Setting a course for SASE: Best practices and questions to address along the way
The Secure Access Service Edge (SASE) model is on track to become the standard approach to SD-WAN and network security. But, how does an enterprise get from where it is today to an effective SASE deployment? Best practices are surfacing that offer organizations a clear roadmap for converging network and security into one cloud-based approach. The migration process raises many questions, however, including the scope of SASE, the process and pace of implementation, vendor strategies and more. Here, we explore the processes companies are taking to achieve a SASE architecture and the difficult questions they address along the way.
The state of SASE
SASE is gaining traction, with Gartner projecting that 60% of enterprises will have explicit strategies and timelines for SASE by 2025. This is up from just 10% in 2020. SASE’s growth derives partly from its ability to simplify security for remote employees and branch offices. More broadly, the concept has caught on because today, everyone and every device is inherently remote. Even users inside the firewall are remote from cloud and Software-as-a-Service (SaaS) resources. With the need for secure edge networking, companies of all sizes are seeking out an edge-oriented security structure. SASE is exactly that.
SASE converges SD-WAN with security capabilities including firewall-as-a-service (FWaaS), cloud access service broker (CASB), secure web gateway (SWG), and zero trust network access (ZTNA). Moreover, SASE calls for all of these capabilities in one cloud-based solution. With these network and security technologies in one dashboard, it becomes possible for companies to securely access digital resources from anywhere on any device. The SASE model also helps with IT flexibility, cost-cutting, systemic simplification and data protection.
Where do I start with SASE?
As appealing as SASE may be, it’s not always clear how to get started with an initiative to build SASE in your organization. SASE is more like a network security framework that can be expanded and improved upon over time. The good news is that you probably already own some of the core components for the SASE framework, even if they are not connected inside one solution the way SASE requires. You can start the SASE thought process by identifying gaps between what you have and what you need, in terms of SD-WAN, FWaaS, SWG, CASB and ZTNA.
Gartner, in their 2021 Strategic Roadmap for SASE Convergence, offers guidance on realizing SASE. One of their main points is to view SASE as a transition from existing hardware, software and policies. For example, they suggest inventorying equipment and contracts to implement a multi-year phasing out of traditional perimeter hardware in favor of cloud-based SASE capabilities. They also recommend implementing ZTNA for all users regardless of location. Get a free copy of the Gartner paper here.
Masergy also recently published an infographic for our “12 Step Roadmap to SASE.” The first step is to form a cross-functional planning team. It should have members from IT, security, network operations, remote workforce members and business managers. The team can map SASE against existing capabilities and prioritize areas where it will provide the most value. From there, the 12-step phased process includes activities like identifying how SASE can make your network infrastructure more virtualized, along with how security technologies can be consolidated into one platform. The process suggests developing an understanding of where network and security teams will need support from service providers.
Issues to resolve along the way
As you navigate your path to SASE, you will have to address some key questions, including:
What should I put in the cloud?
SASE stresses a cloud-first approach, but not every element of SASE needs to be cloud hosted, and certainly not at the start of the migration process. (Not to mention, for many organizations a premise will always exist somewhere.) For example, not all firewalls belong in the cloud. Some will do their jobs better if left on-premises, especially in large enterprises. Identify which capabilities belong in the cloud and define your requirements for which aspects still need the flexibility to be both cloud and on-premise. Here’s more information.
How many providers should I have?
Getting SASE right has a lot to do with determining the right provider. Ideally, SASE solutions come from a single vendor with one dashboard. After all, SASE was designed to solve the IT complexity problem — too many vendors, dashboards, and policies. The market is still maturing, meaning few providers today offer all five SASE capabilities in one clean solution with one dashboard. However, it won’t be long before ideals become reality. Thus, it still makes sense to consolidate to as few vendors as possible. Say, no more than one or two.
What should my SASE tech stack look like?
As providers compile the swath of security tools into one SASE toolbox, they may use all of their own homegrown, proprietary technologies or they may consolidate technologies from outside companies into one service experience, labeling it as SASE from best-of-breed providers. Tech stack compilation and integration are often key factors in decision making, helping companies select between providers. Learn more about how SASE tech stacks differentiate providers.
How do I make SASE a part of what we’re already doing?
SASE does not have to be a major disruption. It can flow into existing projects and practices, such as the hardware replacement cycle. As you update network hardware, you can shift to equipment that supports the SASE model.
The approaches that resolve these issues tend to overlap. Deciding what to put in the cloud affects hardware purchases. Consolidating vendors may involve moving workloads to the cloud, and so forth. Getting to SASE can be an iterative, incremental process.
Thinking beyond SASE with additional security capabilities
SASE should not be your final destination. Improving your overall security posture and reducing risk is part of the bigger trend of widening security protections to the edge and engaging with the right service providers. For example, advanced endpoint security is a critical area of cyber defense that one should not neglect in the pursuit of SASE, as is shadow IT discovery. Moreover, Managed detection and response (MDR) services can be a big help in ensuring SASE strategies have the right people and proven processes to back new security technology investments. 24/7 threat monitoring by certified security experts that include an action team operationalizing ideas like branch IP security, CASB, and ZTNA, so you don’t have to increase your IT headcount. At the end of the day, SASE is useless without people mitigating security risks identified by these advanced technologies.
SASE is here, and likely coming soon to your organization, if it hasn’t already arrived. You need a plan and a roadmap for this promising security model. Industry thought leaders like Gartner are weighing in with recommendations based on research and emerging best practices. Getting there will mean addressing a variety of issues, such as provider selection and cloud migration choices. It’s a process that should involve more than just IT and security. The whole organization should be represented in the planning process. It will be worth the effort, with SASE making it possible to protect anywhere, anytime access to digital capabilities.
Interested in learning more about SASE?
Call us now to arrange a consultation (866) 588-5885.
Or arrange for a consultation through our request form.
Hybrid work without the headaches: 7 technologies you need now
With hybrid work the new permanent, simplifying the necessary tech stack is key. The real secret—consolidating tools for less IT complexity.
How IT Automation Can Be Your Next Business Discipline
Knowledge and proficiency always come with practice, and the same holds true for artificial intelligence and machine learning.
Security point solutions are useless in 2022 and beyond
Masergy’s final prediction for 2022 is one of the most important. Here are our tips for breaking down silos and taking a holistic approach to security.
Why Masergy is the innovation leader in new Frost Radar™ report evaluating SD-WAN services
Frost & Sullivan positioned Masergy as the most innovative managed SD-WAN service in the industry. Here are five reasons why.
Convergence and co-creation trends will give birth to open ecosystems
In our third prediction for 2022, Masergy foresees wider IT convergence, more collaboration, and more interconnected IT ecosystems.
Predictions: 2022 will be the year to modernize IT or die
Continuing our predictions for 2022, Masergy explores why the IT infrastructure has become a high stakes essential powering remote and hybrid work.
AIOps goes mainstream, empowering hyper automation and accelerated innovation
In this series of articles Masergy outlines its predictions for 2022, starting with AIOps and how it will hyper automate IT operations.
What the analysts say about selecting a managed security services provider
Only the largest businesses can handle security 100% internally, but finding an MSSP can be hard. These tips come from Nemertes Research.
Masergy’s Jim Glackin receives 2021 Channel Partners Circle of Excellence award
Circle of Excellence honors Masergy for vision, innovation, and advocacy of the channel during a time of transition and convergence.
Why remote work security is so difficult and the single best thing you can do about it
Remote and hybrid work can complicate security, increasing risk. So, what’s the single best remedy? Here’s the answer.
Why you need an AIOps strategy today
65% of IT teams are already using AI, and learning from them is the best way to shape your strategy. Join us as we unpack the latest AIOps research.
Artificial Intelligence Key to Business Continuity and Security Finds New Masergy State of AIOps Study
Businesses are embracing AI to make IT operations smarter, faster, and more secure, according to a new ZK Research study.
5 reasons to be excited about the Comcast Business acquisition
Here’s how our combined company will accelerate digital transformation and unlock more value for clients, partners, and the industry at large.
Not getting the collaboration experience you want? Look at your technology provider
Collaboration applications won’t perform without the right support systems. In fact, it’s what’s behind the technology curtain that matters most.
Resourcive, CXT180, and Subsidium Technologies attain Apex level status in Masergy Zenith Program
Congratulations to our partners Resourcive, CXT180 and Subsidium Technologies for attaining Apex level status in the Masergy Zenith Program!
Network segmentation security: How to avoid IT complexity
How can you partition networks to avoid complexity? Here’s how Masergy advises IT leaders when it comes to segmenting networks for security purposes.
Embracing what’s next
With every new technology shift comes the promise of what’s possible along with uncertainty inherent in change.
What is Zero Trust security and how do I get started?
Security strategies from the past 20 years are no longer working. Zero Trust offers a more resilient security approach for today’s challenges.
Cybersecurity threats now: 6 eye openers from Black Hat every IT leader should know
Takeaways from Black Hat reveal what IT professionals should know as they strengthen security postures and counteract cyber criminals.
Comcast Business to Acquire Masergy, a Pioneer in Software‑Defined Networking and Cloud Platforms
The acquisition accelerates Comcast Business’s increasing growth serving large and mid-size companies with multi-site global operations.
4-Step cybersecurity risk assessment
Data breaches cost $4.24M on average. Use the following four steps to help identify where you are today and what you should do next to improve your security posture.
Masergy Helps Keep Azzurro HD at Forefront of At-Home TV Broadcast
For more than 10 years, media services company Azzurro HD has relied on Masergy to help create high-performance, broadcast-quality TV studios anywhere.
The Top Five Cybersecurity Threats to Watch Out for Now
Online security threats are constantly evolving. What should you worry about now? Here’s the latest line up of cybersecurity threats and how to stay ahead.
Masergy Announces Zenith Partner of the Year Awards
Following the company's best year ever, Masergy celebrates channel partners for their 2021 sales achievements.
Remote work, cloud security, and SASE: Putting CASB to work in the real world
CASB is essential in a world where the cloud and remote work dominate. Here we examine use cases for it and how it fits into the SASE model.
Accelerating Autonomous Networking: How SASE Improves AIOps
The pairing of two technologies — SASE and AIOps — accelerates innovation, creating a new breakthrough for autonomous networking.
Masergy’s Florence Le Goff Honored in the 2021 CRN® 2021 Rising Female Stars List
Masergy’s Director of Channel Marketing recognized for contributions shaping the future of the IT channel.
Getting SASE? Four guidelines for success
To ensure security and agility and reap the full benefits of SASE, you need to follow four key guidelines for success.
Why legal firms choose Masergy to digitize and improve the client experience
Here’s how Masergy helped several global law firms modernize to meet the needs of their clients while prioritizing data security.
Masergy Wins Two 2021 Visionary Spotlight Awards
Masergy Zenith Partner Program and Masergy AIOps Recognized for Excellence
Why manufacturers are moving to AI and IoT with Masergy
Here’s why three manufacturers moved to smart manufacturing using Masergy’s cloud network platform and managed services.
Masergy Wins Globee® in the 16th Annual 2021 IT World Awards®
Masergy Work From Anywhere solutions recognized for providing IT leaders with one cloud platform to cover the needs of their remote workforces.
SASE misconceptions: How to take a pragmatic approach to network & security convergence
Misconceptions abound when it comes to turning SASE into a pragmatic plan. It’s easy to take SASE principles too far. Here’s a practical approach.
Masergy aligns its services for the future of ITMasergy aligns its services for the future of IT
eWeek interviews Masergy's CEO to understand how the network is evolving as a key player in today's fast-paced digital transformation.
Masergy Releases 2021 State of SD‑WAN Study
SD-WAN gains traction with preferences for reliable, secure, and hybrid-access SD-WAN revealing how IT leaders find an ROI sweet spot.
Hybrid work calls for SD-WAN with hybrid access
SD-WAN helps address the challenges of remote work, and 58% of IT decision makers expect to use hybrid access. Here’s why.
Datatel1 and Digital Planet Communications Inc. reach Apex level in Masergy Zenith Program
Congratulations to our partners Datatel1 and Digital Planet Communications Inc. for attaining Apex level status in the Masergy Zenith Program!
The top 8 CASB use cases and how to ensure you’re covered
Cloud Access Security Brokers (CASBs) are go-to solutions for securing corporate data and cloud-based apps on employee devices. Learn why CASB is a crucial component of Gartner’s Secure Access Service Edge (SASE) framework and the top use cases for using CASB at your business.
Want to make remote team collaboration easy? Combine UCaaS with SASE
Build your remote workforce by integrating UCaaS with SASE solutions that back collaboration applications with performance and security.
EDR: The single best protection against ransomware
Advanced Endpoint Detection and Response (EDR) is the best medicine for ransomware. Here’s what to look for, and how companies use it.
IT may be killing your M&A strategy: Using SASE and SD-WAN to accelerate integration
Need to unite two companies quickly without jeopardizing security? Here’s how to put SASE and SD-WAN to work for your M&A strategy.
How I built it: Using AIOps to automate IT operations and WFH solutions
CIO Joe Gracz explains how he AIOps and IT automation to accelerate his manufacturing company’s work-from-home solution.
Masergy Enhances AIOps to Help Companies Improve Cloud Application Performance
With AI and machine learning applied to cloud applications, IT teams can automate management, predict performance, and ensure availability
AI for cloud apps: Masergy’s new AIOps is like a digital fortune teller optimizing your video conferencing
Managing cloud applications just got a lot easier thanks to Masergy’s latest AIOps innovations which can predict and prevent application outages.
Masergy Zenith Program welcomes Blue Equinox, DVP Technologies and RealCom Solutions as Apex members
Congratulations to our partners Blue Equinox, DVP Technologies and RealCom Solutions for attaining Apex level status in the Masergy Zenith Program!
Masergy Awarded 2021 INTERNET TELEPHONY SD‑WAN Product of the Year Award
Masergy recognized as demonstrating the innovation, vision, and execution needed to drive the upward market trajectory of SD-WAN
Masergy Wins Fortinet’s MSSP Partner of the Year Award
The MSSP Partner of the Year award is presented to partners who demonstrate innovation, growth, and alignment with Fortinet. Here’s why Masergy won.
SDx Networks partners with Masergy to deliver cloud networking in Australia, New Zealand, AsiaPac
Expanding Masergy’s reach, SDx Networks is Masergy’s newest channel partner in the land down under. Here’s why they chose Masergy.
Our best year in Masergy’s history
Businesses of all sizes are flocking to Masergy’s cloud networking platform. Here’s a look at our sales and why more IT leaders prefer our solutions.
Masergy Zenith Program helps partners reach companies of all sizes with flexible SASE solutions
The Zenith Program is six months old, which makes now a great time to check in on our progress and what’s coming next for the channel.
5X Visionary: Gartner positions Masergy as a Visionary in 2021 Magic Quadrant for Network Services, Global
The 2021 Gartner Magic Quadrant for Network Services, Global is here!
Masergy Named as a Visionary in 2021 Gartner Magic Quadrant for Network Services, Global for Fifth Consecutive Year
Masergy has been named a Visionary in Gartner, Inc.’s March 2021 Magic Quadrant for Network Services, Global, for the fifth consecutive year
WFH security do’s and don’ts: Reducing risk for a network without borders
As WFH companies perform much-needed security audits today, here are the biggest concerns they face and a list of do’s and don’ts for addressing them.
Cisco Webex + Masergy SD-WAN: The collaboration combo businesses need in 2021
Keep things simple with integrated services. Masergy UCaaS with Cisco Webex offers SD-WAN service for a perfectly complete collaboration solution.
CRN Names Masergy to its 2021 MSP 500 List
Masergy recognized by CRN as innovative and forward-thinking managed service provider.
Secure Web Gateway: How it serves the hybrid workforce and SASE too
SWG melds into broader offerings today, better serving the needs of the anywhere business. As markets converge, here’s what buyers should consider.
Debunking SD-WAN Myths
Many people believe it’s only SD-WAN if your network uses public internet links, but that’s false. Here’s why SD-WAN should be access agnostic.
Jim Glackin of Masergy Recognized as 2021 CRN® Channel Chief
Prestigious CRN Channel Chiefs list recognizes Masergy’s SVP of Global Channels for outstanding leadership, influence, innovation, and growth
Masergy launches Managed Endpoint Detection & Response: Technology, analytics, and analysts in one turnkey solution
With technology, analytics, and security analysts all in one solution, clients can efficiently widen their security coverage to every endpoint.
Masergy Awarded 2021 TMCnet Remote Work Pioneer Award
Masergy's Work From Anywhere solutions were honored by TMCnet for innovation and performance excellence
SASE, the appeal of cloud firewalls, and when on-prem still matters
Explore the advantages of cloud firewalls, the role FWaaS plays in SASE solutions, and when to opt for the cloud or stick with on-premise.
IDG healthcare IT study: Convergence of network and security technologies enable efficient operations and orchestration
Explore new IDG research, discovering the latest security trends in healthcare and the approaches used to solve the problems of digital care.
Professional Services: Planning your move to digital, remote work with UCaaS + SD-WAN
Law firms and other service firms are streamlining digital transformation by addressing UC, the network, and security in one unified strategy.
Masergy and Fortinet Release IDG Healthcare IT Survey Results
The study surveyed IT leaders from hospitals, primary and urgent care facilities, pharmaceutical companies, and other healthcare entities
The 2021 enterprise network: Retiring the branch, fueling transformation and getting more from AI
With 2020 one of the biggest years the enterprise network has had, here's a look back at how key impacts will shape the evolution of the network in 2021.