The mobile workforce has been growing over the years, but recent events, like COVID-19, have led to a sudden increase in remote workers, with many companies not prepared or able to quickly adopt technologies to securely enable the transition.
For companies seeking to securely connect and scale remote workforces – either temporarily or for the long haul – one option to consider is a cloud-based service. A Secure Access Service Edge (SASE) provides a fundamental solution for this need, as it combines networking services and security services delivered from a single cloud platform.
Years ago, working with technology and protecting users was relatively simple. Users commuted into an office where they used stationary desktop computers to access company resources via local area networks. As time went on, users were able to gain some mobility with laptops and occasionally connected to corporate resources with virtual private networks (VPNs).
Even before its recent rise, remote work was becoming more popular. The 2019 State of Remote Work Report revealed that 42% of remote workers plan to work remotely more frequently than they currently do in the next 5 years, and that more than half of on-site workers want to start working remotely. Not only are users becoming more mobile, they are using multiple devices, such as laptops, tablets and smartphones, in order to be productive. Additionally, applications have been moving out of the data center to the cloud, adding to the complexity.
Traditional VPN technologies can still be used to apply some level of security and access but are not ideal for the rapidly changing environment and increasing performance expectations of users. The need for direct to internet connectivity from anywhere on any device, securely, has led to the adoption of technologies like Software Defined Perimeter (SDP) and Zero Trust Network Access (ZTNA). ZTNA is a fundamental component of a SASE solution to implement the “never trust, always verify” philosophy and authenticate access to the cloud, restrict access and minimize data loss. ZTNA provides users access to organizational resources located in public or private clouds while the company has complete inspection and security over the data being accessed. However, ZTNA products based on an SDP can lack content inspection capabilities needed for consistent protection.
Some vendors blur the lines between the two technologies, but you should ask a few questions before adopting a solution, especially if rapidly deploying to previously unmanaged or unknown devices:
By considering these questions, you can ensure you are adopting a true ZTNA approach that will enable you, when ready, to onboard a SASE vendor. SASE is critical in enabling your users to work remotely with limited bandwidth disruptions and provides security while accessing the Internet, SaaS applications, cloud applications and private data center resources. As practitioners, we must enable our users to be productive while ensuring we take all the necessary security precautions. If a “Zero Trust” vendor isn’t inspecting traffic, are they really providing secure access?
Learn more about securing remote users without compromising connectivity.
This blog is part of a series explaining the modern realities of cloud security. Read the previous entry, “Why Proxy-Based Firewalls Are Not Enough.”
By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.