(Optional) Malware Protection with Secure Endpoint

Cisco's Secure Endpoint is a separate malware-protection product that can supplement malware protection provided by the system and be integrated with your Firepower deployment.

Secure Endpoint is Cisco’s enterprise-class Advanced Malware Protection solution that runs as a lightweight connector on individual users' endpoints (computers and mobile devices) to discover, understand, and block advanced malware outbreaks, advanced persistent threats, and targeted attacks.

Benefits of Secure Endpoint include:

• Configure custom malware detection policies and profiles for your entire organization, as well as perform flash and full scans on all your users’ files

• Perform malware analysis, including view heat maps, detailed file information, network file trajectory, and threat root causes

• Configure multiple aspects of outbreak control, including automatic quarantines, application blocking to stop non-quarantined executables from running, and exclusion lists

• Create custom protections, block execution of certain applications based on group policy, and create custom Allowed Applications lists

• Use the Secure Endpoint management console to help you mitigate the effect of malware. The management console provides a robust, flexible web interface where you control all aspects of your Secure Endpoint deployment and manage all phases of an outbreak.

For detailed information about Secure Endpoint, see:

• https://www.cisco.com/c/en/us/products/security/amp-for-endpoints/index.html.

• Online help in the Secure Endpoint management console.

• Secure Endpoint documentation available from: http://docs.amp.cisco.com.