New Cybersecurity Platform Enhancements Enable Automated, Adaptive and Simplified Threat Response

Automated. Adaptive. Simplified. Isn’t that what a cybersecurity solution should be? We know that the number one priority for security teams today is detecting and stopping advanced attacks before they cause major damage. Bad actors are operating with increased organizational efficiency and a seemingly bottomless pit of financial backing, not to mention they are constantly turning up the level of technological innovation they use to carry out their exploits. This week we saw that a Russian-Ukrainian organized crime gang in Spain that has collected more than $1.2B with malware that hacked ATMs to spit out money on command. These criminals were investigated and apprehended by Spanish police, Europol and the FBI, as these nefarious activities are large scale, requiring international responses.

We Are Still in an Arms Race
We have encryption, they have encryption. We have automation, they have automation. We have AI, they have AI. They have sophisticated platforms to deliver their payloads … and now we have a unified cybersecurity platform, which is powered by Software-Defined Secure Networks (SDSN), that not only responds to, but helps organizations stay ahead of these attacks. This platform delivers defense across diverse environments and is designed from the ground up to adapt to changing threat conditions.

Not Enough Good Guys
While keeping up with cyber crime is a top concern, we also know that there are not enough of the good guys – the security professionals that are on the front lines day in and day out. These men and women are constantly overloaded with meaningless alerts and struggling with disparate tools that don’t play well with each other. Recently, we sat down with security teams in the US and Europe and heard directly from them about how hungry they are for unification of tools, simplification of manual processes and adaptability of threat detection. They want to protect cloud workloads and hybrid environments dynamically and consistently, and are waiting for the day when they can feel confident that their security architecture is acting as a unified force for good.

Unified Cybersecurity Platform
Juniper Networks is rolling out key portfolio enhancements to help customers fortify their security posture with a platform that is open for integration and fueled by automation. These enhancements will empower organizations to protect themselves from fast-moving threats and rapidly adapt to cyber crime tactics. For security teams tasked with finding the proverbial needle in the haystack, this means less hay and more needles – these teams will be hunting down real threats in near-real time, not wading through a sea of false positives.

With a unique timeline view of threat behavior that is integrated with inline blocking, the is now integrated with our SRX Series Next-Generation Firewalls. This integration delivers fast, proactive defense against known and unknown threats and enables security teams to mitigate threats with just one touch.


JATP is further enhanced by joining it with Security Director Policy
Enforcer’s security fabric for truly orchestrated remediation. Adaptive malware detection triggers automated policy enforcement for increased protection across networks and cloud environments.
Extended protection for cloud workloads is now possible with Security Director and Amazon Web Services (AWS) working together to fortify AWS Virtual Private Clouds (VPCs).

Our cloud-delivered anti-malware service, Sky Advanced Threat Prevention (Sky ATP), has expanded its footprint of regional data centers to include not only US and EMEA, but APAC and Canada as well. With these local data centers, customers may experience lower latency and be better able to comply with local data regulations.

Delivering a Multicloud-Ready Data Center

Delivering a multicloud-ready data center

In the enterprise, there isn’t a hotter battlefield for new technology than the data center. It sits at the center of cloud, so it is a natural point of emphasis in virtually every enterprise networking strategy. It garners a big portion of total enterprise networking spend, so it is an area of importance to virtually every networking vendor. And it is ultimately the place-in-network (PIN) on top of which most applications run, so it is a target for many technological innovations.

So how can it be that so many people get the data center discussion wrong?

The data center requires more than just the data center
It’s somewhat paradoxical, but the data center discussion is partly wrong because it’s always about the data center.

The majority of technological changes in this space are happening because of the cloud. More precisely, it’s multicloud. And as workloads move to the cloud—both private and public—for enterprises to take full advantage of the cloud promise, they have to have end-to-end security and automation. This means that while the data center is central, it’s merely necessary, but not sufficient. The constructs that get deployed in the data center must extend out to the cloud on-ramps that exist closer to the user in either the campus or the branch.

But while this seems like a non-data center point to make, it places an important constraint around data center design: whatever is good enough for the data center must also be available in the other PINs that make up the full end-to-end multicloud experience.

Data center networking requires more than just networking
Let’s face it: connectivity is table stakes. Simply connecting pools of resources together and calling it a day is not the best way to start. There was a whole wave of innovation predicated on the notion that the application was central to the entire world. It spawned new architectural proclamations and a whole set of acronyms just to describe it.

But the applications aren’t the center of the IT universe—the data is. And this means that merely connecting application components is only a prerequisite. Security has to be included as a top-tier consideration in any multicloud architecture.

The line between networking and security isn’t even blurring anymore. It’s gone. It’s why every multicloud discussion needs to include security. Without it, the strategy is incomplete.

Data center devices require more than just the device
While the majority of data center discussions still start with the number of ports, they all end with software. In the data center networking space, if the devices are the lock, then the software is the key.

But that key is not just the network operating system. Multicloud only works if security and automation extend across all the PINs in the network, which means there has to be an overarching software layer that facilitates policy management and easily extends visibility and operational domains beyond the boundaries of the data center.

Of course, this places requirements on the data center devices themselves, as they must fit into this enterprise-wide fabric. Streaming telemetry, programmatic interfaces and integration into event-driven automation and DevOps frameworks are not just nice to have—they’re critical.

 Data center portfolios require more than just a portfolio
For enterprises of even moderate size, a single vendor simply cannot be an option. Minimally, it places an unnecessary restriction on the sources of innovation. Perhaps more insidiously, it removes any economic levers that a company might need to ensure the data center remains cost-effective in a time when growth is geometric and budgets are flat.

This means that the protocols and technologies that drive the data center must be open and easily interoperable. This is why technologies like EVPN-VXLAN are so critical. They ensure that the data center remains a hospitable place for all innovation, regardless of its origins.

Delivering a multicloud-ready data center
Understanding that the multicloud data center must 1) integrate with the campus and branch, 2) must include both networking and security, 3) must have multi-domain security and policy constructs and 4) has to all be built on open technology, Juniper Networks is focused on helping ensure that enterprises are multicloud-ready. In the data center, Juniper’s solution includes:

• QFX10002-60C—This scalable data center switch can be used as a spine or edge device or for data center interconnect (DCI) making it a true “universal switch”. It features 60 100GbE deep-buffer interfaces in a compact 2RU form factor.

• QFX5210-64C—This 64x100GbE port data center lean spine switch offers low power consumption and high density in a compact 2RU form factor.

• QFX5200-48Y—This data center top-of-rack switch features 48 native 25GbE interfaces with 100GbE uplinks to provide a seamless transition for enterprises migrating from 10GbE to 25GbE NICs. 

• QFX MACsec line card—This MACsec line card addition to the QFX10k modular switches provides 30-port 100GbE connectivity for encrypted traffic in and between data centers. 

 The entire data center portfolio runs Junos software, which means that the streaming telemetry, programmatic interfaces and tooling integrations required to support automated operations are commonly available. Just as important, these automation capabilities are the very same that exist across Juniper’s security portfolio and the other PINs, allowing enterprises to bridge operational practices end-to-end in support of a true multicloud architecture.

Junos software also extends Juniper’s industry-leading EVPN-VXLAN implementation across the entire data center. The multicloud will undoubtedly be multi-vendor, and Juniper’s commitment to industry standards means that being multicloud-ready doesn’t come with unnecessary constraints. In fact, EVPN simplifies insertion, as it guarantees interoperability with competitor switches so that evolution doesn’t have to mean throwing away existing assets.




Migrating to multicloud
Multicloud isn’t a one-step proposition for anyone. Enterprises don’t have the budget or resources to make chasm-crossing changes in one effort. The key is intercepting natural refresh or expansion projects and then using the normal course of business to become multicloud-ready.

Juniper Networks believes this evolution begins with extending security and automation across all PINs, which places a new set of architectural considerations on the data center. By delivering more than just a data center, more than just a router or switch, more than just the hardware, and more than just a Juniper-only architecture, Juniper is ensuring that all enterprises can take a meaningful step towards a multicloud future.