TechValidate Research on Cisco Advanced Malware Protection

These pages present data that TechValidate has sourced via direct research with verified customers and users of Cisco Advanced Malware Protection. TechValidate stands behind the authenticity of all published data. Learn more »



1,485 Customers Surveyed

11,352 Data Points Collected

186 Published TechFacts

14 Published Charts

28 Published Case Studies



Featured Research Collections for Cisco Advanced Malware Protection

Curated collections and slideshows of TechValidate research data on Cisco Advanced Malware Protection.



Selected Research Highlights


Cisco AMP for Endpoints Customer Statistic

86% of respondents report improved confidence in protecting endpoints against malware and other threats after deploying AMP for Endpoints.

86%

Cisco AMP for Endpoints Customer Research

In addition to Cisco AMP for Endpoints, what other Cisco Security products are you currently using?

AnyConnect
64%
Umbrella
62%
ISE (Identity Services Engine)
48%
NGFW (Next-Generation Firewall)
46%
Email Security
40%
Threat Response
38%
Threat Grid
28%
DUO (Multi-Factor Authentication/MFA)
27%
Stealthwatch
21%
I don’t own any of these Cisco Products
4%
Other
3%

Cisco AMP for Endpoints Case Study

Meso Scale Diagnostics

Introduction

This case study of Meso-Scale Diagnostics is based on a January 2020 survey of Cisco AMP for Endpoints customers by TechValidate, a 3rd-party research service.

“Using AMP for endpoints has gotten us one step closer to our goal of single pane of glass monitoring for all of our security technologies, which has reduced the amount of time it takes to monitor and react to incidents. Investigations are also a lot quicker and easier.”

“Easy to deploy and manage and we have been successful in protecting our endpoints completely.”

“Not a single malware/virus infestation that has needed any remediation or re-imaging has occurred since adopting AMP for Endpoints.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Cisco AMP for Endpoints:

  • Invested in Cisco AMP for Endpoints because they:
    • Needed to protect against advanced threats
    • Needed to improve security operations efficiency
    • Wanted to increase threat detection and remediation speed and accuracy
    • Needed to be able to respond to incidents faster
    • Needed tools to enhance their threat hunting capabilities
    • Needed a tool that interacts with other security tools such as Next Gen firewalls, web and email security appliances.
  • Considered the following vendors before selecting Cisco AMP for Endpoints:
    • CrowdStrike
    • Carbon Black
    • McAfee
    • Symantec
    • Palo Alto Networks

Use Case

The key features and functionalities of Cisco AMP for Endpoints that the surveyed company uses:

  • Other Cisco Security products used in addition to Cisco AMP for Endpoints:
    • Umbrella
    • Email Security
    • Threat Grid
    • NGFW (Next-Generation Firewall)
    • AnyConnect
    • Web Security (Ironport)
  • Rates Cisco AMP for Endpoints on the following features:
    • Antivirus feature: blocking known malware: very satisfied
    • Exploit prevention feature: protecting against file-less malware: very satisfied
    • Threat detection and response feature: continuous file monitoring (file and device trajectory): very satisfied
    • Threat intelligence: ability to understand unknown threats to their environment: very satisfied
    • Multi-platform/OS support: very satisfied

Results

The surveyed company achieved the following results with Cisco AMP for Endpoints:

  • Most prominent benefits realized from their investment in Cisco AMP for Endpoints:
    • Realized better overall protection/prevention against file-less malware, ransomware, and other advanced threats
    • Improved security operations efficiency
  • Experienced the following after implementing Cisco AMP for Endpoints:
    • Reduced security risks: greater than 75%
    • Improved security operations efficiency: greater than 75%
    • Improved threat detection and remediation speed and quality: greater than 75%
    • Improved incident response speed and effectiveness: 50% to 74%
    • Reduced costs and increased staff productivity by simplifying complex endpoint security management tasks: 50% to 74%
  • Cisco AMP for Endpoints helped their security team to better protect their environment from:
    • Zero-day threats
    • Ransomware
    • Cryptomining
    • File-less malware
    • Drive-by-attacks
    • Understanding file trajectories and isolation requirements.
  • Their confidence in protecting their endpoints against malware and other threats has significantly improved now that they have Cisco AMP for Endpoints as part of their security strategy.
  • Reduced their time to detection of threats by more than a week after implementing Cisco AMP for Endpoints.

Cisco AMP for Endpoints Case Study

Thunder Bay Regional HSC

Introduction

This case study of Thunder Bay Regional HSC is based on a January 2020 survey of Cisco AMP for Endpoints customers by TechValidate, a 3rd-party research service.

“Cisco AMP for endpoints has made breach defense/prevention, incident response and security operations efficiency reach all time highs within our organization. Cisco AMP helps me sleep better at night!”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Cisco AMP for Endpoints:

  • Invested in Cisco AMP for Endpoints because they:
    • Needed to protect against advanced threats
    • Needed to improve security operations efficiency
    • Wanted to increase threat detection and remediation speed and accuracy
    • Needed to be able to respond to incidents faster
    • Needed tools to enhance their threat hunting capabilities
  • Considered the following vendors before selecting Cisco AMP for Endpoints:
    • SentinelOne
    • McAfee
    • Symantec
    • Sophos
    • TrendMicro
    • Palo Alto Networks

Use Case

The key features and functionalities of Cisco AMP for Endpoints that the surveyed company uses:

  • Other Cisco Security products used in addition to Cisco AMP for Endpoints:
    • Threat Response
    • Umbrella
    • Threat Grid
    • NGFW (Next-Generation Firewall)
    • DUO (Multi-Factor Authentication/MFA)
    • AnyConnect
    • ISE (Identity Services Engine)
  • Rates Cisco AMP for Endpoints on the following features:
    • Antivirus feature: blocking known malware: extremely satisfied
    • Exploit prevention feature: protecting against file-less malware: extremely satisfied
    • Threat detection and response feature: continuous file monitoring (file and device trajectory): extremely satisfied
    • Threat intelligence: ability to understand unknown threats to their environment: very satisfied
    • Multi-platform/OS support: very satisfied

Results

The surveyed company achieved the following results with Cisco AMP for Endpoints:

  • Most prominent benefits realized from their investment in Cisco AMP for Endpoints:
    • Realized better overall protection/prevention against file-less malware, ransomware, and other advanced threats
    • Experienced faster and more accurate threat detection and remediation
    • Experienced faster, more effective incident response
    • Enhanced threat hunting capabilities
  • Experienced the following after implementing Cisco AMP for Endpoints:
    • Reduced security risks: greater than 75%
    • Improved security operations efficiency: greater than 75%
    • Improved threat detection and remediation speed and quality: greater than 75%
    • Improved incident response speed and effectiveness: greater than 75%
    • Reduced costs and increased staff productivity by simplifying complex endpoint security management tasks: 50% to 74%
  • Cisco AMP for Endpoints helped their security team to better protect their environment from:
    • Zero-day threats
    • Ransomware
    • Cryptomining
    • File-less malware
    • Drive-by-attacks
  • Their confidence in protecting their endpoints against malware and other threats has significantly improved now that they have Cisco AMP for Endpoints as part of their security strategy.

Cisco AMP for Endpoints Customer Statistic

78% of surveyed customers invested in Cisco AMP for Endpoints because they wanted to increase threat detection and remediation speed and accuracy.

78%

Cisco AMP for Endpoints Customer Research

78% of respondents were either ‘Extremely satisfied’ or ‘Very satisfied’ with AMP for Endpoints’ Threat Detection and Response capabilities:

Please rate Cisco AMP for Endpoints in terms of your satisfaction for the following features:

Extremely satisfied Very satisfied Satisfied Not satisfied I don’t know / Not applicable
Antivirus: Blocking known malware

40%

36%

18%

4%

2%

Exploit prevention: Protecting against file-less malware

37%

36%

19%

4%

4%

Threat detection and response: Continuous file monitoring (file and device trajectory)

42%

36%

15%

5%

2%

Threat intelligence: Ability to understand unknown threats to your environment

32%

36%

23%

7%

2%

Multi-platform/OS support

28%

32%

22%

8%

10%



More to Explore



About Cisco Advanced Malware Protection

Get global threat intelligence, advanced sandboxing, and real-time malware blocking to prevent breaches with Cisco Advanced Malware Protection (AMP). But because you can’t rely on prevention alone, AMP also continuously analyzes file activity across your extended network, so you can quickly detect, contain, and remove advanced malware.

Cisco Advanced Malware Protection Website   Cisco Website