At-A-Glance
Cisco Advanced
Malware Protection
Threat Grid
Figure 1. How Security Teams Can Use Cisco AMP Threat Grid
Cisco® AMP Threat Grid benefits security functions across the organization
Benefits
• Defeat advanced attacks with
existing security technologies
and resources
• Improve the effectiveness of
security and response teams
• Discover breaches faster and
respond quicker to security
incidents
“AMP Threat Grid is
revolutionizing the way that
organizations use accurate
and context-rich malware
analysis and threat intelligence
to defend against advanced
cyberattacks.”
Jon Olstik,
ESG Group
Security Operations
Center Team
• Get more accurate,
actionable data
Incidence Response
Team
Threat
Intelligence Team
• Use forensically
• Proactively improve
sound information to
security infrastructure
understand suspicious
behavior faster
Security Infrastructure
Engineering Team
• Consume and act on
threat information
faster, and in an
automated manner
More and more companies today are finding themselves under a
multitude of common and advanced malware attacks. As a security
professional or IT manager, you are likely struggling to effectively identify
attacks, let alone prioritize the most dangerous ones that should be
addressed first.
Struggle no longer. With the Cisco® Advanced Malware Protection
(AMP) Threat Grid, unified malware analysis and threat analytics
features become integrated with your existing network and security
infrastructure, including mail gateway, security information and
event management (SIEM), and governance, risk management, and
compliance (GRC) platforms. Drawing on a very large static and dynamic
malware analysis solution, you get timely, context-rich, actionable
intelligence to identify and mitigate malware.
Cisco AMP Threat Grid is deployed in multiple locations around the
world, where it has helped security operations center and incident
response teams take more effective and consistent action (Figure 1).
Two Crucial Weapons to Fight Malware: Unified Malware
Analysis and Threat Intelligence
Cisco AMP Threat Grid delivers context-driven analytics to accurately
identify attacks in near real time. The product analyzes millions of files
and correlates them against hundreds of millions of other analyzed
malware artifacts. Customers gain a global view of malware attacks,
campaigns, and their distribution.
© 2014 Cisco and/or its affiliates. All rights reserved.
nce
At-A-Glance
Next Steps
With Cisco AMP Threat Grid, you can:
For more information on Cisco AMP
Threat Grid for Cloud visit http://www.
cisco.com/content/en/us/products/
security/amp-threat-grid-cloud/index.
html.
• Identify key behavioral indicators and determine threat scores for
faster prioritization and recovery from advanced attacks
For more information on Cisco AMP
Threat Grid Appliances visit http://www.
cisco.com/content/en/us/products/
security/amp-threat-grid-appliances/
index.html.
• Arm your teams to prioritize and respond rapidly and efficiently with
confidence
• Automate malware protection features for faster detection and
response
• Easily integrate premium feeds into existing security infrastructures
such as SIEM, intrusion detection systems, gateways, and proxies for
faster detection and blocking of malware
Cisco AMP Threat Grid provides accurate detection and defense against
advanced attacks. Robust search, correlation, and reporting capabilities
provide detailed information on current and historical malware artifacts,
indicators, and samples. Detailed analysis reports include all malware
sample activities, including network traffic and artifacts.
© 2014 Cisco and/or its affiliates. All rights reserved. Cisco and the Cisco logo are trademarks or registered trademarks of
Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/
go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner
does not imply a partnership relationship between Cisco and any other company. (1110R)
C45-733452-00 12/14