Imagine the following scenario: A customer comes to you asking whether they should upgrade their firewall. If their network infrastructure looks anything like most networks deployed in the last 5+ years, it's likely comprised of disparate networks, interconnected into complex configurations, and supported by personnel who have come and gone. Despite the best of intentions and strict adherence to change management processes, the result is probably a complex mess due to ever-changing IT/application requirements. On top of that, there's the need to balance the overall functionality of everything within that infrastructure. Including the security against the ever-changing sophisticated threat vectors that are actively looking to exploit any weaknesses or vulnerabilities. It's a messy scenario right?
With legacy firewalls, there may still be limited visibility and perhaps, limited practical security/protection due to inconsistencies. There may also be conflicts in firewall policies and/or security postures despite having one or more firewalls. According to Gartner, 99% of firewall breaches are caused by firewall misconfigurations rather than firewall flaws. A big part of this is because legacy firewall products and implementations have typically focused on protecting only the network edge, and customers may also be struggling with ongoing and growing talent retention issues, as well as maintaining their talent pool with up-to-date security intelligence. These "misconfigurations" are often the result of deliberate tradeoffs of having multiple teams involved, complex/disparate networks, multiple policy enforcement points, and/or inconsistent application of security postures.
According to a recent Cisco cloud native security study surveying ~500 enterprise IT and security decision makers, 73% lack visibility into threats and ongoing attacks and 48% who were attacked in product environments resulted in loss.
As business environments continue to evolve and become more complex, customers are also challenged with keeping up with the monitoring and management of their environments, maintaining security, or responding to ongoing and ever-changing threats and attacks. Furthermore, businesses have been adopting new uses cases such as:
As a result of these changes, the Cisco 2022 Global Hybrid Cloud Trends report found that approximately 82% of IT leaders have adopted hybrid cloud and about 92% of them are deploying on multiple public IaaS cloud services. However, security and complexity remain their biggest challenges.
To solve for these modern-day network problems, the ideal next-generation firewall platform needs to provide a lot of different features. First, it should have security that just works well together and flexible consumption and licensing models to adapt to ever-changing business requirements. Second, it needs to have Open APIs for easy integration with other tools and services to streamline operations and reporting as well as offer automated security for dynamic defense capabilities. Third, it should provide centralized policy and operations across the entire deployed infrastructure. The ideal next-gen firewall platform must also provide:
For Cisco Partners-particularly Managed Service Security Providers (MSSPs)-there is a huge opportunity to help customers update/refresh their network infrastructure and network firewalls to keep up with modern infrastructure and use cases. And secure firewalls are a foundational component of multiple sales motions and sales opportunities such as eXtended Detection and Response (XDR), Secure Access Secure Edge (SASE), Hybrid Cloud Security, Hybrid Work, and Zero Trust. In fact, more customers are now shifting towards leveraging MSSPs who can provide Firewall-as-a-Service (FWaaS) that can address their evolving business requirements.
To that end, customers typically want business outcomes such as:
According to the Forrester Total Economic Impact of Cisco Secure Firewall report, MSSPs that harness the power and capabilities of Cisco Defense Orchestrator and Cisco's Secure Firewall Management Center next-generation security platform can help improve their customers' end-user experience and increase overall work productivity by:
If you are a Cisco partner and would like to find out how to monetize on this opportunity, please register for the upcoming session of theManaged Services Voice of the Engineer.In this session, our Americas Partner Organization (APO) team will provide an overview of Cisco's Secure Firewall Management Center (FMC) and how it can be offered as part of a Partner-Enabled Managed Services offering. They will also explore the benefits that can be attained for both Cisco partners and your customers. And if you're interested in becoming a Cisco Partner, you can learn more by visiting Cisco's Partner Program and Cisco Partner-Enabled Managed Services.
We'd love to hear what you think. Ask a Question, Comment Below, and Stay Connected with#CiscoPartners on social!
Cisco Partners Facebook | @CiscoPartners Twitter | Cisco Partners LinkedIn| @CiscoPartners Twitter | Cisco Partners LinkedIn