Using Armis with Cisco Identity Services Engine (ISE)
Seamlessly Create, Manage & Enforce Security Policies Across Connected Assets
The Problem
McKinsey predicts that by 2030 more than 50 billion devices will be connected IoT devices consisting of over 180 zettabytes of data. (DataBridge Market Research)
Unmanaged assets are growing in number and are becoming ubiquitous in corporate environments – Connected printers and scanners, VoIP phones, IoT-enabled access points, smart ID badge readers or biometric scanners, Smart inventory and warehouse sensors RFID readers and much more.
Visibility, security, and control over the explosion of both managed & unmanaged assets are a major challenge. Most existing security tools were built to monitor traditional computing devices on conventional networks. However, they are blind to the growing wave of connected assets, leaving critical blind spots across enterprise environments.
The Joint Solution
Armis Centrix™ is designed to solve these problems. Armis discovers all devices on your network, managed and unmanaged.
Armis delivers the deep, real-time visibility organizations need to manage today’s complex and diverse asset landscape. It builds a comprehensive, continuously updated inventory of every connected asset by identifying manufacturer, model, OS, installed applications, physical and logical location, historical communications, and assigning a unique, context-aware risk score. This empowers security teams to proactively reduce the attack surface and make informed decisions based on actual asset behavior and risk.
Armis Centrix™ continuously monitors each asset, using advanced behavioral analytics powered by the Armis Asset Intelligence Engine and Armis Labs. By comparing real-time activity against a massive cloud-based knowledgebase, Armis can instantly identify anomalies and policy violations even on devices that cannot support traditional endpoint agents.When integrated with Cisco Identity Services Engine (ISE), Armis enables automated, closed-loop threat detection and response across both managed and unmanaged devices. Upon detecting a threat, Armis alerts Cisco ISE, which can dynamically enforce policy-based actions such as quarantining suspicious devices or segmenting them from critical systems thus neutralizing threats before they spread. In addition, Armis derived device context can be ingested into Cisco ISE to drive Adaptive Network Control policies, enabling fine-grained, risk-based access decisions that align with Zero Trust principles and reduce operational risk at scale.