SlideShare a Scribd company logo

Moving Beyond Zero Trust

S
scoopnewsgroup

This document discusses moving beyond zero trust security models to a more comprehensive security driven networking approach. It advocates for integrating security across network, cloud, and edge infrastructure to gain visibility and control over all access and data flows. A security fabric is proposed that uses automation, open APIs, and behavioral analytics to consistently enforce security policies and rapidly respond to threats across hybrid digital environments. This is argued to provide organizations with a reasonable level of due care to prevent breaches and meet compliance standards.

Government & Nonprofit
1 of 15
Downloaded 22 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
Moving Beyond Zero Trust Jonathan Nguyen-Duy VP Global Field CISO Team
2 • Hybrid - The New Normal • More than Zero Trust • Security Driven Networking • Reasonable Level of Care • Summary AGENDA
3 THE STATE OF ENTERPRISE SECURITY FUNCTIONAL OPERATIONAL SILOS LACK OF VISIBILITY EVOLVING NATURE OF THREATS SECURITY TEAMS LACK THE MANPOWER, EXPERTISE, TOOLS AND PROCESSES + SECURITY SHOULD NOT BE A DIY EXERCISE
4 © Fortinet Inc. All Rights Reserved. 4 Secure-Driven Networking
5 © Fortinet Inc. All Rights Reserved. 5 Hybrid Network Compute becoming the standard Secure remote device access & securing cloud resources DATA CENTER COMPUTE CLOUD COMPUTE EDGE COMPUTE Endpoints Mainframe VirtualizedServers IaaS PaaS SaaS Endpoints IoT OT Cloud 5G Edge Transport Client-Server Web Client
6
7 © Fortinet Inc. All Rights Reserved. 7 Differing Trust Levels create Edges Everywhere Challenge is speed and scale WAN EDGE SD-WAN ACCESS EDGE SD-Branch COMPUTE EDGE Cloud and 5G SD-WAN WoC Security Orchestration Security Switch WiFi NAC Security Cloud 5GIdentity Security OT EDGE Cyber-Physical
8 Fundamental Failures in Data Breaches § Lessons from 12,000+ breaches: » Failure to prioritize funding for cyber security - lowest among peer group » Lacked effective leadership and managerial structure to implement reliable IT security policies » Failure to implement critical basic security measures, like two-factor authentication, segmentation, awareness training, etc. » Networks were “insecurely architected” and running significant amounts of legacy infrastructure - not integrated » IT security program struggled to meet many compliance requirements » Lack of visibility, awareness & control
9 A Reasonable Level of Due Care Standard by which we’ll be judged... § due care Noun … the care that a reasonable person would exercise under the circumstances; the standard for determining legal duty § Equifax breach 143M affected “entirely preventable” » Exploit of known Apache Strut vulnerability » Breached in May-July but notified public in September 2017 » Exfiltration possible due to expired security certificate » 2018 two credit freeze websites used expired certificates » Default passwords “admin” » Reasonable? Critically, the Court found that, given the foreseeable risk of a data breach, Equifax owed consumers an independent legal duty of care to take reasonable measures to safeguard their personal information in Equifax’s custody.
10 Achieving a Reasonable Level of Due Care Much more than zero trust... § Networking and Security as first Consideration » Compliance is not enough » Hybrid digital infrastructure & security as one » Distributed segmentation & virtualization » Outcome-based solutions - Business intent § Segmentation & Zero Trust Principles » Identify, verify & authenticate » Validate need to access (apps & ports) » Log & monitor everything » Integrated, automated response » Backup per SLAs » Encrypt as practical § Behavioral based detection & AI § Broad, integrated & automated
11 Security Fabric Requirements Beyond Products & Platforms Open Ecosystem Network Security Network Security Device, Access, and Application Security Multi-Cloud Security Network Operations Security Operations Multi-Cloud Security Endpoint/Device Protection Secure Access Application Security Fabric APIs Fabric Connectors Security Operations INTEGRATED AI-driven breach prevention across devices, networks, and applications AUTOMATED Operations, orchestration, and response BROAD Visibility of the entire digital attack surface
12 Where Who What When Access Visibility: Endpoints, Users & Applications DALLAS AUSTIN HOUSTON VPN
13 Control: Dynamic Network Access Adaptive Trust Identify User Assign Network Access Assess Risk Identify Device No Access Guest Access Restricted Access Unrestricted Access Rogue IOT Managed IOT Tolerated IOT Managed Assets Critical Assets
14 Branch Access and off-load UCPE 3G/4G/5G wireless Transport / SDWAN DC / Private Cloud Consumer Access and off-load DC / Cloud Services Security Driven Networking Consistent Security § Consistent and compliant policy and visibility across physical, virtual, cloud § Secure VPN connectivity from private to public clouds § Segment applications and data between clouds in hybrid and multi-cloud environments End-to-End Segmentation § Deploy into flat open networks w/o disruption § Fine-grained policy based on users/apps/data § Increased throughput for inspecting east-west traffic Automatically Scale Protection § Auto-scale inspection capacity across cluster § Auto-provision rules to new workloads § Orchestrate physical and virtual service insertion
15

More Related Content

PDF
How Zero Trust Makes the Mission Simple & Secure
scoopnewsgroup
 
PDF
Micro segmentation and zero trust for security and compliance - Guardicore an...
YouAttestSlideshare
 
PPTX
Zero Trust Network Access
Er. Ajay Sirsat
 
PPTX
Navigating the Zero Trust Journey for Today's Everywhere Workplace
Ivanti
 
PDF
Sacon - IoT Forum Fresh Thinking (Arvind Tiwary + Bikash Barai)
Priyanka Aash
 
PDF
Debunked: 5 Myths About Zero Trust Security
Centrify Corporation
 
PDF
Game Changing Cyber Defensive Strategies for 2019
Fidelis Cybersecurity
 
PPTX
What is zero trust model (ztm)
Ahmed Banafa
 
How Zero Trust Makes the Mission Simple & Secure
scoopnewsgroup
 
Micro segmentation and zero trust for security and compliance - Guardicore an...
YouAttestSlideshare
 
Zero Trust Network Access
Er. Ajay Sirsat
 
Navigating the Zero Trust Journey for Today's Everywhere Workplace
Ivanti
 
Sacon - IoT Forum Fresh Thinking (Arvind Tiwary + Bikash Barai)
Priyanka Aash
 
Debunked: 5 Myths About Zero Trust Security
Centrify Corporation
 
Game Changing Cyber Defensive Strategies for 2019
Fidelis Cybersecurity
 
What is zero trust model (ztm)
Ahmed Banafa
 

What's hot (20)

PPTX
What is Zero Trust
Okta-Inc
 
PDF
Fidelis Endpoint® - Live Demonstration
Fidelis Cybersecurity
 
PDF
[Round table] zeroing in on zero trust architecture
Denise Bailey
 
PDF
Tomorrow Starts Here - Security Everywhere
Cisco Canada
 
PDF
What is micro segmentation?
Mir Mustafa Ali
 
PPTX
Zero Trust Cybersecurity for Microsoft Azure Cloud
Block Armour
 
PDF
The State of Threat Detection 2019
Fidelis Cybersecurity
 
PDF
NIST Zero Trust Explained
rtp2009
 
PPTX
Intelligent Segmentation: Protecting the Enterprise with StealthWatch, Cisco ...
Lancope, Inc.
 
PDF
Cisco Security Presentation
Simplex
 
PDF
Secure Your Data with Fidelis Network® for DLP
Fidelis Cybersecurity
 
PDF
Secure your workloads with microsegmentation
Rasool Irfan
 
PPTX
Insider Threats Part 2: Preventing Data Exfiltration with Fidelis Elevate
Fidelis Cybersecurity
 
PDF
Extending Your Network Cloud Security to AWS
Fidelis Cybersecurity
 
PPTX
An in depth understanding in the application of the zero-trust security model...
Max Justice
 
PDF
Applying intelligent deception to detect sophisticated cyber attacks
Fidelis Cybersecurity
 
PDF
Don't let wireless_detour_your_pci_compliance
Enterprise Technology Management (ETM)
 
PPTX
Zero Trust
Boaz Shunami
 
PPTX
Securing medical apps in the age of covid final
DevOps.com
 
PDF
Forrester zero trust_dna
Cristian Garcia G.
 
What is Zero Trust
Okta-Inc
 
Fidelis Endpoint® - Live Demonstration
Fidelis Cybersecurity
 
[Round table] zeroing in on zero trust architecture
Denise Bailey
 
Tomorrow Starts Here - Security Everywhere
Cisco Canada
 
What is micro segmentation?
Mir Mustafa Ali
 
Zero Trust Cybersecurity for Microsoft Azure Cloud
Block Armour
 
The State of Threat Detection 2019
Fidelis Cybersecurity
 
NIST Zero Trust Explained
rtp2009
 
Intelligent Segmentation: Protecting the Enterprise with StealthWatch, Cisco ...
Lancope, Inc.
 
Cisco Security Presentation
Simplex
 
Secure Your Data with Fidelis Network® for DLP
Fidelis Cybersecurity
 
Secure your workloads with microsegmentation
Rasool Irfan
 
Insider Threats Part 2: Preventing Data Exfiltration with Fidelis Elevate
Fidelis Cybersecurity
 
Extending Your Network Cloud Security to AWS
Fidelis Cybersecurity
 
An in depth understanding in the application of the zero-trust security model...
Max Justice
 
Applying intelligent deception to detect sophisticated cyber attacks
Fidelis Cybersecurity
 
Don't let wireless_detour_your_pci_compliance
Enterprise Technology Management (ETM)
 
Zero Trust
Boaz Shunami
 
Securing medical apps in the age of covid final
DevOps.com
 
Forrester zero trust_dna
Cristian Garcia G.
 
Ad

Similar to Moving Beyond Zero Trust (20)

PDF
BATbern48_How Zero Trust can help your organisation keep safe.pdf
BATbern
 
PDF
BeyondCorp - Google Security for Everyone Else
Ivan Dwyer
 
PPSX
Zero-Trust SASE DevSecOps
Araf Karsh Hamid
 
PPTX
The Cloud 9 - Threat & Solutions 2016 by Bobby Dominguez
EC-Council
 
PDF
Un enfoque práctico para implementar confianza cero en el trabajo híbrido
Cristian Garcia G.
 
PPTX
Zero trust model for cloud computing.pptx
kkhhusshi
 
PDF
Cybersecurity Slides
Jim Kaplan CIA CFE
 
PPTX
Zero Trust 20211105
Thomas Treml
 
PDF
ScotSecure Cyber Security Summit 2025 Edinburgh
Ray Bugg
 
PPTX
Architecting trust in the digital landscape, or lack thereof
Jonathan Sinclair
 
PDF
How Zero Trust Changes Identity & Access
Ivan Dwyer
 
PPTX
DCD Converged Brazil 2016
Scott Carlson
 
PDF
Protecting Vital Data With NIST Framework - Patrick Kerpan's Secure260 presen...
Cohesive Networks
 
PDF
Cybersecurity Practices to Adopt in 2025_ An All-inclusive Guide for Business...
kavinrajk1209
 
PPTX
Desafíos de la Ciberseguridad en un ecosistema digitalmente transformado
Cristian Garcia G.
 
PPTX
InfraGard Webinar March 2016 033016 A
Ward Pyles
 
PPTX
MS. Cybersecurity Reference Architecture
angelohammond
 
PDF
Biznesa infrastruktūras un datu drošības juridiskie aspekti
ebuc
 
PPTX
microsoft-cybersecurity-reference-architectures (1).pptx
GenericName6
 
PDF
Toward Continuous Cybersecurity with Network Automation
E.S.G. JR. Consulting, Inc.
 
BATbern48_How Zero Trust can help your organisation keep safe.pdf
BATbern
 
BeyondCorp - Google Security for Everyone Else
Ivan Dwyer
 
Zero-Trust SASE DevSecOps
Araf Karsh Hamid
 
The Cloud 9 - Threat & Solutions 2016 by Bobby Dominguez
EC-Council
 
Un enfoque práctico para implementar confianza cero en el trabajo híbrido
Cristian Garcia G.
 
Zero trust model for cloud computing.pptx
kkhhusshi
 
Cybersecurity Slides
Jim Kaplan CIA CFE
 
Zero Trust 20211105
Thomas Treml
 
ScotSecure Cyber Security Summit 2025 Edinburgh
Ray Bugg
 
Architecting trust in the digital landscape, or lack thereof
Jonathan Sinclair
 
How Zero Trust Changes Identity & Access
Ivan Dwyer
 
DCD Converged Brazil 2016
Scott Carlson
 
Protecting Vital Data With NIST Framework - Patrick Kerpan's Secure260 presen...
Cohesive Networks
 
Cybersecurity Practices to Adopt in 2025_ An All-inclusive Guide for Business...
kavinrajk1209
 
Desafíos de la Ciberseguridad en un ecosistema digitalmente transformado
Cristian Garcia G.
 
InfraGard Webinar March 2016 033016 A
Ward Pyles
 
MS. Cybersecurity Reference Architecture
angelohammond
 
Biznesa infrastruktūras un datu drošības juridiskie aspekti
ebuc
 
microsoft-cybersecurity-reference-architectures (1).pptx
GenericName6
 
Toward Continuous Cybersecurity with Network Automation
E.S.G. JR. Consulting, Inc.
 
Ad

More from scoopnewsgroup (20)

PDF
2020: What's on Deck for the PMA
scoopnewsgroup
 
PDF
Modernization Requires Choice
scoopnewsgroup
 
PDF
Smarter Access is the Bridge to Security Modernization
scoopnewsgroup
 
PDF
Building a Zero Trust Architecture
scoopnewsgroup
 
PDF
History of Data-Centric Transformation
scoopnewsgroup
 
PDF
IC Fireside Chat
scoopnewsgroup
 
PDF
The Edge to AI
scoopnewsgroup
 
PDF
Data Strategy – What Does an Enterprise Data Cloud Mean for Your Agency?
scoopnewsgroup
 
PDF
Devil's Bargain: Sacrificing Strategic Investments to Fund Today's Problems
scoopnewsgroup
 
PDF
Keeping the Workforce of the Future Empowered, Engaged & Happy
scoopnewsgroup
 
PDF
Opening Remarks
scoopnewsgroup
 
PDF
It All Starts with Linux
scoopnewsgroup
 
PDF
Leadership in the Digital Age
scoopnewsgroup
 
PDF
Digital Transformation for Government
scoopnewsgroup
 
PDF
DevSecOps: The DoD Software Factory
scoopnewsgroup
 
PDF
Enhancing your Cyber Skills through a Cyber Range
scoopnewsgroup
 
PDF
Lessons Learned from Fire Escapes for Cybersecurity
scoopnewsgroup
 
PDF
2019 FedScoop Public Sector innovation Summit
scoopnewsgroup
 
PDF
FedScoop Public Sector Innovation Summit DOD Enterprise DevSecOps Initiative ...
scoopnewsgroup
 
PDF
FedScoop Public Sector Innovation Summit Peter Wallace, CIO, Virginia Beach- ...
scoopnewsgroup
 
2020: What's on Deck for the PMA
scoopnewsgroup
 
Modernization Requires Choice
scoopnewsgroup
 
Smarter Access is the Bridge to Security Modernization
scoopnewsgroup
 
Building a Zero Trust Architecture
scoopnewsgroup
 
History of Data-Centric Transformation
scoopnewsgroup
 
IC Fireside Chat
scoopnewsgroup
 
The Edge to AI
scoopnewsgroup
 
Data Strategy – What Does an Enterprise Data Cloud Mean for Your Agency?
scoopnewsgroup
 
Devil's Bargain: Sacrificing Strategic Investments to Fund Today's Problems
scoopnewsgroup
 
Keeping the Workforce of the Future Empowered, Engaged & Happy
scoopnewsgroup
 
Opening Remarks
scoopnewsgroup
 
It All Starts with Linux
scoopnewsgroup
 
Leadership in the Digital Age
scoopnewsgroup
 
Digital Transformation for Government
scoopnewsgroup
 
DevSecOps: The DoD Software Factory
scoopnewsgroup
 
Enhancing your Cyber Skills through a Cyber Range
scoopnewsgroup
 
Lessons Learned from Fire Escapes for Cybersecurity
scoopnewsgroup
 
2019 FedScoop Public Sector innovation Summit
scoopnewsgroup
 
FedScoop Public Sector Innovation Summit DOD Enterprise DevSecOps Initiative ...
scoopnewsgroup
 
FedScoop Public Sector Innovation Summit Peter Wallace, CIO, Virginia Beach- ...
scoopnewsgroup
 

Recently uploaded (20)

PPTX
GOVERNMENT-ACCOUNTING1. bsa 4 government accounting
AngelOrale
 
PPTX
DFARS Part 253 - Forms - Defense Contracting Regulations
JSchaus & Associates
 
PPTX
Inferenceahaiajaoaakakakakakakakakakakakakaka
Faiz975600
 
PDF
The Detrimental Impacts of Hydraulic Fracturing for Oil and Gas_ A Researched...
Energy for One World
 
PPTX
26.1.2025 venugopal K Awarded with commendation certificate.pptx
Venugopal Kodati
 
PDF
CXPA Finland Webinar - Modern Components of Service Quality - Alec Dalton - ...
Customer Experience Professionals Association
 
PDF
PPT Item # 4 - 328 Albany St compt. review
ahcitycouncil
 
PPTX
The DFARS - Part 251 - Use of Government Sources By Contractors
JSchaus & Associates
 
PPTX
11Sept2023_LTIA-Cluster-Training-Presentation.pptx
BenflorBiong2
 
PDF
PPT - Primary Rules of Interpretation (1).pdf
arjun623464
 
PDF
4_Key Concepts Structure and Governance plus UN.pdf okay
chris10pher
 
PPTX
Part II LGU Accreditation of CSOs and Selection of Reps to LSBs ver2.pptx
Irish521933
 
PPT
The Central Civil Services (Leave Travel Concession) Rules, 1988, govern the ...
barub2919
 
PPTX
DFARS Part 252 - Clauses - Defense Regulations
JSchaus & Associates
 
PPTX
Developing_An_Advocacy_Agenda_by_Kevin_Karuga.pptx
Kevin Karuga
 
DOCX
EAPP.docxdffgythjyuikuuiluikluikiukuuuuuu
bacunawajade
 
PPTX
BHARATIYA NAGARIKA SURAKSHA SAHMITA^J2023 (1).pptx
drpuspanjalipanda
 
PDF
buyers sellers meeting of mangoes in mahabubnagar.pdf
Venugopal Kodati
 
PDF
It Helpdesk Solutions - ArcLight Group
Arclight Group
 
PDF
UNEP/ UNEA Plastic Treaty Negotiations Report of Inc 5.2 Geneva
Energy for One World
 
GOVERNMENT-ACCOUNTING1. bsa 4 government accounting
AngelOrale
 
DFARS Part 253 - Forms - Defense Contracting Regulations
JSchaus & Associates
 
Inferenceahaiajaoaakakakakakakakakakakakakaka
Faiz975600
 
The Detrimental Impacts of Hydraulic Fracturing for Oil and Gas_ A Researched...
Energy for One World
 
26.1.2025 venugopal K Awarded with commendation certificate.pptx
Venugopal Kodati
 
CXPA Finland Webinar - Modern Components of Service Quality - Alec Dalton - ...
Customer Experience Professionals Association
 
PPT Item # 4 - 328 Albany St compt. review
ahcitycouncil
 
The DFARS - Part 251 - Use of Government Sources By Contractors
JSchaus & Associates
 
11Sept2023_LTIA-Cluster-Training-Presentation.pptx
BenflorBiong2
 
PPT - Primary Rules of Interpretation (1).pdf
arjun623464
 
4_Key Concepts Structure and Governance plus UN.pdf okay
chris10pher
 
Part II LGU Accreditation of CSOs and Selection of Reps to LSBs ver2.pptx
Irish521933
 
The Central Civil Services (Leave Travel Concession) Rules, 1988, govern the ...
barub2919
 
DFARS Part 252 - Clauses - Defense Regulations
JSchaus & Associates
 
Developing_An_Advocacy_Agenda_by_Kevin_Karuga.pptx
Kevin Karuga
 
EAPP.docxdffgythjyuikuuiluikluikiukuuuuuu
bacunawajade
 
BHARATIYA NAGARIKA SURAKSHA SAHMITA^J2023 (1).pptx
drpuspanjalipanda
 
buyers sellers meeting of mangoes in mahabubnagar.pdf
Venugopal Kodati
 
It Helpdesk Solutions - ArcLight Group
Arclight Group
 
UNEP/ UNEA Plastic Treaty Negotiations Report of Inc 5.2 Geneva
Energy for One World
 

Moving Beyond Zero Trust

  • 1. Moving Beyond Zero Trust Jonathan Nguyen-Duy VP Global Field CISO Team
  • 2. 2 • Hybrid - The New Normal • More than Zero Trust • Security Driven Networking • Reasonable Level of Care • Summary AGENDA
  • 3. 3 THE STATE OF ENTERPRISE SECURITY FUNCTIONAL OPERATIONAL SILOS LACK OF VISIBILITY EVOLVING NATURE OF THREATS SECURITY TEAMS LACK THE MANPOWER, EXPERTISE, TOOLS AND PROCESSES + SECURITY SHOULD NOT BE A DIY EXERCISE
  • 4. 4 © Fortinet Inc. All Rights Reserved. 4 Secure-Driven Networking
  • 5. 5 © Fortinet Inc. All Rights Reserved. 5 Hybrid Network Compute becoming the standard Secure remote device access & securing cloud resources DATA CENTER COMPUTE CLOUD COMPUTE EDGE COMPUTE Endpoints Mainframe VirtualizedServers IaaS PaaS SaaS Endpoints IoT OT Cloud 5G Edge Transport Client-Server Web Client
  • 6. 6
  • 7. 7 © Fortinet Inc. All Rights Reserved. 7 Differing Trust Levels create Edges Everywhere Challenge is speed and scale WAN EDGE SD-WAN ACCESS EDGE SD-Branch COMPUTE EDGE Cloud and 5G SD-WAN WoC Security Orchestration Security Switch WiFi NAC Security Cloud 5GIdentity Security OT EDGE Cyber-Physical
  • 8. 8 Fundamental Failures in Data Breaches § Lessons from 12,000+ breaches: » Failure to prioritize funding for cyber security - lowest among peer group » Lacked effective leadership and managerial structure to implement reliable IT security policies » Failure to implement critical basic security measures, like two-factor authentication, segmentation, awareness training, etc. » Networks were “insecurely architected” and running significant amounts of legacy infrastructure - not integrated » IT security program struggled to meet many compliance requirements » Lack of visibility, awareness & control
  • 9. 9 A Reasonable Level of Due Care Standard by which we’ll be judged... § due care Noun … the care that a reasonable person would exercise under the circumstances; the standard for determining legal duty § Equifax breach 143M affected “entirely preventable” » Exploit of known Apache Strut vulnerability » Breached in May-July but notified public in September 2017 » Exfiltration possible due to expired security certificate » 2018 two credit freeze websites used expired certificates » Default passwords “admin” » Reasonable? Critically, the Court found that, given the foreseeable risk of a data breach, Equifax owed consumers an independent legal duty of care to take reasonable measures to safeguard their personal information in Equifax’s custody.
  • 10. 10 Achieving a Reasonable Level of Due Care Much more than zero trust... § Networking and Security as first Consideration » Compliance is not enough » Hybrid digital infrastructure & security as one » Distributed segmentation & virtualization » Outcome-based solutions - Business intent § Segmentation & Zero Trust Principles » Identify, verify & authenticate » Validate need to access (apps & ports) » Log & monitor everything » Integrated, automated response » Backup per SLAs » Encrypt as practical § Behavioral based detection & AI § Broad, integrated & automated
  • 11. 11 Security Fabric Requirements Beyond Products & Platforms Open Ecosystem Network Security Network Security Device, Access, and Application Security Multi-Cloud Security Network Operations Security Operations Multi-Cloud Security Endpoint/Device Protection Secure Access Application Security Fabric APIs Fabric Connectors Security Operations INTEGRATED AI-driven breach prevention across devices, networks, and applications AUTOMATED Operations, orchestration, and response BROAD Visibility of the entire digital attack surface
  • 12. 12 Where Who What When Access Visibility: Endpoints, Users & Applications DALLAS AUSTIN HOUSTON VPN
  • 13. 13 Control: Dynamic Network Access Adaptive Trust Identify User Assign Network Access Assess Risk Identify Device No Access Guest Access Restricted Access Unrestricted Access Rogue IOT Managed IOT Tolerated IOT Managed Assets Critical Assets
  • 14. 14 Branch Access and off-load UCPE 3G/4G/5G wireless Transport / SDWAN DC / Private Cloud Consumer Access and off-load DC / Cloud Services Security Driven Networking Consistent Security § Consistent and compliant policy and visibility across physical, virtual, cloud § Secure VPN connectivity from private to public clouds § Segment applications and data between clouds in hybrid and multi-cloud environments End-to-End Segmentation § Deploy into flat open networks w/o disruption § Fine-grained policy based on users/apps/data § Increased throughput for inspecting east-west traffic Automatically Scale Protection § Auto-scale inspection capacity across cluster § Auto-provision rules to new workloads § Orchestrate physical and virtual service insertion
  • 15. 15