The cloud and the urgent need to secure data everywhere are dramatically changing the network and security. These forces are demanding a new type of IT infrastructure–one where the network and security come together into one cloud platform and one service from a single provider. This is the concept behind secure access service edge (SASE). It’s the latest SD-WAN solution framework from Gartner. While SD-WAN is a network-as-a-service, SASE is a network-security-as-a-service. See “What is SASE?” Here’s how SASE solutions deliver real business value.
The cloud moved your network off premise: IT has grown up focusing on the data center and IT security, but today IT users and networks are behaving quite differently than in the past. According to Nemertes Research, the WAN as we knew it is over. Just 39% of enterprise WAN traffic originates from, and terminates on, enterprise premises. The remaining 61% either originates from an off-premise site (such as a home-office), terminates on an off-premise location (such as an IaaS, PaaS, or SaaS cloud workload) or both (remote office to cloud). This is due to the fact that:
Today, companies must secure data everywhere: Moreover, today centralized data center security no longer delivers the required protection. Data will still exist in the data center but it will also exist in sites such as Salesforce, social media, and many other services. The level of security at each of these locations may or may not be adequate, meaning most enterprises may need to take significant action so that its entire environment meets security, privacy, and compliance requirements. Here are some of the challenges driving the need for SASE’s converged network and security model:
SASE solutions solve these challenges because it’s a cloud-based network and security service that can be applied anywhere–it’s not data center focused. SASE also uses an identity-based approach to security–network access is evaluated based on the individual user or endpoint device. Solutions and services include:
This real-time solution employs security and compliance policies all while evaluating risk during the sessions.
Plus, it helps with today’s more distributed IT environment. Secured entities can be internal and external people or groups of people and devices–think group collaboration sessions, at-home devices, cloud applications, IoT systems, and edge computing.
Combining SD-WAN and SASE together in a single market with a single provider allows the enterprise to respond faster with greater control in response to COVID-19 and the expansive growth of work-from home (WFH) users. SASE improves sensitive data awareness, secures the data, and provides threat protection especially for WFH and branch users.
Business benefits of SASE
Moving to SASE should be justified on a business foundation as well as a technical foundation. Business rewards include:
Technically you can take a DIY approach to each of SASE’s five core capability areas, but doing so may increase your IT complexity. SASE is extremely valuable for companies seeking to cut down on the number of technology providers, technology integrations, day-to-day network performance management, as well as the security firewall alert management and responsibilities of threat response. The technologies, people, and skill sets needed for 24/7 IT operations have become significant pain points for businesses of every size, and SASE is uniquely designed to address this issue in today’s multi-cloud business model.
Whereas traditional SD-WAN solutions typically include only bundled firewalls and secure web gateway, SASE multiplies the security value of an SD-WAN investment by condensing five different individual industries into a single cloud platform delivered as a service from one partner. As the SASE market matures and the interoperability between its five core capabilities becomes even more seamless, only the largest enterprises (with more IT resources) will want to continue a point-based or multi-vendor approach to all those IT needs.
This becomes particularly evident today when companies are leveraging the cost benefits of the public internet. Firewalls are necessary, meaning that unified threat management and SOC response teams work best when delivered by the SD-WAN or SASE managed service rather than DIY. This aspect alone can cost justify a managed service over a DIY approach.
In the end, security must be intrinsic to the network infrastructure with a variety of ancillary security functions all working in unison with SD-WAN. SASE makes that far easier, and a managed service model leads the way, freeing your IT resources to focus on transformative initiatives.
Read more articles in the SASE Straight Talk series:
The SASE conversation continues online–follow Masergy on Twitter!
Call us now to arrange a consultation (866) 588-5885.
Or arrange for a consultation through our request form.
CASB serves as of one of SASE’s fundamental purposes. Here’s how it works within a SASE framework to mitigate security risks.
Here’s a look at Masergy’s approach to SASE, the enhancements we have made, and how we’re leaning into network-security convergence.
Masergy, the software-defined network and cloud platform for the digital enterprise, announced that it is strengthening its SD-WAN Secure solution to offer Secure Access Service Edge (SASE) capabilities
Masergy Named Most Innovative Managed SD-WAN Service Provider by Frost & Sullivan
Do SASE solutions reach far enough? Here’s a look at what’s inside the SASE framework today, and where it could go in the future.
Healthcare IT leaders are reducing the complexity of digital transformation by addressing UC, the network, and security in one unified strategy.
Want to switch from SD-WAN to SASE midstream? These RFP questions can help you roll your IT modernization project into a larger investment.
While IT leaders are enabling the remote workforce, they are also building an autonomous network. Leverage your investments today for innovation tomorrow.
Masergy Launches SD-WAN Work From Anywhere Solutions, which extend the value of Masergy SD-WAN Secure to Home and Mobile Users
Planning a move toward SASE? Here are three ways to make apples-to-apples comparisons, teasing out the differences in solutions.
SASE is consolidating best-of-breed technologies into one cloud service, and it’s here where the Masergy-Fortinet offering stands above the rest.
Are firewalls becoming a dividing line between SASE strategies? Why some IT leaders choose a cloud-managed approach over a cloud-native one.
When it comes to SASE validity, there are lots of opinions. Here’s a look from all sides and tips for how to evaluate SASE architecture.
What’s the difference between a fully managed SD-WAN service and a co-managed service? Here’s how to get the best out of shared responsibilities.
Ask people what SASE is and you’ll likely get 10 answers. While the newness of SASE is a factor in the confusion, here’s what SASE is and what it’s not.
Data shows remote work has triggered a modernization of business operations and the network. Explore the highlights from the new IDG study.
Masergy’s new SD-WAN portfolio gives companies of every size unrivaled application performance along with more flexibility and choice.
ZK Research data shows IT spending is up, and the value of the network has increased. Don’t miss the latest SD-WAN strategies in this online event.
SD-WAN has redefined network management, and how you deploy it can impact success. Get the six elements of SD-orchestration and key considerations.
Networks are on their way to becoming “self-driving.” Understand the current state of networking automation and what’s needed to reach full autonomy.
SD-WAN solutions are now platforms, but what does that mean? Moreover, what differentiates platforms from solution sets? Here’s the hidden secret.
With SD-WAN’s many connectivity options, when do you deploy 4G and 5G links and when should you avoid them? Here’s how Masergy advises its clients.
The idea of converting all your private network connections into public ones is being challenged. Attitudes are shifting. Here’s what it shows us.
Research from European enterprises surveyed as the pandemic lockdown began helps IT leaders identify new trends and what businesses need now.
SD-WAN is giving way for terms like SD-Branch. Understand the benefits and how SD-Branch is addressing security challenges at the network edge.
Here’s a guide to understanding the value of user identity analytics and why these details are increasingly important for security today and network automation tomorrow.
SD-WAN management portals typically track only IP traffic for entire sites, but Masergy’s SD-WAN gives you per-user analytics as a standard offering.
Masergy's CTO, Chris MacFarland, teaches you how to reach the milestone of true autonomy. This article originally appeared in Forbes.
See how Masergy’s network is changing in light of Coronavirus. Get tips for fast VPNs and understand shifts in digital transformation priorities.
Learn how Masergy is acting with urgency to protect employees, clients, and business continuity. We explain how Masergy helps clients respond and how he virtualized the company.
With 20 years of history, Masergy is full of fun factoids. Explore the pioneering moments, pivotal transformations, and tales from the startup days.
Get a free copy of Gartner's report. Learn how Masergy pioneered software-defined networks and is building the autonomous networks of tomorrow.
Many technologies are uniting under SD-WAN. Learn what’s changed and why new additions are starting to look like autonomous networking.
2020 marks Masergy’s 20th anniversary. The celebration starts with our top innovation landmarks and where we’re going next.
In celebration of Masergy’s 20th anniversary, we’re honoring our greatest leaders and key players. Here’s the story of Terry Traina, Masergy’s Chief Digital Officer.
AIOps puts a virtual network engineer on your team, but it’s also paving the way for autonomous networking. Get the requirements and four next steps.
Here’s a fully managed SD-WAN solution that helps organizations truly transform the WAN edge with a security-driven approach.
Think you only have 30-40 apps running on your network? It’s probably more like 900+. Here’s a quick guide to handling the blind spots of shadow IT.