A shift from private networks and the data center to the cloud
For several years now, terms like SASE, SSE and ZTNA have become commonplace. What they have in common is a shift from private networks and the data center, to the cloud, precisely where access is concerned. Since COVID and working from home, all of this has really taken off.
Now that remote working is the new normal, the question remains: how do I set this up? How do you make sure you make the right choice in this?
the overarching concept
Wide Area Networking (WAN) and security concepts
SASE stands for Secure Access Service Edge, a concept and term coined by Gartner in its August 2019 report “The Future of Network Security in the cloud”. It is a coming together of wide area networking (WAN) and security concepts such as Zero Trust, into a single service model delivered via the cloud.
The cybersecurity industry loves hypes, acronyms and buzzwords. SASE, SD-WAN, ZTNA and SSE are recent examples that overlap and mean slightly different things to different vendors, often depending on their product or service offerings.
According to us, the common thread in these new (and sometimes not so new) technologies is now very clear: the network and the cybersecurity measures that go with it are rapidly moving to the cloud.
thE SASE background
Transformation to the cloud
The transformation to the cloud has been talked about a lot since COVID, but it has actually been around for much longer. Concepts like BYOB, flex worker and working from home have been around for years.
The fundamental change in the way we work and the way the job market is structured is a fact. The way we consume software has also completely changed in a ten-year period. Software runs in the cloud, and we also store data in the cloud.
This mainly involves applications like Office 365 and other typical office software, but of course also CRM, file sharing and popular applications for sales, marketing and finance. All new software developed in the last decade is almost by definition a SaaS service.
In other words: SASE has become so dominant that maximizing the facilitation of a fast and secure SASE experience should be a spearhead in any IT strategy.
SASE has become so dominant that maximizing the facilitation of a fast and secure SASE experience should be a spearhead in any IT strategy.
Unified, secure access from any location
SASE provides an access point (think of it as a software outlet) in the cloud. It doesn’t matter how you get to that access point (wired, Wi-Fi, 5G, laptop, mobile, tablet). Once you’re connected, the SASE infrastructure ensures that you can quickly access all the applications you need, no matter where they are.
At the same time, SASE seamlessly handles security measures, all available in the cloud.
What SASE is trying to achieve is unified, secure access from any location by securely connecting users while on the road, at home or in the office. It’s about allowing employees anywhere, to easily and securely access their data centers, cloud environments, SaaS or websites through a single, unified platform.
Consolidates multiple products
Reduces complexity and costs
Makes you more resilient and flexible
Easy to be compliant (NIS2/DORA)
Consolidates into a datalake, which eliminates the need for a SIEM
Optimizes user experience and productivity
Facilitates ZTNA and your Zero Trust strategy
More than just sase
With an emphasis on preventing cyber incidents
For over fifteen years, ON2IT has provided its customers with not only a 24/7 managed SOC service, but more importantly, a wealth of expertise, knowledge and experience that comes together in its AUXO™ cloudplatform and Zero Trust as a Service managed services.
Unlike most vendors of so-called detection and response (MDR) services, ON2IT designs, implements and manages smart and effective cybersecurity measures for endpoints, data centers, cloud environments and SASE.
Our managed service continuously monitors the correct configurations and policies of all measures, and uses AI and machine learning to automatically evaluate 99,999 % of all events. Our SOC analysts and incident responders are experts and are 24/7 available for further investigations, escalations and implementing countermeasures.
Our managed service continuously monitors the correct configurations and policies of all measures, and uses AI and machine learning to automatically evaluate 99,999 % of all events.
a real-world example
Managed Prisma Access
Sometimes, you can’t see the forest from the tree when it comes to cybersecurity abbreviations. A real-world SASE example offers a solution.
Palo Alto Networks’ Prisma Access is a secure access service edge (SASE) for office, outside locations and mobile users: the next generation of cloud-based security services in prevention, detection, response, forensics and threat-hunting.Download the datasheet