Company detects and mitigates network threats before experiencing data loss or service interruption.

Article Summary:

Cisco augmented its perimeter-based intrusion prevention system (IPS) deployment with network-based IPS in data centers. Although perimeter-based IPS sensors detect malicious traffic that traverses the company firewalls, they do not detect suspicious traffic that both originates and terminates within the company. Network-based IPS sensors at Cisco help protect the company’s most important assets, which reside within data centers. This Cisco IT case study explains how the Cisco Computer Security Incident Response Team (CSIRT) uses the network-based IPS solution for monitoring and analysis and investigation. It also discusses the importance of tuning to reduce false positives while not generating false negatives.

Benefits of network-based IPS include:

Protects data center assets
Identifies events before harm is caused
Enables early detection and remediation
Helps prevent data loss or service interruption

CSIRT Network-Based Intrusion Prevention System - Executive Summary PDF (PDF - 135 KB)

CSIRT Network-Based Intrusion Prevention System PDF (PDF - 296 KB)

CSIRT Network-Based Intrusion Prevention System - Presentation PDF (PDF - 211 KB)

For additional Cisco IT Case Studies on a variety of business solutions, go to Cisco on Cisco.