(Optional) Malware Protection with Secure Endpoint

Cisco's Secure Endpoint is a separate malware-protection product that can supplement malware protection provided by the system and be integrated with your Firepower deployment.

Secure Endpoint is Cisco’s enterprise-class Advanced Malware Protection solution that runs as a lightweight connector on individual users' endpoints (computers and mobile devices) to discover, understand, and block advanced malware outbreaks, advanced persistent threats, and targeted attacks.

Benefits of Secure Endpoint include:

  • Configure custom malware detection policies and profiles for your entire organization, as well as perform flash and full scans on all your users’ files

  • Perform malware analysis, including view heat maps, detailed file information, network file trajectory, and threat root causes

  • Configure multiple aspects of outbreak control, including automatic quarantines, application blocking to stop non-quarantined executables from running, and exclusion lists

  • Create custom protections, block execution of certain applications based on group policy, and create custom Allowed Applications lists

  • Use the Secure Endpoint management console to help you mitigate the effect of malware. The management console provides a robust, flexible web interface where you control all aspects of your Secure Endpoint deployment and manage all phases of an outbreak.

For detailed information about Secure Endpoint, see: