We're able to dig in and really understand how things came to be and where to focus our efforts." "It is extensive in terms of providing visibility and insights into threats. Once a threat was detected, being able to do the threat lookups and the live tracking was really useful." "Device Trajectory is one of the most valuable features. We had Umbrella in place and we were using Anåonnect as well as Firepower. It also has a File Trajectory, so you can even see if that file has been found on any of your other computers that have AMP." "The biggest lesson that I have learned from using this product is that there is a lot more malware slipping through my email filters than I expected." "The integration with other Cisco products seemed to be really effective. It shows every running process and file access on the computer and saves it like a snapshot when it detects something malicious. It shows the point in time when a virus is downloaded, so you can see if the user was surfing the internet or had a program open. I found that quite good." "Another of my favorite features is called the Device Trajectory, where it shows everything that's going on, on a computer. It has behavioral analytics, so you can be more proactive toward zero-day threats. "The best feature that we found most valuable, is actually the security product for the endpoint, formerly known as AMP.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |