SlideShare a Scribd company logo

SECURE ACCESS SERVICE EDGE - SSE/SASE(CLOUD)

Download as PPTX, PDF
F
fayish001

The document discusses the evolution of secure connectivity in response to the increasing prevalence of remote work and mobile devices, emphasizing the shift from traditional workplace setups to flexible work-from-anywhere environments. It outlines key components of Security Service Edge (SSE) and Secure Access Service Edge (SASE), focusing on risk-based decision-making, zero trust architecture, and management of cloud applications and data privacy. Key recommendations include consolidating vendors, reducing reliance on hardware-based security, and enhancing user experience while ensuring compliance and security.

Technology
1 of 10
Download to read offline
1
2
3
4
5
6
7
Most read
8
Most read
9
Most read
10
SECURITY SERVICE EDGE (SSE / SASE) Secure connectivity that’s ready for anything
EVOLUTION OF WFH & MOBILE WORKFORCE • Story / Experience / Questions • WFH has changed to WFAnywhere
YESTERDAY
TODAY
APPLICATIONS EXTERNAL APPS (SAAS & WEB) INTERNAL APPS (DATA CENTER / IAAS) WORK FROM ANYWHERE, HQ AND BRANCH CASB FW SWG SSL VPN DLP Sand box Anti- Malware Email SSPM CSPM IPS SD-WAN RBI SD-WAN VPN Direct Legacy Designs may not work in the Future USERS BYOD, THIRD PARTY
Public Clouds Data Centres Remote workers VPN Client WEBSITES PRIVATE APPS Secure Web Gateway SSL DLP Threat Protect EUBA CLOUD APPS Branch Office SSL SWG DLP Threat EUBA ZTNA VPN concentrator HOW SASE CHANGES IT SECURITY API’s SASE
Remote Workers Mobile Devices BYOD Devices HQ Global PoP Network WWW Internet MPLS Internet Internet Internet Internet CONNECTIVITY MATTERS NETWORK PEERING INFLUENCES USER EXPERIENCE
APP TRUST SHOULD THE APP BE TRUSTED? INSTANCE TRUST SHOULD THE INSTANCE BE ALLOWED? ACTIVITY TRUST SHOULD THE ACTIVITY BE ALLOWED? BEHAVIOR TRUST SHOULD THE BEHAVIOR ALLOWED? DATA TRUST SHOULD THE DATA BE ALLOWED? LOCATION TRUST SHOULD THE LOCATION BE TRUSTED? SHOULD THE DEVICE BE TRUSTED? DEVICE TRUST IJACSBU AOLOLSU LOLATOT ACIHFWT KHYE WHAT ACTION SHOULD RESPOND SASE ZERO TRUST PROVIDING THE ABILITY TO MAKE RISK-BASED DECISIONS ACROSS ALL PARTS OF EVERY TRANSACTION
10 CRITICAL USE CASES ALL WITHIN ONE CENTRALIZED PLATFORM & MANAGEMENT CONSOLE Protect Against Advanced Threats Stop threats before they get to the endpoint ‣ Sandboxing & Browser Isolation ‣ Cloud IPS ‣ Insider Threats ‣ Phishing & Ransomware ‣ Risk Score & Intel Sharing 1 2 3 Control Access & Coach Users Provide risk-based Conditional Access with user warnings 4 Zero Trust Network Access (ZTNA) Provide access to internal apps without exposing your perimeter 5 Control Sensitive Data Propagation Understand the context of user actions in relation to your data Download Share Send 6 Secure Internet Breakouts, & WAN Orchestration Orchestrate your WAN; secure your internet breakouts 7 Track SaaS & IaaS Standards Compliance Continuous assessment of your IaaS environments & SaaS apps 8 Digital Experience Management (DEM) End-to-end performance monitoring to ID & triage issues 9 Integrate with & Facilitate Intel Sharing b/w Vendors Ensure your vendor ecosystem works together 10 Nathan User Risk Rating: ↓893/1000 GDrive (Personal) App Risk Rating: 93/100 Visibility & Control Over Shadow IT Control usage & risk across SaaS, IaaS, and Private Apps Bulk Upload STOP! You are trying to UPLOAD files to Dropbox. Click HERE to go to OneDrive, or enter a justification below to proceed to Dropbox. View Only Isolate Provide Secure Access to BYOD & 3rd Parties Real-time security & access controls in a clientless manner Managed Devices Only Poor Performance! Why? Where is the issue?
KEY TAKEAWAYS Consolidate Vendors Shrink the Attack Surface Move Away from Hardware-based Security Stop Backhauling Traffic – Go Direct to Net Reduce Complexity Replace Legacy VPN Improve the Employee Experience Implement a Zero Trust Architecture Find Cost Savings

More Related Content

PPTX
Desafíos de la Ciberseguridad en un ecosistema digitalmente transformado
Cristian Garcia G.
 
PPTX
SD-WAN_MoD.pptx for SD WAN networks connectivity
bayusch
 
PPTX
TechWiseTV Workshop: SD-WAN Security
Robb Boyd
 
PDF
GWAVACon 2015: GWAVA - Three dimensional security for Novell GroupWise
GWAVA
 
PDF
A Different Approach to Securing Your Cloud Journey
Cloudflare
 
PPTX
palo-alto-networks-sase-overview-deck.pptx
infoeliechahine
 
PDF
Sangfor SSL VPN Brochure
Sangfor Technologies USA
 
PDF
SDWAN.pdf
sushil kumar
 
Desafíos de la Ciberseguridad en un ecosistema digitalmente transformado
Cristian Garcia G.
 
SD-WAN_MoD.pptx for SD WAN networks connectivity
bayusch
 
TechWiseTV Workshop: SD-WAN Security
Robb Boyd
 
GWAVACon 2015: GWAVA - Three dimensional security for Novell GroupWise
GWAVA
 
A Different Approach to Securing Your Cloud Journey
Cloudflare
 
palo-alto-networks-sase-overview-deck.pptx
infoeliechahine
 
Sangfor SSL VPN Brochure
Sangfor Technologies USA
 
SDWAN.pdf
sushil kumar
 

Similar to SECURE ACCESS SERVICE EDGE - SSE/SASE(CLOUD) (20)

PDF
Forcepoint SD-WAN and NGFW + IPS
Larry Austin
 
PPTX
Softchoice & Microsoft: Public Cloud Security Webinar
Softchoice Corporation
 
PDF
SD-WAN - comSpark 2019
Advanced Technology Consulting (ATC)
 
PDF
Sangfor SSL VPN Datasheet
Sangfor Technologies USA
 
PPTX
91c03816-de6c-441d-a9e6-3865765434ff.pptx
Jayant530797
 
PDF
GWAVACon - Messaging Security at its Best
GWAVA
 
PPT
Information Security
Mohit8780
 
PDF
Evolving the WAN for the Cloud, using SD-WAN & NFV
Digital Transformation EXPO Event Series
 
PDF
Secure Your Network for Scale & the Cloud
VeloCloud Networks, Inc.
 
PDF
SSL VPN Evaluation Guide
Array Networks
 
PPTX
Extending Security to EVERY Edge
itnewsafrica
 
PDF
Estratégia de segurança da Cisco (um diferencial para seus negócios)
Cisco do Brasil
 
PPTX
The Future of Mobile Application Security
SecureAuth
 
PPTX
Enhancing SaaS Performance: A Hands-on Workshop for Partners
ThousandEyes
 
PDF
Cisco Connect 2018 Malaysia - Cisco sd-wan-next generation wan to power your ...
NetworkCollaborators
 
PPTX
Check Point Solutions Portfolio- Detailed
Moti Sagey מוטי שגיא
 
PDF
DNA Intelligent WAN Campus Day
Cisco Canada
 
PPTX
De-Witt Tromp- Introduction to Zero Trust & SASE.
itnewsafrica
 
PPTX
Aerohive Networks e ZScaler, le soluzioni tecnologiche per il nuovo ecosistem...
Miriade Spa
 
PPTX
00. introduction to app sec v3
Eoin Keary
 
Forcepoint SD-WAN and NGFW + IPS
Larry Austin
 
Softchoice & Microsoft: Public Cloud Security Webinar
Softchoice Corporation
 
SD-WAN - comSpark 2019
Advanced Technology Consulting (ATC)
 
Sangfor SSL VPN Datasheet
Sangfor Technologies USA
 
91c03816-de6c-441d-a9e6-3865765434ff.pptx
Jayant530797
 
GWAVACon - Messaging Security at its Best
GWAVA
 
Information Security
Mohit8780
 
Evolving the WAN for the Cloud, using SD-WAN & NFV
Digital Transformation EXPO Event Series
 
Secure Your Network for Scale & the Cloud
VeloCloud Networks, Inc.
 
SSL VPN Evaluation Guide
Array Networks
 
Extending Security to EVERY Edge
itnewsafrica
 
Estratégia de segurança da Cisco (um diferencial para seus negócios)
Cisco do Brasil
 
The Future of Mobile Application Security
SecureAuth
 
Enhancing SaaS Performance: A Hands-on Workshop for Partners
ThousandEyes
 
Cisco Connect 2018 Malaysia - Cisco sd-wan-next generation wan to power your ...
NetworkCollaborators
 
Check Point Solutions Portfolio- Detailed
Moti Sagey מוטי שגיא
 
DNA Intelligent WAN Campus Day
Cisco Canada
 
De-Witt Tromp- Introduction to Zero Trust & SASE.
itnewsafrica
 
Aerohive Networks e ZScaler, le soluzioni tecnologiche per il nuovo ecosistem...
Miriade Spa
 
00. introduction to app sec v3
Eoin Keary
 
Ad

Recently uploaded (20)

PDF
Web App vs Mobile App What Should You Build First.pdf
KodekX
 
PDF
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
PDF
Univ-Connecticut-ChatGPT-Presentaion.pdf
ry7r52mzb4
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PPTX
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
PPTX
A Presentation on Touch Screen Technology
memembruh336
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Zenith AI: Advanced Artificial Intelligence
Biz Preneurs
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
Chapter 5: Probability Theory and Statistics
RandyFin
 
PDF
Hybrid model detection and classification of lung cancer
IAESIJAI
 
PDF
WOOl fibre morphology and structure.pdf for textiles
Rajendrakumar868651
 
PPTX
TechTalks-8-2019-Service-Management-ITIL-Refresh-ITIL-4-Framework-Supports-Ou...
bonakiduza1024
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
project resource management chapter-09.pdf
ssuser00e6e21
 
PDF
Transform Your ITIL® 4 & ITSM Strategy with AI in 2025.pdf
PDCA Consulting
 
PDF
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
Web App vs Mobile App What Should You Build First.pdf
KodekX
 
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
Univ-Connecticut-ChatGPT-Presentaion.pdf
ry7r52mzb4
 
Approach and Philosophy of On baking technology
30anthuong17
 
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
A Presentation on Touch Screen Technology
memembruh336
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Zenith AI: Advanced Artificial Intelligence
Biz Preneurs
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Chapter 5: Probability Theory and Statistics
RandyFin
 
Hybrid model detection and classification of lung cancer
IAESIJAI
 
WOOl fibre morphology and structure.pdf for textiles
Rajendrakumar868651
 
TechTalks-8-2019-Service-Management-ITIL-Refresh-ITIL-4-Framework-Supports-Ou...
bonakiduza1024
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
project resource management chapter-09.pdf
ssuser00e6e21
 
Transform Your ITIL® 4 & ITSM Strategy with AI in 2025.pdf
PDCA Consulting
 
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
Ad

SECURE ACCESS SERVICE EDGE - SSE/SASE(CLOUD)

  • 1. SECURITY SERVICE EDGE (SSE / SASE) Secure connectivity that’s ready for anything
  • 2. EVOLUTION OF WFH & MOBILE WORKFORCE • Story / Experience / Questions • WFH has changed to WFAnywhere
  • 5. APPLICATIONS EXTERNAL APPS (SAAS & WEB) INTERNAL APPS (DATA CENTER / IAAS) WORK FROM ANYWHERE, HQ AND BRANCH CASB FW SWG SSL VPN DLP Sand box Anti- Malware Email SSPM CSPM IPS SD-WAN RBI SD-WAN VPN Direct Legacy Designs may not work in the Future USERS BYOD, THIRD PARTY
  • 6. Public Clouds Data Centres Remote workers VPN Client WEBSITES PRIVATE APPS Secure Web Gateway SSL DLP Threat Protect EUBA CLOUD APPS Branch Office SSL SWG DLP Threat EUBA ZTNA VPN concentrator HOW SASE CHANGES IT SECURITY API’s SASE
  • 7. Remote Workers Mobile Devices BYOD Devices HQ Global PoP Network WWW Internet MPLS Internet Internet Internet Internet CONNECTIVITY MATTERS NETWORK PEERING INFLUENCES USER EXPERIENCE
  • 8. APP TRUST SHOULD THE APP BE TRUSTED? INSTANCE TRUST SHOULD THE INSTANCE BE ALLOWED? ACTIVITY TRUST SHOULD THE ACTIVITY BE ALLOWED? BEHAVIOR TRUST SHOULD THE BEHAVIOR ALLOWED? DATA TRUST SHOULD THE DATA BE ALLOWED? LOCATION TRUST SHOULD THE LOCATION BE TRUSTED? SHOULD THE DEVICE BE TRUSTED? DEVICE TRUST IJACSBU AOLOLSU LOLATOT ACIHFWT KHYE WHAT ACTION SHOULD RESPOND SASE ZERO TRUST PROVIDING THE ABILITY TO MAKE RISK-BASED DECISIONS ACROSS ALL PARTS OF EVERY TRANSACTION
  • 9. 10 CRITICAL USE CASES ALL WITHIN ONE CENTRALIZED PLATFORM & MANAGEMENT CONSOLE Protect Against Advanced Threats Stop threats before they get to the endpoint ‣ Sandboxing & Browser Isolation ‣ Cloud IPS ‣ Insider Threats ‣ Phishing & Ransomware ‣ Risk Score & Intel Sharing 1 2 3 Control Access & Coach Users Provide risk-based Conditional Access with user warnings 4 Zero Trust Network Access (ZTNA) Provide access to internal apps without exposing your perimeter 5 Control Sensitive Data Propagation Understand the context of user actions in relation to your data Download Share Send 6 Secure Internet Breakouts, & WAN Orchestration Orchestrate your WAN; secure your internet breakouts 7 Track SaaS & IaaS Standards Compliance Continuous assessment of your IaaS environments & SaaS apps 8 Digital Experience Management (DEM) End-to-end performance monitoring to ID & triage issues 9 Integrate with & Facilitate Intel Sharing b/w Vendors Ensure your vendor ecosystem works together 10 Nathan User Risk Rating: ↓893/1000 GDrive (Personal) App Risk Rating: 93/100 Visibility & Control Over Shadow IT Control usage & risk across SaaS, IaaS, and Private Apps Bulk Upload STOP! You are trying to UPLOAD files to Dropbox. Click HERE to go to OneDrive, or enter a justification below to proceed to Dropbox. View Only Isolate Provide Secure Access to BYOD & 3rd Parties Real-time security & access controls in a clientless manner Managed Devices Only Poor Performance! Why? Where is the issue?
  • 10. KEY TAKEAWAYS Consolidate Vendors Shrink the Attack Surface Move Away from Hardware-based Security Stop Backhauling Traffic – Go Direct to Net Reduce Complexity Replace Legacy VPN Improve the Employee Experience Implement a Zero Trust Architecture Find Cost Savings