Looking to optimize your applications and deliver richer experiences to end users? How about exiting the data center and closing the door on costly hardware refreshes and maintenance? If you answered yes to either question, you’re in good company.
Organizations are increasingly migrating their critical applications from on-premises environments to cloud and hybrid deployments for both reasons. In fact, 54 percent of applications currently running in the cloud were existing ones migrated from an organization’s on-premises infrastructure.
Ensuring consistent security posture
Although the benefits are clear, the decision to migrate your applications away from on-premises is a calculated one. Organizations need time to identify concerns and ensure that their security posture isn’t negatively impacted along their journey. So, Oracle Cloud Infrastructure (OCI) is proud to partner with Cisco Security on a validated design to secure workloads on OCI with Cisco’s security solutions.
Recognized as a leader within the Forrester Wave for Enterprise Firewalls, Cisco has brought their world-class security solutions to Oracle Cloud Marketplace. Cisco Secure Firewall Threat Defense Virtual is available today through a flexible Bring-Your-Own-License (BYOL) option where you pay only for the OCI resource costs incurred, offering proven network firewall capabilities plus Snort 3 IPS, URL filtering, and malware defense. Native OCI features establish the robust security of the platform with simple, prescriptive, and automated security services. Cisco Secure Firewall Threat Defense Virtual further simplifies threat protection with consistent security policies across physical, private, and public cloud environments, enabling organizations to easily maintain their security posture as they move workloads to OCI.
The conjunction of OCI and Cisco Secure Firewall have the following key benefits:
-
Advanced security: Enjoy world-class threat intelligence from Cisco Talos, one of the world’s largest threat intelligence teams, delivering industry-leading visibility to detect and protect against known and emerging threats. Advanced threat defense options include Snort 3 IPS, malware defense, URL filtering, and application visibility and control. Cisco Secure Firewall Threat Defense Virtual scales up or down and is resilient, offering always-on security.
-
Consistent security everywhere: Gain consistent policies, enforcement, and threat protection across environments. Inspect encrypted traffic while automated risk ranking and impact flags reduce event volume to prioritize threats. Secure Firewall offers essential microsegmentation and tightly integrates with Cisco Secure Workload, for advanced microsegmentation capability to protect against intrusions in east-west traffic.
-
Unified management: Unified management for physical and virtual devices with software-as-a-service (SaaS) manager. Cisco Defense Orchestrator (CDO) can be managed by APIs, and Cisco Secure Firewall Management Center (FMC) can reside on-premises or on in the cloud.
-
Unified security platform: Every Cisco Secure Firewall includes entitlement for Cisco SecureX. SecureX, is a SaaS-delivered, open platform for security orchestration and remediation. It integrates across the Cisco Secure portfolio and accelerates incident response. SecureX also orchestrates the configuration of OCI virtual cloud networks (VCNs) manually or automatically in response to Cisco security events.
Validated reference architecture
To further simplify security for customers considering a migration to OCI, Cisco and OCI have partnered to provide a validated reference architecture for securing workloads on OCI with Cisco security solutions. The reference architecture illustrates how organizations can protect popular Oracle applications, like Oracle E-Business Suite and PeopleSoft, deployed in OCI using Cisco Secure Firewall Threat Defense Virtual with a flexible network load balancer and dynamic routing gateways enhancements.
To protect these traffic flows, OCI recommends segmenting the network using a dedicated VCN, where traffic routes through a transit hub and connects to multiple distinct network spokes. Through this architecture, all traffic, whether to and from the internet, to and from on-premises, or to the Oracle Services Network, is routed through Cisco Secure Firewall’s multilayered threat prevention defense technologies.
Explore more
Ready to securely migrate application workloads with Cisco and OCI? You can deploy the architecture for Threat Defense firewall on Oracle Cloud Infrastructure using Oracle Cloud Marketplace. You can also download the code from GitHub and customize it to suit your specific business requirements.
For more information, see the following resources: