at Financial Technnology Year
This content is provided by FinTechBenchmarker.com who are responsible for the content. Please contact them if you have any questions.
Cisco SecureX from Cisco Systems
A cloud-native, integrated security platform that connects Cisco's security portfolio with customers' infrastructure. Features include threat response, orchestration, and analytics tailored for financial services security requirements.
Product analysis by function
Cybersecurity Solutions for IT and Infrastructure
Systems that protect the bank's information assets from cyber threats and ensure secure banking operations.
More Cybersecurity Solutions
More IT and Infrastructure ...
Access Control
(8 Yes /8 Known /11 Possible features)
|
Multi-factor Authentication Requires multiple forms of verification before granting access. |
Cisco SecureX supports multi-factor authentication as part of Cisco's platform-wide security controls. | |
|
Role-Based Access Control Grants permissions based on user roles and responsibilities. |
Role-based access controls are supported within SecureX and its integrations. | |
|
Single Sign-On (SSO) Allows users to authenticate once for multiple applications. |
Single Sign-On is enabled through Cisco SecureX integrations with SSO providers. | |
|
Access Logging Records all access attempts for audit trails. |
Cisco SecureX includes access logging as part of its audit and activity tracking. | |
|
Privileged Account Management Controls and monitors elevated permissions. |
Privileged Account Management features are included within SecureX and Cisco security portfolio integrations. | |
|
User Session Timeout Automatically terminates inactive sessions. |
User session timeout settings are configurable in SecureX. | |
|
Device Whitelisting Restricts access to approved devices only. |
No information available | |
|
Granular Permission Levels Supports fine-grained permissions per function. |
Granular permission levels for users, teams, and roles are supported. | |
|
API Key Management Secures and controls access to APIs. |
API key management is part of SecureX’s platform, especially for integrations. | |
|
Geolocation-based Access Restrictions Limits access based on user's physical or network location. |
No information available | |
|
Number of Supported Authentication Methods The total number of different authentication methods available (e.g., biometric, SMS OTP, hardware key, etc.). |
No information available |
Data Protection
(5 Yes /5 Known /10 Possible features)
|
End-to-End Encryption Encrypts data during all states and transfers. |
End-to-end encryption is a standard in Cisco SecureX data flow and integrations. | |
|
Database Encryption Encrypts stored data in databases. |
Cisco encrypts databases in cloud-native products per documentation. | |
|
File Integrity Monitoring Detects unauthorized changes to critical files. |
No information available | |
|
Data Masking Obfuscates sensitive data in non-production environments. |
No information available | |
|
Tokenization Replaces sensitive information with random tokens. |
No information available | |
|
Data Loss Prevention (DLP) Prevents unauthorized data transfer or loss. |
SecureX has DLP integrations through the Cisco portfolio and ecosystem. | |
|
Data Backup Frequency Frequency at which backups of critical data are performed. |
No information available | |
|
Audit Logging Maintains comprehensive logs of data access and changes. |
Audit logging is core to SecureX’s compliance and monitoring capabilities. | |
|
Automated Key Rotation Automatically rotates cryptographic keys at defined intervals. |
No information available | |
|
Retention Policy Management Controls how long data is kept and when it is deleted. |
Data retention policies can be managed via configuration and integration with other Cisco security products. |
Network Security
(7 Yes /7 Known /10 Possible features)
|
Firewall Provides perimeter security by filtering incoming and outgoing network traffic. |
Cisco SecureX leverages network-level firewalls and centralized policy APIs. | |
|
Intrusion Detection System (IDS) Monitors and detects malicious network activity. |
IDS is available via SecureX integrations (e.g., Cisco Secure IPS). | |
|
Intrusion Prevention System (IPS) Blocks and prevents detected threats. |
IPS is supported through associated Cisco infrastructure managed through SecureX. | |
|
Virtual Private Network (VPN) Secures remote access to banking resources. |
VPN support is available through Cisco AnyConnect and managed within SecureX. | |
|
Network Segmentation Divides the network into separate zones for better security. |
No information available | |
|
Distributed Denial of Service (DDoS) Protection Detects and mitigates DDoS attacks. |
DDoS protection is available via integration with Cisco’s security appliances. | |
|
Deep Packet Inspection Examines traffic for threats beyond simple packet headers. |
No information available | |
|
Encrypted Network Traffic Ensures all internal and external communication is encrypted. |
Encrypted network traffic is default for Cisco SecureX and integrations. | |
|
Bandwidth Monitoring Monitors bandwidth utilization for anomalies. |
Bandwidth and network utilization monitoring can be orchestrated through SecureX with Cisco Stealthwatch. | |
|
Network Traffic Analysis Capability The number of simultaneous connections that can be analyzed. |
No information available |
Threat Detection and Response
(6 Yes /6 Known /10 Possible features)
|
Security Information and Event Management (SIEM) Aggregates, analyzes, and alerts on security events. |
SIEM functionality is supported through native Cisco integrations (SecureX, Secure Cloud Analytics). | |
|
Automatic Threat Remediation Responds to detected threats without manual intervention. |
SecureX can orchestrate automatic threat responses via playbooks. | |
|
Real-time Alerting Notifies security personnel immediately upon threat detection. |
Real-time alerting is available in SecureX for all integrated threat events. | |
|
Threat Intelligence Integration Ingests external threat intelligence feeds. |
Threat intelligence integrations available from Cisco Talos and third-party feeds. | |
|
Incident Response Playbooks Provides pre-defined procedures for common security incidents. |
Incident response playbooks are a standard feature in SecureX orchestration. | |
|
Threat Simulation and Red Team Testing Supports simulated attacks for evaluation. |
No information available | |
|
False Positive Rate The percentage of security alerts that are determined to be benign. |
No information available | |
|
Time to Detect Average time between threat occurrence and detection. |
No information available | |
|
Time to Respond Average time between detection and mitigation. |
No information available | |
|
Automated Compliance Reporting Generates regulatory and incident response reports automatically. |
Automated compliance reporting can be configured via SecureX dashboard/reports. |
Endpoint Security
(6 Yes /6 Known /10 Possible features)
|
Endpoint Detection and Response (EDR) Monitors endpoints for threats and suspicious activity. |
EDR integrations provided by Cisco Secure Endpoint managed via SecureX. | |
|
Anti-malware Protection Prevents malicious software from infecting endpoints. |
Anti-malware is part of Cisco Secure Endpoint, integrated into SecureX. | |
|
Device Control Restricts usage of external devices like USB drives. |
No information available | |
|
Patch Management Automates the distribution of security updates. |
Patch management can be orchestrated through Cisco Secure Endpoint/SecureX. | |
|
Mobile Device Management (MDM) Secures and manages mobile endpoints. |
MDM integration possible via Cisco Meraki and security portfolio with visibility in SecureX. | |
|
Remote Wipe Capability Erases data from lost or stolen devices remotely. |
No information available | |
|
Application Whitelisting/Blacklisting Controls which applications can be installed or run. |
App whitelisting/blacklisting via Cisco Secure Endpoint integrations with SecureX. | |
|
Endpoint Isolation Allows quick quarantine of compromised devices. |
No information available | |
|
Number of Devices Supported Maximum number of endpoints protected by the solution. |
No information available | |
|
Endpoint Policy Enforcement Automatically enforces security policies on all endpoints. |
Policy enforcement is available through SecureX for endpoints. |
Fraud Detection and Prevention
(8 Yes /8 Known /10 Possible features)
|
Behavioral Analytics Analyzes user behavior for anomalies indicative of fraud. |
Behavioral analytics provided by Cisco security integrations such as SecureX and Stealthwatch. | |
|
Transaction Monitoring Monitors transactions in real time for suspicious patterns. |
Transaction monitoring is supported through integrations with third-party fraud detection, not natively. | |
|
Machine Learning Models Uses AI models to identify emerging fraud techniques. |
Machine learning models for fraud/threat detection available via Cisco SecureX and extended platforms. | |
|
Geolocation Verification Checks if transactions originate from expected regions. |
Geolocation and geoblocking supported within Cisco Secure Endpoint integrations. | |
|
Device Fingerprinting Identifies repeat or suspicious devices. |
Device fingerprinting available in endpoint security integrations. | |
|
Case Management Tracks fraud investigation from detection to closure. |
Case management for investigation available via SecureX workflows. | |
|
Rule-based Alerts Generates alerts based on pre-set fraud rules. |
Rule-based alerting provided in all Cisco monitoring platforms and SecureX. | |
|
False Positive Rate Percentage of transactions erroneously flagged as fraud. |
No information available | |
|
Detection Speed Average time taken to detect suspicious activities. |
No information available | |
|
Integration with Core Banking Systems Supports real-time integration with existing banking infrastructure. |
SecureX integrates with many core banking solutions via APIs. |
Application Security
(7 Yes /7 Known /10 Possible features)
|
Web Application Firewall (WAF) Protects web applications from common exploits. |
WAF is available via Cisco Secure Firewall integrations with SecureX. | |
|
Vulnerability Scanning Regularly scans for known security weaknesses. |
Vulnerability scanning is covered by Cisco vulnerability management platforms integrated with SecureX. | |
|
Secure Coding Standards Enforcement Ensures adherence to secure development practices. |
SecureX orchestration ensures secure code controls depending on integrated SDLC tools. | |
|
Regular Penetration Testing Conducts simulated attacks to find weaknesses. |
No information available | |
|
Automated Patch Deployment Deploys application security patches automatically. |
Automated patch deployment can be orchestrated via SecureX with endpoint integration. | |
|
Code Obfuscation Makes application source code harder to reverse-engineer. |
No information available | |
|
Session Management Security Protects active user sessions against hijacking. |
Session management security is configurable in SecureX for the supported identity solutions. | |
|
API Security Controls Protects and monitors API endpoints. |
API security controls for exposures provided by SecureX integrations. | |
|
Number of Supported Programming Languages The range of programming frameworks or languages natively supported for secure app development. |
No information available | |
|
Dynamic Application Security Testing (DAST) Integration Integrates tools for runtime security testing of applications. |
SecureX supports DAST integration with various Cisco and partner solutions. |
Regulatory Compliance
(8 Yes /8 Known /10 Possible features)
|
Prebuilt Compliance Reporting Offers reports tailored for key banking regulations. |
SecureX can provide prebuilt compliance reports for several key regulations (PCI DSS, etc.). | |
|
Automated Policy Management Automates the application and monitoring of compliance policies. |
Automated policy management through orchestration and compliance modules. | |
|
Audit Trail Management Maintains immutable logs for audit purposes. |
SecureX maintains immutable audit trails for all activity and integrations. | |
|
Regulatory Change Monitoring Tracks changes in relevant regulations and standards. |
SecureX tracks regulatory changes via Cisco Talos and partner feeds. | |
|
Self-assessment Tools Allows internal audits for compliance readiness. |
No information available | |
|
Compliance Workflow Automation Automates workflows to meet compliance requirements. |
Compliance workflows can be automated via SecureX orchestration. | |
|
Data Residency Controls Specifies where data can be stored based on regulations. |
Data residency controls are supported, especially for cloud deployments. | |
|
Regulatory Coverage Number of major regulations covered out-of-the-box. |
No information available | |
|
Retention Policy Automation Automatically applies data retention and deletion policies. |
Retention policy automation available through platform policy engine. | |
|
Secure Document Management Secure storage and retrieval of compliance documentation. |
Secure document management is available via integrated Cisco Cloudlock/SecureX tools. |
Identity and Access Management (IAM)
(9 Yes /9 Known /10 Possible features)
|
Centralized User Directory Maintains a single source of truth for user authentication. |
Centralized directory supported through Cisco's cloud identity providers and integrations. | |
|
Self-service Password Reset Allows users to reset passwords without admin assistance. |
Self-service password reset supported via integrated Cisco identity management tools. | |
|
User Provisioning and Deprovisioning Automates onboarding and offboarding staff access. |
User provisioning/deprovisioning is supported through automation and orchestration in SecureX. | |
|
Federated Identity Support Allows use of external identity providers (SAML, OAuth, etc.). |
Federated identity integrations fully supported in Cisco SecureX. | |
|
Access Certification Regularly reviews and certifies user privileges. |
Access certification and review can be programmed in orchestration workflows. | |
|
Credential Encryption Ensures user credentials are encrypted at rest and in transit. |
Credential encryption used throughout Cisco identity management. | |
|
Group Management Supports management of user groups and access policies. |
Group management is native to Cisco’s IAM products, accessed via SecureX. | |
|
Identity Federation Integrations Number of external identity federations supported. |
No information available | |
|
Password Policy Enforcement Automatically applies strong password requirements. |
Password policy enforcement is universal in Cisco SecureX and integrated identity tools. | |
|
User Access Review Automation Automates periodic reviews of user access rights. |
User access reviews can be automated with SecureX workflows. |
Monitoring and Reporting
(8 Yes /9 Known /10 Possible features)
|
Real-time Dashboards Visualizes live security and system data. |
Real-time dashboards and analytics are key functions in SecureX. | |
|
Customizable Reports Allows users to define and schedule security and compliance reports. |
Customizable security reports are supported in the SecureX platform. | |
|
Alert Threshold Customization Enables setting of specific alert thresholds. |
Custom alert thresholds are supported in Cisco SecureX workflows and dashboards. | |
|
Historical Data Retention Keeps historical security data for analysis. |
Historical data retention depends on policy, but SecureX supports long-term data analytics. | |
|
Audit Log Integration Centralizes logs from various sources. |
Audit log integration available via SecureX's central role in log collection and management. | |
|
Automated Reporting Frequency How often reports are automatically generated. |
undefined
Automated reporting schedule and frequency is configurable and available. | |
|
User Activity Monitoring Tracks user activities for policy violations. |
User activity monitoring is integral to SecureX analytics and reporting. | |
|
Custom Alert Channels Supports multiple channels for alerting (email, SMS, app). |
Supports multiple alert channels including email, SIEM, and third-party connectors. | |
|
Third-party Log Integration Integrates with external log and monitoring providers. |
Third-party log integration available through SIEM and orchestration APIs. | |
|
Report Retention Period Length of time reports are stored and accessible. |
No information available |
Resilience and Recovery
(7 Yes /7 Known /10 Possible features)
|
Disaster Recovery Planning Provides tools for planning and testing disaster recovery. |
Disaster recovery planning supported through Cisco and partner integrations for continuity. | |
|
Business Continuity Management Ensures continued operations during disruptions. |
Business Continuity Management is part of Cisco's security risk and resilience frameworks. | |
|
Automated System Failover Automatically switches to backup systems on failure. |
No information available | |
|
Backup and Restore Automation Automates data and system backup/restore processes. |
Backup and restore automation supported through Cisco and popular integrations. | |
|
Ransomware Recovery Supports fast recovery from ransomware attacks. |
Ransomware-specific recovery is part of advanced endpoint security (Cisco Secure Endpoint) and orchestrated via SecureX. | |
|
Recovery Time Objective (RTO) Target time to restore function after disruption. |
No information available | |
|
Recovery Point Objective (RPO) Maximum acceptable amount of data loss after an incident. |
No information available | |
|
Resilience Testing Support Enables regular testing of resilience and recovery plans. |
Regular resilience and recovery testing can be scheduled as SecureX playbooks. | |
|
Automated System Health Checks Monitors backup and resilience readiness automatically. |
Automated health checks of system status and resilience are available via SecureX analytics. | |
|
Service Level Agreement (SLA) Monitoring Tracks compliance with recovery SLAs. |
Cisco SecureX supports SLA tracking with monitoring and reporting modules. |
Cybersecurity Solutions for IT and Infrastructure
Comprehensive security systems including firewalls, intrusion detection/prevention, endpoint protection, and security information and event management (SIEM) tools to protect sensitive financial data and systems.
More Cybersecurity Solutions
More IT and Infrastructure ...
Sorry, no analysis is avaiable for Cybersecurity Solutions
This data was generated by an AI system. Please check
with the supplier. While you are talking to them, remind them that they need
to update their entry.