Cisco Blogs


Cisco Blog > Security

SecCon 2011 – Addressing Customer Security Requirements

What a week! From October 31-November 3, Cisco hosted its annual internal security event—SecCon 2011. Co-hosted by Greg Akers, SVP of Cisco’s Global Government Solutions Group and Ed Paradise, Vice President of Engineering, this marked the fourth year in which we shared the latest in product security practices, policies, processes, and thought leadership with employees who participated in live and virtual sessions around the world.

Read More »

Tags: , , , , , , ,

Baking Security into the Culture at Cisco – A Tip of the Hat to the Security Knowledge Empowerment Team

“Security must be built into every aspect of our systems architecture and be seamlessly compatible with our business architecture.”

– Rebecca Jacoby, Cisco Chief Information Officer

When Cisco’s CIO Rebecca Jacoby and I agreed that security would be built into every aspect of our IT systems architecture, we knew this was no small task. To some degree, security requirements were bolted on, not baked in, and what “security” meant was different from person to person in our organizations. We knew that we had to raise awareness and knowledge about security—not just among the security practitioners in our IT organization, but also with the IT generalists and those architecting applications and systems. That way, systems would be designed and embedded with security from day one. Read More »

Tags: , , ,

MDM Not The Only Avenue To BYOD Security

November 2, 2011 at 7:09 am PST

Okay, this may sound like gibberish. But I’m sure that many of you know what I mean. Just to be clear, let me put the title in plain English: Mobile Device Management (MDM) is not the only approach to help secure a Bring Your Own Device (BYOD) environment.

Read More »

Tags: , , , , , ,

Welcoming former RSA Security and VMware leader Chris Young to Cisco as our New Security Group Leader

As our customers and partners well know, security has been front-of-mind for Cisco this year. As far back as February, our CEO John Chambers announced that security was to become a top engineering priority for the company. The pace of innovation and development has been rapid ever since.

During the year, we unveiled our context-aware distributed security solution, Secure X, introduced the Cisco Identity Services Engine to simplify management of organization-wide security policies, and we brought new security to branch offices by adding Cisco ISR Cloud Web Security to the Cisco ISR G2 branch router.

We also elevated the role of our amazing Cisco Threat Operations Centers in helping customers chart the escalation and sophistication of security threats designed to exploit new business models that emphasize mobility, social collaboration and cloud computing.

Even with all of this momentum in security, we still saw opportunities to do more; to move faster; and to address our customers’ security challenges more completely.

It’s with those goals in mind, that I am delighted to announce today a senior executive appointment to further strengthen Cisco’s security business. For the first time, the security engineering team will be led by an SVP, reporting directly to me. We are pleased to share that Chris Young will be joining Cisco in on November 14th to fill this new leadership role.

Chris is an outstanding technology, business and security industry leader. He joins us from VMware, where he was Senior Vice President and General Manager, responsible for strategy, products, engineering and delivery across all of VMware’s end user computing solutions.

Prior to joining VMware, Chris served as Senior Vice President, products at RSA, the Security Division of EMC, where he was responsible for strategy, product management, product marketing, engineering and delivery of products across all of RSA’s Identity and Access Assurance, Security Information and Event Management, Governance Risk and Compliance (GRC), and Data Security solutions.

While at RSA, he built the company’s highly successful Identity Protection and Verification business, which includes products such as RSA Adaptive Authentication that today protects more than 200 million online bank accounts globally. Chris’ role grew to include responsibility for all products in the RSA portfolio and during his tenure he led several successful acquisitions, including Cyota Inc., Passmark and Archer Technologies among others.

Chris will assume responsibility for a new integrated security engineering team and for Cisco’s overall security vision. His new team combines our security technologies group and our global government security solutions into a single entity.

As we welcome Chris, we say goodbye to Tom Gillis, VP of our security technologies business unit. Tom joined Cisco through our acquisition of Ironport and has been instrumental in driving our overall security business thus far. Tom is keen to pursue his entrepreneurial passion outside Cisco. We thank Tom for his leadership and wish him well in his future endeavors.

We said during our Q2 earnings call that we would continue to take further actions that allow us to address market transitions with greater speed, agility and consistency. Today’s news is a good example of that commitment: we are evolving our operating model and investing in and strengthening our team with new talent in the process. We look forward to welcoming you to Cisco, Chris!

Tags: , , , ,

NCSAM Tip #21: Building Strong Security Policies

October 31, 2011 at 6:57 am PST

What good does a firewall, IPS sensor, encryption device, and your favorite security product and tool do if you do not have guidelines, policies, and best practices on how to effectively configure and use them? Building strong security policies is crucial for any organization. These policies should be strong, yet realistically flexible to accommodate ever-changing requirements. Read More »

Tags: , ,