https://www.securityin45.com/pillars/Recent content in Security Guides on Security in 45 | Cisco Security PodcastHugoen-usMon, 30 Mar 2026 00:00:00 +0000https://www.securityin45.com/pillars/firewall/Wed, 02 Oct 2024 00:00:00 +0000https://www.securityin45.com/pillars/firewall/<h2 id="the-evolution-of-firewalling">The Evolution of Firewalling</h2> <p>Firewalling has evolved through four distinct generations, each responding to fundamental shifts in how networks are used and attacked.</p> <p><img src="https://www.securityin45.com/images/pillars/firewall/firewall-evolution-timeline.png" alt="Firewall evolution timeline from stateful firewalls through NGFW to Hybrid Mesh Firewall showing drivers, capabilities, and security needs"></p> <p><strong>Stateful Firewalls (1990-2007)</strong> addressed growing internet access and basic attacks with connection state tracking, IP/port filtering, and basic traffic control. SSL/TLS decryption emerged toward the end of this era.</p>https://www.securityin45.com/pillars/xdr/Wed, 02 Oct 2024 00:00:00 +0000https://www.securityin45.com/pillars/xdr/<h2 id="what-security-operations-teams-need">What Security Operations Teams Need</h2> <p>Security operations teams face three fundamental challenges: getting a correlated view of alerts across their environment, working with speed, accuracy, and confidence, and remediating threats with guidance and automated playbooks. XDR — Extended Detection and Response — is the platform category designed to solve all three.</p> <p><img src="https://www.securityin45.com/images/pillars/xdr/what-secops-wants.png" alt="What security operations teams want from XDR - correlated alerts, speed and confidence, and automated remediation"></p> <h2 id="why-traditional-approaches-fall-short">Why Traditional Approaches Fall Short</h2> <h3 id="ransomware-campaigns-are-multi-vector">Ransomware Campaigns Are Multi-Vector</h3> <p>Modern attacks don&rsquo;t come from a single direction. A well-tailored phishing email leads a user to a malicious website. That website drops a payload onto the user&rsquo;s device. The malware then moves laterally to other machines and eventually exfiltrates or encrypts data. Each stage of this kill chain may touch a different security tool — email gateway, DNS security, endpoint protection, network firewall, and data loss prevention.</p>https://www.securityin45.com/pillars/zero-trust/Wed, 02 Oct 2024 00:00:00 +0000https://www.securityin45.com/pillars/zero-trust/<h2 id="what-is-zero-trust">What Is Zero Trust?</h2> <p>Zero Trust is a security framework built on a simple principle: <strong>never trust, always verify</strong>. Unlike traditional perimeter-based security that assumes everything inside the corporate network is safe, Zero Trust treats every user, device, and connection as potentially compromised until proven otherwise.</p> <p>Zero Trust is not a single product — it&rsquo;s an architectural philosophy that requires continuous verification across your entire infrastructure. Every access request is evaluated based on identity, device posture, location, and context before access is granted — and that verification continues throughout the session.</p>