TechValidate Research on Cisco SecureX threat response

These pages present data that TechValidate has sourced via direct research with verified customers and users of Cisco SecureX threat response. TechValidate stands behind the authenticity of all published data. Learn more »



653 Customers Surveyed

5,219 Data Points Collected

142 Published TechFacts

6 Published Charts

4 Published Case Studies



Featured Research Collections for Cisco SecureX threat response

Curated collections and slideshows of TechValidate research data on Cisco SecureX threat response.



Selected Research Highlights


Cisco Threat Response Case Study

Oznet

Introduction

This case study of Oznet is based on a May 2020 survey of Cisco Threat Response customers by TechValidate, a 3rd-party research service.

“All these solutions we handle in the Threat Response Stealthwatch Enterprise, Firepower, Umbrella.”

“It is a very good tool to perform event analysis in a centralized console, for me it is the best.”

“Cisco allows me to visualize quickly and to correct in time.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Cisco Threat Response:

  • Needed to solve the following security challenges when they started using Threat Response with their Cisco Security products:
    • Needed their security technologies to work together
    • Needed a better way to visualize whether a threat has impacted their environment
    • Wanted to identify and remediate threats faster
    • Wanted to centralize and triage high priority alerts
    • Wanted to maximize the time of their skilled resources due to being understaffed

Use Case

The key features and functionalities of Cisco Threat Response that the surveyed company uses:

  • Uses Threat Response daily.
  • Agrees that Threat Response’s ability to connect with 3rd party security tools for comprehensive investigations is important to them.

Results

The surveyed company achieved the following results with Cisco Threat Response:

  • Greatest value they get from the Chrome or Firefox browser plug-in for Threat Response:
    • Ability to kick off an investigation
    • Ability to consume threat intelligence blogs
    • Immediate access to context from Cisco Security products
    • Immediate access to context their 3rd party web-based product (SIEMs or other security consoles)
  • Eliminated the following tasks after using Threat Response:
    • Planning tasks
    • Detection & Analysis tasks
    • Post-Incident Activity tasks
  • Weekly time savings their Security Operations team achieved by using Threat Response for the following use cases:
    • Incident management: at least 12-18 hours/week
    • Threat intelligence and investigations: at least 7-12 hours/week
    • Remediation / first strike response actions: at least 7-12 hours/week

Cisco Threat Response Customer Research

Which statement best characterizes your organization’s strategy for security portfolio integration to streamline your existing SOC operations?

Multi-console approach is great for us
23%
Tired of the disparate security technologies today but do not have resources to fix it
30%
Considering using SIEM and/or SOAR platform(s) but don't know how to go about it
23%
Actively deploying SIEM (Security information and event management)
43%
Actively deploying SOAR (Security Orchestration and Automation Response)
16%
Other
4%

Cisco SecureX threat response Customer Review

4.5/5 Stars

How our organization uses SecureX threat response:

We use it to aid in triaging malware and other security threats in our environment, and to provide quick response to any detected threats.

Would you recommend SecureX threat response?

Without Threat Response, we would largely be “flying blind”, as we wouldn’t have a unified picture of our environment to look at. We also would not have the ability to dissect an incident down to the point of original execution with a timestamp, and any coordinated response efforts would be much more manual and labor intensive.

Cisco Threat Response Customer Testimonial

It provides a single pane of glass approach to threat and risk within my environment where I can control and deploy remediation, gain insight into the impact of an incident and restore my security posture rapidly via an integrated approach.

Intrusion Detection Specialist, Educational Institution

Cisco SecureX threat response Case Study

Citynet

Introduction

This case study of Citynet is based on a May 2020 survey of Cisco SecureX threat response customers by TechValidate, a 3rd-party research service.

“Cisco AMP and Firepower is how we use it and love it!”

“It simplifies the review, research and impact analysis of security events and frees our team up to work on other security initiatives.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Cisco SecureX threat response:

  • Needed to solve the following security challenges when they started using SecureX threat response with their Cisco Security products:
    • Needed their security technologies to work together
    • Wanted to identify and remediate threats faster
    • Wanted to maximize the time of their skilled resources due to being understaffed

Use Case

The key features and functionalities of Cisco SecureX threat response that the surveyed company uses:

  • Uses SecureX threat response at least once a week.
  • Improved collaboration across the following teams after using Casebook in SecureX threat responsee:
    • Improved collaboration within SecOps
  • agrees that SecureX threat response’s ability to connect with 3rd party security tools for comprehensive investigations is important to them.

Results

The surveyed company achieved the following results with Cisco SecureX threat response:

  • Greatest value they get from the Chrome or Firefox browser plug-in for SecureX threat response:
    • Ability to kick off an investigation
  • Eliminated the following tasks after using SecureX threat response:
    • Detection & Analysis tasks
    • Containment, Eradication, and Recovery tasks
  • Weekly time savings their Security Operations team achieved by using SecureX threat response for the following use cases:
    • incident management: at least 1-3 hours/week
    • threat intelligence and investigations: at least 1-3 hours/week
    • remediation / first strike response actions: at least 1-3 hours/week

Cisco SecureX threat response Customer Research

What security challenges were you looking to solve when you started using SecureX threat response with your Cisco Security products?

I needed a better way to visualize whether a threat has impacted my environment
71%
I wanted to identify and remediate threats faster
69%
I needed my security technologies to work together
61%


More to Explore



About Cisco SecureX threat response

Don't clone your security team--get Cisco SecureX threat response instead. SecureX threat response automates integrations across select Cisco Security products and accelerates key security operations functions: detection, investigation, and remediation. It is a key pillar of our integrated security architecture.

Cisco SecureX threat response Website   Cisco Website