Guest

Advanced Malware Protection (AMP)

Breach prevention. Continuous monitoring of malicious behavior. Rapid malware detection. Malware removal.

Compare us with others
Cisco Security Connector

Cisco Security Connector

Better security for the mobile work force.

Security for iOS

Visibility and control to defeat advanced attacks

Get global threat intelligence, advanced sandboxing, and real-time malware blocking to prevent breaches with Cisco Advanced Malware Protection (AMP). But because you can’t rely on prevention alone, AMP also continuously analyzes file activity across your extended network, so you can quickly detect, contain, and remove advanced malware.

  • Leading breach detection

    Leading breach detection

    Source: NSS Labs
  • Reduce time to detection

    Time to detection

    Source: 2017 Annual Cybersecurity Report
  • Malware samples per day

AMP key features

AMP global threat intelligence

Global threat intelligence

Our Cisco Talos experts analyze millions of malware samples and terabytes of data per day and push that intelligence to AMP. AMP then correlates files, telemetry data, and file behavior against this context-rich knowledge base to proactively defend against known and emerging threats.

Advanced sandboxing

Advanced sandboxing

Advanced sandboxing capabilities perform automated static and dynamic analysis of files against more than 700 behavioral indicators. These analyses uncover stealthy threats and help your security team understand, prioritize, and block sophisticated attacks.

Point-in-time malware detection and blocking

Point-in-time malware detection and blocking

Block malware trying to enter your network in real time. Using AV detection engines, one-to-one signature matching, machine learning, and fuzzy fingerprinting, AMP analyzes files at point of entry to catch known and unknown malware. The result? Faster time to detection and automatic protection.

Continuous analysis and retrospective security

Continuous analysis and retrospective security

Once a file enters your network, AMP continues to watch, analyze, and record its activity, regardless of the file’s disposition. If malicious behavior is spotted later, AMP sends your security team a retrospective alert that tells them where the malware came from, where it’s been, and what it’s doing. In a few clicks, you can contain and remediate it.

Find the best AMP deployment for you

Advanced Malware Protection is subscription-based, managed through a web-based management console, and deployed on a variety of platforms.  

Protect your endpoints

Protect your endpoints

With our endpoint security solution, you can block malware at the point of entry, get visibility into file and executable-level activity, and remove malware from PCs, Macs, Linux, and mobile devices.

Amp for ...
Endpoints

Protect your network

Protect your network

Get deep visibility into network-level and network-edge threat activity and block advanced malware.

AMP on an...
NGIPS (AMP for Networks)
Next-Generation Firewall
Meraki MX UTM platform
Branch router (ISR)

Protect your email and web traffic

Protect your email and web traffic

Add AMP capabilities to email and web security appliances or to your cloud email and web security deployments.

AMP for ...
Email
Web
Secure Internet Gateway (Umbrella)

Related products

Video: AMP Threat Grid

Threat Grid

Get advanced threat intelligence and static and dynamic malware analysis. Choose from a hardware appliance or cloud deployment. Learn more about Threat Grid.

Heritage Bank Protects Endpoints with Cisco AMP

Heritage Bank Protects Endpoints with Cisco AMP

"AMP for Endpoints and Threat Grid give us confidence to move forward with cloud-based and other solutions that are typically difficult to secure. You’re no longer up at night wondering if someone is accessing things that other solutions are unable to scan or see."

Lachlan Peters, Security Team Leader, Heritage Bank

Read story

See more case studies

Cisco IT increases security effectiveness with Cisco AMP

Video: Cisco IT increases security with AMP

"With AMP, we’re getting better results with defending our network automatically, as well as increased visibility to things happening on our network, and our ability to detect and contain threats has greatly improved."

Steve Martino, Chief Information Security Officer, Cisco
See more AMP case studies

News and events

Webinar: Accelerate Malware Analysis

Webinar: Accelerate Malware Analysis

Join Cisco and ThreatConnect to learn how orchestration enhances malware analysis.

Cisco Umbrella now includes AMP

Cisco Umbrella now includes AMP

Block malicious files being downloaded from risky websites even when off corporate network.

See threats once. Block everywhere.

See threats once. Block everywhere.

Cisco is a leader in NSS Labs’ Breach Detection test for the third year in a row, detecting 100% of malware, exploits, and evasions.

Cisco 2017 Midyear Cybersecurity Report

Cisco 2017 Midyear Cybersecurity Report

Understand how adversaries quickly pivot, innovate, and are now shifting to the IoT.

Get report

Meet the experts

Get the latest insights on advanced malware protection

Follow our team of security engineers and product experts to get the latest insights and analysis on the security industry, emerging malware, and updates to the Cisco Advanced Malware Protection (AMP) portfolio of products. Read more

For partners

Are you a Cisco partner?  Log in to see additional resources.

Looking for a solution from a Cisco partner? Connect with our partner ecosystem.

View all security partner resources