In the hyper-connected enterprise, in which everything from simple IoT devices to complex multi-million-dollar systems are connected, traditional agent-based and human-generated security models simply cannot scale. Network segmentation is the most logical way to secure these connected devices, but it’s currently much too complex to be effective.
Ordr solves this problem, providing you with complete visibility and classification over every class of network-connected device and system. The Ordr Systems Control Engine is the only purpose-built solution to fully map the device flow genome at massive scale, using machine learning to completely and continuously baseline the behavior of every device.
We understand that traditional methods of segmentation can be too complex to be practical or effective. Ordr’s advanced machine learning also automatically generates segmentation policies for each class of device and implements those policies directly on your existing multi-vendor network and security infrastructure.
What Does Ordr Do for Cisco ISE?
Cisco Identity Services Engine (ISE) provides endpoint visibility and identity-based access control for the Enterprise. To make these technologies effective for IoT requires additional intelligence and automation. Ordr device classification, network awareness, security intelligence, and ability to auto-generate enforcement rules simplifies the process of creating, provisioning, and managing your IoT segmentation policy.
The Ordr Systems Control Engine complements and advances the power of Cisco ISE solution by providing:
- Advanced classification of connected devices to augment ISE visibility
- Vulnerability, threat assessment and risk ratings to quickly alert ISE of at-risk devices
- Detailed flow analysis to understand normal versus abnormal communication behavior
- Dynamic translation of approved device behavior into ISE micro-segmentation policies