In multi-cloud IT environments, detailed information about the identity of each network user is more important than ever, because it serves as the key evidence helping teams ferret out unauthorized data access, security breaches, and privacy invasions. Moreover, identity-based user analytics are a central ingredient for today’s advanced security strategies like micro-segmentation, granular perimeter enforcement, and Zero Trust, which are known to make the network more resilient to attacks.
The problem is this: SD-WAN management portals don’t always provide this critical data. Here’s a guide to understanding the value of user analytics and why these details are an increasingly important element for both your security today and for your network automation tomorrow.
What is identity and access management?
Identity is who you are, the way you are viewed by your organization, and the characteristics and behavior that define you. A common example of identity on a corporate network is a person’s name and email address stored in Microsoft Active Directory. It can also be a coded name, number, or password. Other sources of identity include the device name, location, time of day, the risk and trust of the user’s device, and even the application and data sensitivity being accessed.
These are primary ways of verifying that a person or user is who they say they are. This information is used for data governance and identity access management (IAM), which is a method for restricting information and network access based on the roles of individual users. When digital enterprises must provide secure information access based on the identity of a person or based on the identity of a device (or both), IAM delivers the information and methods for decision making at the source of the connection. Specific IAM technologies include centralized authentication, single-sign-on (SSO), session management, and authentication or authorization enforcement and are typically integrated into cloud applications and network services.
Why user analytics take central stage in advanced security
The concept of granularity helps explain why identity is now taking a central role in security strategies. This detailed information acts as a prerequisite for micro-segmentation, granular perimeter enforcement, and Zero Trust because it give IT teams:
- More options for identity verification: Now your security team can validate or even double verify users based on more than just simple ID/password logins or per-site analytics that are typically available with network and SD-WAN management portals. IT teams can also identify endpoints based on the user identity and based on the endpoint’s location–this is a critical need for managing virtual workforces and remote employees amid the COVID-19 pandemic.
- Deeper visibility to accelerate security: Tracking potential threats per-user (rather than solely per-site) helps accelerate security remediation. Analytics help IT teams understand each user’s impact on the network. They are also helpful with shadow IT discovery, where IT teams get a list of the high-risk cloud applications they didn’t know employees were running on their network–but now they need user analytics to understand who specifically is using those applications. Additionally, they are helpful in tracking threats across segmented networks and “East-West” or server-to-server traffic.
- Granular control for stringent security policies: Analytics can be used to see who is using the most bandwidth and who is connecting their computer to servers unbeknownst to the corporate IT team. What’s more, they can be used to design conditional data access to both cloud and on premise assets and can be leveraged to enforce consistent security policies. In fact, a robust IAM system adds protection through consistent user access application rules and policies across the enterprise.
- Cloud visibility: Analytics show user activity both on premise and in the cloud, which means IT leaders can understand user activity everywhere and better protect their entire IT environment via more granular insights.
All of this explains why user analytics are increasingly important according to Gartner’s “Magic Quadrant for Access Management,” which reported:
- “By 2022, 60% of access management (AM) implementations will leverage user and entity behavior analytics (UEBA) capabilities, up from less than 10% today.
- By 2022, 60% of all single sign-on (SSO) transactions will leverage modern identity protocols like SAML, OAuth2 and OIDC over proprietary approaches, up from 30% today.
- By 2024, the use of multifactor authentication (MFA) for application access through AM solutions will be leveraged for over 70% of all application access, up from 10% today.”
With more devices, services, and users to manage today, enterprises face more security risk, as these are targets for unauthorized access. Ineffective access management is risky for compliance (especially the increasing domestic and international privacy regulations) as well as security. Missing or poor access management can lead to damages from both external and internal threats. So, it’s clear to see why per-user analytics are sought-after security tools.
Unknown benefits: User analytics essential for the autonomous network
Security is such a hot topic today that IT leaders often miss the lesser known advantages of per-user analytics. As the data set that feeds network decision making and automated control, identity information is considered one prerequisite for intent-based networking policies and the autonomous (“self-driving”) networks. They serve as a foundational element for the future.
When autonomous networks (and their centralized management portals) include per-user analytics, you will be able to give the network your high-level business needs and it will “understand” your intent regarding identity access management and bandwidth priorities per user. Moreover, the network will be able to monitor itself and modify underlying actions in ways that tune itself to your changing needs–and all in real time. Network service providers aiming to deliver on autonomous networking are focused today on checking these boxes. They are incorporating all the data analytics features needed to lay each stepping stone on a path toward total autonomy. Masergy serves as one such company.
Masergy’s SD-WAN includes per-user analytics
Masergy includes Identity-Based WAN Analytics in its comprehensive
Interested in learning more about Managed Security?
Call us now to arrange a consultation (866) 588-5885.
Or arrange for a consultation through our request form.
How does Cloud Access Security Broker (CASB) fit into the SASE paradigm?
Dec 8, 2020How does Cloud Access Security Broker (CASB) fit into the SASE paradigm?
CASB serves as of one of SASE’s fundamental purposes. Here’s how it works within a SASE framework to mitigate security risks.
Learn more
SASE from Masergy: Best-of-breed technologies, broad choices, and security that goes beyond SASE
Nov 16, 2020SASE from Masergy: Best-of-breed technologies, broad choices, and security that goes beyond SASE
Here’s a look at Masergy’s approach to SASE, the enhancements we have made, and how we’re leaning into network-security convergence.
Learn more
Masergy Strengthens Its SD-WAN Secure Solution with Deeper SASE Capabilities
Nov 16, 2020Masergy Strengthens Its SD-WAN Secure Solution with Deeper SASE Capabilities
Masergy, the software-defined network and cloud platform for the digital enterprise, announced that it is strengthening its SD-WAN Secure solution to offer Secure Access Service Edge (SASE) capabilities
Learn more
Masergy Receives Frost & Sullivan Technology Innovation Leadership Award for Managed SD-WAN Solution with AIOps
Nov 10, 2020Masergy Receives Frost & Sullivan Technology Innovation Leadership Award for Managed SD-WAN Solution with AIOps
Masergy Named Most Innovative Managed SD-WAN Service Provider by Frost & Sullivan
Learn more
What lies beyond SASE?
Nov 3, 2020What lies beyond SASE?
Do SASE solutions reach far enough? Here’s a look at what’s inside the SASE framework today, and where it could go in the future.
Learn more
The permanency of remote healthcare calls for UCaaS + SD‑WAN + Security
Oct 27, 2020The permanency of remote healthcare calls for UCaaS + SD‑WAN + Security
Healthcare IT leaders are reducing the complexity of digital transformation by addressing UC, the network, and security in one unified strategy.
Learn more
Can I skip SD-WAN and jump straight to SASE?
Oct 20, 2020Can I skip SD-WAN and jump straight to SASE?
Want to switch from SD-WAN to SASE midstream? These RFP questions can help you roll your IT modernization project into a larger investment.
Learn more
The future of the network is autonomous: WFH strategies prepare for self-driving networks
Oct 15, 2020The future of the network is autonomous: WFH strategies prepare for self-driving networks
While IT leaders are enabling the remote workforce, they are also building an autonomous network. Leverage your investments today for innovation tomorrow.
Learn more
What are the benefits of SASE?
Oct 15, 2020What are the benefits of SASE?
Why do businesses need SASE and more importantly does it help with work from home? Here’s how SASE solutions deliver real value.
Learn more
Masergy Launches SD-WAN Work From Anywhere Solutions
Oct 13, 2020Masergy Launches SD-WAN Work From Anywhere Solutions
Masergy Launches SD-WAN Work From Anywhere Solutions, which extend the value of Masergy SD-WAN Secure to Home and Mobile Users
Learn more
How do you tease out the differences in SASE solutions? Tech stacks set providers apart
Oct 6, 2020How do you tease out the differences in SASE solutions? Tech stacks set providers apart
Planning a move toward SASE? Here are three ways to make apples-to-apples comparisons, teasing out the differences in solutions.
Learn more
SASE from Fortinet & Masergy: Converging best-of-breed network and security solutions recognized by Gartner
Oct 6, 2020SASE from Fortinet & Masergy: Converging best-of-breed network and security solutions recognized by Gartner
SASE is consolidating best-of-breed technologies into one cloud service, and it’s here where the Masergy-Fortinet offering stands above the rest.
Learn more
Is there more than one way to SASE? Cloud separates two strategies, schools of thought
Oct 1, 2020Is there more than one way to SASE? Cloud separates two strategies, schools of thought
Are firewalls becoming a dividing line between SASE strategies? Why some IT leaders choose a cloud-managed approach over a cloud-native one.
Learn more
Is SASE real or just a concept?
Sep 22, 2020Is SASE real or just a concept?
When it comes to SASE validity, there are lots of opinions. Here’s a look from all sides and tips for how to evaluate SASE architecture.
Learn more
Masergy Named Most Innovative Managed SD-WAN Service Provider by Frost & Sullivan
Sep 22, 2020Masergy Named Most Innovative Managed SD-WAN Service Provider by Frost & Sullivan
Learn more
Masergy Announces Zenith Partner of the Year Awards
Sep 15, 2020Masergy Announces Zenith Partner of the Year Awards
Learn more
Co-managed SD-WAN: IT decision makers are leaning in but how do you get the best of both worlds?
Sep 14, 2020Co-managed SD-WAN: IT decision makers are leaning in but how do you get the best of both worlds?
What’s the difference between a fully managed SD-WAN service and a co-managed service? Here’s how to get the best out of shared responsibilities.
Learn more
Why are there so many different interpretations of SASE?
Sep 8, 2020Why are there so many different interpretations of SASE?
Ask people what SASE is and you’ll likely get 10 answers. While the newness of SASE is a factor in the confusion, here’s what SASE is and what it’s not.
Learn more
Masergy SD-WAN wins Leading Lights 2020 Award for Most Innovative SD-WAN Service
Aug 25, 2020Masergy SD-WAN wins Leading Lights 2020 Award for Most Innovative SD-WAN Service
Learn more
Masergy releases 2020 SD-WAN Market Trends Report
Aug 11, 2020Masergy releases 2020 SD-WAN Market Trends Report
Learn more
IDG study finds SD-WAN as key enabler for working from anywhere
Aug 11, 2020IDG study finds SD-WAN as key enabler for working from anywhere
Data shows remote work has triggered a modernization of business operations and the network. Explore the highlights from the new IDG study.
Learn more
The business case for Masergy’s new SD-WAN Secure solutions
Aug 4, 2020The business case for Masergy’s new SD-WAN Secure solutions
Masergy’s new SD-WAN portfolio gives companies of every size unrivaled application performance along with more flexibility and choice.
Learn more
Masergy launches new Partner Program for accelerated SD-WAN market
Jul 21, 2020Masergy launches new Partner Program for accelerated SD-WAN market
Learn more
Masergy launches SD-WAN enhancements: More options and trailblazing SLAs meet the needs of any transforming business
Jul 21, 2020Masergy launches SD-WAN enhancements: More options and trailblazing SLAs meet the needs of any transforming business
Learn more
Masergy expands its SD-WAN portfolio offering the broadest choice, flexibility, and built-in SASE
Jul 21, 2020Masergy expands its SD-WAN portfolio offering the broadest choice, flexibility, and built-in SASE
Learn more
Masergy announces the SD‑WAN industry’s most competitive Service Level Agreements
Jul 21, 2020Masergy announces the SD‑WAN industry’s most competitive Service Level Agreements
Learn more
Work-from-Anywhere Study: ZK Research webinar explores IT trends and SD-WAN urgency
Jul 9, 2020Work-from-Anywhere Study: ZK Research webinar explores IT trends and SD-WAN urgency
ZK Research data shows IT spending is up, and the value of the network has increased. Don’t miss the latest SD-WAN strategies in this online event.
Learn more
Oldcastle infrastructure selects Masergy SD-WAN to build high-availability network for digital transformation
Jul 9, 2020Oldcastle infrastructure selects Masergy SD-WAN to build high-availability network for digital transformation
Learn more
SD-orchestration: SD-WAN and application performance management
Jun 23, 2020SD-orchestration: SD-WAN and application performance management
SD-WAN has redefined network management, and how you deploy it can impact success. Get the six elements of SD-orchestration and key considerations.
Learn more
WAN automation: Why SD‑WAN is only step one and what’s needed to reach full autonomy
Jun 16, 2020WAN automation: Why SD‑WAN is only step one and what’s needed to reach full autonomy
Networks are on their way to becoming “self-driving.” Understand the current state of networking automation and what’s needed to reach full autonomy.
Learn more
Elements of SD-WAN & SASE platforms: Differentiators, characteristics and the hidden secret
Jun 2, 2020Elements of SD-WAN & SASE platforms: Differentiators, characteristics and the hidden secret
SD-WAN solutions are now platforms, but what does that mean? Moreover, what differentiates platforms from solution sets? Here’s the hidden secret.
Learn more
5G and fixed wireless: Where does it fit in your SD-WAN connectivity strategy?
May 26, 20205G and fixed wireless: Where does it fit in your SD-WAN connectivity strategy?
With SD-WAN’s many connectivity options, when do you deploy 4G and 5G links and when should you avoid them? Here’s how Masergy advises its clients.
Learn more
COVID-19 is changing how IT thinks about MPLS: What networks and leaders need now
May 19, 2020COVID-19 is changing how IT thinks about MPLS: What networks and leaders need now
The idea of converting all your private network connections into public ones is being challenged. Attitudes are shifting. Here’s what it shows us.
Learn more
What digital transformation looks like now: Omdia webinar has the outlook for Europe
May 13, 2020What digital transformation looks like now: Omdia webinar has the outlook for Europe
Research from European enterprises surveyed as the pandemic lockdown began helps IT leaders identify new trends and what businesses need now.
Learn more
Extending secure SD-WAN to secure SD-Branch: The convergence of WAN and LAN at the edge
Apr 23, 2020Extending secure SD-WAN to secure SD-Branch: The convergence of WAN and LAN at the edge
SD-WAN is giving way for terms like SD-Branch. Understand the benefits and how SD-Branch is addressing security challenges at the network edge.
Learn more
Advancing SD-WAN security and control, Masergy introduces identity-based WAN analytics
Apr 14, 2020Advancing SD-WAN security and control, Masergy introduces identity-based WAN analytics
SD-WAN management portals typically track only IP traffic for entire sites, but Masergy’s SD-WAN gives you per-user analytics as a standard offering.
Learn more
The autonomous enterprise: Building your digital vision
Apr 13, 2020The autonomous enterprise: Building your digital vision
Masergy's CTO, Chris MacFarland, teaches you how to reach the milestone of true autonomy. This article originally appeared in Forbes.
Learn more
The impact of COVID-19 on corporate networks: VPN connections skyrocket, increasing by 676%
Apr 7, 2020The impact of COVID-19 on corporate networks: VPN connections skyrocket, increasing by 676%
See how Masergy’s network is changing in light of Coronavirus. Get tips for fast VPNs and understand shifts in digital transformation priorities.
Learn more
COVID-19: Prioritizing health & safety
Mar 13, 2020COVID-19: Prioritizing health & safety
Learn how Masergy is acting with urgency to protect employees, clients, and business continuity. We explain how Masergy helps clients respond and how he virtualized the company.
Learn more
Masergy wins Stevie® award for Sales & Customer Service
Mar 10, 2020Masergy wins Stevie® award for Sales & Customer Service
Learn more
How security threats are evolving now: the cause and effect on security strategy
Mar 10, 2020How security threats are evolving now: the cause and effect on security strategy
How do you keep up with advanced threats? Explore the causes behind more frequent attacks and the assumptions your security strategy needs to make now.
Learn more
20 things you didn’t know about Masergy
Mar 3, 202020 things you didn’t know about Masergy
With 20 years of history, Masergy is full of fun factoids. Explore the pioneering moments, pivotal transformations, and tales from the startup days.
Learn more
4-time Visionary: Gartner positions Masergy as Visionary in 2020 Magic Quadrant for Network Services, Global
Feb 25, 20204-time Visionary: Gartner positions Masergy as Visionary in 2020 Magic Quadrant for Network Services, Global
Get a free copy of Gartner's report. Learn how Masergy pioneered software-defined networks and is building the autonomous networks of tomorrow.
Learn more
How SD-WAN is converging network, security and AI
Feb 11, 2020How SD-WAN is converging network, security and AI
Many technologies are uniting under SD-WAN. Learn what’s changed and why new additions are starting to look like autonomous networking.
Learn more
Masergy celebrates 20 years of success marked by service excellence and early SD-WAN innovation
Feb 6, 2020Masergy celebrates 20 years of success marked by service excellence and early SD-WAN innovation
Learn more
Masergy’s biggest innovation milestones
Feb 5, 2020Masergy’s biggest innovation milestones
2020 marks Masergy’s 20th anniversary. The celebration starts with our top innovation landmarks and where we’re going next.
Learn more
Small beginnings, big impact: Terry Traina reflects on Masergy’s legacy
Feb 5, 2020Small beginnings, big impact: Terry Traina reflects on Masergy’s legacy
In celebration of Masergy’s 20th anniversary, we’re honoring our greatest leaders and key players. Here’s the story of Terry Traina, Masergy’s Chief Digital Officer.
Learn more
Scrappy startup delivers leading network performance: Mark McCann explains Masergy’s early innovation
Feb 5, 2020Scrappy startup delivers leading network performance: Mark McCann explains Masergy’s early innovation
Learn more
3 common problems with security services and what you should be getting
Jan 28, 20203 common problems with security services and what you should be getting
Are you getting value out of your security services? These frequent pain points illustrate how partners should be strengthening your security posture.
Learn more
Masergy AIOps wins 2020 BIG Innovation award
Jan 22, 2020Masergy AIOps wins 2020 BIG Innovation award
Learn more
Harnessing the power of AIOps: Paving the way to autonomous networking
Jan 21, 2020Harnessing the power of AIOps: Paving the way to autonomous networking
AIOps puts a virtual network engineer on your team, but it’s also paving the way for autonomous networking. Get the requirements and four next steps.
Learn more
Fortinet & Masergy: The security-driven approach to SD-WAN
Jan 16, 2020Fortinet & Masergy: The security-driven approach to SD-WAN
Here’s a fully managed SD-WAN solution that helps organizations truly transform the WAN edge with a security-driven approach.
Learn more
Shadow IT: Getting the visibility you need
Jan 14, 2020Shadow IT: Getting the visibility you need
Think you only have 30-40 apps running on your network? It’s probably more like 900+. Here’s a quick guide to handling the blind spots of shadow IT.
Learn more
Masergy launches industry’s first integrated SD-WAN Shadow IT Discovery solution
Jan 14, 2020Masergy launches industry’s first integrated SD-WAN Shadow IT Discovery solution
Learn more
By