella is the simplest security you’ll ever deploy. There is no hardware to install or software to manually update, just point your DNS to Cisco Umbrella and you're ready to go.
Packages
All packages on offer come with the following:
Block ransomware, malware, phishing, and C2 callbacks
Protect users anywhere they go, on and off the corporate network
Stop malicious domain requests and IP responses at the DNS-layer, over any port or protocol
Real-time, enterprise-wide activity search & scheduled reports
Enforce acceptable use policies using 80+ content categories
Create a custom block/allow lists
Insights
In addition to the basic functions, the insight package includes the following:
Block ransomware, malware, phishing, and C2 callbacks
Protect users anywhere they go, on and off the corporate network
Stop malicious domain requests and IP responses at the DNS-layer, over any port or protocol
Real-time, enterprise-wide activity search & scheduled reports
Enforce acceptable use policies using 80+ content categories
Create a custom block/allow lists
Platform
The platform package includes everything in the Insight package plus:
Enforcement API
Deploy pre-built integrations that work with 10+ security providers – including Splunk, FireEye, and Anomali
Leverage custom API to easily integrate with other systems including:
Security Appliances
Threat intelligence platforms or feeds
Custom, in-house tools
Investigate Console
Gain context about what Umbrella is blocking and why
See attacks as they form
Prioritize incident investigations