What are the benefits of SASE?
The cloud and the urgent need to secure data everywhere are dramatically changing the network and security. These forces are demanding a new type of IT infrastructure–one where the network and security come together into one cloud platform and one service from a single provider. This is the concept behind secure access service edge (SASE). It’s the latest SD-WAN solution framework from Gartner. While SD-WAN is a network-as-a-service, SASE is a network-security-as-a-service. See “What is SASE?” Here’s how SASE solutions deliver real business value.
Why do businesses need SASE?
The cloud moved your network off premise: IT has grown up focusing on the data center and IT security, but today IT users and networks are behaving quite differently than in the past. According to Nemertes Research, the WAN as we knew it is over. Just 39% of enterprise WAN traffic originates from, and terminates on, enterprise premises. The remaining 61% either originates from an off-premise site (such as a home-office), terminates on an off-premise location (such as an IaaS, PaaS, or SaaS cloud workload) or both (remote office to cloud). This is due to the fact that:
- User’s now commonly work with resources outside the enterprise network, accessing IaaS and SaaS workloads.
- Sensitive data is located in several cloud services located outside of the enterprise data center such as unified communications and contact center operations.
- Work from home (WFH) users and branch offices only accelerate this trend. Remote users increase the access to cloud services.
Today, companies must secure data everywhere: Moreover, today centralized data center security no longer delivers the required protection. Data will still exist in the data center but it will also exist in sites such as Salesforce, social media, and many other services. The level of security at each of these locations may or may not be adequate, meaning most enterprises may need to take significant action so that its entire environment meets security, privacy, and compliance requirements. Here are some of the challenges driving the need for SASE’s converged network and security model:
- Network security architectures that employ the enterprise data center for connectivity can limit the dynamic access requirements for digital transformation.
- Enterprises have more users, devices, applications, services, and data located in multiple cloud services, not in enterprise data center.
- Increasing complexity and application latency require a change in the security architecture.
- Additionally, digital transformation requires new approaches to IT services where security is not an afterthought. Modernization should require secure IaaS and SaaS deployments especially for real time applications, edge computing and IoT, and other cloud-based services.
SASE solutions solve these challenges because it’s a cloud-based network and security service that can be applied anywhere–it’s not data center focused. SASE also uses an identity-based approach to security–network access is evaluated based on the individual user or endpoint device. Solutions and services include:
- Key SASE Capabilities: SD-WAN, firewall as a service, Cloud Access Security Broker (CASB), secure web gateway, and Zero Trust network access
- Key SASE Characteristics: Distributed policy enforcement, multi-tenant cloud service, and identity-driven routing and access.
This real-time solution employs security and compliance policies all while evaluating risk during the sessions.
Plus, it helps with today’s more distributed IT environment. Secured entities can be internal and external people or groups of people and devices–think group collaboration sessions, at-home devices, cloud applications, IoT systems, and edge computing.
What are the benefits of SASE? Does it help with WFH?
Combining SD-WAN and SASE together in a single market with a single provider allows the enterprise to respond faster with greater control in response to COVID-19 and the expansive growth of work-from home (WFH) users. SASE improves sensitive data awareness, secures the data, and provides threat protection especially for WFH and branch users.
Business benefits of SASE
Moving to SASE should be justified on a business foundation as well as a technical foundation. Business rewards include:
- IT Agility: Much like SD-WAN, SASE solutions are software-defined and cloud-based solutions, delivering agility advantages. Without agility (the ability to change direction and respond to competitive changes) companies move more slowly.
- Cost reduction: SASE can help reduce IT staff costs, improving 24/7 coverage for the both the network performance monitoring and security threat monitoring and response. Operational overhead will be reduced because the SASE service supports new capabilities without requiring the investment in new hardware and software. SASE may also reduce the cost and complexity by delivering more technologies and services through a single provider.
- Network performance: Constant network monitoring reveals the quality and performance of all connections including those distributed across virtualized cloud environments and data centers. It provides a real-time picture of all inbound and outbound process connections in a single portal or network interface.
- Security and reliability: SASE includes a wide array of security technologies, which can Improve security support by inspecting content and locating sensitive data and malware. Ultimately, this reduces downtime due malicious behavior.
- Greater visibility and transparency: Because SASE condenses a variety of functions into a single offering, network and security transparency gains can be significant, reducing the number of software agents required and delivering consistent network visibility.
- Local security enforcement: SASE delivers centralized policy management with local enforcement employing distributed enforcement points.
- Consistent security enforcement: Existing network security architectures were designed for the centralized data center and are not well suited to remote users that connect to diverse services as well as the data center. SASE delivers consistent and global security control no matter where the user connects to for services.
Can I take a do-it-yourself approach to SASE?
Technically you can take a DIY approach to each of SASE’s five core capability areas, but doing so may increase your IT complexity. SASE is extremely valuable for companies seeking to cut down on the number of technology providers, technology integrations, day-to-day network performance management, as well as the security firewall alert management and responsibilities of threat response. The technologies, people, and skill sets needed for 24/7 IT operations have become significant pain points for businesses of every size, and SASE is uniquely designed to address this issue in today’s multi-cloud business model.
Whereas traditional SD-WAN solutions typically include only bundled firewalls and secure web gateway, SASE multiplies the security value of an SD-WAN investment by condensing five different individual industries into a single cloud platform delivered as a service from one partner. As the SASE market matures and the interoperability between its five core capabilities becomes even more seamless, only the largest enterprises (with more IT resources) will want to continue a point-based or multi-vendor approach to all those IT needs.
This becomes particularly evident today when companies are leveraging the cost benefits of the public internet. Firewalls are necessary, meaning that unified threat management and SOC response teams work best when delivered by the SD-WAN or SASE managed service rather than DIY. This aspect alone can cost justify a managed service over a DIY approach.
In the end, security must be intrinsic to the network infrastructure with a variety of ancillary security functions all working in unison with SD-WAN. SASE makes that far easier, and a managed service model leads the way, freeing your IT resources to focus on transformative initiatives.
Read more articles in the SASE Straight Talk series:
- How do you tease out the differences in SASE solutions?
- Can I skip SD-WAN and jump straight to SASE?
- Is there more than one way to SASE?
- Why are there so many different interpretations of SASE?
- Is SASE real or just a concept?
- What is SASE? And why it’s the next big thing
The SASE conversation continues online–follow Masergy on Twitter!
Contact us today and consult with one of our SD-WAN experts.
Call us now to arrange a consultation (866) 588-5885.
Or arrange for a consultation through our request form.
How does Cloud Access Security Broker (CASB) fit into the SASE paradigm?
CASB serves as of one of SASE’s fundamental purposes. Here’s how it works within a SASE framework to mitigate security risks.
SASE from Masergy: Best-of-breed technologies, broad choices, and security that goes beyond SASE
Here’s a look at Masergy’s approach to SASE, the enhancements we have made, and how we’re leaning into network-security convergence.
Masergy Strengthens Its SD-WAN Secure Solution with Deeper SASE Capabilities
Masergy, the software-defined network and cloud platform for the digital enterprise, announced that it is strengthening its SD-WAN Secure solution to offer Secure Access Service Edge (SASE) capabilities
Masergy Receives Frost & Sullivan Technology Innovation Leadership Award for Managed SD-WAN Solution with AIOps
Masergy Named Most Innovative Managed SD-WAN Service Provider by Frost & Sullivan
What lies beyond SASE?
Do SASE solutions reach far enough? Here’s a look at what’s inside the SASE framework today, and where it could go in the future.
The permanency of remote healthcare calls for UCaaS + SD‑WAN + Security
Healthcare IT leaders are reducing the complexity of digital transformation by addressing UC, the network, and security in one unified strategy.
Can I skip SD-WAN and jump straight to SASE?
Want to switch from SD-WAN to SASE midstream? These RFP questions can help you roll your IT modernization project into a larger investment.
The future of the network is autonomous: WFH strategies prepare for self-driving networks
While IT leaders are enabling the remote workforce, they are also building an autonomous network. Leverage your investments today for innovation tomorrow.
Masergy Launches SD-WAN Work From Anywhere Solutions
Masergy Launches SD-WAN Work From Anywhere Solutions, which extend the value of Masergy SD-WAN Secure to Home and Mobile Users
How do you tease out the differences in SASE solutions? Tech stacks set providers apart
Planning a move toward SASE? Here are three ways to make apples-to-apples comparisons, teasing out the differences in solutions.
SASE from Fortinet & Masergy: Converging best-of-breed network and security solutions recognized by Gartner
SASE is consolidating best-of-breed technologies into one cloud service, and it’s here where the Masergy-Fortinet offering stands above the rest.
Is there more than one way to SASE? Cloud separates two strategies, schools of thought
Are firewalls becoming a dividing line between SASE strategies? Why some IT leaders choose a cloud-managed approach over a cloud-native one.
Is SASE real or just a concept?
When it comes to SASE validity, there are lots of opinions. Here’s a look from all sides and tips for how to evaluate SASE architecture.
Masergy Named Most Innovative Managed SD-WAN Service Provider by Frost & Sullivan
Masergy Announces Zenith Partner of the Year Awards
Co-managed SD-WAN: IT decision makers are leaning in but how do you get the best of both worlds?
What’s the difference between a fully managed SD-WAN service and a co-managed service? Here’s how to get the best out of shared responsibilities.
Why are there so many different interpretations of SASE?
Ask people what SASE is and you’ll likely get 10 answers. While the newness of SASE is a factor in the confusion, here’s what SASE is and what it’s not.
Masergy SD-WAN wins Leading Lights 2020 Award for Most Innovative SD-WAN Service
Masergy releases 2020 SD-WAN Market Trends Report
IDG study finds SD-WAN as key enabler for working from anywhere
Data shows remote work has triggered a modernization of business operations and the network. Explore the highlights from the new IDG study.
The business case for Masergy’s new SD-WAN Secure solutions
Masergy’s new SD-WAN portfolio gives companies of every size unrivaled application performance along with more flexibility and choice.
Masergy launches new Partner Program for accelerated SD-WAN market
Masergy launches SD-WAN enhancements: More options and trailblazing SLAs meet the needs of any transforming business
Masergy expands its SD-WAN portfolio offering the broadest choice, flexibility, and built-in SASE
Masergy announces the SD‑WAN industry’s most competitive Service Level Agreements
Work-from-Anywhere Study: ZK Research webinar explores IT trends and SD-WAN urgency
ZK Research data shows IT spending is up, and the value of the network has increased. Don’t miss the latest SD-WAN strategies in this online event.
Oldcastle infrastructure selects Masergy SD-WAN to build high-availability network for digital transformation
SD-orchestration: SD-WAN and application performance management
SD-WAN has redefined network management, and how you deploy it can impact success. Get the six elements of SD-orchestration and key considerations.
WAN automation: Why SD‑WAN is only step one and what’s needed to reach full autonomy
Networks are on their way to becoming “self-driving.” Understand the current state of networking automation and what’s needed to reach full autonomy.
Elements of SD-WAN & SASE platforms: Differentiators, characteristics and the hidden secret
SD-WAN solutions are now platforms, but what does that mean? Moreover, what differentiates platforms from solution sets? Here’s the hidden secret.
5G and fixed wireless: Where does it fit in your SD-WAN connectivity strategy?
With SD-WAN’s many connectivity options, when do you deploy 4G and 5G links and when should you avoid them? Here’s how Masergy advises its clients.
COVID-19 is changing how IT thinks about MPLS: What networks and leaders need now
The idea of converting all your private network connections into public ones is being challenged. Attitudes are shifting. Here’s what it shows us.
What digital transformation looks like now: Omdia webinar has the outlook for Europe
Research from European enterprises surveyed as the pandemic lockdown began helps IT leaders identify new trends and what businesses need now.
Extending secure SD-WAN to secure SD-Branch: The convergence of WAN and LAN at the edge
SD-WAN is giving way for terms like SD-Branch. Understand the benefits and how SD-Branch is addressing security challenges at the network edge.
Network security and automation: Why you need user identity analytics now
Here’s a guide to understanding the value of user identity analytics and why these details are increasingly important for security today and network automation tomorrow.
Advancing SD-WAN security and control, Masergy introduces identity-based WAN analytics
SD-WAN management portals typically track only IP traffic for entire sites, but Masergy’s SD-WAN gives you per-user analytics as a standard offering.
The autonomous enterprise: Building your digital vision
Masergy's CTO, Chris MacFarland, teaches you how to reach the milestone of true autonomy. This article originally appeared in Forbes.
The impact of COVID-19 on corporate networks: VPN connections skyrocket, increasing by 676%
See how Masergy’s network is changing in light of Coronavirus. Get tips for fast VPNs and understand shifts in digital transformation priorities.
COVID-19: Prioritizing health & safety
Learn how Masergy is acting with urgency to protect employees, clients, and business continuity. We explain how Masergy helps clients respond and how he virtualized the company.
Masergy wins Stevie® award for Sales & Customer Service
20 things you didn’t know about Masergy
With 20 years of history, Masergy is full of fun factoids. Explore the pioneering moments, pivotal transformations, and tales from the startup days.
4-time Visionary: Gartner positions Masergy as Visionary in 2020 Magic Quadrant for Network Services, Global
Get a free copy of Gartner's report. Learn how Masergy pioneered software-defined networks and is building the autonomous networks of tomorrow.
How SD-WAN is converging network, security and AI
Many technologies are uniting under SD-WAN. Learn what’s changed and why new additions are starting to look like autonomous networking.
Masergy celebrates 20 years of success marked by service excellence and early SD-WAN innovation
Masergy’s biggest innovation milestones
2020 marks Masergy’s 20th anniversary. The celebration starts with our top innovation landmarks and where we’re going next.
Small beginnings, big impact: Terry Traina reflects on Masergy’s legacy
In celebration of Masergy’s 20th anniversary, we’re honoring our greatest leaders and key players. Here’s the story of Terry Traina, Masergy’s Chief Digital Officer.
Scrappy startup delivers leading network performance: Mark McCann explains Masergy’s early innovation
Masergy AIOps wins 2020 BIG Innovation award
Harnessing the power of AIOps: Paving the way to autonomous networking
AIOps puts a virtual network engineer on your team, but it’s also paving the way for autonomous networking. Get the requirements and four next steps.
Fortinet & Masergy: The security-driven approach to SD-WAN
Here’s a fully managed SD-WAN solution that helps organizations truly transform the WAN edge with a security-driven approach.
Shadow IT: Getting the visibility you need
Think you only have 30-40 apps running on your network? It’s probably more like 900+. Here’s a quick guide to handling the blind spots of shadow IT.