building a resilient cisco

© 2020 Cisco and/or its affiliates. All rights reserved. 1

20-21 October 2020

Inside IT: Building a Resilient Cisco

Julie Canepa

Chief Information Officer, Australia and New Zealand

#CiscoBRSummit


57%

17%

26%

Cisco Enterprise IT at a Glance

Routers3,724

LAN Switches5,587

Unified Computing System Servers

12,925

Managed End Devices

~195kVirtual Machines59,661

Internet Threats Blocked Per Day

6.39M

Global Cisco Distribution

34%

29%

21%

16%

Employee Distribution

480+Offices

Billion DNS requests per day

Overall Usable Storage

TelePresenceUnits

25,378Webex Meetings

per Day

55,115

73,000Employees

133,000Connected Stakeholders

Engineering Sales and Marketing

Customer Experience Corporate Functions

100Countries

Americas EMEAR APJC

PB


During Covid, Cisco ramped up operational activities to support employees, customersand communities

Moving our Workforce Home ~7x 140K96 countries in 10 days

Expanding VPN at Scale 2x Capacity increasein 2 weeks

Delivering Global IT supportCaseload increase, March vs. February

1.5x 2700

Provisioning new employees 1300+ Laptops shipped in 2 days

Accelerating collaborationWebex user increase, January vs. April

+3x 500M

Aligning to customer needs

Critical SaaSOffers

>2x fasterlaunch speed

Product performanceand Quality

99.93% match tocustomer expectations

Supporting our communityDonations

750K N95 Masks50K Face Shields

121 Surgical Masks700 TP Units


Cisco’s Building blocks for Resilience during COVIDSecure Remote Work

Secure Communicationand Collaboration

Secure Remote Access

Optimized Connectivityand Scalable Capacity

Return to Workplace

Employee and Site Safety

Optimized Connectivityand Scalable Capacity

Remote Visibility and Assurance

Flexible Multicloud

Common Policy and Zero Trust Security

Hybrid and MulticloudDelivery

Hybrid Cloud Servicesand Applications Experience

Resilient Distributed Enterprise Infrastructure

Key

Cap

abilit

ies

Source: Cisco Analysis


Secure Remote Work

Return to Workplace

Flexible Multi-Cloud


Three IT focus areas for Secure Remote Work

Basic Connectivity Basic Collaboration Business Processes

Access OptionsAccess Policies

Traffic Management

Multi-DevicePlatforms and Tools

Support/Business ServicesVirtualization of Events


Cisco IT Remote Access ArchitectureConsistent Security and Collab on any device-any location

AAADUO + SSO + ISE

LaptopAnyConnect

UmbrellaAmp4E

Cloud Interconnect + VPN Headend

MobileMeraki SM – MDM

DuoAmp4E

AnyConnect

SaaS Traffic - SplitTunnel Cisco Infosec

Approved highvolume traffic

No VPN NeededMeraki SM – MDM

DuoAmp4E

Umbrella

SaaS OnlySSO + DUO

Internet

Cloudport

CiscoOn Premise

DUO

Office 365

SaaS

Webex Teams

box

Apple

OtherSaaS

DUO

H/W VPN @ Home

S/W VPN:AnyConnect

H/W VPN:Cisco ISR

Meraki

Security:Amp4E

AnyconnectUmbrella

DuoMeraki SM

TalosStealthwatch

AAA & Segmentation:

ISE & DUO

Collaboration

Collaboration Tools:Webex

Webex Teams

DX80/Desk Pro

Jabber


Cisco’s VPN Best PracticesAfter implementing work from home policy, critical to optimize and monitor the network utilization. Some best practices implemented:

MonitoringContinuous monitoring of VPN utilization with

proactive steps taken to expand/manage capacity ahead of time

Split TunnelingConfigure VPN client to direct ‘trusted’ CSP

traffic via internet rather than VPN tunnel

Traffic ManagementSchedule downloads, upgrades,

backups, etc. to occur outside working hours.


Employees increased the use of Webex platform for more than just meetings

Webex Calls

Grew from 50K to 70K calls per day between early to mid-March

Webex Teams Files Shared

Grew 30% to 139K/day between mid-Feb and mid-March

Webex Teams Messages Exchanged

Grew 60% to 5.7M/day between mid-Feb and mid-March


Webex at the centre of every workstreamSimplicity | Security | Insights | Integration | Innovation

IntegrationAny Device

Mobile

Webex

CloudportDUO

ProductivityApple

JIRA GitHub SAP Concur

now TMBC Salesforce

SmartsheetTeam Space

Email and CalendarOffice Applications Content Storage

File sync-n-share

Office 365

Content Creation Sharing Meeting Experience Team Collaboration Tools/Apps


Business processes had to change

Customer Care – Enable remote call centres

Employee Services – Self help tools, Hardware swap

Corporate Functions – Supply chain resiliency, Year end

People and Communities - New Hire Onboarding, Wellness

Events – Internal meetings and External (Cisco Live)

Technology to virtualize workstreams


Secure Remote Work

Return to Workplace


Cisco Experience


Taking a Phased Approach

Move between phases as needed depending on flare-ups, and site protocols

Global implementation –Mandatory work from home0

Access for only those who are “facilities dependent” < 30% in the office1

Phase 1 + business “essential” workers< 50% in the office2

Evolution of the Workplace3


Four Technology focus areas for Return to Office

UC/TP Enhancements

No-contact InteractionOccupancy Alerts

Density MonitoringGranular Safe

Distancing Monitoring

RTOApplication

Automated Health Survey/Office Pass

Network Readiness

Site standardizationCisco DNA-C/SD-WAN


Video endpoints used for more than just meetings

Leveraging the people counting technology built into Webex Video Endpoints to alert if

social distancing limits are exceeded

People Counting and Alerts

Video endpoints in common spaces and larger rooms for reminders and check-ins

Signage and

Check-ins

Webex Assistant and app integration to control video endpoints with voice or from

laptops and phones

Voice and App control

“Ok Webex, joinmy meeting”

Virtual reception with remote visitor pass printing to enhance employee safety

Virtual Reception


Cisco DNA spaces to monitor density and social distancing

Monitored the real-time clustering of devices to enforce safe distancing

Gained a real-time and timeline views of occupant behavior at Cisco Properties

Cisco DNA Spaces:Right Now

Cisco DNA Spaces:Location Analytics


Secure Remote Work

Return to Workplace


Cisco Experience


Cisco Experience building Flexible Multicloud

Transform Infrastructure Cloud Ready Network Cloud Operating Model

Workload classificationFit for purpose infra

Infra-as-Code, APIs, SLAs

Cloudport, SD-WAN, Thousand Eyes

Cloud Native Application, Agile, DevOps, SRE

Cloudport


Why Cloud Native?Cisco Commerce Renewal Proofpoint (Part of Multi-Billion/Q Business)

20xImprovedAvailability

ZeroDowntime

5–20xFaster

3x MajorReleases;20x MinorReleases

Zero Downtime forSoftware Upgrades and

Code Deployments

Fault Tolerancefor High Availability

PerformanceImprovement and

Scalability

Increased Agility –Move Towards APIBased Architecture


All Services for employees backed by a robust policy framework

WorkFrom Anywhere

Flexible Work Practices Policy -Telecommuting

Data Protection Policy

Acceptable Use Policy

Information Security Policy

Master Policy

• Data Privacy Standard• Data Protection Standard• Records Retention and Management Policy• Assess Management Policy

• Global Access Control Policy• Trusted Device Standard• Facility Services Policy• Guest Networking Policy• Internet Firewall Standard

• Application Security Policy• Network Security Policy• Cloud Security Policy• Audit and Assessment Policy• Global Data Loss and Computer Security Incident

Management Policy

Supporting Policies

Cod

e of

Bus

ines

s C

ondu

ct

Data Protection

Workplace

Security and Trust

• Global Employee Work Location Policy• Password Policy• Home Internet Access Policy• Cisco Laptop/Desktop Data Backup and

Disposition Policy


What have we learned?

Social Learnings

• Reimagine the workplace – Culture centres, personal based

• Deliver enhanced service offers for remote and hybrid workers

• Digitize and automate core processes

• Application insights

• Flexible, multicloud architecture for resilience, security and agility

Future Opportunities

Establishing a single source of truth is critical

Collaboration, is about more than meetings

Software Defined requires a cultural change, its not all about the technology

Implement simple and clear policy to help with automation


Working Differently TomorrowOur world has changed

The role of IT has neverbeen more relevant

This is our time to re-imagine what is possible


Engage With Us

Facebook

facebook.com/ciscoit

Blogs

blogs.cisco.com/ciscoit cisco.com/go/ciscoit

Twitter

twitter.com/ciscoit

YouTube

youtube.com/cisco

building a resilient cisco

Documents