Categories
CCNP Enterprise Core (350-401) Cisco Security

Cisco Stealthwatch

Cisco Stealthwatch is a collector and aggregator of network telemetry data that performs network security analysis and monitoring to automatically detect threats.

It is able to detect threats that successfully infiltrate the network and also threats that have originated from inside the network.

Stealthwatch can quickly and with high confidence detect threats such as command and control attacks, ransomware, illicit cryptomining, unknown malware, and inside threats.

The StealthWatch solution is agentless but can look into many parts of the network including the cloud. It can detect malware within encryption traffic and ensure policy compliance without any decryption.

StealthWatch has two offerings, StealthWatch Enterprise, and StealthWatch Cloud.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.