SASE and ZTNA are both hot infosec topics right now, but when it comes to adoption, it’s not a question of choosing one or the other but using Zero Trust as part of a SASE Framework.
Think of SASE (Secure Access Security Edge) as a higher-level design concept than ZTNA (Zero Trust Network Access). The two things are not separate or competing network security models; rather, ZTNA is part of an overall SASE architecture.
The SASE model focuses on convergence and inversion of the network and security architectures, pulling together a wide range of functions that act based on predefined policies. The level of trust given to a user is where the concept of Zero Trust comes into this approach and policy creation. In addition, these Zero Trust policies draw from other information about the user’s identity, role, device, location, and so on, which are taken from key points across a SASE architecture. Therefore, we must consider how we get SASE and Zero Trust designs to work together to deliver the user experience and security required at the point of need.
However, while Zero Trust implementation may be a short- to medium-term objective for many network architects, SASE is a long-term goal. Teneo is working with a range of companies looking to adopt a SASE approach to update their networks and network security stacks to support wider digital transformational projects. Zero Trust is a common starting point, and working with a partner like Teneo helps avoid making compromises later on due to deploying ZTNA in isolation.
Based on industry research from Gartner, we expect to see around 60% to 75% of users moving to a ‘hybrid working’ model (assuming Covid restrictions continue to ease), where they split their time between home and office working. This means the attack surface isn’t going to get smaller anytime soon, and if anything, it will become more distributed. Therefore, organizations need to look at dynamic, software-defined, policy-based approaches like ZTNA and SASE to ensure users are secure from wherever they are accessing corporate resources and sensitive information.
To find out more about how ZTNA, as part of a SASE architecture, can work for you, visit www.teneo.net/zero-trust-security
Blog Author: Brett Ayres, Services Director, Teneo