Cisco Identity Services Engine (ISE) allows you to streamline security policy management and reduce operating costs. It helps you gain visibility to see users and devices connected to your network and applications that are installed and running. By sharing contextual data, ISE lets you identify, contain, and remediate threats faster.
ISE simplifies access across wired, wireless, and VPN connections while using several mechanisms to enforce policies across all types of access points. To help enforce these policies, ISE uses Cisco TrustSec software-defined segmentation. Cisco TrustSec uses security groups that are based on business rules, not IP addresses or network hierarchy, to give users access that is continuously maintained as resources move across domains.
Cisco Rapid Threat Containment reduces risks and stops attacks immediately by using an open integration of Cisco security technology partner solutions and the network control of ISE. When any suspicious activity or vulnerabilities are discovered, Rapid Threat Containment lets you deny a users’ access to critical resources while still permitting access to noncritical resources. This gives you the flexibility to protect critical data while limiting the impact to the users’ productivity.