Cisco Secure Endpoint is a cloud-native endpoint security solution designed to help organizations detect, respond to, and recover from endpoint attacks faster. Built on Cisco Talos threat intelligence, Secure Endpoint provides advanced EDR capabilities—available as built-in or fully managed services—so security teams can perform threat hunting, incident investigation, and one-click isolation of infected hosts. The platform integrates risk-based vulnerability management from Kenna Security and includes human-driven Talos Threat Hunting that maps findings to the MITRE ATT&CK framework. Additional controls such as USB device management provide visibility and policy enforcement for removable media. Secure Endpoint extends its detection and response reach through integrated XDR capabilities, offering a unified view, simplified incident management, and automated playbooks. Features like Orbital (cloud-based attack research and response) and an advanced malware analysis and threat intelligence portal help accelerate remediation and forensic work. Cisco positions Secure Endpoint to reduce remediation times significantly and to be deployed alongside complementary Cisco security products for layered defenses across users, devices, and networks.
Secure Endpoint integrates across Cisco’s security portfolio and select third-party solutions. Key integrations listed include Cisco XDR for broader telemetry and automated playbooks, Cisco Umbrella for network-layer protection, Cisco Duo for identity verification, Kenna Security for RBVM, Talos threat intelligence, and Orbital for cloud-based attack research and response. These integrations provide unified visibility, prioritized alerts, and coordinated response capabilities.
Cisco is a global technology leader known for its networking hardware, software, and telecommunications equipment. The company specializes in IT and networking solutions that help businesses and organizations connect and secure their networks worldwide.
