Cisco Advanced Malware Protection (AMP)

Name: Cisco Advanced Malware Protection (AMP)
Author: Panos Kampanakis

All-in-one Cisco ASA FirePOWER Services, NGIPS, and AMP

Paperback Engels 2016 9781587144462

Verwachte levertijd ongeveer 7 werkdagen

62,19

In winkelwagen

Samenvatting

Network threats are emerging and changing faster than ever before. Cisco Next-Generation Network Security technologies give you all the visibility and control you need to anticipate and meet tomorrow’s threats, wherever they appear. Now, three Cisco network security experts introduce these products and solutions, and offer expert guidance for planning, deploying, and operating them.

The authors present authoritative coverage of Cisco ASA with FirePOWER Services; Cisco Firepower Threat Defense (FTD); Cisco Next-Generation IPS appliances; the Cisco Web Security Appliance (WSA) with integrated Advanced Malware Protection (AMP); Cisco Email Security Appliance (ESA) with integrated Advanced Malware Protection (AMP); Cisco AMP ThreatGrid Malware Analysis and Threat Intelligence, and the Cisco Firepower Management Center (FMC).

You’ll find everything you need to succeed: easy-to-follow configurations, application case studies, practical triage and troubleshooting methodologies, and much more.
- Effectively respond to changing threat landscapes and attack continuums
- Design Cisco ASA with FirePOWER Services and Cisco Firepower Threat Defense (FTD) solutions
- Set up, configure, and troubleshoot the Cisco ASA FirePOWER Services module and Cisco Firepower Threat Defense
- Walk through installing AMP Private Clouds
- Deploy Cisco AMP for Networks, and configure malware and file policies
- Implement AMP for Content Security, and configure File Reputation and File Analysis Services
- Master Cisco AMP for Endpoints, including custom detection, application control, and policy management
- Make the most of the AMP ThreatGrid dynamic malware analysis engine
- Manage Next-Generation Security Devices with the Firepower Management Center (FMC)
- Plan, implement, and configure Cisco Next-Generation IPS—including performance and redundancy
- Create Cisco Next-Generation IPS custom reports and analyses
- Quickly identify the root causes of security problems

Specificaties

ISBN13:9781587144462

Trefwoorden:beveiliging, netwerkbeheer, Cisco, applicatiebeveiliging, malware

Taal:Engels

Bindwijze:paperback

Aantal pagina's:346

Uitgever:Cisco Press

Druk:1

Verschijningsdatum:1-1-2016

Hoofdrubriek:IT-management / ICT

Lezersrecensies

Wees de eerste die een lezersrecensie schrijft!

Schrijf een recensie

Geef uw waardering

Zeer goed Goed Voldoende Matig Slecht

Over Omar Santos

Omar Santosis an active member of the cyber security community, where he leads several industry-wide initiatives and standards bodies. His active role helps businesses, academic institutions, state and local law enforcement agencies, and other participants dedicated to increasing the security of their critical infrastructures. Omar is the author of more than a dozen books and video courses, as well as numerous white papers, articles, and security configuration guidelines and best practices. Omar is a principal engineer of the Cisco Product Security Incident Response Team (PSIRT), where he mentors and leads engineers and incident managers during the investigation and resolution of cyber security vulnerabilities. Additional information about Omar’s current projects can be found at omarsantos.io, and you can follow Omar on Twitter: @santosomar.

Andere boeken door Omar Santos

Bekijk alle boeken

Over Aaron Woland

Aaron Woland , CCIE No. 20113, is a Senior Secure Access Engineer at Cisco Systems and works with Cisco's largest customers all over the world. His primary job responsibilities include secure access and ISE deployments, solution enhancements, futures, and escalations. Aaron joined Cisco in 2005 and is currently a member of numerous security advisory boards. Prior to joining Cisco, he spent 12 years as a consultant and technical trainer. His areas of expertise include network and host security architecture and implementation, regulatory compliance, and routing and switching. Aaron is the author of many white papers and design guides, including the TrustSec 2.0 Design and Implementation Guide and the NAC Layer 3 OOB Using VRFs for Traffic Isolation design guide. He is also a distinguished speaker at Cisco Live for topics related to identity and is a security columnist for Network World , where he blogs on all things related to identity. Additional certifications include CCSP, CCNP, CCDP, Certified Ethical Hacker, MCSE, and many other industry certifications.

Andere boeken door Aaron Woland

Bekijk alle boeken

Inhoudsopgave

Introduction

1 Fundamentals of Cisco Next-Generation Security
The New Threat Landscape and Attack Continuum
Cisco ASA 5500-X Series Next-Generation Firewalls and the Cisco ASA with FirePOWER Services
Cisco Firepower Threat Defense (FTD)
Next-Generation Intrusion Prevention Systems (NGIPS)
Firepower Management Center
AMP for Endpoints
AMP for Networks
AMP Threat Grid
Email Security Overview
Web Security Overview
Cisco Identity Services Engine (ISE)
Cisco Meraki Cloud-Managed MDM
Cisco Meraki Cloud-Managed Security Appliances
Cisco VPN Solutions
Summary

2.Introduction to and Design of Cisco ASA with FirePOWER Services
Introduction to Cisco ASA FirePOWER Services
Inline versus Promiscuous Mode
Cisco ASA FirePOWER Management Options
Cisco ASA FirePOWER Services Sizing
Cisco ASA FirePOWER Services Licensing
Cisco ASA FirePOWER Compatibility with Other Cisco ASA Features
Cisco ASA FirePOWER Packet Processing Order of Operations
Cisco ASA FirePOWER Services and Failover
Cisco ASA FirePOWER Services and Clustering
Deploying the Cisco ASA FirePOWER Services in the Internet Edge
Deploying the Cisco ASA FirePOWER Services in VPN Scenarios
Deploying Cisco ASA FirePOWER Services in the Data Center
Firepower Threat Defense (FTD)
Summary

3. Configuring Cisco ASA with FirePOWER Services
Setting Up the Cisco ASA FirePOWER Module in Cisco ASA 5585-X Appliances
Setting Up the Cisco ASA FirePOWER Module in Cisco ASA 5500-X Appliances
Configuring the Cisco ASA to Redirect Traffic to the Cisco ASA FirePOWER Module
Configuring the Cisco ASA FirePOWER Module for the FMC
Configuring the Cisco ASA FirePOWER Module Using the ASDM
Firepower Threat Defense
Summary

4. Troubleshooting Cisco ASA with FirePOWER Services and Firepower Threat Defense (FTD)
Useful show Commands
Useful ASA Debugging Commands
Summary

5. Introduction to and Architecture of Cisco AMP
Introduction to Advanced Malware Protection (AMP)
Role of the AMP Cloud
Doing Security Differently
The Cloud
Private Cloud
Installing the Cisco AMP Private Cloud
Summary

6. Cisco AMP for Networks
Introduction to Advanced Malware Protection (AMP) for Networks
Summary

7. Cisco AMP for Content Security
Introduction to AMP for Content Security
Content Security Connectors
Configuring Cisco AMP for Content Security
AMP Reports
Summary

8. Cisco AMP for Endpoints
Introduction to AMP for Endpoints
What Is AMP for Endpoints?
Connections to the AMP Cloud
Outbreak Control
The Many Faces of AMP for Endpoints
AMP for Windows
AMP for Mac
AMP for Linux
AMP for Android
Installing AMP for Endpoints
Proxy Complications
Using the Cloud Console
Summary

9. AMP Threat Grid: Malware Analysis and Threat Intelligence
Cisco AMP Threat Grid
Cisco AMP Threat Grid Cloud Solution
Cisco AMP Threat Grid On-Premises Appliance
Summary

10. Introduction to and Deployment of Cisco Next-Generation IPS
NGIPS Basics
NGIPS Deployment Design Considerations
NGIPS Deployment Lifecycle
Summary

11. Configuring Cisco Next-Generation IPS
Policy
Snort Rules
Performance Settings
Stack/Cluster
Summary

12. Reporting and Troubleshooting with Cisco Next-Generation IPS
Analysis
Troubleshooting
Summary