Timothy SnowSolutions Architect – Security Group@TimSnowIT

Security for the Multicloud

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public

NetworK

Applications

Compute

Storage

DevicesUsers

2

Change – The new daily challenge

ComputeVast Scale & Containers

Devices / Users

Anywhere / Anything

NetworkSoftware Defined

Networking

ApplicationsDynamic

Instantiation & interconnectivty

requirements

Storage

Data VirtualizationStorage-as-a-Service

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public

Financial

Efficiencies

Speed

Scale

Cost Savings

New models moving from CAPEX > OPEX and department billing, Support as a Service

Location, Open Cloud options, App transformation

Fast roll out of new services, DevOps, DevTest

Elastic Scale, Replication, HA

Savings on Space, Power, Cooling, Cabling, IT!

Why are customers moving to cloud(s)

Benefit

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public

4

But Wait… What about

Users/Accounts Data Applications

● Who is doing what in my cloud applications?

● Is that per my policy?

● Do I have a policy?

● How do I detect account compromises?

● Are malicious insiders extracting information?

● Do I have toxic & regulated data in the cloud?

● How do I detect policy violations and data exposures?

● How do I control movement of IP within and outside of any app/SaaS?

● How do I automate incident remediations?

● How can I monitor app usage and risk?

● Do I have security telemetry sources within the cloud?

● Do I have any 3rd party connected apps that carry risk?

● What security controls are available to me?

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public

Juice > Squeeze?

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public

Forbes CIO Hybrid Cloud study summary

42%Data sovereignty 38%

Security issues or concerns

58%Costs per transaction

have increased

43%Concerned about

lock-in62%Multi-Cloud strategy

was crucial

Why?

Source: Forbes Insights: When Clouds Connect- How Hybrid IT is transforming enterprises

Discontinued or scaled back from public cloud65%

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Public

Source: IDC CloudView, April, 2017, n=8,293 worldwide respondents, weighted by country, company size and industry

Evaluating or usingpublic cloud

85%

Taken steps towards a hybrid cloud strategy

87%

Plan to usemultiple clouds

94%

Among cloud users

Now the tides have turned to taking a calculated risk

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Done Right = Holistic and Multi-Tiered Successes

Innovation

Speed Decision MakingTarget New MarketsLead through disruption

Improve Perceived ValueIncrease confidenceGreater Innovation -Interactions

Interwoven, ubiquitous securityImproved decision making –Risk/CostMature Models - DevSecOps

Operating Cost PerformanceLowered Innovation CostsAligned Priorities to businessBreak perception IT = Cost Center

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Challenges for IT

New apps

Average enterprise hasat least 13 cloud-native

business apps

Connectivity

New users

More Users, More Things

50 Billion by 2020

Compliance & Scalability

New attack surfaces

Average 6 months to detect breach

Security

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Partner Confidential

Use Case #1 – Securing the End Users

Anywhere Protection

OnPrem and OffPrem Traffic Visibility

Endpoint Protection Services (AV/EPP/URL)

AlwaysOn Containerized VPN for Multicloud

Securing end-users from malware and threats

Proliferation of end-point devices

Growing direct to cloud Users

CloudProtect

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Partner Confidential

Use Case #2 – Security to the Cloud

Protection to the Cloud

Optimizing Application Performance inter-cloud

Securing branch to the Cloud Services

Configuration and Experience in Cloud

Remote Branches

Public Cloud

CloudConnect

Consistent Experience in Cloud

Web

DatabaseApplication Web

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Partner Confidential

Use Case #3 – Security within the Cloud

InterCloud Protection

Flow Analytics for threat detection

Application Performance and Protection inter-cloud

Segmentation and System Protection

SaaS

Cloud to cloud

CloudProtect

© 2017 Cisco and/or its affiliates. All rights reserved. Cisco Partner Confidential

Use Case #4 – Securing the applications

Application Services Protection

Trusted Platforms / Secure Boot / VA

Instantiation Protection (Docker/Kubernetes)

API and Gateway Security at HeadEnd

CloudConsume

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public

Cisco is aggressively building a world class multicloud portfolio

Networking ManagementAnalyticsSecurity

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Confidential

Key Takeaways

Cloud Journey is Inevitable as we move towards a Smarter Nation

The Digital Transformation Depends on it

There is definitely benefits to gain from the risk taken. These directly impact our customers (citizens).

Done with the right Security in mind, the risk is reduced.Security should be embedded from the start.

Thank you!