Trials and demos
How to buy

Education

Unified security improves network uptime

University improves network uptime and threat response by correlating telemetry data in a unified security platform

Explore Cisco XDR

Cisco enables Elon University to streamline threat response

Elon University effectively minimizes network downtime and data loss through a platform-centric approach.

Elon University

North Carolina-based Elon University is nationally recognized for its experiential learning. It is ranked #1 for undergraduate teaching and #13 for “most innovative” university.

Challenge

Elon University's security team faced challenges in preventing downtime and data loss across their large campus. Key improvement areas included:

  • Implementing a unified dashboard to streamline threat investigations
  • Adopting AI-powered log analysis to enhance efficiency and insight extraction
  • Integrating automated threat correlation to accelerate incident response times

Solution

  • Cisco Extended Detection and Response (XDR) detects the most sophisticated threats sooner across all vectors and prioritizes by impact for faster responses.
  • Cisco Secure Cloud Analytics (SCA) gives your business scalable visibility and security analytics.
  • Cisco Secure Endpoint finds, stops, and removes malicious content easily and quickly.
  • Cisco Umbrella effectively protects users, devices, and distributed locations with fast, flexible, cloud-delivered security.
  • Cisco Identity Services Engine (ISE) manages endpoint, user, and device across to network resources within a zero-trust architecture.

Outcomes

Simplified management

Consolidated management of multiple security products into a single interface

Automated incident handling

Built-in and customizable playbooks accelerated threat response processes

Streamlined client management

Pre-defined packages and profiles streamlined client setup, reducing setup across the university

Comprehensive threat insights

Improved correlation of data from multiple sources enabled faster and more accurate incident response

    Safeguarding digital campus learning

    Elon University, a nationally recognized leader in hands-on education, strives to offer an environment that excels in teaching and learning. “With roughly 7000 students, 3000 staff and faculty, 200 buildings, and a residential campus, the university is akin to a small city,” remarks Robert Readling, Enterprise Network Architect at Elon University.

    Elon University’s network has roughly 1300 Cisco wireless access points and 600 switches. The staff and faculty use university-issued phones, laptops, and other devices, which are managed by IT and secured with policies.

    “Our real challenge, however, is securing the digital footprint of our students,” says Readling.

    On a given day, the students typically connect five to ten unmanaged devices to the wireless network. Residential students can connect their devices wirelessly in dorm rooms. Readling adds, “This adds uncertainties to our security environment. We must be vigilant to protect everyone from everyone else and from external threats round-the-clock.”

    “Network uptime is our top key performance indicator (KPI). We regularly evaluate if there has been any downtime or loss of data,” says Readling.

    Integrating security for seamless protection

    Elon University has been using a comprehensive suite of Cisco security products to protect its campus infrastructure, including Cisco Secure Endpoint, Cisco Secure Cloud Analytics, Cisco Secure Client, Cisco Umbrella, and Cisco Identity Services Engine (ISE). “We also have FMC [Cisco Secure Firewall Management Center] managing two Cisco Secure Firewalls configured in high availability mode,” Readling explains. “The Cisco products enable us to implement and monitor policies to protect our networks.”

    Initially, analysts faced challenges correlating security data across multiple screens. The introduction of Cisco SecureX improved integration, but the transition to Cisco Extended Detection and Response (XDR) marked a significant advancement. “I love the fact that all of my Cisco security products are integrated into XDR. And the dashboard lets me scroll down and see just about anything I need to see,” says Readling.

    Cisco XDR provides Elon’s security team with a comprehensive view of attacks along with deeper insights and visibility into the network via integrations across the Cisco security products and third-party tools. Readling is excited about the integration between Splunk, their Security Information and Event Management (SIEM) tool, and Cisco XDR.

    The tight integration of telemetry data into a single dashboard dramatically improved efficiency. “Before Cisco XDR, we used to be busy combing the logs. That was very time-consuming,” says Readling. “Cisco XDR enabled us to gather all that information in some human-readable format, making that process more efficient.”

    Elon University uses Cisco XDR’s AI-driven engines to normalize and correlate the massive volume of telemetry data from various data sources. “Thankfully, most of it gets stumped on by the automation,” says Readling. “You see correlation patterns—and the best thing is you can automate responses like blocking an unsafe URL. That’s a huge help in threat investigation and incident response.”

    Improved operational efficiency

    Cisco XDR created new opportunities for enhanced security operations at Elon University. Managing thousands of endpoints can be daunting, especially at the start of a school year. “Cisco XDR allows me to simply check a couple of boxes to specify the secure client package we need for our network. It then builds the package and our endpoint engineer deploys it across devices,” explains Readling. This streamlined process simplifies and acerates endpoint security.

    Cisco XDR’s playbooks enable Elon University to automate the investigations by establishing rules that reduce the time from detection to response. “Cisco XDR correlates all the data in one place, giving me a comprehensive view of incidents,” Readling adds. “I can stop any threat in its tracks, whether a bad actor hitting our firewalls or a malicious program, with just a few clicks. I can also define custom rules to take appropriate actions and send me an alert when the incident happens.”

    Cisco XDR also enables better and faster response to threats. “With security, the key is being quick in stopping a threat,” says Readling. “Our analysts no longer must sift through data while a threat continues to progress. If, say, a malware threat shows up, we can right-click on it and define a policy that will be enforced right away. That’s just cool.”

    Readling concludes by highlighting how Cisco XDR simplified security management at Elon University through intelligent integration and automation. “With Cisco XDR’s integrations with Umbrella and Secure Cloud, if you see something you don’t like, you can right-click it and tell it to add it to the ‘naughty list,’ preventing any further access—whether that’s a malware threat or blocking a suspicious domain.”

    More for you

    Technology has changed how we live and work

    Leading organizations are innovating with Cisco solutions to connect, secure, and transform.

    Security Technology

    Organizations like yours rely on Cisco

    Each industry has its own challenges that require tailored solutions.

    Education

    You are a changemaker, innovator, and discoverer

    We want to help you share your story. Learn more about how you can build your organization's profile—and your own—as you expand your network.

    Customer Reference Program Cisco Insider Advocacy

    Let’s build the bridge to possible

    Simplify security operations

    Go from endless investigation to remediating high-priority incidents with greater speed, efficiency, and confidence.

    Explore Cisco XDR

    Accelerate your security journey

    See more value in less time using the industry-leading expertise of Cisco Security Services.

    Explore Cisco Security Services