Breach Notification , Incident & Breach Response , Network Detection & Response
A Better Way to Cover the Bases for Breach Protection
Cisco's AJ Shipley on Merging Email, Endpoint and XDR Protection Into One SolutionSome of the biggest challenges in threat detection and response today are the inability to cover the entire attack surface - including home-based workplaces and airport coffee shops - and a lack of insight into who is attacking and why.
It's hard to solve those problems, which is why security organizations need to cover all the bases with their threat detection and response tools, said AJ Shipley, vice president, product, for threat detection and response at Cisco.
Cisco just introduced a suite of products called Breach Protection that combines advanced email threat detection, endpoint protection, and extended detection and response, or XDR. Breach Protection covers a majority of threats - from phishing emails to ransomware and advanced persistent threats, Shipley said.
"The outcome that we're focused on within Breach Protection is being able to detect sooner and respond faster to get organizations back up and running. If they have been hit with ransomware, we automatically trigger snapshots of their high-value assets before the ransomware can move laterally and get to them. We can also detect and respond to other more sophisticated types of attacks," Shipley said.
In this audio interview with Information Security Media Group, Shipley discussed:
- Cisco's three-tier approach to The Breach Protection Suite's three tiers, which range from integrated tools to advanced threat telemetry and fully managed security services;
- The emerging role of generative AI in quickly summarizing breach information and providing tailored response recommendations;
- Strategies to combat security analyst burnout and promote continuous learning.
Shipley is responsible for Cisco's threat, detection and response portfolio, which includes XDR, EDR, NDR, risk-based vulnerability management, malware protection, email security and Talos threat intelligence. Prior to Cisco, he was vice president of product management for Palo Alto Networks and has worked for Net App, Wind River and Raytheon.