Sold by: Cisco Systems, Inc.
Deployed on AWS
Mesh Policy Engine is a feature of Cisco Security Cloud Control, and is an intent-based, multivendor policy automation capability.
4
Overview
Mesh Policy Engine is an intent-based policy automation feature of Cisco Security Cloud Control (Cisco's cloud management platform for security products). It simplifies network security operations by enabling administrators to define a single intent-based policy that is consistently enforced across both Cisco and non-Cisco firewalls. The Cisco Security Cloud Control feature translates intent-based requests into outcome-driven firewall policy rules, and orchestrates their deployment across relevant devices, supporting large-scale policy management across multiple firewall vendors.
Highlights
- Centralized Policy Management: Easily manage firewall policies from a single, unified cloud-native interface (Security Cloud Control); eliminating fragmented configurations and enabling consistent, end-to-end visibility across your entire hybrid mesh architecture.
- Intent-Based Policy Automation: Express desired access intent once, and Mesh Policy Engine automatically determines, deploys, and maintains the correct policies across your network; simplifying lifecycle management and reducing manual errors.
- Multivendor Support & Seamless Integration: Enforce policies across Cisco and leading third-party firewalls without rip-and-replace; ensuring flexibility, scalability, and compatibility in complex environments
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. Request a private offer to receive a custom quote. Sign in to view any offers that have been extended to you.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Ideal for remote worker and multi-tenant environments, Secure Firewall ASA Virtual provides scalable VPN options including remote access, site-to-site, clientless, and more. Experience Cisco's industry-leading firewall to protect your cloud resources.
The Cisco Meraki virtual MX brings Meraki AutoVPN to AWS.
The Cisco DNA Spaces: Connector enables Cisco DNA Spaces to communicate with multiple controllers efficiently, by allowing each controller to transmit client data without missing any client information
Ideal for remote worker and multi-tenant environments, Secure Firewall ASA Virtual provides scalable VPN options including remote access, site-to-site, clientless, and more. Experience Cisco's industry-leading firewall to protect your cloud resources.
Cisco Secure Access, Cisco's Security Service Edge (SSE) solution, includes secure Zero Trust Network Access to your company's private/internal resources. Resource connectors are virtual machines deployed in your AWS environment that forward remote user traffic to your applications without requiring open inbound ports in your firewall.
Customer reviews
Francisco Delos Santos
Automation reduces intervention and speeds up threat prevention
Reviewed on Feb 17, 2025
Review provided by PeerSpot
What is our primary use case?
Our primary use case for Cisco Defense Orchestrator is the automation of playbooks. We primarily use it for this purpose to streamline processes.
What is most valuable?
The most valuable feature is the automation, as it reduces user intervention and allows us to focus on other tasks. Since the system is automated, response times for resolving security issues are fast, providing quick prevention of threats and making us more secure against zero-day attacks.
What needs improvement?
Cisco Defense Orchestrator should be made more user-friendly overall. Currently, to use it effectively, one must be specific with the rule set that needs to be set up.
Additionally, I suggest improving its integration with other third-party products, such as Fortinet, to simplify the setup process.
For how long have I used the solution?
I have used the solution for only one year.
How are customer service and support?
Cisco's technical support is good in general.
Which solution did I use previously and why did I switch?
We evaluated Microsoft, but we chose Cisco since its feature set had more use cases for our environment.
How was the initial setup?
The setup is around eight out of ten in terms of ease.
Which other solutions did I evaluate?
We evaluated Microsoft as an alternative.
What other advice do I have?
Those who want to use Cisco Defense Orchestrator should build their own use case and see if it fits their environment. The most significant benefit for us is the response time because it automates our playbooks.
I would rate the overall solution as eight out of ten.