Cisco TrustSec Software-Defined Segmentation
2Pages

At a glance Cisco public Cisco TrustSec Software-Defined Segmentation Policy-based approach to simplifying security and reducing risk Network segmentation is essential for protecting critical business assets. But traditional segmentation approaches are operationally complex. You need to scale the network and still restrict access to critical applications in the data center while improve situational awareness on the network. As the number of roles and endpoints increase within an organization, the cost for managing virtual LANs (VLANs) can be significant. Balancing the demands for agility and security requires a new approach. Cisco TrustSec® software-defined segmentation dynamically organizes endpoints into logical groups, called security groups. Security groups are assigned based on business decisions using a richer context than an IP address. They are easier for people to understand and manage. And the number of group-based rules is dramatically less than an equivalent set of rules based on IP addresses. Cisco TrustSec technology is embedded in more than 40 Cisco product families and thirdparty products. It isolates attacks, quickly restricts the lateral movement of threats with micro-segmentation, enables a scalable bring-your-own-device (BYOD) environment, and reduces the scope of compliance for industry and government regulations. A commissioned study conducted by Forrester Consulting on behalf of Cisco now available indicates that customers have found that time-to-implement policy changes can be reduced by 98% and operational costs reduced by as much as 80% with TrustSec software-defined segmentation. © 2017 Cisco and/or its affiliates. All rights reserved. Benefits • Limit the impact of data breaches, compromised devices, and prevent the lateral movement of threats with micro-segmentation • Rapid threat containment to isolate attacks and vulnerable devices • Control access to critical enterprise resources in an easy-to-use matrix • Lower operational expenses through simplified policy management • Easily comply with PCI audits and other compliance req

At a glance Cisco public Forrester interviewed customers that had deployed Cisco TrustSec and found: • 140% Return on investment Composite NPV was $2.33 million. Composite cost to implement was only $1.66 million • 80% Reduction in IT operational costs Avoid associated costs with operating VLANS and firewalls. Reduce manpower needed to deploy and maintain • 98% Reduction in time to implement changes Faster time-to-market for projects. Make changes in minutes instead of weeks Easily control access to your resources Cisco TrustSec security groups give users access that is consistently...