Server hallway in the blue sky-1

What Is Secure Access Service Edge (SASE)?

Network security architectures were designed for an era that is now waning. Legacy architectures can't meet the dynamic secure access requirements of today’s business world or digital transformation initiatives that drive future growth. Notably, they can’t secure remote users or cloud services.
 
In this world, Secure Access Service Edge, or SASE (pronounced “sassy”), is an emerging cybersecurity concept that Gartner described in the August 2019 report The Future of Network Security in the Cloud.
 
In the SASE model, organizations can extend consistent security to all enterprise resources. From a single control point, security teams can configure policies that secure SaaS apps, control access to web destinations, identify shadow IT, and defend on-prem apps. Integrating SASE with SD-WAN also delivers consistent security across branch sites.
 

Cloud Access Security Brokers

Gain visibility and control for data that has moved away from on premises data centers and into SaaS apps and IaaS platforms.

  • Protect data and stop leakage with access control and data loss prevention (DLP)
  • Keep malware from infecting your cloud through advanced threat protection (ATP)
  • Maintain visibility in the cloud by tracking user activity and generating security reports
  • Protect sensitive data with  with full-strength encryption solution that protects data-at-rest in any cloud application.
  • Authenticate users with single sign-on (SSO) and multi-factor authentication (MFA)

Secure Web Gateways

Secure web traffic as users browse websites and access unmanaged applications (shadow IT).

  • Filter content by categories like streaming and gambling to enhance productivity
  • Keep threats at bay by blocking infected file downloads as well as access to destinations like botnets and malware sites
  • Control the usage of shadow IT and direct employees to correct, sanctioned apps
  • Prevent data leakage by stopping the upload of sensitive files to the web
  • Secure encrypted traffic at cloud scale
 

Zero Trust Network Access

Ensure consistent security for on-prem resources like Jira and Confluence as well as thick client apps like SSH and remote desktops.

  • Integrate with an existing IdP or use native functionality to authenticate users, and secure access to internal apps by factors like user group, location, and device type
  • Prevent employees from downloading or uploading malware to the network
  • Apply data protection policies to files at upload and download in on-premises resources
  • Log user activity to enable audit and demonstrate regulatory compliance

Software Defined Wide Area Network

Integrate SD-WAN solutions with SASE offerings to secure traffic stemming from branch sites around the world.

  • Use a flexible SASE platform that can integrate with any SD-WAN solution
  • Secure cloud, web, and network traffic flowing from any remote office
  • Employ real-time data and threat protection policies to stop leakage and malware
  • Maintain visibility over your entire IT ecosystem from a single SASE dashboard

Public Cloud Architecture

Only when the underlying architecture is based on the global public cloud, can SASE offerings be called true cloud security platforms that scale to firms' needs. 

  • SASE solutions that use hardware appliances or private clouds fail to scale and perform
  • Platforms deployed in the public cloud exhibit the highest uptime and performance
  • Cloud-based architectures scale to your needs proactively rather than reactively
  • The worldwide public cloud enables security and usability anywhere in the world
cloud solutions brief image

Bitglass SASE

Want to see Bitglass solutions in action?

Request a free trial below.


Request Free Trial