Integrating Your Appliance with Cisco XDR

Cisco XDR is a security platform embedded with every Cisco security product. It is cloud-native with no new technology to deploy. Cisco XDR simplifies the demands of threat protection by providing a platform that unifies visibility, enables automation, and strengthens your security across network, endpoints, cloud, and applications. By connecting technology in an integrated platform, Cisco XDR delivers measurable insights, desirable outcomes, and unparalleled cross-team collaboration. Cisco XDR enables you to expand your capabilities by connecting your security infrastructure.

Cisco XDR is a threat incident response orchestration hub that supports and automates integrations across multiple Cisco Security products. As a key pillar of the Cisco integrated security architecture, XDR accelerates key security operations functions: detection, investigation, and remediation.

Integrating the Appliance with Cisco XDR contains the following section:

• How to Integrate Your Appliance with Cisco XDR

You can integrate your appliance with Cisco XDR, and perform the following actions in Cisco XDR:

• View and send the email data from multiple appliances in your organization.

• Identify, investigate and remediate threats observed in the email reports, sender and target relationships, search for multiple email addresses and subject lines and message tracking.

• Block compromised users or users violating outgoing email policies.

• Resolve the identified threats rapidly and provide recommended actions to take against the identified threats.

• Document the threats to save the investigation and enable collaboration of information among other devices.

• Block malicious domains, track suspicious observances, initiate an approval workflow or to create an IT ticket to update email policy.

You can access Cisco XDR using the following URL:

https://xdr.us.security.cisco.com/

Cisco Secure Email and Web Manager centralizes management and reporting functions across multiple Cisco Secure Email Gateways. For more information on observables that can be enriched by the Secure Email and Web Manager module, go to https://xdr.us.security.cisco.com/administration/integrations, navigate to the module to integrate with Cisco XDR, and click Get Started.