Cisco Secure Endpoint - The Protection You Need
Updated February 14, 2022
Cisco Secure Endpoint - The Protection You Need
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Cisco Secure Endpoint (formerly Cisco AMP)
Cisco AMP was deployed amongst all workstations and servers, tied closely with other Cisco infrastructures such as Umbrella, FirePower, ESA, and WSA to bring in all the event telemetry to make best-informed decisions on application/file access and/or movement. Cisco AMP aimed to help solve malicious file access/movement and ransomware detection.
- Retrospective Alerting.
- Sandboxing.
- Scanning & Detection.
- Quarantining.
- Overall reporting.
- Access to endpoints via SSH/shell.
- Deployment support with SCCM.
- Visibility into overall threat detection with timeline views.
- Ability to detonate malware samples in a sandbox to decrease risk on enterprise systems.
- Integration with other security platforms increased threat detection capabilities.
- Cisco FirePower
- Cisco Email Security Appliance
- Cisco Web Security Appliance
- Cisco Umbrella
The close, tight integration with these other products helped reduce the overall attack surface and help reject/deny traffic before it even hit the firewall or even the endpoint.
The integration with all the other Cisco platforms made AMP a clear front-runner. Crowdstrike and Sophos had no integration at all and Palo Alto required their firewalls be deployed. Again, as a Cisco Security customer, it made complete sense to leverage their AMP technology.
Cisco Secure Endpoint Feature Ratings
Using Cisco Secure Endpoint (formerly Cisco AMP)
1500 - The entire org (HR, Partners, Associates, Admin and IT staff)