Secure Access Service Edge (SASE) has been a hot topic since Gartner defined it as a new category of offerings combining WAN capabilities with network security functions. Everyone agrees that conceptually SASE makes sense, but when it comes to turning idealistic frameworks into realistic IT approaches misconceptions abound. Here’s where SASE principles can be taken too far and where IT buyers may get a bit too starry eyed.
Gartner’s “2019 Hype Cycle for Enterprise Networking” included this warning statement about virtual machine service chaining (as known as daisy chains) that can sometimes lead people astray:
“Software architecture and implementation matters. Be wary of vendors that propose to deliver services by linking a large number of features via VM service chaining, especially when the products come from a number of acquisitions or partnerships. This approach may speed time to market but will result in inconsistent services, poor manageability and high latency.”
Solution architecture is important, and yes, you want to minimize the number of daisy chains to reduce complexity. However, it doesn’t mean you cannot have any daisy chains in your solution. In fact, dictating zero daisy chains can have consequences–not for performance, but for security.
SASE consolidates a wide array of security technologies into one service, and yet each of those technologies are their own standalone segments today–with their own industry leaders and laggards. Any buyer who dictates no daisy chains is trusting that one single SASE provider can (all by themselves) build the best technologies across a constellation of capabilities that is only growing larger. Being beholden to one company is not pragmatic given that the occasional daisy chain greatly increases the ability to unite multiple best-of-breed technologies under one umbrella. Here are a few more reasons why daisy chains are needed:
SASE revolves around the cloud and is undoubtedly about speed and agility achieved through cloud-deployed security. But SASE doesn’t mean the cloud is the only way to go–ignore everything else. Instead, IT leaders should take a more practical position, using the best technology given the situation and problem. For example, on-premise next-gen firewall appliances are usually still the best option for large offices where performance and total cost of ownership are the key goals. If your SASE approach is cloud-first but not cloud-only, make sure your solution follows suit. Not all solutions allow for both cloud and on-premise firewalls!
Don’t assume SASE is a total solution. SASE covers a lot of ground, but it does not cover all the technologies a company needs to secure a remote-work and multi-cloud environment. For example, Cloud Workload Protection (CWP) and Endpoint Detection and Response (EDR) are critical in securing user and cloud computing environments, but are not part of the SASE framework. Although EDR is a primary technology used to address ransomware, a threat vector skyrocketing today, it is excluded from SASE because it does not require network traffic inspection to function. Rather, it’s an agent-based solution that monitors operating system activity and integrity.
Moreover, SASE addresses only the technology components of an effective security program, leaving out the experts required for 24/7 security monitoring and mature incident response. Without a dedicated team of security analysts at the ready, security technologies are ineffective–whether they are included in SASE or not. Professional skills are necessary to further investigate threats and stop them before major damage is done.
The security arena is the source of much SASE buzz, but let’s not forget that SASE solutions don’t work without SD-WAN and its centralized management platform pulling everything together. Plus, SASE is essentially dead on arrival unless the underlying network performs at acceptable levels. In selecting a SASE provider, IT leaders should check that both security and networking capabilities meet their needs, otherwise the entire “solution” can fail. Evaluations should touch on scalability, access flexibility, visibility and control, performance, as well as the ability to separate, prioritize, and secure bandwidth for remote employees.
SASE is all the rage, promising the ideologies that IT leaders have dreamed about for years, but taking a purist approach can have consequences. Hard-lined expectations around daisy chains and the cloud should be softened in favor of maximizing security excellence and business outcomes. Likewise, SASE solutions need to be compared against the broader security and network strategy, seeing where it adds value and where it may still fall short. By taking a pragmatic approach and wrapping SASE with fully managed network and security services, companies can make ideologies tangible, achieving agility and productivity all with ready-made security.
Call us now to arrange a consultation (866) 588-5885.
Or arrange for a consultation through our request form.
With hybrid work the new permanent, simplifying the necessary tech stack is key. The real secret—consolidating tools for less IT complexity.
Knowledge and proficiency always come with practice, and the same holds true for artificial intelligence and machine learning.
Frost & Sullivan positioned Masergy as the most innovative managed SD-WAN service in the industry. Here are five reasons why.
In our third prediction for 2022, Masergy foresees wider IT convergence, more collaboration, and more interconnected IT ecosystems.
Continuing our predictions for 2022, Masergy explores why the IT infrastructure has become a high stakes essential powering remote and hybrid work.
In this series of articles Masergy outlines its predictions for 2022, starting with AIOps and how it will hyper automate IT operations.
Circle of Excellence honors Masergy for vision, innovation, and advocacy of the channel during a time of transition and convergence.
Remote and hybrid work can complicate security, increasing risk. So, what’s the single best remedy? Here’s the answer.
65% of IT teams are already using AI, and learning from them is the best way to shape your strategy. Join us as we unpack the latest AIOps research.
Businesses are embracing AI to make IT operations smarter, faster, and more secure, according to a new ZK Research study.
Here’s how our combined company will accelerate digital transformation and unlock more value for clients, partners, and the industry at large.
Collaboration applications won’t perform without the right support systems. In fact, it’s what’s behind the technology curtain that matters most.
Congratulations to our partners Resourcive, CXT180 and Subsidium Technologies for attaining Apex level status in the Masergy Zenith Program!
How can you partition networks to avoid complexity? Here’s how Masergy advises IT leaders when it comes to segmenting networks for security purposes.
With every new technology shift comes the promise of what’s possible along with uncertainty inherent in change.
Security strategies from the past 20 years are no longer working. Zero Trust offers a more resilient security approach for today’s challenges.
The acquisition accelerates Comcast Business’s increasing growth serving large and mid-size companies with multi-site global operations.
Here we explore the SASE plans companies are making and the difficult questions they address along the way.
For more than 10 years, media services company Azzurro HD has relied on Masergy to help create high-performance, broadcast-quality TV studios anywhere.
Following the company's best year ever, Masergy celebrates channel partners for their 2021 sales achievements.
CASB is essential in a world where the cloud and remote work dominate. Here we examine use cases for it and how it fits into the SASE model.
The pairing of two technologies — SASE and AIOps — accelerates innovation, creating a new breakthrough for autonomous networking.
Masergy’s Director of Channel Marketing recognized for contributions shaping the future of the IT channel.
To ensure security and agility and reap the full benefits of SASE, you need to follow four key guidelines for success.
Here’s how Masergy helped several global law firms modernize to meet the needs of their clients while prioritizing data security.
Masergy Zenith Partner Program and Masergy AIOps Recognized for Excellence
Here’s why three manufacturers moved to smart manufacturing using Masergy’s cloud network platform and managed services.
Masergy Work From Anywhere solutions recognized for providing IT leaders with one cloud platform to cover the needs of their remote workforces.
eWeek interviews Masergy's CEO to understand how the network is evolving as a key player in today's fast-paced digital transformation.
SD-WAN gains traction with preferences for reliable, secure, and hybrid-access SD-WAN revealing how IT leaders find an ROI sweet spot.
SD-WAN helps address the challenges of remote work, and 58% of IT decision makers expect to use hybrid access. Here’s why.
Congratulations to our partners Datatel1 and Digital Planet Communications Inc. for attaining Apex level status in the Masergy Zenith Program!
Cloud Access Security Brokers (CASBs) are go-to solutions for securing corporate data and cloud-based apps on employee devices. Learn why CASB is a crucial component of Gartner’s Secure Access Service Edge (SASE) framework and the top use cases for using CASB at your business.
Build your remote workforce by integrating UCaaS with SASE solutions that back collaboration applications with performance and security.
Need to unite two companies quickly without jeopardizing security? Here’s how to put SASE and SD-WAN to work for your M&A strategy.
CIO Joe Gracz explains how he AIOps and IT automation to accelerate his manufacturing company’s work-from-home solution.
With AI and machine learning applied to cloud applications, IT teams can automate management, predict performance, and ensure availability
Managing cloud applications just got a lot easier thanks to Masergy’s latest AIOps innovations which can predict and prevent application outages.
Congratulations to our partners Blue Equinox, DVP Technologies and RealCom Solutions for attaining Apex level status in the Masergy Zenith Program!
Masergy recognized as demonstrating the innovation, vision, and execution needed to drive the upward market trajectory of SD-WAN
Expanding Masergy’s reach, SDx Networks is Masergy’s newest channel partner in the land down under. Here’s why they chose Masergy.
Businesses of all sizes are flocking to Masergy’s cloud networking platform. Here’s a look at our sales and why more IT leaders prefer our solutions.
The Zenith Program is six months old, which makes now a great time to check in on our progress and what’s coming next for the channel.
The 2021 Gartner Magic Quadrant for Network Services, Global is here!
Masergy has been named a Visionary in Gartner, Inc.’s March 2021 Magic Quadrant for Network Services, Global, for the fifth consecutive year
Keep things simple with integrated services. Masergy UCaaS with Cisco Webex offers SD-WAN service for a perfectly complete collaboration solution.
Masergy recognized by CRN as innovative and forward-thinking managed service provider.
SWG melds into broader offerings today, better serving the needs of the anywhere business. As markets converge, here’s what buyers should consider.
Many people believe it’s only SD-WAN if your network uses public internet links, but that’s false. Here’s why SD-WAN should be access agnostic.
Prestigious CRN Channel Chiefs list recognizes Masergy’s SVP of Global Channels for outstanding leadership, influence, innovation, and growth
With technology, analytics, and security analysts all in one solution, clients can efficiently widen their security coverage to every endpoint.
Masergy's Work From Anywhere solutions were honored by TMCnet for innovation and performance excellence
Explore the advantages of cloud firewalls, the role FWaaS plays in SASE solutions, and when to opt for the cloud or stick with on-premise.
Explore new IDG research, discovering the latest security trends in healthcare and the approaches used to solve the problems of digital care.
Law firms and other service firms are streamlining digital transformation by addressing UC, the network, and security in one unified strategy.
The study surveyed IT leaders from hospitals, primary and urgent care facilities, pharmaceutical companies, and other healthcare entities
With 2020 one of the biggest years the enterprise network has had, here's a look back at how key impacts will shape the evolution of the network in 2021.