Organizations today require immediate and uninterrupted access to critical network and cloud-based resources in order to support the swift pace of digital business transformation and the rise in remote work. One of the technologies being used increasingly by businesses to address these shifts is Secure Access Service Edge (SASE). We sat down with our vice president of product management, Mike Frane, to learn more about the emergence of SASE and why it matters.
Windstream Enterprise (WE): Let’s start with some background. What is SASE?
Mike: SASE is an emerging cloud-native security framework enabling secure and fast cloud adoption, ensuring both users and devices have secure cloud access to applications, data and services at any location. SASE consists of a fabric of intertwined network and security technologies that protect an organization’s data and systems from unwanted access. The architecture interlaces into an ecosystem of “Network as a Service” and “Network Security as a Service,” resulting in a unified connectivity experience that is ubiquitously available anywhere and anytime.
WE: Where did SASE come from?
Mike: Gartner coined the term SASE in 2019. The emergence of SASE is rooted in the rise of the adoption of cloud computing and distributed organizations and their accompanying workforce. It enables remote workers to gain full access to designated company applications and resources while offering a much simpler secure connectivity model for cloud-first enterprises, bringing security functions wherever they’re needed.
WE: What are the key components of a true SASE architecture?
Mike: SASE is still in its infancy and the definition is still very fluid. In general, the core elements of SASE include Firewall as a Service (FWaaS), Intrusion Prevention Systems (IPS), Secure Web Gateways (SWG) and Zero Trust Network Access (ZTNA). In 2020, Gartner also stated other SASE capabilities including Cloud Access Security Brokers (CASB), sandboxing, Web Application and API Protection (WAAP), Remote Browser Isolation (RBI), recursive DNS and traditional VPN.
WE: Why does SASE exist?
Mike: Digital transformation is driving the need for SASE. In order to fully understand why it exists, we need to look back. Within the last decade, there was a wave of organizations planning and executing new digital transformation strategies. Most of these strategies incorporated increasing public cloud investments and building their new applications as cloud-native apps (although security budgets were distributed between existing on-premises infrastructure and cloud). More recent disruptions have seriously impacted organizations and entire supply chains around the world, including the rise in “work from anywhere” demands and the need for additional cloud-based security.
WE: So, why does it matter?
Mike: SASE is solving two fundamental problems in the current technology stack used by many companies: visibility and control. To inspect traffic we need to see it. To see it, we need to be in the path of the traffic. Most of the technology and products that we use today were built to extend our visibility so we will be in a position to control. Now imagine if we had total visibility and control within a single platform. This is a unique attribute of SASE: its cloud-first architecture is uniquely positioned to intercept, inspect, secure and optimize all traffic.
According to Gartner, “over the next five, the market for secure access service edge will grow at a CAGR of 42%, reaching almost $11 billion by 2024.” This goes to further demonstrate the urgent need for flexible “anytime, anywhere” solutions that can deliver safer Secure Remote Access (SRA) capabilities at scale using next generation ZTNA technology. As networking and security becomes increasingly more complex within this new environment, organizations are turning to technologies like SD-WAN and now SASE to enable speedier and more agile digital business transformations and workforce mobility.
WE: What are the benefits of SASE?
Mike: SASE brings several benefits to organizations including simplified security deployment, increased security and along with SD-WAN appropriate bandwidth allocation on a per-application basis. Because it’s a cloud service, SASE is scalable by design, making it a viable and welcome option during rapidly changing times. The combined capabilities provided by SASE simplify the otherwise complex architecture that would result from a vast collection of point security and networking solutions. This reduces complexity, improves performance and can also lower latency.
Other benefits include device consolidation and lower operational overhead. Because SASE providers run and maintain the security engines, IT is freed from the constant updating, patching and scaling of appliances.
WE: What are SASE use cases?
Mike: Here are some use cases to consider:
WE: I’m considering SASE. What questions should I be asking vendors during the consideration phase?
Mike: Here are some questions you should be asking during your search:
Read our white paper with VMware to learn more about the emergence of SASE, how it enables secure network access capabilities, and how when delivered with SD-WAN it offers organizations the most flexible and reliable security in the cloud.
Enter your business location zip code below for business solutions in your area.
Find business zip code