Techaisle Blog

Today's cybersecurity landscape is a complex maze, with a multitude of vendors contributing to a convoluted and intricate security stack. The evolution of security from traditional perimeter defenses around private data centers to a distributed network of branch offices, remote workers, and IoT devices has necessitated a radical shift in security strategies, with a focus on enforcement points across the network. At its core, security is a data challenge, where the sheer volume of data often hinders the identification of actionable insights, leading to an imbalanced signal-to-noise ratio and the prevalent issue of alert fatigue. Effective data connection across control points is crucial to transform low-level alerts into critical insights that demand immediate action.

Under the visionary leadership of Jeetu Patel, Executive Vice President and General Manager of Security and Collaboration, Cisco's security product portfolio has undergone a transformative evolution. This radical re-envisioning of security paradigms has significantly refined Cisco's security cloud solutions, streamlining the adoption process for an integrated security platform. In response to the complexities of distributed environments, Cisco introduced 'Hypershield,' a pioneering expansion of the hyper-distributed architecture concept tailored to meet the demands of hyper-distributed security. The strategic acquisition of Splunk has further fortified Cisco's capabilities, enabling it to manage the signal-to-noise ratio effectively. Leveraging Splunk's advanced data analytics, Cisco aims to mitigate alert fatigue by converting many low-level events into meaningful, actionable insights.

The Birth of the Cisco Security Cloud Platform

In June 2022, Cisco introduced the Cisco Security Cloud Platform at the RSA Conference, a visionary solution designed to streamline the complexity of managing disparate security tools. This platform offers a unified experience, ensuring secure connections for users and devices to applications and data, irrespective of location.

The platform's emphasis on openness provides a comprehensive suite for threat prevention, detection, response, and remediation at scale. At its core is a powerful firewall, enhanced with AI for superior analysis. Identity management is flawlessly integrated, allowing every Cisco security product to leverage AI-driven insights and user authentication.

Cisco addressed the challenge customers faced with the vast array of security products—approximately 30 products with over 1,000 variations—by significantly simplifying its portfolio. Customers now have a choice of three intuitive suites: User Protection, Cloud Protection, and Breach Protection. These suites are not merely bundled; they are fully integrated, facilitating seamless communication and improved functionality, making security management far more straightforward and efficient.

Tackling Hyper-Distributed Security with Cisco Hypershield

As an industry analyst, I am convinced that Cisco's recent strides in security innovation are nothing short of impressive. The 2023 launch of Cisco Multi-cloud Defense, Cisco XDR, Cisco Secure Access, and advanced firewall functionalities marked a year of significant progress. The introduction of Cisco AI Assistant was a testament to its commitment to continuous innovation. In 2024, Cisco took a giant leap by introducing Hypershield, a sophisticated, AI-enhanced, cloud-native security system set to redefine cybersecurity.

According to data from Techaisle, it is projected that the global IT expenditure of small and medium-sized businesses (SMBs) will escalate to a staggering US$1.35 trillion by 2024. Furthermore, this spending is anticipated to experience a compound annual growth rate (CAGR) of 5.7%, extending through 2028. Cisco is making a significant push into the SMB market, a segment where it has enjoyed steady growth. In fiscal year 2023, which concluded in July, the SMB segment was Cisco’s top-performing customer category for a third consecutive year. Cisco sees this segment as a $25 billion addressable market opportunity, captured with mid to high-tier SMBs transitioning to cloud and SaaS solutions. Notably, about 20% of Cisco’s SMB business comes from new customers every year, underscoring this segment's critical role in expanding Cisco’s reach and reflecting on the growing demand for technology amongst SMBs.

Cisco’s go-to-market in the SMB segment is partner-led, catalyzed with continuous partner-focused programs, initiatives, and marketing investments to foster robust relationships. According to the latest research by Techaisle, a significant majority of SMBs, 87%, depend on their partners for technology solutions. Furthermore, these SMBs channel nearly 89% of their IT expenditure through these partners. Cisco is, therefore, continuously enhancing its engagement with partners, revamping its marketing strategies, and adapting to the changing needs of its customers. A vital part of this strategy is the focus on the new “Scale” go-to-market initiative, aligned to engaging SMB customers and Partners in this space, as unveiled at the company’s sales kickoff meeting in August. This model offers partners and customers enhanced sales and marketing support, ensuring that SMBs receive expert advice in crucial care-about areas such as cybersecurity or hybrid work.

The concept of “digital transformation” has become a staple in corporate discussions over the years. While some may write it off as a fad, many, particularly SMBs, understand its importance. For these businesses, digital transformation involves adopting digital technologies to streamline operations, improve customer relationships, and position themselves as agile and innovative entities in their respective fields. Techaisle data reveals that 71% of SMBs are investing in digital transformation, and 37% have a holistic digital strategy. SMBs, once perceived as technologically behind, are actively embracing cloud solutions to meet their IT requirements. These technologies have become crucial to their digital transformation journey, enabling them to automate various operational aspects and gain a competitive advantage through essential business process automation tools, orchestration, and integration or advanced offerings like custom AI and analytics applications hosted on cloud platforms.

As the market becomes flooded with specialized security solutions, an important question arises: Who can effectively integrate and manage all these different solutions? Cisco is making changes to position itself as a leading contender. As a comprehensive solution provider, Cisco can fill gaps in the cybersecurity landscape and ensure a cohesive approach to security, especially cloud security. It is building and integrating its portfolio of offerings, for example, XDR, Umbrella, Duo, Talos, many others, and now Armorblox.

As threats evolve, security efforts have shifted from solely preventing incidents to investigating them quickly and anticipating future risks. With IT environments now comprising interconnected networks, communication tools, mobile devices, cloud applications, and more, security is a top priority. Techaisle data shows that security is an IT priority for 74% of small businesses, 85% of SMBs, and 100% of midmarket firms. Endpoint security is already relatively widely adopted by SMBs. In addition, security suppliers have made headway in gaining customers for mobile hardware and access control security services. While Endpoint Detection and Response (EDR) tools are helpful, their capabilities are limited to detecting and responding to threats on endpoints and servers. Prevention remains the best approach to security, but detection is essential.

Cisco’s new XDR technology presents exciting opportunities for business growth by leveraging its vast network infrastructure and customer data to tackle security challenges. To strengthen its position in the security industry, Cisco is streamlining its go-to-market strategy and investing in partnerships to unify its cybersecurity offerings. Its partner growth strategy includes upgrading firewalls and refreshing products for existing customers, offering competitive pricing and margins to win new business, and introducing new partner offers for Security Operations Centers, such as Managed Detection and Response using Cisco XDR.

Cyberattacks targeting small and medium-sized businesses (SMBs) have increased, particularly ransomware and DDoS attacks. Implementing multi-factor authentication (MFA) safeguards employee identities and credentials. However, only 16% of SMBs and 25% of midmarket firms use MFA enterprise-wide. Similarly, only 13% of SMBs and 16% of midmarket firms have adopted single sign-on. However, the intent to adopt is significantly higher. Cisco offers MFA and single-sign-on (SSO) through its Duo offering, introducing innovations such as passwordless and risk-based authentication and Verified Duo Push. In addition, Duo has made security more accessible by integrating its Duo Trusted Endpoints capability into all service tiers, allowing users to restrict access only from corporate-managed devices or devices registered with Duo. This helps prevent unauthorized access attempts from unknown devices. In the advanced tiers, users can also assess the devices’ health before granting access and block risky or non-compliant devices, such as those running out-of-date software.

Securing endpoints and servers is essential for organizations, but cybercriminals are finding ways to bypass these measures through covert attacks. Instead of directly targeting high-value assets in data centers, they gain access through laptops and move laterally through the network. As a result, relying solely on an EDR solution or a firewall is not enough to detect and prevent cyberattacks. To fully protect IT infrastructure, it’s necessary to integrate prevention, detection, and response technologies into a single solution. This is where Extended Detection and Response (XDR) comes in, providing a comprehensive approach to security.

XDR builds upon the concept of EDR and expands its scope. It goes beyond the endpoint and server by integrating data from various security tools, including firewalls, email gateways, endpoint, network, identity, DNS, public cloud tools, and mobile threat management solutions. While it is possible to connect these components manually, a comprehensive XDR solution is designed to function as a unified system wherein components are interconnected and work together seamlessly to optimize threat detection and response workflows. Cisco's XDR solution in one such system.

Historically, remote work solutions have been the domain of large enterprises equipped with processes and technology resources needed to support workers in the field. However, driven by short- and longer-term factors, flexible work options are now available to employees in businesses of all sizes. Moreover, as social distance health requirements forced the temporary closure of public office spaces, remote work became a matter of survival for many organizations. The pandemic has also crystalized recognition of the productivity benefits of technology-enabled remote work – measured in output rather than hours – which is sure to have a profound and durable impact on workplace behaviors. Today, working from anywhere is the new normal, enabled by powerful communication and collaboration tools, which draw together workers regardless of physical location and are becoming the catalyst for change in large and smaller businesses. What are the primary enablers of this flexible work trend? Data shows a growing commitment to leveraging the power of the cloud and adjacent technologies of mobility, cloud calling, and collaboration - technologies that allow workers and teams to connect, reflect, and share insights and output. Techaisle SMB and Midmarket Hybrid work and collaboration adoption survey, N=1810, shows that:

• 93% of SMBs have prioritized remote and hybrid workplace technology solution adoption
• 58% of employees in the SMB segment are likely to work remotely
• 79% of SMBs are prioritizing cloud-based communication and collaboration solutions which show evolving recognition of the value of cloud calling and collaboration

The simultaneous commitment to cloud calling and collaboration solutions and future planning around a return to the office suggest that something deeper is at play in the SMB communications solution marketplace. Cloud calling and Collaboration are central components of virtually all SMB business activities. The need to communicate anywhere, anytime also means any type of communication and collaboration – synchronous/asynchronous, serendipitous/scheduled, on-the-go/fixed location, within a virtual workspace/within a specific app, with employees/partners/customers. As the lines of demarcation between tasks have been eroded by the increased pace and changing nature of business activities, SMBs have moved past linking discrete actions through linear, sequential processes. Instead, in today's business environment, SMBs interact at all points in the business cycle: in cross-functional planning and management, within a single co-created document, in the stages and connection points defined by their business processes, in delivering better customer experiences, and enabling improved employee productivity.

There is value in adopting unified cloud calling and collaboration. The use of traditional collaboration tools by SMBs is well-established. However, cloud calling solutions are rapidly gaining attention from SMBs. With nearly a hundred percent cloud priority, shifting from on-prem solutions (acquired through CAPEX budget) to cloud-based as-a-service offerings creates a sort of inflection point. As the name implies, cloud calling is cloud-based and available as a subscription. It supports remote work and mobility, provides cash flow predictability, easily integrates within the employees' workspace, and improves IT manageability and efficiency.

A significant collaboration technology shift is SMB's use of a cloud-based communications platform with integrated telephony (audio/video/web conferencing), IM/chat/presence, unified messaging, and mobility. Techaisle data shows that today, just under a third (27%) of SMBs are using integrated solutions, while over a third (35%) plan to adopt the platform in the coming year, a likely adoption growth of over 100%.

The Webex integrated collaboration platform