WIXLIB

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Cisco Email SecurityTobias MayerTechnical Solutions ArchitectSeptember ectionSecurityAwarenessTraining 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential2

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Email Security – High Level Overview .Filtering, using lotsof cool stuff!Good Emails makeUser happy!ESABad Emails goaway! 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential3Email Security – High Level Overview .MX 10 example.comMX 20 example.comClustered, physicalor virtualESASender 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialESA4

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Email Security – High Level Overview .MX 10 example.comMX 20 example.comCES – Cloud EmailSecurityCloudESASenderESA 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential5Email Security – High Level Overview .MX 10 esa1.cisco-ces.comMX 20 stomerLDAPS for OnPrem Identity 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential6

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Email Security – High Level Overview .MX 10 esa1.cisco-ces.comMX 20 stomerAzure IdentityConnector 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential7Traditional gateway vs. Cisco ESA Acting alone in the network Using multiple engines likeAntispam, antivirusReceiving regular securityupdates from central vendorrepository focused on emailsecurityIntegrating Threat Intelligenceacross the network Providing visibility in Threatsalso outside the email vectorwith SecureXMalware Analysis from networkentry until the endpoint 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialInput from NGFW, Web, IPS,network anomalies“AMP everywhere”8

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Talos on Cisco Email SecurityProtecting Incoming EmailSender Reputation FilteringAnti-SpamAnti-VirusConstant andintegrated securityfeedsAdvanced Malware Protection (AMP)Graymail DetectionOutbreak FiltersReal-Time URL Analysis 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialIncoming emailDropRewriteQuarantine9Block Fraudulent SendersProtect against business email compromise (BEC – Business Email Compromise)DMARC, DKIM, and SPF 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialAnti-SpamForged Email Detection10

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Stop URL-Based ThreatsProtect against phishing, and ransomware with deep inspectionAnti-SpamContent Filterswith URL Controlsand Sender DomainReputationOutbreak Filterswith Cloud URL Analysis 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential11Cloud URL Analysis (CUA)Microserviceswww. xyz .com1www2Service oud URL AnalysisURL Reputation ServiceDeliveredCisco EmailSecurityMail Policyscanning 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialOutbreak Filters(DelayQuarantine)Quarantineexit scanDroppedOther12

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Automatically Remove Malicious FilesCombat ransomware in attachmentsAnti-SpamAnti-VirusOutbreak FiltersFile ReputationThreat Grid(Sandboxing)RetrospectiveAlertingMailbox AutoRemediationfor O365Advanced Malware Protection (AMP) 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential13Auto Remediation with O365Email withAttachementAMPCESESAO365 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential14

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Full Access to your Threat Grid EnvironmentThreatGrid CloudAccountGet full access to yourprivate TG Instance inthe CloudDownload files,manually upload filesfor analysis,comprehensivestatistics, watchrecorded video 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential15Email Security with AMP Local File AnalysisMX 10 example.comMX 20 example.comFile ReputationESASenderESAFiles Analyzed localNo Data shared withCloudThreat Grid 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential16

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020SecureX and Cisco Email SecurityConnect With Your Entire Security InfrastructureIntegrate everything in your environment to unifyvisibility, enable automation, and strengthen security Reduces complexity involved with the planning andadministration of email security. Improve compliance monitoring. Automate investigative and response actions usingthreat response feature of SecureX. Harmonize email policy management and enhancesthreat protection. Unify advanced sandboxing with threat intelligence tostrengthen malware defense. Augment data loss prevention and content encryptioncapabilities to safeguard sensitive information. 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential17SecureX threat response and Email SecurityEmail Security integrationUnderstand email as a threat vectorby visualizing message, sender, andtarget relationships in the context of athreatSearch for multiple email addresses,subject lines, attachments at once tounderstand how a threat has spreadExpand visibility for your SOC intoemail and other threat artifacts 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential18

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Cisco Email Security and Cisco integrationsAMP forEndpointsSecureX ThreatResponseThreat Grid 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential19O365 & CES – High Level Overview .O365MailboxesMX 10 esa1.cisco-ces.comMX 20 esa2.cisco-ces.comCloudESAESAClientCustomer 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialAzure IdentityConnector20

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Adding value to O365 Higher Efficacy for detecting malicious emails through ThreatIntelligence powered by TALOS“Good enough” might be abad choice for a surgery Fully accessible Sandbox system Detailed tracking and reporting for optimized OPEX Visibility across the network through SecureX Email, Web, Firewalling, Endpoint , Network Anomaly detection & 3rd party 2020 Cisco and/or its affiliates. All rights reserved. Cisco DomainProtectionSecurityAwarenessTraining 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential22

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Cloud Mailbox Defense for O365Faster and more powerfulEvolving defense and detectionstrategiesIntegration is essential forsecuring cloud email 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialJournaling23Journal mailboxInvented for legal archiving andrecord retentionCreates a new copy of everymessage sent or receivedCopy is sent to an external mailboxwith all the original headers intactUser mailbox 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential1Cloudfile analysis is optional24

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020CMDSenderreputationURL reputationFile reputationand analysisMalwareCloudMailboxDefensePhishing / BECInternal ThreatsContentscanningSpamprotectionAccount Takeover 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialDeployment madeeasy Fully functionalin 5 minutesNo operational riskNo changes to mailflow or DNSTrack all messages,including internal 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential25Two-stepdeploymentInstant trackingand reportingNo risk to maildelivery26

Cisco E-Mail Security Webinar29. September / 8. Oktober ectionSecurityAwarenessTraining 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential27Advanced Phishing attacks use identityimpersonation30%13%3:45open maliciousemailsclick on maliciousattachmentsuntil first user iscompromised 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential28

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Protect against fraudulent sendersAdvanced phishing protectionAnalyze and manage untrusted, suspicious messages– mapping trust to emailRisks at aglanceTrustmappingDetailedanalytics 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential29Cisco Advanced Phishing Protection (APP)DeploymentMETA Data Identifies highly targeted attacks likeSpear-Phishing and identity deception Leveraging machine learning and trustmodelling of the email traffic Actions can be enforced like quarantinedue to integration with O365 APIs APP Sensor can be OnPrem, Cloudbased or ESA Integrated (13.5)Cisco Email SecurityInternet 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialAPP PortalAPP SensorO365 / EOPExternalSenders3030

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Advanced Phishing Protection sensor integration 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential31Remove compromised emails with AdvancedPhishing Protection 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential32

Cisco E-Mail Security Webinar29. September / 8. Oktober ectionSecurityAwarenessTraining 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential33Cisco protects your data and brandData LossPrevention 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialCisco RegisteredEnvelope ServiceCisco DomainProtection34

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Protect Your BrandCisco Domain ProtectionProtect your brandWWW Easily analyze, update andtake action against thosemisusing your domain tosend malicious email Validate those who useyour domain appropriatelyAutomate DMARCauthentication Compliant with new USDepartment of HomelandSecurity RegulationsBlock attackers from using your domainDMARC Drive to DMARCEnforcement with proventools and servicesWWW 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential35Protect Your BrandCisco Domain ProtectionIdentify all outgoing mail sourcesApprovedUnapproved 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential36

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Protect Your BrandCisco Domain ProtectionManage, create, and modify DMARC, SPF, DKIM records 2020 Cisco and/or its affiliates. All rights reserved. Cisco ConfidentialPOV made easy Discover most 3rd party sendersin a few daysShow problems in SPF andDKIM1 DNS entry with no operationalriskNo changes to mailflow 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential37Provisioning inless than 48hInstant trackingand reportingNo risk to maildelivery30/40 days todeliver PoVResults38

Cisco E-Mail Security Webinar29. September / 8. Oktober 2020Phishing Protection: One size Doesn’t fit allCisco Email GatewayCisco Domain ProtectionDMARC, SPF, DKIM EnforcementDMARC, SPF, DKIM Policy ManagementGlobal known Phish sender blocksDMARC Aggregate and Failure ReportingContent Based Phishing ProtectionCompromised user-based PhishingURL based Phishing ProtectionBehavioral AnalyticsBusiness Email CompromiseTrust PatternsCisco Advanced Phishing Protection 2020 Cisco and/or its affiliates. All rights reserved. Cisco DomainProtectionSecurityAwarenessTraining 2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential40