Today’s threat landscape is more dynamic than ever before. Given the rapid changes in the world around us, driven by mobility, cloud computing, and the Internet of Everything (IoE), the number and type of attacks will continue to increase. Defenders need threat-centric security solutions to better address the full attack continuum – before, during, and after an attack

Today at CiscoLive! San Francisco there were several announcements, including the intent to acquire ThreatGRID and significant product enhancements, aimed at strengthening Cisco’s advanced threat protection, giving Cisco partners increased opportunities.


ThreatGRID is an advanced dynamic malware analysis and threat intelligence Technology Company that enables organizations to accurately identify and defend against cyber attacks in real time. The acquisition of ThreatGRID is a natural extension of Cisco’s advanced threat protection offering. ThreatGRID’s unique advanced dynamic malware analysis augments Cisco’s security strategy and will strengthen Cisco’s ability to aggregate and correlate data from across the extended network. This expanded portfolio will provide enhanced intelligent cybersecurity solutions for our partners and customers.

ThreatGRID figure 1


Going beyond simply detecting and remediating malware at a given point in time, Advanced Malware Protection (AMP) delivers unrelenting detection and response capabilities across the attack continuum – before, during, and after an attack.

ThreatGRID figure 2

Cisco’s approach to combating today’s advanced malware threats is to leverage the data footprint generated by Cisco Collective Security Intelligence. AMP delivers three distinct advantages that distinguish it from other malware protection.

  1. Point in time isn’t enough anymore; it has to be augmented with continuous, ongoing security. The value of Cisco AMP is that it checks and rechecks files even after they enter your environment.
  2.  AMP is designed to provide comprehensive protection across Content, Network and Endpoints. It will monitor your email, web, network and endpoints for threats.
  3. By leveraging all data discussed above AMP is specifically designed to provide protection before you are attacked.


These announcements offer partners the ability to help customers move beyond partial solutions to an anytime, all-the-time approach across technologies.  With the expanding portfolio, partners have the opportunity to grow their business and strengthening their customer advisor relationship.


Ken Trombetta

Vice President, Global and Strategic Partner Organization

Global Partners Organization (GPO)