The next step in an evolving security landscape

Issue 6 2022 Information Security, Products & Solutions


Carl Stoop.

The hybrid workplace continues to enjoy consistent adoption, particularly amongst those industries that do not require their workforce to be at the office every day. The benefits are well-published and tangible, however, it has also brought with it a smorgasbord of security challenges.

Traditionally, organisations have relied on VPNs and premises-based security to fortify remote access.  However, if there’s one thing that we’ve learned from the pandemic is that these steps are simply not enough.

Enter Zero Trust Network Access (ZTNA), an evolutionary solution to organisations’ hybrid work policies and subsequent environments.

Analyst firm, Gartner, defines ZTNA as “products and services that create an identity- and context-based, logical-access boundary that encompasses an enterprise user and an internally hosted application, or set of applications.

“The applications are hidden from discovery, and access is restricted via a trust broker to a collection of named entities. The broker verifies the identity, context and policy adherence of the specified participants before allowing access, and minimises lateral movement elsewhere in the network.”

Considering the above, what does an implemented ZTNA solution offer in layman’s terms?

• Limits access on an application-by-application basis.

• Authenticates every device and user, no matter where they are located.

• Acknowledges today’s complex networks and makes zero assumptions.

Choosing the right ZTNA

Demystifying ZTNA is the first step; the next is ensuring that you choose the right ZTNA option that provides the above-mentioned benefits and features. 

• Ensure support for all users. The solution must secure access for everyone: employees with managed devices, BYOD devices, mobile devices, third-party partners, engineering teams and DevOps users. Look for client-based access and clientless architecture for secure access to web applications, databases, remote desktops and secure shell (SSH) servers. Be sure to also consider basic PAM (privileged access management) requirements for teams that need access to multi-cloud environments and single sign-on (SSO) into private resources.

• Ensure support for all target resources. Ensure the ZTNA solution supports all high-priority private applications and resources, not just web apps. Ensure easy operation. Look for a ZTNA solution offering maximum value with minimum maintenance. Cloud-based solutions with a unified console are easy to use and provide visibility across all ZTNA use-cases.

• Ensure high performance and service availability. A ZTNA service must deliver close to 99,999% uptime and high performance backed by service-level agreements (SLAs).

• Ensure zero trust security soundness. Look for ZTNA solutions that separate the control and data planes to enable true least-privilege access to applications and other resources.

• Part of a future-ready security service edge. Consider how the ZTNA solution can be extended to secure other use-cases – branch access via Firewall as a Service (FWaaS), Internet access via Secure Web Gateway (SWG), and SaaS access through a Security Service Edge (SSE).

Check Point’s Harmony Connect Remote Access secures access to any internal corporate application residing in the data centre, IaaS, public or private clouds. The solution is also easy to deploy, taking less than 15 minutes to install.

Harmony Connect Remote Access can be implemented in two ways:

• Clientless application-level access, which applies intuitive ZTNA to web applications, databases, remote desktops and SSH servers with granular in-app controls.

• Client-based network-level access: this VPN-as-a-service option is ideal for securing employee access from managed devices.


Credit(s)




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Cybersecurity needs actual intelligence before artificial intelligence
Information Security AI & Data Analytics
Cybersecurity depends on interpretation. A tool can tell you that something unusual has happened, but people need to determine whether it is a genuine risk, the business impact, and how to respond without causing unnecessary disruption.

Read more...
Duxbury Cybersecurity sharpens reseller offering
Duxbury Networking Information Security News & Events
Duxbury Networking has strengthened its Duxbury Cybersecurity business unit by adding WatchGuard and Cynet, giving South African resellers broader, more integrated coverage for the security risks customers are now asking them to address.

Read more...
NEC XON detects and stops ransomware attack
NEC XON Information Security IoT & Automation
Ransomware attacks rarely begin with chaos. More often, they start quietly, with probing, mapping, and patient reconnaissance inside a target’s network. That was the situation facing a global recruitment firm when cybercriminals attempted to navigate its systems.

Read more...
Sara AI Pentesting available in South Africa
Information Security News & Events
Synack and Wolfpack Information Risk are offering Sara AI Pentesting to organisations across South Africa, helping companies move from point-in-time testing to continuous security validation with AI and human expertise.

Read more...
Sophos establishes South African legal entity to strengthen local operations
News & Events Information Security
Global cybersecurity company, Sophos, has announced the formation of its local legal entity, which will support local invoicing, partner enablement, compliance requirements and expanded regional investment.

Read more...
Cybersecurity in a digitally connected security industry
SA Technologies Information Security IoT & Automation
As more organisations move towards digital visitor management, cloud-based access control, mobile applications, biometric verification, and connected security platforms, cybersecurity must be viewed as part of the full security environment.

Read more...
Enterprises must prepare for digital conflict
Information Security
Cyberattacks can be launched remotely and at scale. A coordinated attack launched from anywhere in the world can disrupt supply chains, shut down utilities, or expose millions of customer records within minutes.

Read more...
AI-enabled NVR for Milestone XProtect
Surveillance Infrastructure Products & Solutions
As surveillance environments continue to grow in scale and complexity, organisations need infrastructure that is easy to deploy, simple to manage, and ready for AI-driven workloads.

Read more...
71% of organisations suffered an identity breach
News & Events Information Security
The State of Identity Security 2026 report from Sophos finds human error and poor non-human identity management are the root causes of most attacks, as agentic AI accelerates the risk.

Read more...
Cyber resilience is the real defence
Security Services & Risk Management Information Security Infrastructure
Cyber resilience has evolved into a form of strategic agility, ensuring that when an interruption occurs, the business does not just survive; it snaps back into place before the market even notices a pause.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.