TechValidate Research on Cisco Advanced Malware Protection

These pages present data that TechValidate has sourced via direct research with verified customers and users of Cisco Advanced Malware Protection. TechValidate stands behind the authenticity of all published data. Learn more »



1,485 Customers Surveyed

11,352 Data Points Collected

186 Published TechFacts

14 Published Charts

28 Published Case Studies



Featured Research Collections for Cisco Advanced Malware Protection

Curated collections and slideshows of TechValidate research data on Cisco Advanced Malware Protection.



Selected Research Highlights


Cisco Advanced Malware Protection Customer Research

Better Together: AMP for Endpoints + AMP for Email Strengthens Security

AMP for Endpoints enables my organization to:

Improve security effectiveness
88%
Detect threats faster
86%
Increase visibility into potential threats
79%

Cisco AMP for Endpoints Customer Research

86% of organizations report that AMP for Endpoints significantly improved their confidence in protecting against malware and other threats.

How would you describe your confidence in protecting your endpoints against malware and other threats now that you have Cisco AMP for Endpoints as part of your security strategy?

Very significantly improved
29%
Significantly improved
41%
Improved
16%
Somewhat improved
9%
I don’t know / Not applicable
5%

Cisco Advanced Malware Protection Case Study

Atos IT Services

Introduction

This case study of Atos IT Services is based on a March 2017 survey of Cisco Advanced Malware Protection customers by TechValidate, a 3rd-party research service.

“Deploying AMP for Endpoints alongside other AMP deployments has helped my organization uncover threats faster and improve overall security effectiveness. "

“AMP for Endpoints offers an easy-to-use interface, real-time endpoint monitoring, and ‘threat by group’ to determine problem areas. AMP for Endpoints provides Cloud Malware Analysis with Threat Grid and enables easy applying of whitelists/blacklists and exclusions.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Cisco Advanced Malware Protection:

  • Chose AMP for Endpoints for the following reasons:
    • Superior protection from advanced threats and hackers
    • Rapid time to detection of threats
    • Endpoint visibility into file activity and threats
    • Ability to continuously monitor file behavior
    • Retrospective alerting to uncover stealthy attacks
    • Ability to quickly understand the threat and what it’s trying to do
    • Simple, easy to use management interface

Use Case

The key features and functionalities of Cisco Advanced Malware Protection that the surveyed company uses:

  • Deployed the following in addition to AMP for Endpoints:
    • AMP for Networks (AMP on Cisco Firepower NGIPS)
    • Cisco Threat Grid

Results

The surveyed company achieved the following results with Cisco Advanced Malware Protection:

  • Was able to do the following with AMP for Endpoints:
    • Improve security effectiveness
    • Prevent breaches
    • Detect threats faster
    • Increase visibility into potential threats
    • Remediate advanced malware
    • Accelerate incident response
    • Reduce management complexity using Cisco AMP’s integrated architecture
  • Evaluated the following companies prior to signing up with AMP for Endpoints:
    • Palo Alto
    • Symantec
    • McAfee
  • Prevented/Detected/Defeated the following with AMP for Endpoints:
    • Advanced malware or advanced persistent threats (APTs)
    • Ransomware
    • Malvertising
    • Malicious email attachments
  • Reduced threat detection time by by more than 12 hours with AMP for Endpoints.
  • Experienced improvements in the following areas after deploying AMP for Endpoints:
    • Mean time to detection of previously unseen and/or unknown threats
    • Executive confidence in the security of the organization
    • Investigation speed and/or quality
    • Visibility into endpoints, vulnerabilities, and threats
    • Time to remediation

Cisco AMP for Endpoints Case Study

NHS Management

Introduction

This case study of NHS Management is based on a January 2020 survey of Cisco AMP for Endpoints customers by TechValidate, a 3rd-party research service.

“Cisco AMP for Endpoints has dramatically increased our response time to threats. Reduced time spent on security operations and increased endpoint visibility.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Cisco AMP for Endpoints:

  • Invested in Cisco AMP for Endpoints because they:
    • Needed to protect against advanced threats
    • Needed to improve security operations efficiency
    • Wanted to increase threat detection and remediation speed and accuracy
    • Needed to be able to respond to incidents faster
    • Needed tools to enhance their threat hunting capabilities
  • Considered the following vendors before selecting Cisco AMP for Endpoints:
    • Carbon Black
    • Sophos
    • TrendMicro
    • Palo Alto Networks

Use Case

The key features and functionalities of Cisco AMP for Endpoints that the surveyed company uses:

  • Other Cisco Security products used in addition to Cisco AMP for Endpoints:
    • Threat Response
    • Umbrella
    • Email Security
    • Threat Grid
    • Stealthwatch
    • NGFW (Next-Generation Firewall)
    • AnyConnect
    • ISE (Identity Services Engine)
  • Rates Cisco AMP for Endpoints on the following features:
    • Antivirus feature: blocking known malware: very satisfied
    • Exploit prevention feature: protecting against file-less malware: extremely satisfied
    • Threat detection and response feature: continuous file monitoring (file and device trajectory): extremely satisfied
    • Threat intelligence: ability to understand unknown threats to their environment: extremely satisfied
    • Multi-platform/OS support: satisfied

Results

The surveyed company achieved the following results with Cisco AMP for Endpoints:

  • Most prominent benefits realized from their investment in Cisco AMP for Endpoints:
    • Realized better overall protection/prevention against file-less malware, ransomware, and other advanced threats
    • Improved security operations efficiency
    • Experienced faster and more accurate threat detection and remediation
    • Experienced faster, more effective incident response
    • Enhanced threat hunting capabilities
  • Experienced the following after implementing Cisco AMP for Endpoints:
    • Reduced security risks: greater than 75%
    • Improved security operations efficiency: greater than 75%
    • Improved threat detection and remediation speed and quality: greater than 75%
    • Improved incident response speed and effectiveness: greater than 75%
    • Reduced costs and increased staff productivity by simplifying complex endpoint security management tasks: less than 10%
  • Cisco AMP for Endpoints helped their security team to better protect their environment from:
    • Zero-day threats
    • Ransomware
    • Cryptomining
    • File-less malware
    • Drive-by-attacks
  • Their confidence in protecting their endpoints against malware and other threats has very significantly improved now that they have Cisco AMP for Endpoints as part of their security strategy.
  • Reduced their time to detection of threats by up to 12 hours after implementing Cisco AMP for Endpoints.

Cisco AMP for Endpoints Customer Testimonial

We had McAfee before and had zero insight into any stopped malware other than a user reporting the client appearing. We were also hit with a crypto locker at one point. Since having AMP for Endpoints, we get alerted to malware on machines very quickly and have had very few incidences, if any, of malware not being quarantined.

System Administrator, Small Business Transportation Services Company

Cisco AMP for Endpoints Customer Statistic

69% of respondents report that Cisco AMP for Endpoints has helped them to better protect against file-less malware in their environment.

69%


More to Explore



About Cisco Advanced Malware Protection

Get global threat intelligence, advanced sandboxing, and real-time malware blocking to prevent breaches with Cisco Advanced Malware Protection (AMP). But because you can’t rely on prevention alone, AMP also continuously analyzes file activity across your extended network, so you can quickly detect, contain, and remove advanced malware.

Cisco Advanced Malware Protection Website   Cisco Website