What is Cisco AMP for Endpoint?
Cisco AMP for Endpoint is next-generation endpoint security that enhances the security of endpoint devices. It combines EPP (Endpoint Protection Platform) and EDR (Endpoint Detection & Response), and enables fast execution from endpoint protection to threat intrusion detection/response. Since Cisco AMP for Endpoint is provided by SaaS, it can be centrally managed from the cloud, and it is easy to introduce and operate.
Cyberattacks are becoming increasingly sophisticated, and security products and solutions to resist those attacks are evolving every day. However, it is difficult to block 100% of threats. Even if only 1% of threats are able to evade defenses, it can have a damaging impact on your business. Therefore, it is important to take countermeasures against unknown threats and threats that are not preventable using EPP. EDR visualizes and detects threats that have invaded the network and allows for a prompt response.
Features
Solution that combines EPP and EDR
The solution integrates EPP, which protects a wide range of endpoints including servers, computers, and mobile devices, and EDR, which enables threat visualization and detection. This enables Cisco AMP for Endpoint to function as a platform for security analysis and management.
Uses 15 detection/protection engines to block threats
Cisco AMP for Endpoint uses 15 detection/protection engines and cloud-based threat intelligence to block cyberattack threats in real time.
Enables tracing and response after intrusion by unknown threats
By monitoring file activity, even if a threat intrudes into the company, it is possible to obtain information on the source of the threat, the degree of the threat impact, and the extent of the threat impact. All of the information can be grasped through visualization as a log.
Link with various Cisco security products
For example, the user can share a blacklist by registering Cisco Web Security Appliance, Cisco Email Security Appliance, etc., in the Cisco AMP cloud.
Visualization of threats
Linking with various Cisco security products makes it possible to aggregate various threat information sources, and to visualize what kind of threats exist in the corporate network and even the propagation path.
Supports various OS from servers to mobile devices
Cisco AMP for Endpoint supports a wide range of operating systems such as servers, desktop computers, and mobile devices.
Supported OS (as of January 2021)
- Windows7/8/8.1/10
- Windows Server 2008R2/2012/2012 R2/2016
- Red Hat Enterprise Linux
- CentOS 6.x/7.x
- Android 2.1(Éclair)~6.0(Marshmallow)
- iOS 11 or higher
- OSX 10.11
- macOS 10.12/10.13
The service will solve problems such as the following.
- Wanting to protect your company’s business from increasingly sophisticated cyberattacks
- Worried that your cyberattack countermeasures are insufficient
- In addition to computers, wanting to ensure protection for mobile devices
- Want to receive support for all of the various security products that we have introduced
Main Functions
Cisco AMP for Endpoints
| Uses 15 detection/protection engines |
|
| Trajectory and cloud recall |
|
| Cisco AMP Unit |
|
| Cisco Threat Response |
|