We are a Gold Partner with Cisco. Our customers come from various industries, including service providers, and we target service providers and enterprise customers.We do not extensively use Zone-Based Firewalls in Cisco IOS Security, instead typically deploying standalone firewalls such as Cisco FTDs or Cisco ASA devices. For threat analytics and vulnerability scanning, we utilize third-party vendors with dedicated devices and software. We use products such as Tenable from Nessus for this type of analysis. We have implemented Secure Access Control Server in Cisco IOS Security, which combines multiple security mechanisms including AAA, 802.1X for network access control with Cisco ICE, TrustSec for identity-based segmentation, and Cisco DNA Center. Cisco IOS Security's VPN support is comprehensive and increasingly important in daily communication, from basic site-to-site tunnels to remote access VPNs and SD-WAN secure VPNs. Protecting and encrypting communication is essential in modern networks. The challenges with Cisco IOS Security are more operational than product-related. There is an understaffing issue, making automation and orchestration capabilities particularly valuable. For the products themselves, we only encounter routine operational matters such as addressing new vulnerabilities and patching. For those considering Cisco IOS Security, it is important to understand that Cisco offers a complete ecosystem. When embracing the Cisco ecosystem fully, customers receive excellent products and comprehensive solutions. On a scale of 1-10, I rate Cisco IOS Security a 9.
