About (Edit profile)

This author has not yet filled in any details.
So far has created 1829 blog entries.

The Crux of Android 14 Application Migration and Its Impact on May 22, 2024 at 9:43 pm

Learn about changes impacting developers with Android 14 application migration, and challenges we encountered during the migration and testing of the Meraki Systems Manager application.

​[[{"value":"

First I would like to give an overview of the Meraki Systems Manager (SM) application. Systems Manager is Meraki’s endpoint management product. We support management for many different platforms, including iOS, Android, macOS, and Windows. “Managing” a device can mean monitoring its online status, pushing profiles and apps to it, and/or enforcing security policies, among other things. With Systems Manager, this management all happens through Meraki’s online interface called Dashboard. Examples and code snippets mentioned in this blog are more specific to the Android SM application.

Migration of applications to any SDK mainly includes 2 tasks from the developer’s perspective. One is – how the application behaves when installed on a device with an Android version other than the target SDK of the app. And secondly, how the app will behave when the target SDK is changed. Developers need to understand what new features, or updates of any existing feature, and its impact on the application are.

This document focuses on some of the changes impacting developers with Android 14 migration. It also covers migration of the Systems Manager app to Android 14, and challenges encountered during the migration and testing.

Font Scaling

In earlier versions of Android i.e., 13 Non-linear font scaling was supported up to 130% but in Android 14, it is supported up to 200% which can impact the UI of the application. In the application if font dimensions are declared using sp (scaled pixel) units there are chances of minimal impact on the application because Android framework would apply these scaling factors. Because of nonlinear scaling of font density scaling will not be accurate.
Key points

TypedValue.applyDimension() to convert from sp units to pixels.
TypedValue.deriveDimension() to convert pixels to sp
LineHeight units should be specified in sp to manage proportion along with text size.

Background Process Limitation

Android OS is self sufficient to manage the resources efficiently by improvising performance as well. One of the pointers to achieve the same is by caching applications in the background and only when the system needs memory these applications will be removed from memory. All applications should comply with Google Play policy and hence killing of processes of other applications are strictly restricted in Android 14. Hence killBackgroundProcessess() can kill only the background processes of your own application.

Foreground Service Types

In Android 10, a new attribute was introduced to specify service type for foreground services. When using location information in the foreground service it was required to specify the type as “location”. Whereas in Android 11, mentioning service type for usage of camera or microphone in foreground service was mandated. But in Android 14 or above, all foreground services must be declared with their service types.

Some of the new service types were also introduced in Android 14 – health, remoteMessaging, shortService, specialUse and systemExempted. If service isn’t associated with any of the types specified, then it is recommended to change logic to use Workmanager or user-initiated data transfer jobs. MissingForegroundServiceTypeException will be thrown by the system in case service type is not specified.

Service type permissions need to be declared along with specifying the type in service.

<uses-permission
android:name="android.permission.FOREGROUND_SERVICE_SYSTEM_EXEMPTED" />
<service
android:name=".kiosk.v2.service.KioskBreakoutService"
android:name=".kiosk.v2.service.KioskBreakoutService"
android:foregroundServiceType="systemExempted"
android:exported="false" />

Limitations on Implicit Intent and Pending Intent

Implicit intents are only delivered to exported components. This restriction ensures the application’s implicit intents aren’t used by any other malicious apps. Also, all mutable pending intent must specify a component or package information to the intent, if not the system throws an exception.

Implicit intent should be export similar to this:

<activity
android:name=".AppActivity"
android:exported="true"> <!-- This must be TRUE otherwise this will throw
exception when starting the activity-->
<intent-filter>
<action android:name="com.example.action.APP_ACTION" />
<category android:name="android.intent.category.DEFAULT" />
</intent-filter>
</activity>

If pending intent should be mutable, then component info must be specified.

val flags = if (MerakiUtils.isApi31OrHigher()) {
PendingIntent.FLAG_MUTABLE
} else {
PendingIntent.FLAG_UPDATE_CURRENT
}
val pendingIntent = PendingIntent.getActivity(
this,
0,
Intent(context, KioskActivity::class.java).apply {
putExtra(ACTION, KioskActivity.BREAK_OUT_SINGLE_APP)
},
flags
)

Export behavior to be specified for Runtime-registered broadcasts

Prior to Android 13, there were no restrictions on sending broadcasts to a dynamically registered receiver when it is guarded by signature permission. Whereas in Android 13, aiming at making runtime receivers safe, an optional flag was introduced to specify whether the receiver is exported and visible to other applications. To protect apps from security vulnerabilities, in Android 14 or above context-registered receivers are required to specify a flag RECEIVER_EXPORTED or RECEIVER_NOT_EXPORTED to indicate whether receiver should be exported or not to all other apps on the device. This is exempted for system broadcasts.

ContextCompat.registerReceiver(
requireContext(), receiver,intentFilter(),
ContextCompat.RECEIVER_NOT_EXPORTED

Non-Dismissable foreground notifications

In Android 14 or higher, foreground notification can be dismissed by the user. But exceptions have been provided for Device policy Controller (DPC) and supporting packages for enterprise.

JobScheduler reinforces callback and network behavior

Prior to Android 14, for any job running for too long, it would stop and fail silently. When App targets Android 14 and if the job exceeds the guaranteed time on the main thread, the app triggers an ANR with an error message “No response to onStartJob” or “No response to onStopJob”. It is suggested to use WorkManager for any asynchronous processing.

Changes specific to Android Enterprise

Android Enterprise is a Google-led initiative to enable the use of Android devices and apps in the workplace. It is also termed as Android for Work. It helps to manage and distribute private apps alongside public apps, providing a unified enterprise app store experience for end users.

GET_PROVISIONING_MODE intent behavior

For signing in with a Google account, GET_PROVISIONING_MODE was introduced in Android 12 or higher. In Android 14 or higher, DPC apps receive this intent which can carry the information to support either Fully managed mode or work profile mode.

wipeDevice – for resetting device

Scope of wipeData is now restricted to profile owners only. For apps targeting Android 14 or higher, this method would throw system error when called in device owner mode. New method wipeDevice to be used for resetting the device along with USES_POLICY_WIPE_DATA permission.

Newly added fields and methods

ContactsContract.Contacts#ENTERPRISE_CONTENT_URI
ContactsContract.CommonDataKinds.Phone#ENTERPRISE_CONTENT_URI

When cross-profile contacts policy is allowed in DevicePolicyManager, these fields can be used for listing all work profile contacts and phone numbers from personal apps along with READ_CONTACTS permission.

To support setting contact access policy and callerID, below methods are newly added;

setManagedProfileContactsAccessPolicy
getManagedProfileContactsAccessPolicy
setManagedProfileCallerIdAccessPolicy
getManagedProfileCallerIdAccessPolicy

Deprecated methods

Below methods are deprecated and as an alternative methods specified in the previous section should be used.

DevicePolicyManger#setCrossProfileContactsSearchDisabled
DevicePolicyManger#getCrossProfileContactsSearchDisabled
DevicePolicyManger#setCrossProfileCallerIdDisabled
DevicePolicyManger#getCrossProfileCallerIdDisabled

Challenges during Meraki Systems Manager App Migration

To ensure there was no UI breakage, we had to recheck all the code base of xml files related to all fragments, alert dialog and text size dimensions.
Few APIs like wipeDevice(), were not mentioned in the Android migration 14. During the testing phase it was found that wipeData() is deprecated in Android 14 and wipeDevice() was supposed to be used for factory resetting the device successfully.
Profile information which can be fetched along with intent GET_PROVISIONING_MODE was also missed in the migration guide. This was found during the regression testing phase.
requestSingleUpdate() of location manager always requires mutable pending for location updation. But nowhere in the documentation, it is prescribed about it. Due to this there were few application crashes. Had to figure this out during application testing.

Useful links for reference

Cisco Meraki SM app
Behavior changes: Apps targeting Android 14 or higher
App compatibility testing on running Android 14
Known Issues with Enterprise App
Visit the Meraki Developer Hub to find more developer tools and learning resources

Share

"}]]  Learn about changes impacting developers with Android 14 application migration, and challenges we encountered during the migration and testing of the Meraki Systems Manager application.  Read More Cisco Blogs 

By |2024-05-23T08:52:13+00:00May 23, 2024|Cisco: Learning|0 Comments

Public Sector at Cisco Live 2024 on May 22, 2024 at 1:00 pm

Discover the Future of Tech at Cisco Live 2024, where subject matter experts will explore trends in Government, Education, and Healthcare. Get ready to explore a rich lineup of sessions designed to propel digital growth.

​[[{"value":"

We’re excited to invite you to Cisco Live 2024, happening in Las Vegas from June 2-6, or tune in digitally for free! Join us to exchange insights and discuss the latest trends in government, education, and healthcare. Don’t miss this opportunity to network with industry trailblazers and innovators who are leading the charge. Ready to transform the future? Let’s Go Beyond together!

Get started with a full list of industry sessions and activities

Cisco Live is a hub where IT thought leaders come together to network and share insights across industries. This event serves as a catalyst for digital advancement in the government, healthcare, and education sectors through comprehensive workshops and on-demand content. It also dives into high-interest trends within AI, sustainability, and security. A wide range of sessions tailored to cross-industry interests awaits you.

Check out the sessions and activities and plan your experience:

Public Sector at Cisco Live 2024

We’ll be spotlighting a diverse array of customers and partners to highlight their customer stories and industry topics, allowing you to gain knowledge from fellow professionals. Be sure to visit our webpage to discover the key sessions, networking opportunities, and customer recognition programs we have lined up. Preview of some of the distinguished customers and partners you’ll have the chance to meet and learn from at Cisco Live.

City of El Paso: Enhancing Aid through Technology

Cisco’s innovative solutions have been instrumental in helping the City of El Paso, TX connect with and assist its most vulnerable citizens. The Delta Welcome Center and El Paso Helps online portal showcase the power of Cisco Webex and networking infrastructure, connecting thousands of at-risk residents to vital government services with security and ease.

Through the strategic leadership of the City of El Paso’s Chief Resilience Officer, Nicole Ferrani, these initiatives reflect the significant impact that advanced technological solutions can have in transforming public services.

Learn about how Cisco’s solutions are driving change with public agencies and hear more from Nicole Ferrani:  Homelessness Services Delivered Remotely in El Paso, TX

Marshall University: Reimagining Learning Spaces

The evolution of education is being driven by Cisco. Marshall University exemplifies this through its deployment of Wi-Fi 6E, which has created a safer and more connected campus. The integration of Cisco Spaces has elevated the school’s game day experience, while their use of Catalyst full-stack infrastructure demonstrates how technology can transform educational networks.

To learn how Cisco solutions enhance education, join us for our session on how Marshall University and Cisco Are Partnering to Improve the Student Experience.

Latest Trends in Healthcare

Healthcare excels when smart planning meets real-world action, providing tangible benefits to those needing it most. Principal CDW Technologists Scott Merritt and Cheri Westcott will highlight how CDW’s AI-powered approaches meet today’s healthcare needs and prepare for future trends in partnership with Cisco. This session will also cover key advances in the patient experience and the role of AI in driving these changes.

Register now to discover the ways these advancements are redefining healthcare:  Patient Care is the Goal; Technology is the Path

Let’s continue the conversation… We can’t wait to connect with you in person in Las Vegas or virtually!

For insights into the transformative use cases and architectures shaping your industry’s landscape, browse through the

Cisco Portfolio Explorer

Share

"}]]  Discover the Future of Tech at Cisco Live 2024, where subject matter experts will explore trends in Government, Education, and Healthcare. Get ready to explore a rich lineup of sessions designed to propel digital growth.  Read More Cisco Blogs 

By |2024-05-22T19:51:29+00:00May 22, 2024|Cisco: Learning|0 Comments

Why IT Leaders Are Evolving the Network into a High-Performance Digital Engine on May 22, 2024 at 3:01 pm

The new 2024 Global Networking Trends Report provides a compelling look at networking readiness among global IT organizations. We heard from over 2,000 IT professionals in 13 countries about the advanced architectures and transformational capabilities they will be watching over the next two years.

​[[{"value":"

The new 2024 Global Networking Trends Report provides a compelling look at networking readiness among global IT organizations. We heard from 2,050 IT professionals in 13 countries about their investment strategies and the advanced architectures and capabilities they believe will prove transformational within the next two years.

In 2024, digital methods of payment are outpacing cash. 3D printers are becoming a fixture in implant surgery and AI is adding color to the world for people who are visually impaired, using just a phone—and the network.

Society expects and depends on an ever-increasing fusion of digital and physical experiences for everyday life and business progress. This dependency is apparent in the 2024 Cisco Global Networking Trends Report, which shows a continued correlation between network investment in fueling digital experiences and the benefits felt by organizations.

When the 2,000+ IT leaders surveyed were asked about their network investment and results over the past 12 months, they quickly pointed to a clear uptick in every key business metric: increased customer and employee satisfaction, improved operational efficiency, and business growth.

The road to success has been bumpy.

Driving transformation while on empty

IT is at the helm of delivering digital experiences, and the pressure is more intense than ever. Network architectures are more sophisticated, more complex, and spread across more multiclouds and multi-vendors than ever. IT leaders are also besieged by rising cybersecurity risks, increased demand from new app and workload types, and vastly distributed workforces and infrastructures.

Even more, over a third of respondents use multiple, separate management systems or ad hoc integrations when managing their campus, branch, WAN, data center, and multicloud architectures.

Identifying or solving just one network issue is currently a dizzying swivel-chair operation as IT teams hop between various management systems. Some respondents even admit they currently have no API-driven network ecosystem integrations today, meaning these management systems are working independently and inefficiently.

After years of grappling with point solutions deployed during the pandemic, that in part led to current IT challenges, there have been bright spots.

Over a third (39%) of IT leaders shared that they currently use a platform architecture across some networking domains and strongly support platform adoption. They see the value of a platform approach leading to faster IT and business innovation (43%), improved network performance and security posture (40%), and cost savings (37%). Also clear is that a platform equals the simplicity of having software, policy, open APIs, advanced telemetry, and automation all in one place.

So, it’s no surprise that respondents said 72% of their organizations will adopt a network platform to handle one or more network domains within two years. Even more, 39% of them expect to scale across all networking domains, as shown in the maturity model below.

Figure 1: This graphic compares the status of network maturity today vs. where respondents expect to be in two years.

Blind spots ahead

Deploying and managing digital experiences and ensuring everything is up and working—at scale—is top-of-mind for IT, and it hasn’t proven easy.

Providing service reliability to ensure predictable and consistent user experiences is an area for significant improvement for 41% of respondents. A key factor is the lack of visibility into complete network paths, including internet and cloud networks, according to 35% of respondents. IT leaders feel hampered in assuring the digital experience and achieving digital resilience across owned and unowned infrastructure—more on this from me at Cisco Live 2024.

The alarms are going off

As digital experiences and the network scales, so does the threat landscape. According to the report, 40% of IT leaders cite cybersecurity risks as their number one concern impacting network strategy over the next 12 months. They’re looking to combat these threats in a few ways.

First is integrating network and security processes, technology, and tools, with half of respondents making this their top network security investment over the next two years. Second is moving more security tools to the cloud to protect the increasingly distributed infrastructure and workforce better.

Like cybersecurity, we can’t have a conversation in 2024 without AI.

Speeding ahead with AI

The promise of AI is the needed reprieve for IT organizations struggling with a lack of resources and automation to handle basic operational tasks. Only 5% of respondents believe their teams are equipped to deliver the innovations needed to help steer business strategy, satisfy customers, and optimize operations.

Within two years, 60% expect AI-enabled predictive automation across all domains to manage and simplify network operations.

Data center upgrade plans for greater throughput and scalability to meet the AI need include enhanced Ethernet (56% of respondents). 59% of respondents also plan to simplify their data center network operations with AIOps within two years.

This is just a snippet from the 2024 Global Networking Trends Report. It provides a critical perspective from IT leaders who must ensure the network delivers secure digital experiences for all. One thing is clear: the network continues to be in the driver’s seat for digital experiences and a catalyst for business transformation.

Find out more about the trends impacting IT around the world.

Register to get the full

2024 Global Networking Trends Report

Share

"}]]  The new 2024 Global Networking Trends Report provides a compelling look at networking readiness among global IT organizations. We heard from over 2,000 IT professionals in 13 countries about the advanced architectures and transformational capabilities they will be watching over the next two years.  Read More Cisco Blogs 

By |2024-05-22T19:51:28+00:00May 22, 2024|Cisco: Learning|0 Comments

Empowering Growth: My Journey with the Cisco MentorMe Program on May 21, 2024 at 12:00 pm

See how Success Programs Manager Sadaf S. discovered all-around growth while empowering young women in STEM through Cisco's MentorMe program.

​[[{"value":"

Have you ever been so inspired that you felt driven to give back? My involvement in Cisco’s MentorMe program was just that — a transformative experience of empowerment and growth that ignited my passion for guiding others toward success.

Sadaf and her mentee, Maanya.

This program embodies Cisco’s commitment to actively promoting diversity in Science, Technology, Engineering, and Math (STEM) by targeting underrepresented groups, particularly female tertiary students, in Australia and New Zealand. Women remain underrepresented in STEM fields, comprising only a fraction of the workforce, especially in technology-related roles. Recognising this disparity, MentorMe invites and encourages female students to explore educational and career paths in STEM. By providing hands-on exposure to the latest technology and diverse roles within Cisco, the program empowers these students to pursue opportunities in traditionally male-dominated fields.

In my two years as a mentor within the MentorMe program, my role extended beyond simply imparting knowledge; it became a platform for building meaningful connection and nurturing potential with my mentees as well as being a cornerstone of my professional development. Throughout the program, we engaged in personalised 1:1 mentoring sessions where we discussed career aspirations, strengths, and areas for development. I facilitated networking opportunities for them within Cisco, connecting them with professionals from diverse backgrounds and roles to broaden their perspectives and build their professional networks.

Additionally, I provided guidance on personal branding, helping them develop their online presence and professional image to stand out in the competitive job market. Together, we set SMART goals — Specific, Measurable, Achievable, Relevant, and Time-bound — and worked towards achieving them, fostering their confidence and independence in navigating their career paths. Through ongoing support, encouragement, and mentorship, these women built their brands and prepared for success in the professional world.

Sadaf and her mentee, Wendi.

Reflecting on these experiences, I realize that my mentees’ journeys have become a mirror to my own growth. The deep bonds formed with my Australia and New Zealand team members and witnessing the progress of my mentees throughout the program makes me incredibly proud. Celebrating their milestones, like my first mentee, Maanya’s completion of the program and my second mentee, Wendi’s graduation, reinforces my belief in the power of mentorship to shape futures. Wendi surprised me with flowers, which touched me deeply but highlighted our genuine connection and reminded me that mentorship is not just about professional development but also about the meaningful relationships we create. These connections extend beyond the program’s conclusion, as I am committed to staying in touch with my mentees to continue supporting their growth. They can always rely on me for guidance, support, and help with any questions, and I look forward to witnessing their achievements in the future.

Cisco’s ethos of empowerment and inclusivity resonates deeply with me. The opportunity to participate in programs like MentorMe reaffirms my conviction that Cisco is more than just a workplace; it’s a community where individuals are empowered to make a difference.

As I continue my journey at Cisco, I am inspired by the shared commitment to innovation and collaboration that defines our culture. From mentorship programs to technological advancements, Cisco offers a platform to contribute to something greater, making it a truly exceptional place to work.

See how we’re powering an inclusive future for all.

Subscribe to the WeAreCisco Blog.

Share

"}]]  See how Success Programs Manager Sadaf S. discovered all-around growth while empowering young women in STEM through Cisco's MentorMe program.  Read More Cisco Blogs 

By |2024-05-21T18:52:49+00:00May 21, 2024|Cisco: Learning|0 Comments

Strengthen Your Security Operations: MITRE ATT&CK Mapping in Cisco XDR on May 20, 2024 at 12:00 pm

Discover how Cisco XDR's MITRE ATT&CK mapping strengthens your security operations. Learn to identify security gaps and improve your cybersecurity posture.

​[[{"value":"

In the intricate dance between cyber attackers and defenders, understanding adversary behavior is the difference between keeping up with sophisticated attacks or falling behind the evolving threat landscape. For security teams, this often feels like trying to navigate a maze blindfolded since adversaries typically have greater insights into defender strategies than defenders have into adversarial attacks. This lack of visibility can lead to reactive cybersecurity with ineffective security operations, poor incident response, and a weak security posture.

However, there’s another approach to cybersecurity that empowers security teams to strengthen their security operations and proactively protect their environments.

Move from Reactive to Proactive Security

Enter MITRE ATT&CK coverage mapping – a groundbreaking capability coming soon to Cisco XDR that enables security teams to turn their reactive operations into a holistic cybersecurity strategy by taking a proactive approach to threats. MITRE ATT&CK coverage mapping uses an interactive heatmap to connect adversary behaviors to detections from Cisco XDR and other integrated security solutions (see Figure 1).

Figure 1: MITRE ATT&CK Coverage Map Dashboard

This helps visualize how your security tools cover every attacker tactic, technique, and procedure (TTP) from the MITRE ATT&CK framework to give you a comprehensive understanding of threats across your entire security environment. You can use the automated MITRE ATT&CK coverage map to strengthen your security operations by enhancing threat detection, identifying and closing gaps in your defenses, and improving incident response.

The MITRE ATT&CK coverage map enhances detection of sophisticated threats across your environment. Understanding the tactics and techniques used by adversaries allows you to improve your security by taking stronger preventative measures. Moreover, it simplifies analysis of potential threats while fostering a proactive cybersecurity mindset that helps your security teams increase alignment with attacker motives and methods. It helps you prioritize incidents based on the impact and relevance of specific adversary behaviors.

Visualizing and mapping attacker TTPs also helps your security teams expose gaps in threat detection. They can use the MITRE ATT&CK coverage map to gain complete visibility into how your current security tools cover the full spectrum of threats. This allows your analysts to spot holes in your security infrastructure and prioritize resources across the most critical gaps. Furthermore, identifying weaknesses in your defenses enables you to deploy new security tools to close coverage gaps and strengthen your overall security posture.

Finally, MITRE ATT&CK coverage mapping improves incident response with a standardized language for your security operations. The MITRE ATT&CK framework provides a common language that makes it easier for security teams to communicate and collaborate on incidents. When combined with a heatmap of product coverage, you can streamline the incident analysis process while reducing the burden on your security team to identify patterns across alerts. This speeds detection and investigation to reduce both mean time to detection (MTTD) and mean time to response (MTTR) for your security operations.

Bolster Your Defenses

MITRE ATT&CK coverage mapping in Cisco XDR provides comprehensive visibility into adversary TTPs, giving you a quick and complete understanding of attackers. These actionable insights empower your analysts to hunt for threats with targeted hypotheses based on MITRE ATT&CK techniques for a proactive approach to security. Your analysts can also use these insights to strengthen your overall security posture and enhance your defenses by identifying, prioritizing, and closing gaps across your security stack.

In the ever-changing world of cybersecurity, staying ahead of adversaries is imperative. With MITRE ATT&CK coverage mapping in Cisco XDR, you can enable proactive security operations, bolster your defenses, and navigate the cyber threat landscape with greater confidence. Learn more about how Cisco XDR can strengthen your security operations.

We’d love to hear what you think. Ask a Question, Comment Below, and Stay Connected with Cisco Security on social!

Cisco Security Social Channels

InstagramFacebookTwitterLinkedIn

Share

"}]]  Discover how Cisco XDR's MITRE ATT&CK mapping strengthens your security operations. Learn to identify security gaps and improve your cybersecurity posture.  Read More Cisco Blogs 

By |2024-05-20T18:01:11+00:00May 20, 2024|Cisco: Learning|0 Comments

Whole of State: Leveraging Security Platforms in Government on May 20, 2024 at 1:00 pm

The Whole of State program is now providing State and Local Cybersecurity Grant Program funds to measure the cybersecurity health of city and local agencies. Find out the three key areas you need to focus on to make it a success for your community.

​[[{"value":"

State and local organizations provide services which are the foundation upon which our society operates.  This same foundation is at risk for cybersecurity incidents, so the federal government is providing grants via the State and Local Cybersecurity Grant Program (SLCGP) to support the cybersecurity health of city and local agencies. The SLCGP will provide $1B from FY22-25. States will administer the funds and determine a plan to implement and maintain security offerings. This program is known as “Whole of State”.

Considerations for Whole of State Program Success

When states implement a “Whole of State” program, there are operational, funding, and security items that must be considered to ensure its success.

Operational

Local organizations often lack the capacity to take on additional cybersecurity responsibilities and will need help to implement and maintain security solutions. Many states are remedying this by using partnerships with public and private service providers. Network providers, fusion centers, solutions vendors, private service providers and others are being considered in the delivery of these solutions and services.

Operationally, there is so much variation in what security support local organizations need that a single security solution will rarely be sufficient. For example, some may need multi-factor authentication (MFA), while others may need Extended Detection and Response (XDR) capabilities. As a result, states are looking at multiple providers for a given solution, or multiple solutions from a given provider, to allow as much flexibility as possible. This allows local governments to have autonomy in selecting the kinds of security solutions or services that best fit their needs.

Funding

The SLCGP encourages governments to invest in cybersecurity programs that will collectively raise the security maturity levels of state and local organizations. In doing so, state governments will need to assign resources to handle planning of fund distribution, managing associated purchasing vehicles, and monitoring the use of funds to make sure they’re achieving the desired outcomes.

Elected officials are under pressure to proactively address cybersecurity threats, but there may be other legislative priorities that pull resources away from any programs. Also, since the grant expires in FY25, there must be a future funding model that continues support for the ongoing operational costs that will exist past that time.

Since states don’t want to create new purchasing vehicles to administer the SLCGP funds, they’re finding that the most effective way to use the funds is by interagency reimbursements for qualifying local purchases. Leveraging existing purchasing agreements with vendors will also allow states to have economies of scale to get the lowest possible price, without needing a new purchasing vehicle.

Security

SLCGP funding is to be used to improve ransomware defenses and overall cyber-resilience of state and local organizations. States are planning to use the funds for awareness and workforce development training, MFA and XDR, and improving their state-level incident response capabilities.

Sometimes, the state CISO and security team are a core member of the program team, supporting local governments or state security operations centers. More often, the state security team is not operationally involved. Instead the state will use other partners to implement and maintain a solution.  Regardless, security solutions already in use by the state can influence plans for state and local organizations – providing the opportunity to leverage known partnerships and proven toolsets for better efficiencies.

Lastly, there is the issue of Cybersecurity Education. It has three components:

General awareness for government employees and sometimes state residents
Internships and training for cybersecurity professionals
K12 and Higher Education training partnerships.

States are looking to their public education institutions to provide the training needed. The good news is that SLCGP funding can assist in this area by providing teacher training and curriculum development.

Whole of State and Cisco

Cisco can leverage its global insights, trusted expertise in government, and portfolio scale to provide security solutions across all elements of a state and local ecosystem. Cisco understands the unique needs of the public sector and brings to bear security products designed to address the primary threats facing our customers. To deliver the best outcomes for the SLCGP program, Cisco recommends:

Engaging across local governments to leverage economies of scale for core security product
Address biggest threats first – likely ransomware – to ensure resiliency
Consider a consortium of partners to ensure successful implementations of security services.

Additional Resources for Whole of State

eBook: The Guide to Modern, Efficient Cybersecurity for Government
StateRAMP: Understanding Authorization of Cisco’s Security Solutions
Explore solutions for state and local government at com/go/slg

Share

"}]]  The Whole of State program is now providing State and Local Cybersecurity Grant Program funds to measure the cybersecurity health of city and local agencies. Find out the three key areas you need to focus on to make it a success for your community.  Read More Cisco Blogs 

By |2024-05-20T18:01:10+00:00May 20, 2024|Cisco: Learning|0 Comments

Harnessing Network and Application Performance Insights for Effective Automation on May 20, 2024 at 3:00 pm

Automation is a significant driving force behind speed and an enhanced user experience. Ultimately, what matters to users is the experience they have with the systems and applications being used. By removing manual bottlenecks, systems can operate at their optimal capacity, delivering the desired outcomes efficiently.

​[[{"value":"

Reliance on network and application automation has grown over the years as equipment, software, and systems are becoming increasingly intelligent—and therefore more capable. In fact, the network automation market is expected to grow by 3 percent between 2022 and 2030, according to Grand View Research. Much of this growth can be attributed to the persistent rise in network complexity as demand for agility and reliability increases.

Automation can help streamline processes, boost productivity, and make insight-driven decisions. Yet, according to Gartner, “more than 65% of enterprise networking activities are performed manually.” While increased complexity is driving the need for automation, this same complexity can also make it challenging to implement.

Automation requires intelligent systems and seamless integration into many parts of the digital ecosystem, such as hardware, software, WAN, LAN, software as a service (SaaS), platform as a service (PaaS), and more. Using automation to ensure networking activities run optimally requires real-time insight into network and application performance. Here are four factors to ensure you’re delivering the best automation strategy for your organization.

Network and application performance insights in automation execution

Network and application performance directly impacts the overall efficiency and effectiveness of automation. Having the right information at the right time and being able to act on that information are essential elements of process improvements. But an automation engine can only make decisions based on the data it can access. When organizations require insights that fall outside of seamless access to data, they often must rely on time-consuming and sometimes unreliable manual analysis and correlation.

To avoid manual intervention, organizations can leverage a single system that has a pervasive and granular view of application and network performance across an entire digital ecosystem. The system can analyze relevant data and correlate it to find the true root cause within microseconds. This enables real-time responses that can lessen or even avert network issues and degradation.

Leveraging performance monitoring for optimal automation execution

Real-time performance monitoring tools across both the network and applications are critical in capturing crucial data for automation processes. These tools identify bottlenecks, optimize resource allocation, and enhance automation workflows specific to both network and application performance.

For example, mobile navigation apps utilize real-time data of road conditions and traffic congestion to provide updated directions to drivers on-the-go. The apps analyze the speed of vehicles (analogous to packets) ahead of the driver, detect backups (congestion), and recognize slow traffic (latency)—while considering the driver’s final destination. The apps then use this information to avoid potential problems and reroute the driver to the ideal path.

This seamless adjustment of directions is made possible through automation. The network path is identified, and a recommendation is made. The coordination between network and application is what leads to the best outcome. Comprehensive performance data that encompasses both the network and the applications that run on it is essential for successful automation execution.

Proactive troubleshooting and issue resolution through performance insights

One fundamental advantage of automation is the ability to address problems before they arise. Network and application performance insights play a crucial role in proactive troubleshooting, early issue detection, and timely resolution. However, achieving these benefits requires obtaining valid and actionable insights that cover the entire digital ecosystem. Through automation, networks and systems can proactively implement changes even before the problem becomes apparent to an end user. By leveraging this visibility and analyzing historical data, predictions can be made to anticipate potential issues. These predictions are then fed into the automation engine, enabling it to execute actions based on valuable data insights.

Continuous improvement and optimization with performance data analytics

Performance insights allow organizations to make informed decisions, implement iterative improvements, and foster continuous enhancements in automation execution. By utilizing network and application performance management (NAPM) systems, automation enables the ongoing enhancement of the end-user experience. It facilitates the system’s ability to continually refine its operations, leading to optimized outcomes. Moreover, thanks to automation’s real-time adaptability, these improvements can be implemented at a much faster pace compared to human intervention.

If an organization relies solely on network data, it may overlook the nature of the data being transferred and miss indications of business-critical application degradations and outages. Conversely, solely focusing on application data might lead to overlooking network congestion points that are contributing to the issue. Achieving visibility from layer 7 (application layer) down to layer 2 (data link layer) is critical to gaining a holistic understanding of the underlying reasons for issues impacting the end-user experience.

Minimize manual intervention

Ultimately, what matters to users is the experience they have with the systems and applications being used; the intricate details of the underlying processes are irrelevant if the experience is seamless and satisfactory. To deliver the best user experience, it’s imperative to minimize manual intervention and enable the system to perform its intended functions in a near-zero-touch deployment. By removing manual bottlenecks, systems can operate at their optimal capacity, delivering the desired outcomes efficiently.

Learn more about theAccedian and Cisco
Crosswork Network Automation
joint solution

Share

"}]]  Automation is a significant driving force behind speed and an enhanced user experience. Ultimately, what matters to users is the experience they have with the systems and applications being used. By removing manual bottlenecks, systems can operate at their optimal capacity, delivering the desired outcomes efficiently.  Read More Cisco Blogs 

By |2024-05-20T18:01:09+00:00May 20, 2024|Cisco: Learning|0 Comments

Critical Steps to Bolster UK’s Cyber Resilience: Insights for Policy Makers from Cisco’s Cyber Readiness Index on May 17, 2024 at 7:26 am

In the face of growing cybersecurity threats, UK policymakers have intensified efforts to protect the nation's digital infrastructure. This blog looks at insights from the UK McPartland review and the interdependence between cyber security and economic growth.

​[[{"value":"

Recognising the vital role digital technologies now play in the delivery of economic prosperity, public services and national security, the UK Government rightly strives to be a global leader in innovation and technology. There are many aspects that are important to meeting this goal, but it is increasingly clear that a robust and resilient approach to cybersecurity across the economy is non-negotiable.

In the face of growing cybersecurity threats, the UK’s Department for Science, Innovation and Technology (DSIT) has intensified its efforts to protect the nation’s digital infrastructure in recent years through the National Cyber Strategy as well as updates to the UK’s approach to the NIS Directive through specific work on Managed Service Providers and data centre providers. It went further by launching the McPartland review of cyber security and economic growth earlier this year and introduced new draft codes of conduct looking at AI and software cyber security.

The McPartland review: interdependence between cyber security and economic growth

Of particular importance through this policy work is the ever-deeper interdependence between cyber security and economic growth, especially the role cyber security plays in giving business confidence to digitise faster. Cisco has been at the forefront of addressing these challenges over the past decades and welcomes this focus. We look forward to contributing to collective efforts from the business and policy making communities to make progress in delivering effective, more resilient approaches to cybersecurity for all sectors of the economy.

We look forward to contributing to collective efforts from the business and policy making communities to make progress in delivering effective, more resilient approaches to cybersecurity for all sectors of the economy.

As a great example, Cisco’s recent Hypershield launch represents a step-change in cyber security innovation and responds to an increasingly complex global cyber threat landscape. Advancements in artificial intelligence, the ever-greater criticality of secure digital technologies to every business and public service and significant challenges such as a lack of skilled cyber workers, means business and government leaders need to do more to be prepared.

The Cybersecurity readiness gap: how to enhance cybersecurity resilience?

To help provide some further insight into this dynamic and challenging context, Cisco regularly publishes security and threat intelligence information to keep security professionals informed. The recently-launched Cisco 2024 Cybersecurity Readiness Index surveyed business leaders across 30 countries to provide a comprehensive view of what organisations need to do to improve their cybersecurity resilience. The Index reveals a significant readiness gap, despite almost three quarters of companies believing a cybersecurity incident will disrupt their business in the next 12-24 months.

To help decision makers, the Index makes several recommendations on how to enhance cybersecurity resilience, including:

Continuing to accelerate investment in protective cybersecurity measures across the board, including adopting a platform approach to ensure all solutions in the security stack can be leveraged to their maximum ability.
Assessing and closing vulnerability gaps created by unmanaged devices and unsecured Wi-Fi networks.
Keeping abreast of the latest developments in Generative AI technology and leverage them to enhance security programs and operational resilience.
Ramping up recruitment and upskilling of in-house talent to close cybersecurity talent gaps. Where possible, leverage advancements in AI to augment and automate tasks while leaning on external cybersecurity expertise to help close key gaps in building and operating cybersecurity infrastructure.
Establishing a company baseline of how ‘ready’ you are across the five major security pillars, continually monitor, and act where needed.

Concerted effort to build resilient defences

The primary responsibility for driving progress on the actions above should lie with business and public service delivery leaders. However, policy makers have a critical role too.

To minimise the impact of cyber challenges on economic growth, businesses need a clear and consistent policy direction that champions resilience.

Elements of this include: the need for government to support and champion the take up of cyber security skills programmes (such as those included in Cisco’s Networking Academy on skillsforall.com); keeping cyber security advice to companies updated, proportionate and implementable; incentivizing companies to invest in robust cyber security solutions; using targeted regulation where necessary; building international partnerships and consistency on relevant cyber standards, rules and guidance; and working with cyber companies to analyse and manage threats.

It will take a concerted effort from all stakeholders to build defences that are as resilient as they are responsive to the evolving landscape of cybersecurity and ensure that cyber security gives businesses in the UK the confidence to invest and grow.

With four decades experience addressing secure connectivity challenges around the world, Cisco is poised to contribute its expertise to protect UK businesses and citizens and inform the cyber readiness debate.

Share

"}]]  In the face of growing cybersecurity threats, UK policymakers have intensified efforts to protect the nation's digital infrastructure. This blog looks at insights from the UK McPartland review and the interdependence between cyber security and economic growth.  Read More Cisco Blogs 

By |2024-05-17T15:51:28+00:00May 17, 2024|Cisco: Learning|0 Comments
Go to Top