easy-accordion-free domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/mother99/jacksonholdingcompany.com/wp-includes/functions.php on line 6114zoho-flow domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/mother99/jacksonholdingcompany.com/wp-includes/functions.php on line 6114wordpress-seo domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/mother99/jacksonholdingcompany.com/wp-includes/functions.php on line 6114Firewall Logs Integration, Expanded Response Management, and Other Enhancements<\/em><\/p>\n Secure Network Analytics (SNA) Release\u00a07.5.0 is generally available as of January 22, 2024. All current customers are \u2026 Read more on Cisco Blogs<\/a><\/p>\n \u200b[[{“value”:”<\/p>\n Firewall Logs Integration, Expanded Response Management, and Other Enhancements<\/em><\/p>\n Secure Network Analytics (SNA) Release\u00a07.5.0 is generally available as of January 22, 2024. All current customers are eligible to upgrade and should look at the release notes<\/a> to better understand the upgrade process and any additional considerations.<\/p>\n SNA is Cisco\u2019s Network Detection and Response solution.\u00a0 SNA provides enterprise-wide network visibility to detect and respond to threats in real- time. The solution continuously analyzes network activities to create a baseline of normal network behavior. It then uses this baseline, along with non\u2013signature-based advanced analytics that include behavioral modeling and machine learning algorithms, as well as global threat intelligence to identify anomalies and detect and respond to threats in real- time. Secure Network Analytics can quickly and with high confidence detect threats such as Command-and-Control (C&C) attacks, ransomware, Distributed-Denial-of-Service (DDoS) attacks, illicit cryptomining, unknown malware, and insider threats. With an agentless solution, you get comprehensive threat monitoring across the entire network traffic, even if it\u2019s encrypted.<\/p>\n This release delivers the innovation and usability that customers expect from the platform. By directly integrating firewall logs, improving response management, and updating the platform to meet the latest certification mandates, release 7.5.0 combines essential platform development with new features and enhancements.<\/p>\n Given their location at the edge of the network, firewalls see a vast amount of traffic and behaviors that may be indicative of an attack. In this release, Secure Network Analytics can take logs directly from Cisco Firewall Management Center (FMC), Firewall Threat Defense (FTD) and ASA. These logs are converted into a format that looks like NetFlow but does not count against your flows per second (FPS) license. Enabling this configuration gives further insight into your traffic patterns, risks, and the scope of an attack.<\/p>\n Automated responses improve the workflow for Security Operations Center (SOC) analysts and are a core component of our Network Detection and Response solution. By providing flexibility for multiple response actions, SOC analysts can ensure proper action is taken based on a specific alert type. This release adds Central Analytics detections to Response Management workflows, including the ability to deliver email, syslog, threat response, or webhook.<\/p>\n\n With the 7.5.0 release, security events contribute directly into XDR investigations. Also, XDR response actions can now be applied to alerts.<\/p>\n Additionally, this release provides improvements to the overall security and usability of the platform. Secure Network Analytics can achieve the certifications required by customers, including DODIN-APL, FIPS 140-3, Level 1, Common Criteria, USGv6, and IPv6 ready Logo. Some of these enhancements include:<\/p>\n TLS 1.3:<\/strong> TLS 1.3 is now supported, and TLS 1.2 is still supported. These protocols should be used for inter-appliance and external TLS connections, and can be configured in SystemConfig to be TLS 1.3 only or both TLS 1.2 and 1.3 In addition to these enhancements \u2013we have improved certificate rotation and management, IPv6 support, and support for M4, M5, and M6 appliances.<\/p>\n By simplifying workflows, increasing compliance, and expanding detections, Secure Network Analytics Release 7.5.0 continues to prove its value as a central component of your SOC. We encourage you to review the release notes and speak with your local Cisco provider to begin planning your upgrade.<\/p>\n We\u2019d love to hear what you think. Ask a Question, Comment Below, and Stay Connected with Cisco Security on social!<\/em><\/p>\n Cisco Security Social Channels<\/strong><\/p>\n Instagram<\/a><\/strong>Facebook<\/a><\/strong>Twitter<\/a><\/strong>LinkedIn<\/a><\/strong><\/p>\n “}]]\u00a0\u00a0Secure Network Analytics (SNA) reached General Availability for our 7.5 release on January 29, 2024. The 7.5 release offers some great new capabilities, but also provides a number of updates under the hood.\u00a0\u00a0Read More<\/a>\u00a0Cisco Blogs\u00a0<\/p>","protected":false},"excerpt":{"rendered":" <\/p>\n Firewall Logs Integration, Expanded Response Management, and Other Enhancements<\/em><\/p>\n Secure Network Analytics (SNA) Release\u00a07.5.0 is generally available as of January 22, 2024. All current customers are \u2026 Read more on Cisco Blogs<\/a><\/p>\n \u200b[[{“value”:”<\/p>\n Firewall Logs Integration, Expanded Response Management, and Other Enhancements<\/em><\/p>\n Secure Network Analytics (SNA) Release\u00a07.5.0 is generally available as of January 22, 2024. All current customers are eligible to upgrade and should look at the release notes<\/a> to better understand the upgrade process and any additional considerations.<\/p>\n SNA is Cisco\u2019s Network Detection and Response solution.\u00a0 SNA provides enterprise-wide network visibility to detect and respond to threats in real- time. The solution continuously analyzes network activities to create a baseline of normal network behavior. It then uses this baseline, along with non\u2013signature-based advanced analytics that include behavioral modeling and machine learning algorithms, as well as global threat intelligence to identify anomalies and detect and respond to threats in real- time. Secure Network Analytics can quickly and with high confidence detect threats such as Command-and-Control (C&C) attacks, ransomware, Distributed-Denial-of-Service (DDoS) attacks, illicit cryptomining, unknown malware, and insider threats. With an agentless solution, you get comprehensive threat monitoring across the entire network traffic, even if it\u2019s encrypted.<\/p>\n This release delivers the innovation and usability that customers expect from the platform. By directly integrating firewall logs, improving response management, and updating the platform to meet the latest certification mandates, release 7.5.0 combines essential platform development with new features and enhancements.<\/p>\n Given their location at the edge of the network, firewalls see a vast amount of traffic and behaviors that may be indicative of an attack. In this release, Secure Network Analytics can take logs directly from Cisco Firewall Management Center (FMC), Firewall Threat Defense (FTD) and ASA. These logs are converted into a format that looks like NetFlow but does not count against your flows per second (FPS) license. Enabling this configuration gives further insight into your traffic patterns, risks, and the scope of an attack.<\/p>\n Automated responses improve the workflow for Security Operations Center (SOC) analysts and are a core component of our Network Detection and Response solution. By providing flexibility for multiple response actions, SOC analysts can ensure proper action is taken based on a specific alert type. This release adds Central Analytics detections to Response Management workflows, including the ability to deliver email, syslog, threat response, or webhook.<\/p>\n With the 7.5.0 release, security events contribute directly into XDR investigations. Also, XDR response actions can now be applied to alerts.<\/p>\n Additionally, this release provides improvements to the overall security and usability of the platform. Secure Network Analytics can achieve the certifications required by customers, including DODIN-APL, FIPS 140-3, Level 1, Common Criteria, USGv6, and IPv6 ready Logo. Some of these enhancements include:<\/p>\n TLS 1.3:<\/strong> TLS 1.3 is now supported, and TLS 1.2 is still supported. These protocols should be used for inter-appliance and external TLS connections, and can be configured in SystemConfig to be TLS 1.3 only or both TLS 1.2 and 1.3 In addition to these enhancements \u2013we have improved certificate rotation and management, IPv6 support, and support for M4, M5, and M6 appliances.<\/p>\n By simplifying workflows, increasing compliance, and expanding detections, Secure Network Analytics Release 7.5.0 continues to prove its value as a central component of your SOC. We encourage you to review the release notes and speak with your local Cisco provider to begin planning your upgrade.<\/p>\n We\u2019d love to hear what you think. Ask a Question, Comment Below, and Stay Connected with Cisco Security on social!<\/em><\/p>\n Cisco Security Social Channels<\/strong><\/p>\n Instagram<\/a><\/strong>Facebook<\/a><\/strong>Twitter<\/a><\/strong>LinkedIn<\/a><\/strong><\/p>\nFirewall Logs Generate Events in Secure Network Analytics<\/strong><\/h2>\n
New Response Management Actions<\/strong><\/h2>\n
Data Enrichment from Secure Network Analytics to Cisco XDR<\/strong><\/h2>\n
Other Enhancements<\/strong><\/h2>\n
\nRoot access restriction:<\/strong> Root access has been removed. TAC will have access for troubleshooting purposes using the Cisco Consent Token mechanism via SystemConfig.
\nNew SystemConfig workflows:<\/strong> New workflows added that non root user sysadmin can action, including Diag Packs, License Reservation, Data Store operations, and more.
\nMongoDB upgrade:<\/strong> Moved to a version that uses an already available package rather than a custom-built version.<\/p>\nFirewall Logs Generate Events in Secure Network Analytics<\/strong><\/h2>\n
New Response Management Actions<\/strong><\/h2>\n
Data Enrichment from Secure Network Analytics to Cisco XDR<\/strong><\/h2>\n
Other Enhancements<\/strong><\/h2>\n
\nRoot access restriction:<\/strong> Root access has been removed. TAC will have access for troubleshooting purposes using the Cisco Consent Token mechanism via SystemConfig.
\nNew SystemConfig workflows:<\/strong> New workflows added that non root user sysadmin can action, including Diag Packs, License Reservation, Data Store operations, and more.
\nMongoDB upgrade:<\/strong> Moved to a version that uses an already available package rather than a custom-built version.<\/p>\n