NSA: Webex Best-in-Class in Secure Collaboration Guidelines.
NSA: Webex Best-in-Class in Secure Collaboration Guidelines.
Guidelines for a Safe, Secure, and Compliant Collaboration Ecosystem
The National Security Agency (NSA) published a set of guidelines for "Selecting and Using Security Services Safely. collaboration for telecommuting. "Guidelines that evaluated 17 collaboration service providers identified a dozen critical criteria for cybersecurity functionality and security assurance to help employees and organizations make informed decisions when selecting a collaboration service. The goal is to help users "reduce their exposure to risk" when conducting business throughout their workday.
The pandemic brought a new hybrid nature to the way we work. This sea change has raised new compliance issues that did not necessarily exist in the past when work was performed in an organization's building and on secure internal networks using the organization's devices. Today's IT administrators must worry about data protection and regulatory compliance while expanding the technology footprint to include personal and external devices.
Breadth and depth for security in collaboration services
Whether in the office, at home, or roaming, CISCO's approach to protecting devices, content, applications, data, and users is holistic and 360-degree in nature.
Customers have entrusted Cisco Webex with their collaboration , meetings, messages, calls, and mission-critical data. They want Webex to protect their data, help them comply with privacy laws and regulations, and reduce the risk of exposure to competition, private or confidential data being made public, unwanted press and a bad reputation. Webex provides a platform for collaboration that helps maintain the security of customer data by making privacy and security the highest priority in the design, development, implementation and maintenance of our networks, platforms and applications. Webex employs multiple technologies, procedures, and equipment to ensure the collaboration platform meets privacy and security requirements and provides customers with a choice of region to store their user content.
CISCO continually assesses and remediates vulnerabilities and monitors networks and systems for outages, service latency, and unusual and unauthorized events and activities.
Safe throughout the ecosystem
The Cisco Webex ecosystem addresses basic security criteria such as multi-factor authentication, controlling how collaboration invitations are shared, and end-to-end encryption.
CISCO systems ensure that user and organization data is secure across the board.
Protection of users and devices
Webex has automated user sign-in and sign-out (SCIM or AD Sync), single sign-on with the identity provider chosen by the customer, multi-factor authentication through Cisco Duo o HTTP Authenticator, OAuth 2.0 standard- based authorization, anonymous user identities, role-based access control and delegated administration.
When we use Webex, we also protect user devices. All content created in Webex is end-to-end encrypted, even cached content. Our built-in MDM capabilities through the Webex Control Hub ensure secure access for devices, including PIN lock to launch the app, admin controls for file sharing, and disabling message notification previews so no one can spy on messages on a locked screen and the ability to remotely erase Webex messages in the event of device loss or theft.
Securing content and meetings
End-to-end encryption keeps all content on Webex safe, including searches. Organizations also have the option of storing their encryption keys on premises, giving them maximum control. With the end-to-end encryption option for meetings, customers have exclusive control of the meeting's encryption keys, and Cisco and no one can access their meeting content. We've been doing this for over 12 years and just announced a new standards-based approach to end-to-end encryption of meetings that also provides end-to-end verified identity and support for conference room devices.
Data Loss Protection (DLP)
At Webex, we've designed our ecosystem to help prevent users from making mistakes before they happen. Through our data loss prevention (DLP) features, organizations can prevent critical information from being maliciously or accidentally shared in meetings or messages. Organizations can track meeting content, messages, and files posted to spaces, track users added to spaces and meeting attendees, control unwanted users in spaces, and prevent sharing accidental or deliberate information and confidential data. Webex is the only collaboration solution that enables customers to use their existing DLP tools and policies for meeting recordings and transcripts.
With Webex Control Hub, organizations can define their data retention policy for meetings and messaging, including transcripts, highlights, recordings, and messaging content.
Expansion of security capabilities
To extend Webex's security capabilities, the best integrated solutions can be quickly deployed to protect an organization's data, as well as the data of its partners. They prevent confidential data leakage and provide anti-malware protection and multi-factor authentication.
To ensure that users comply with compliance policies, Cisco Cloudlock provides visibility and control over sensitive information stored in Webex messaging with more than 80 existing policies and the ability to create new policies. Cloudlock can automatically delete files or messages when policy violations are discovered, notify administrators, and remove users from spaces.
To help combat malware attacks, Cisco TalosClamAV scans all uploaded files for Trojan attacks, viruses, malware, and other malicious threats. All files shared on Webex that an organization designates are scanned and corrected, even if they are uploaded by external users. Infected files will be clearly marked and cannot be downloaded by end users to both organization-managed and personally-managed devices. Cisco TalosClamAV scans 1 billion files daily for more than 10 million users, with 7.2 billion attacks stopped each year.
Remote Worker Safety
Insure the remote user and their data will continue to be a primary policy in the new hybrid work model. Whether users work from home, in shared coworking offices, or in remote offices, the same security coverage inherent to on-premises work must be extended to these workers in the hybrid model. To further enhance remote worker security, Webex has created a set of cost-effective solutions for businesses and SMBs alike. With Cisco Webex Secure Remote Work Solutions, services such as meetings, messaging, and calls are secure. But that security coverage extends to endpoints, multi-factor authentication, DNS protection, and defense against malware for incoming email.
Source: see the full original article. Posted: April 20, 2021 09:00 AM PDT
Share this post
Cisco XDR helps quickly detect advanced cyberthreats and automate response
With unique visibility across the network and endpoints, Cisco XDR Extended Detection and Response simplifies security operations and prioritizes and corrects incidents more efficiently. San Francisco (RSA Conference), April 25, 2023. - Cisco has presented during the RSA event its new Extended Detection and Response (XDR) solution and advanced features for...
What is the difference between 2FA Two-Factor Authentication and MFA Multifactor?
Improving the security of your business, company and personal computers has never been easier and it's really that simple. In the past, a simple password was the most "secure" way to protect important data and documents. Passwords only provide a layer of security, and once that layer of security is compromised,...
Catalyst 9200CX Switches with HVDC, Cisco UPoE and mGig
Is your network ready for the hybrid world? Employees telework from different locations, with different devices and use applications hosted in different locations. Extends the power of the secure network as close to the edge as possible. The new compact Catalyst 9200CX models are optimized for flexibility and security. Ideal for: Fiber...
Cisco Secure Firewall 3100 series
The 3100 Series firewalls are designed to make hybrid work and zero trust practical. They support more remote users and increase VPN performance. Clustering and the flexibility of high port density allow the firewall to grow with you, ensuring a solid return on investment. The Cisco Secure Firewall 3100 Series is...