Cisco Umbrella
Security is shifting and converging in the cloud. You may hear different names for this trend, such as secure Internet gateway (SIG), edge security, secure access service edge (SASE), and more. It can get confusing. Regardless of what you call it, it denotes multiple security functions integrated into one cloud service, the flexibility to deploy security services how and where you choose, the ability to secure direct-to-Internet access, cloud app usage, and roaming users, plus, no appliances to deploy.
Today’s work environment allows employees to work from any device, anywhere and anytime. As remote users work directly in cloud apps, perimeter security appliances and VPNs are no longer always going to protect devices and data. Therefore, Cisco continues to enhance its secure Internet gateway (SIG), Cisco Umbrella, to protect users when off the network and off the VPN. Formally launched at the RSA Conference in February 2017, Cisco Umbrella now processes more than 120 billion DNS requests per day, with more than 85 million daily active users. The recently announced Cisco Security Connector app for iOS enables company-managed iPhones and iPads to be protected by Cisco Umbrella, whether on Wi-Fi or the cellular network.
Cisco Umbrella is a cloud-delivered security platform that secures Internet access and controls cloud app usage across networks, branch offices, and roaming users. Unlike disparate security tools, Umbrella unifies secure web gateway, cloud-delivered firewall, DNS-layer security, and cloud access security broker (CASB) functionality into a single cloud platform. Umbrella also integrates with Cisco SD-WAN to provide security and policies for direct Internet access (DIA) at branch offices. Umbrella acts as a secure onramp to the Internet and delivers deep inspection and control to support compliance and provide the most effective protection against threats for users anywhere they connect. Figure 8-23 provides an overview of Cisco Umbrella SIG.

Figure 8-23 Cisco Umbrella SIG overview