In 2020, a new acronym is dominating the SD-WAN industry–SASE (Secure Access Service Edge). Now, every SD-WAN provider is hitting the market with their SASE solution. So, how do early adopters understand the differences between them? In Masergy’s SASE Straight Talk articles, we’re working to shed light on this emerging market, helping IT professionals navigate critical decisions as they plan for a move toward SASE.
As the clearest definition of SASE, early adopters should first look at the five core capability areas that allow for the best apples-to-apples comparison between solutions. Analyst Andrew Lerner describes SASE as “a new package of technologies including SD-WAN, Secure Web Gateway, Cloud Access Security Broker, Zero Trust Network Access, and Firewall as a Service as core abilities.”
That’s a defined place to begin, but even within this definition solutions vary widely.
Every provider delivers differently on those five elements with different technologies and approaches. So, one size does not fit all. The five core capabilities serve as a framework or even a buyer’s checklist, but this doesn’t mean every provider will check each box once or even twice, for example. When it comes to security, professionals will be quick to say that checking each box once isn’t always an adequate security strategy. Defense in depth requires a more exhaustive approach, and each provider will do SASE differently.
Understanding where your own IT gaps align with the list of core capabilities can help prioritize which SASE capabilities will generate the most strategic value to your business. It’s likely that companies have already made investments in areas overlapping SASE’s core areas. In these cases, it might be helpful to:
As providers compile many tools into one SASE toolbox, they typically take two different approaches. They either have a box of tools that are all their own homegrown brand or a box of tools that include mixed brands from other companies. Here’s what to consider in comparing them.
These solution tech stacks are built using the provider’s own homegrown technologies and services. This all-in-one-vendor approach is great for solution simplicity, and for this reason, many theorize that SASE will trigger more mergers and acquisitions. However, there are some potential drawbacks:
These solution tech stacks are built by taking best-of-breed technologies from an array of companies and integrating them together into a single cloud service platform. With these solutions, clients can gain the advantage of having all the leading brands in their SASE toolbox. Typically, these providers believe no single vendor today is capable of solving the myriad of cybersecurity risks that fall under SASE’s big umbrella (and they particularly call out startups). All in all, best-of-breed providers differentiate themselves by leaving the security tool development to those who do it best–the industry-leading manufacturers of each technology.
But potential downsides may arise in exactly how all these different tools are integrated. This is when SASE architecture matters most–the uniformity of the underlying platform determines the quality of interoperability and visibility across all tools. Does integration happen at the source code level? Gartner advises buyers to avoid solutions that link many products via virtual machine service chaining. Don’t miss this article, which further unpacks Gartner’s warning label on SASE architecture.
SASE is all about convergence. And, when companies rely on a single company to deliver an entire constellation of services, it’s more critical than ever to understand the provider’s strengths, weaknesses, and history. After all, they will have to span multiple bridges, mastering each area while still delivering a superior customer experience.
Technology manufacturers and IT services providers will likely yield two very different SASE offerings and different client experiences, because inherently one will be focused on technology and the other on business outcomes. Targeting a provider that is both a tech innovator and a strong managed service partner will be key, particularly for IT teams that have limited experience with SD-WAN and are seeking a fully managed service.
Likewise, security companies and network companies will be heavily oriented on one side or the other. At a time when convergence is the name of the game, those with a history of excellence on both sides of the IT domain will know how to create the best synergy between the two worlds of network and security.
All in all, SASE solutions are real, but much like the market they are still rapidly developing. These are just a few ways to make sense of the early solutions hitting the market.
Read more articles in the SASE Straight Talk series:
Our SASE conversation continues online. Follow us on Twitter!
Call us now to arrange a consultation (866) 588-5885.
Or arrange for a consultation through our request form.
CASB serves as of one of SASE’s fundamental purposes. Here’s how it works within a SASE framework to mitigate security risks.
Here’s a look at Masergy’s approach to SASE, the enhancements we have made, and how we’re leaning into network-security convergence.
Masergy, the software-defined network and cloud platform for the digital enterprise, announced that it is strengthening its SD-WAN Secure solution to offer Secure Access Service Edge (SASE) capabilities
Masergy Named Most Innovative Managed SD-WAN Service Provider by Frost & Sullivan
Do SASE solutions reach far enough? Here’s a look at what’s inside the SASE framework today, and where it could go in the future.
Healthcare IT leaders are reducing the complexity of digital transformation by addressing UC, the network, and security in one unified strategy.
Want to switch from SD-WAN to SASE midstream? These RFP questions can help you roll your IT modernization project into a larger investment.
While IT leaders are enabling the remote workforce, they are also building an autonomous network. Leverage your investments today for innovation tomorrow.
Why do businesses need SASE and more importantly does it help with work from home? Here’s how SASE solutions deliver real value.
Masergy Launches SD-WAN Work From Anywhere Solutions, which extend the value of Masergy SD-WAN Secure to Home and Mobile Users
SASE is consolidating best-of-breed technologies into one cloud service, and it’s here where the Masergy-Fortinet offering stands above the rest.
Are firewalls becoming a dividing line between SASE strategies? Why some IT leaders choose a cloud-managed approach over a cloud-native one.
When it comes to SASE validity, there are lots of opinions. Here’s a look from all sides and tips for how to evaluate SASE architecture.
What’s the difference between a fully managed SD-WAN service and a co-managed service? Here’s how to get the best out of shared responsibilities.
Ask people what SASE is and you’ll likely get 10 answers. While the newness of SASE is a factor in the confusion, here’s what SASE is and what it’s not.
Data shows remote work has triggered a modernization of business operations and the network. Explore the highlights from the new IDG study.
Masergy’s new SD-WAN portfolio gives companies of every size unrivaled application performance along with more flexibility and choice.
ZK Research data shows IT spending is up, and the value of the network has increased. Don’t miss the latest SD-WAN strategies in this online event.
SD-WAN has redefined network management, and how you deploy it can impact success. Get the six elements of SD-orchestration and key considerations.
Networks are on their way to becoming “self-driving.” Understand the current state of networking automation and what’s needed to reach full autonomy.
SD-WAN solutions are now platforms, but what does that mean? Moreover, what differentiates platforms from solution sets? Here’s the hidden secret.
With SD-WAN’s many connectivity options, when do you deploy 4G and 5G links and when should you avoid them? Here’s how Masergy advises its clients.
The idea of converting all your private network connections into public ones is being challenged. Attitudes are shifting. Here’s what it shows us.
Research from European enterprises surveyed as the pandemic lockdown began helps IT leaders identify new trends and what businesses need now.
SD-WAN is giving way for terms like SD-Branch. Understand the benefits and how SD-Branch is addressing security challenges at the network edge.
Here’s a guide to understanding the value of user identity analytics and why these details are increasingly important for security today and network automation tomorrow.
SD-WAN management portals typically track only IP traffic for entire sites, but Masergy’s SD-WAN gives you per-user analytics as a standard offering.
Masergy's CTO, Chris MacFarland, teaches you how to reach the milestone of true autonomy. This article originally appeared in Forbes.
See how Masergy’s network is changing in light of Coronavirus. Get tips for fast VPNs and understand shifts in digital transformation priorities.
Learn how Masergy is acting with urgency to protect employees, clients, and business continuity. We explain how Masergy helps clients respond and how he virtualized the company.
With 20 years of history, Masergy is full of fun factoids. Explore the pioneering moments, pivotal transformations, and tales from the startup days.
Get a free copy of Gartner's report. Learn how Masergy pioneered software-defined networks and is building the autonomous networks of tomorrow.
Many technologies are uniting under SD-WAN. Learn what’s changed and why new additions are starting to look like autonomous networking.
2020 marks Masergy’s 20th anniversary. The celebration starts with our top innovation landmarks and where we’re going next.
In celebration of Masergy’s 20th anniversary, we’re honoring our greatest leaders and key players. Here’s the story of Terry Traina, Masergy’s Chief Digital Officer.
AIOps puts a virtual network engineer on your team, but it’s also paving the way for autonomous networking. Get the requirements and four next steps.
Here’s a fully managed SD-WAN solution that helps organizations truly transform the WAN edge with a security-driven approach.
Think you only have 30-40 apps running on your network? It’s probably more like 900+. Here’s a quick guide to handling the blind spots of shadow IT.
By