A few weeks ago we held our first lunch and learn event about Juniper’s new Sky Advanced Threat Prevention (ATP) which uses advanced machine-learning and the cloud to rapidly combat security threats to your company much faster than traditional security offerings. The event was presented by Virg Santos, a Juniper Senior System Engineer, and he covered in detail both Sky ATP and the latest version of Juniper’s Security Director software, 15.2, including giving a live demonstration of Sky ATP.
The session was an informative and comprehensive look at two of Juniper’s latest security solutions, which we recorded and you can view the video further down in this post. Unfortunately, due to a technical issue the first three slides of the presentation were not captured, so we are including them here.
Presentation Introduction
The security threat landscape has been evolving for years, but the addition of criminal organizations and State sponsors into the mix means attackers have greater resources than ever before and can apply them to very specific targets. The only way to stay ahead of the attackers is to make your company’s defenses agile and scalable.
While the financial cost of a security breach is relatively easy to calculate, the cost in reputation and public trust can be much greater, as well as more difficult to estimate. Several large organizations have been targeted more than once, with huge costs in both financial and and the more unquantifiable damage to their reputation.
Sky Advanced Threat Protection is a cloud-based security solution that leverages and expands upon the capabilities of Juniper’s SRX firewalls, which act as a detection and enforcement point for rapid response to threats. Sky Advanced is designed to be used in enterprise environments to protect both your users and data centre and uses inline remediation to block inbound and outbound security threats. It currently runs on the new SRX1500 Services Gateway firewall, and will be coming to the new SRX300 firewalls later this year, and there is both a free and paid subscription version available.
The Presentation Video
[su_youtube url=”https://www.youtube.com/watch?v=K8Y0MkbJwcs”]Throughout the rest of this video, the key elements of Sky ATP are explained — how it uses the cloud and the process it uses to analyze your incoming traffic for unknown security threats. Sky ATP combines rapid response with deep analysis, enabling it to quick address less severe unknown threats, but then use slower advanced techniques like machine learning and behavioral analysis in a sandboxed environment to try and trick the malware into revealing itself. After this rundown of the why and how of Sky ATP, you will then be able to see it in action in the video.
The second half of the presentation is an in-depth look at Security Director, Juniper’s centralized SRX security management software. The new version of this powerful tool is detailed, including how it is now smarter and faster. There is a new interactive graphical summary of the applications in use in your organization and the ability to drill down to look at their usage by user or group. The event and logs view has been updated to be easier to search, and there is a much-improved dashboard and live threat map that shows threat origin data.
The Next Steps to get Sky ATP and Security Director
Sky Advanced Threat Prevention is licensed as both a free version and a subscription-based premium service with the premium service providing expanded file support and more detailed reporting. You will also need an SRX1500 firewall and Junos Space Security Director which is a paid offering to manage any Juniper Networks security device. If you are interested in learning more about Sky ATP, the SRX 1500 and Security Director you can reach out to our network security sales team.