Get an integrated and open platform that simplifies your existing ecosystem and works with third-party solutions.
Accelerate threat investigations and incident management by aggregating and correlating global intelligence and local context in one view.
Experience unified visibility with a customizable dashboard and maintain context around incidents with a consistent ribbon that never leaves you.
Automate routine tasks using prebuilt workflows that align to common use cases. Or build your own workflows with our no-to-low code, drag-and-drop canvas.
Cisco Secure product | Integration value to SecureX | Outcomes |
---|---|---|
Cisco AMP for Endpoints | Secure Endpoint (AMP) can be used as a sensor in SecureX to detect the presence of files or network connections to specific hosts. It can be used to take common and critical endpoint-related response actions. Secure Endpoint also provides tiles to the SecureX dashboard, as well as actions for orchestration so customers can build automated workflows. Additionally, Secure Endpoint incorporates the SecureX ribbon, allowing SecureX functions to be leveraged from any page in the Secure Endpoint console. |
Quickly determine with a single click if a file or network resource has been seen by up to tens of thousands of globally distributed endpoints within your environment |
Cisco DNA | Secure Network Analytics enriches SecureX threat detection and response with agentless behavioral and anomaly detection capabilities. SecureX integrations with other sources of global threat intelligence and internal visibility enrich Secure Network Analytics findings with confirmed threat intel and local sightings. Integrations with Cisco control devices provide two-click mitigation and resolution. Secure Network Analytics provides tiles to the SecureX dashboard, as well actions for orchestration so customers can build automated workflows. Additionally, Secure Network Analytics incorporates the SecureX ribbon, allowing SecureX functions to be leveraged from any part of the Secure Network Analytics console. |
Save time and gain a more holistic response by using SecureX to process and manage high-priority alerts from Secure Network Analytics (and any other configured alerting technology). In addition, the ability to query all configured Secure Network Analytics devices in SecureX threat response and then use them in coordinated, single-click defenses, simplifies visibility and increases response efficiency. |
Cisco Secure Email | Integration of SecureX and Secure Email allows you to understand email as a threat vector by visualizing message, sender, and target relationships in the context of a threat. You can search for multiple email addresses, subject lines, and attachments at once to understand how a threat has spread. Secure Email provides tiles to the SecureX dashboard, as well as actions for orchestration so customers can build automated workflows. Additionally, Secure Email incorporates the SecureX ribbon, allowing SecureX functions to be leveraged from any part of the Secure Email console. |
Get better insight into the context of a threat with email as a threat vector. Combat phishing attacks, business email compromise, malware, and ransomware. |
Cisco Umbrella | In SecureX, Umbrella provides global threat intelligence from its rich database of multifaceted domain reputation, local security insight by reporting sightings of investigated domains, and the ability to block domains immediately and enterprisewide in two clicks. Umbrella also provides tiles to the SecureX dashboard, as well as actions for orchestration so customers can build automated workflows. Additionally, Umbrella incorporates the SecureX ribbon, allowing SecureX functions to be leveraged from any part of the Umbrella console. |
Enrich all investigations with leading reputational insight on domains and more. Discover--and quickly block--the sources of attacks, the recipients of potential or discovered data leakage, or other parts of adversary infrastructure. |
Cisco Secure Firewall (formerly Next Generation Firewall) | Secure Firewall provides sightings of IP addresses, URLs, and domain in SecureX. Additionally, users can leverage Firepower devices via SecureX to block IPs at the perimeter. Secure Firewall devices also can be configured to provide alerts to Cisco's cloud event storage platform to be triaged and correlated such that the most pressing alerts are displayed to the user in SecureX incident manager. Secure Firewall provides tiles to the SecureX dashboard, as well as actions for orchestration so customers can build automated workflows. |
Use SecureX to process and manage high-priority alerts from all Secure Firewall devices (and any other configured alerting technologies), saving time and providing a more holistic response. In addition, querying all configured Secure Firewall devices in SecureX threat response and then using them in coordinated, single-click defenses, simplifies visibility and increases response efficiency. |
Cisco Secure Access by Duo | In SecureX, Duo provides actions for orchestration so customers can build automated workflows. | Secure your workforce by providing trusted access to your applications and establish device trust. |
Additional Cisco Secure resources | Access to several threat intelligence sources is included with SecureX at no additional cost. These include the Talos database, the default Cisco Secure Threat Intelligence Architecture, and a private repository into which users can upload their own threat intelligence, whether generated in house or acquired from other sources. | Simultaneously enhance all investigations with additional information about adversaries and adversary infrastructures from multiple sources. |