technical deep dive – Concorde Tech Talk

Today was the final and busiest day of Cisco Live 2018, with it being the last day of World of Solutions and also the Appreciation event. I decided I needed to make the most of it so I planned in a packed schedule starting with my first session of the day ‘Penetration Testing for Network Engineers – Know yourself and Enemy’. Now I’m not an out and out ‘Network Engineer’ but in my role as a Technical lead on Cloud and Security at Concorde, I felt it was important to get an insight and build up my knowledge on Penetration testing as well as some of the challenges that come with it.

Some of the facts in this session were a bit hard to comprehend like it is understood that at the rate we are going there will be 500 Billion IoT devices in the World by 2030. When I thought about that number of devices and how would it be possible to ensure all of them are secure and protected it did start to hurt my head a little. There was also a lot of information in this session around companies that have tried and failed to secure their devices within their network and the amount of companies that have been hit with some sort of Cyber/Ransomware attack in the last 12 months is very high, and growing every day.

As a company what options do you have? Option 1 would be ‘Hope that someone else fixes it’, or the wait and hope approach as I like to call it. Option 2, however, is to ‘validate what is going on’. By doing an audit, assessment and a final Pentest on your perimeter network you can ensure the safety of your environment, and if there are any gaps you’re in a position to close them. Why wait until after the fact of an attack to sort it when we can be proactive? I really found this session to be full of valuable information and it gave me more of an insight into the value of PenTesting.

As I mentioned before I wanted to make sure I didn’t waste my final day at Cisco Live so after a short 30-minute coffee break I was straight into my second session ‘FirePower Platform Deep Dive’.

Currently, my only experience with FirePower has been with it working with an ASA firewall but since then it has developed into its own product line now which is rich with features. In this sessions title you will also notice the word ‘Platform’ this is another example of a recurring theme from this week, that Cisco is no longer doing ‘Solutions’, but ‘Platforms’. As the name suggests this session was very technical right from the start and gave a lot of good information around the different hardware models and the software that runs them. The one thing I didn’t like during this session was the version of CLI in the product as it was different from the traditional Cisco CLI we all know and love. This one, however, was more based on XML. The product does have a great friendly user interface but I was disappointed with the CLI being made different as 98% of the Cisco product range uses the same CLI, why change it for random appliance ranges?

The 3 hardware products within the FirePower range are the 9300, 4100 and 2100 with the 9300 being the more top end model down to 2100 being the more entry-level model. As with most Security appliances, these are all policy based, and as mentioned earlier the session was very technical and went deep into the Architecture of the device including the underlying software that runs it as well as the licensing model.

After this session, I had an hour break until my next Session so I decided to head down to the World of Solutions for one last time. Similar to my last few visits I just walked around, however, there was one stand which took my interest which was a company called ‘ScienceLogic’ – Hybrid IT service Assurance. Their product is an MSP level monitoring tool but instead of it being probe based on a lot of Monitoring platforms out there it is API based. This means no agent needs to be installed on the local infrastructure, and it has a multi-vendor support so it can monitor a host of different devices makes and models. If I’m honest a lot of the information on the stand was ‘Marketing’ based, but I did have a very insightful chat with the brilliant stand team members. However I am someone who needs to ‘see it to believe it’, so we exchanged information and my hope is to do a webinar demo on this product in the very near future!

The final session on day 4, and sadly the week for me (still have the closing Keynote and the NOC panel discussion tomorrow), was ‘Cloud Managed Mobility with Meraki & EMM’. With this session, I was more interested in the ‘Enterprise Mobility Management’ part as I am already familiar with Meraki and its products range. The one surprise for this session was that rather than spend 2 hours talking the presenter decided to do a ‘Live Demo’. This was a great contrast from over sessions, where they had done some demoing but none of it lives and off the cuff, and it made for some interesting viewing. As we all know, when it comes to living events something is always bound to go wrong, and this demo was no different. However what made it great for me was that the presenter was having a real-life issue that 99% of the people in the audience would possibly have if they were doing this back in the office, and it was great to see how a Meraki specialist handled overcoming that issue. The Enterprise Mobility manager with the Systems managers looks like a great tool within the Meraki Dashboard which allows customers to manage and protect their devices using policies and tags. With more and more customers evolving towards BYOD, tools like this are ideal for ensuring those devices are compliant with your company policies.

The 4th day was now coming to a close and all that was left before the Appreciation evening was the Closing Keynote with Guest speaker Burce Dickinson, lead singer of Iron Maiden! Now they are a bit before my time so I wasn’t overly sure who he was but he shared many of his life experiences including a lot of the businesses he has run in the past, including ownership of an Airline! Unlike the opening keynote this was not really based on a Cisco message or content, but more of an inspirational talk which was still a fitting end to the day.

The Appreciation night kicked off with the sound of very loud drums which was followed by a great night of ‘food, drink, dance and repeat’. For more highlights of the day, don’t forget to check out my twitter feed @shabazdarr and Concorde’s feed @concordeTG. The final summary blog of the week will be released early next week so please keep your eyes peeled for that!

Shabaz Darr

Author: Shabaz Darr, Senior Professional Services Consultant at Concorde Technology Group

After a more relaxed start to Cisco Live on day one, I expected a much more hectic atmosphere on day 2 and that’s exactly what I got. My focus for today and the general theme throughout the week is to see what Cisco has to offer when it comes to both Security and Cloud. I was also looking forward to the World Of Solutions opening to see what new innovations Cisco’s vendor partners are doing as well.

Before any seminars got underway the morning was focused on Keynotes, both the event Keynote and Partner Xperience Keynote. As I expected the opening Keynote was based on what Cisco will be doing in the upcoming year and on the foundation of digital transformation. My favourite part of keynote talks, in general, is always the customer case studies as it puts a realistic spin on what the overall message is. Which from my point of view was how Cisco is at the forefront of Digitisation and technology innovation.

The second Keynote was the Partner Xperience which was kicked off by Wendy Mars. This keynote was for Partners only and again I took so much away from this talk, which was one of the main sessions I wanted to attend. Cisco has held the discussions and seminars in a way that its customers and partners are getting valid and usable information, rather than just a ‘Marketing Message’ which I have experienced at other vendor events in the past. Don’t get me wrong there is a need for that type of message but my experience so far is that Cisco is getting a great balance in the seminars and talks.

The whole Partner Keynote was very much based on how Cisco can help its Partners in overcoming ‘Customer Challenges’ as well as Partner Challenges. My main takeaway from this keynote session was that when I am putting together a solution am I future proofing it? Am I thinking about the ‘end-to-end’ solution? Or just the specific problem at hand?. Something else to come out of this talk was how Cisco is evolving their approach, and rather than solutions they are offering ‘Platforms’.

Automation was another key theme throughout the talk and ACI was touched upon for Data Centre level network automation but the final takeaway from this talk was the power of Data. One quote that really hit home for me was: ‘If you don’t collect data, what can you analyse?’ How true is that!? How do we know what threats are attacking our network if we don’t collate this information into a usable format?. Cisco has a vast range of products to aid partners and customers with these types of challenges.

The Keynotes were now done for the day and my first session was one I initially had mixed feelings about when I put it on my schedule: ‘Unlocking the value of IoT Data’. The main reason for this being the fact that I am very new to IoT (Internet of Things) and wanted to understand more about it. This seminar was based on two Cisco products: Cisco Kinetic and Cisco Jasper. This was again my first experience with both of these products but I must say they are very impressive. Within these two products, Cisco covers both IoT for OT and IT networks (Kinetic) and IoT for Cellular networks (Jasper). The most eye-opening information for me was that one of the slides which had been updated this morning was already redundant. The slide in question showed how many Enterprises and devices were currently using the Cisco Jasper platform, however, the numbers had changed so much so that the numbers on the slide was extremely inaccurate – in half a day!! That is growth and it just goes to show that Cisco is at the forefront of IoT.

After lunch, I headed over to the World of Solutions which was by far the highlight of the day! I must admit at first I was fairly overwhelmed by the sheer amount of stands, people and different aspects of visiting. I just had no idea where to start! I, therefore, decided that with it only being day two that I should get my bearings a bit and just walk around and see what there is to offer. I have put some pictures on my twitter feed @shabazdarr with highlights of what was on offer.

Now I want to tell you about the most interesting part of my day which was my visit to the World of Solutions and my discussion with the Cisco Security team around their Email security products including AMP. They were kind enough to show me a demo of the products, but one thing I saw which was impressive was that even though an email has been allowed through the Email security appliance (be it cloud or on-premise), it continues to be monitored in case a threat has been missed. As soon as the threat is detected it is deleted!! Now, this could be hours or even days after the email has been received, but for me, I have not seen many products out there which offer this. Again the integration between products was very impressive, with Cisco AMP integration with Cisco Umbrella it just adds to the user’s security platform.

The final talk of the day was the C-Max theatre for ‘Changing the Security Equation’. To be honest there wasn’t much in this talk which I didn’t already know. It showed more detail around what products Cisco have to protect Networks and Infrastructures from Cyberthreats including the Next-Gen Firewall (NGFW), Cisco Umbrella and Cisco StealthWatch. It is great to hear about these products, but for me, I need to get my hands on them to really understand what they can offer, so keep an eye out for upcoming blogs this week after I have done some more hands-on labs!

That wraps up my take on day two. A really interesting start with the seminars and talks and it has given me a good platform for the rest of the week. For more information on today take a look at my twitter feed @shabazdarr and Concorde Technologies twitter feed @ConcordeTG.

Author: Shabaz Darr, Senior Professional Services Consultant at Concorde Technology Group