Item: Cisco Secure Web Appliance
Rating: 9
Author: Alan Matson, CCNA:S, MCP

Use Cases and Deployment Scope

Currently we use Cisco IronPort Web Security to secure 60K users from web based malware threats and to filter suspicious and non business related categories. This deployment has decreased the attack surface from our users downloading malicious files and has an agency we have reduced the amount of business confidential information from being leaked by combining the IronPort proxies with data loss prevention software.

Pros and Cons

Malware Protection
Reducing business confidential leaks
Blocking non business related websites

From time to time there are a lot of bugs
Using AD authentication can at time be a challenge especially with Mac OS X computers
Better reporting functions would help, we currently have to offload to a SIEM to provide this function.

Return on Investment

Business productivity increased after deployment
Security Posture increased
Malware infections decreased over 60% after the first 90 days.

Alternatives Considered

Websense, Forcepoint and Blue Coat Advanced Threat Protection

Cisco IronPort was the most flexible and easy to deploy. The use of a central manager even simplifies the process even further. Maintenance is seemeless and upgrades go well without having to install constant hotfixes.

Other Software Used

F5 BIG-IP, FireEye, Ixia Bypass Switches

Likelihood to Recommend

Cisco IronPort Web Security is well suited as an additional layer of security and to ensure business tasking and continuity. As with any organization a solid Web Security solution is needed and of the several solutions I have used the IronPort has the most flexibility for policies creation among the others.

Cisco IronPort Web Security Appliances a must

Overall Satisfaction with Cisco IronPort Web Security Appliance