cisco aci and algosec webinar
TRANSCRIPT
![Page 1: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/1.jpg)
ACCELERATING DATA CENTER APPLICATION DEPLOYMENTS WITH CISCO ACI AND ALGOSEC
Juan Lage, Principal Engineer at Cisco
Anner Kushnir, VP Technology at AlgoSec
![Page 2: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/2.jpg)
AGENDA
• AlgoSec overview
• Cisco ACI overview
• AlgoSec & Cisco ACI - integrated solution
• Solution demo
• Summary
• Q&A
![Page 3: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/3.jpg)
Founded 2004
1500+ Enterprise Customers
Serving 20 of the Fortune 50
24/7 Support via 3 Global Centers
Passionate about Customer Satisfaction
3
ALGOSEC OVERVIEW
![Page 4: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/4.jpg)
4 | Confidential
Security Management Automation
Single Pane of Glass
Business Driven Security
Provide Business Application context to
Security and Risk
Provide uniform visibility across the entire network security infrastructure –
on premise, private cloud & SDN, and in public cloud
Intelligently enhance and automate time-consuming
security processes and activities with business
context
Manage Security at the Speed of Business
![Page 5: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/5.jpg)
KEY BUSINESS CHALLENGES THAT ALGOSEC ADDRESSES
Automating security change
management
Tying cyber threats to business
processes
Single pane of glass for network
security policy management
Securing business transformation to
the cloud
Ensuring continuous compliance
Effectively managing
application connectivity
Reducing risk from misconfigurations
Avoiding application
outages due to connectivity issues
Business-Driven
SECURITY
Business-Driven
AGILITY
![Page 6: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/6.jpg)
THE ALGOSEC SECURITY POLICY MANAGEMENT SUITE
![Page 7: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/7.jpg)
CISCO ACI - OVERVIEW
![Page 8: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/8.jpg)
* Cisco Global IT Impact Survey
APPLICATIONS ARE CHANGING
Type ConsumptionDelivery
78% The network is even more critical to delivering applications than a year ago*
Big Data, Distributed
Apps, Mobile
Cloud–public, Private, Hybrid
Anywhere, Anytime, Any
Device
![Page 9: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/9.jpg)
THE NETWORK IS THE BEST PLACE TO PUT POLICY
Because it touches everything, the network never lies
POLICY
DATA CENTER
Public Cloud
APPAPP APP
Edge
![Page 10: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/10.jpg)
Cisco® ACI Fabric
App DBWeb
QoS
Filter
Filter
Service
QoS
FilterOutside
Cisco Application
Policy Infrastructure
Controller (APIC)
CISCO ACI – MULTI-TENANT INTENT DRIVEN NETWORKING
6
![Page 11: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/11.jpg)
Security Everywhere9
Analytics Everywhere10
8 Policy Everywhere
POLICY-DRIVEN INTEGRATED INFRASTRUCTURE ANSWERS CUSTOMERS’ REQUEST
1
Modernize Infrastructure:
Open and Programmable
Network / L4-7
Compute
Storage
Security
Data Center
5
Move Data and
Workloads Securely
6
Self-Service Portal
(IT as a Service)
7
Extend Policy
Model
2
Automate
and Simplify
POLICY
3
Build Your
Hybrid Cloud
Private Cloud Stack
Integrated Infrastructure
4
Choose any
Other Cloud
Managed
Public
Private
![Page 12: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/12.jpg)
ACI, CLOUDCENTER AND TETRATIONAUTOMATE APPLICATION POLICY
App Level Policy Enforcement / Visibility
Self-documenting Network
Real-time Change Notification
Real Time
DataNetwork
Policy
App Policy
Tetration
8
![Page 13: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/13.jpg)
CUSTOMER ACCEPTANCE CONTINUES
17,100+ 652,700+Nexus 9K and Nexus 3K
Customers GloballyEcosystemPartners
ACI Customers
NEW ECOSYSTEM
![Page 14: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/14.jpg)
CISCO ACI SECURITYAUTOMATED SECURITY WITH BUILT-IN MULTI-TENANCY
Distributed stateless firewall
Line-rate security enforcement
Open: Integrate any security device
PCI and FIPS (new)
Embedded Security
• Whitelist firewall policy model• Authenticated northbound API (X.509)• Encrypted management plane (TLS 1.2)
Microsegmentation
• vDS, Hyper-V, and bare-metal workloads• Intra-EPG isolation• Attribute-based isolation and quarantine
Security Automation
• Dynamic service insertion and chaining• Security policy follows workloads• Centralized security provisioning and visibility
Cisco ACI™ Services Graph
11
![Page 15: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/15.jpg)
• Application-centric policy management
• Automation and agile application delivery
• Built for enterprise customers
• Full support for Cisco firewalls and routers
• Integrated with Cisco CloudCenter (CliQr)
• Full support for all leading security vendors
ALGOSEC AND CISCO ACI – BETTER TOGETHER
![Page 16: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/16.jpg)
Data Center
ACI
SOLUTION ARCHITECTURE
Visibility & Compliance Automatic Provisioning Business Applications
Data Center FWs (L4-L7 services)Perimeter & Upstream FWs
![Page 17: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/17.jpg)
ALGOSEC & CISCO ACI - KEY VALUE POINTS
• Security policy visibility across the entire networkWithin Data Center - Cisco ACI and underlying firewallsPerimeter and upstream firewallsCloud security groups
• Monitor and proactively identify security policy changesTrack changes in application profiles, contracts, EPGs, filtersVerify no out of band changes in underlying firewalls
• TroubleshootingEnd-to-end connectivity
• Full multi-tenant support
End-to-End Visibility
![Page 18: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/18.jpg)
ALGOSEC & CISCO ACI - KEY VALUE POINTSAutomation & Business Agility
• AlgoSec extends Cisco ACI policy-based automation across the entire network
Automated security policy change management for multi-vendor devices
• Avoid misconfigurations and outages
• End-to-end automationSecurity is no longer the bottleneck for agile application delivery
• Continuous compliance and documentation is retained
![Page 19: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/19.jpg)
ALGOSEC & CISCO ACI - KEY VALUE POINTS
• Risk and compliance analysis for Cisco ACI contracts alongside firewall security policies
• Significantly simplify and reduce audit preparation efforts and costs
Supports all the industry regulatory standards
• Automated workflow’s “what-if” risk check assures continuous compliance
• Full audit trail for all policy changes
Security & Compliance
![Page 20: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/20.jpg)
SOLUTION DEMO
![Page 21: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/21.jpg)
![Page 22: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/22.jpg)
![Page 23: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/23.jpg)
USE CASE 1END-TO-END VISIBILITY
![Page 24: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/24.jpg)
![Page 25: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/25.jpg)
![Page 26: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/26.jpg)
![Page 27: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/27.jpg)
USE CASE 2SECURITY POLICY CHANGE AUTOMATION
![Page 28: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/28.jpg)
![Page 29: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/29.jpg)
![Page 30: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/30.jpg)
![Page 31: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/31.jpg)
![Page 32: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/32.jpg)
![Page 33: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/33.jpg)
USE CASE 3PREPARING FOR AUDITS
![Page 34: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/34.jpg)
![Page 35: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/35.jpg)
![Page 36: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/36.jpg)
![Page 37: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/37.jpg)
![Page 38: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/38.jpg)
![Page 39: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/39.jpg)
![Page 40: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/40.jpg)
CISCO ACI APP CENTER:ALGOSEC CONNECTIVITY AND COMPLIANCE APP
![Page 41: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/41.jpg)
CISCO ACI APP CENTER: ALGOSEC APP
Risk and Compliance• Visibility into ACI contracts risk and compliance posture
• Visibility into risk and compliance posture of the underlying firewalls in the ACI fabric
Network Connectivity• Automate security policy changes on underlying and upstream
firewalls
• Contract connectivity check
![Page 42: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/42.jpg)
![Page 43: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/43.jpg)
SUMMARY
![Page 44: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/44.jpg)
SUMMARYACCELERATING DATA CENTER APPLICATION DEPLOYMENTS WITH CISCO ACI AND ALGOSEC
• Security policy visibility across the entire network, including Cisco ACI
• Automated security policy change management for multi-vendor devices across the entire estate
• Risk and compliance analysis for Cisco ACI contracts alongside firewall security policies
• Significantly simplify and reduce audit preparation efforts and costs - supports all the industry regulatory standards
![Page 45: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/45.jpg)
DON’T FORGET!
If you would like more information or a personal demo, please email us at [email protected]
Make sure to visit us at Cisco Live in Berlin in a couple of weeks time!
![Page 46: Cisco aci and AlgoSec webinar](https://reader030.vdocuments.mx/reader030/viewer/2022020314/5a6602627f8b9a214f8b48bb/html5/thumbnails/46.jpg)
MORE RESOURCES
48