Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

Security solution for SD WAN

1 August 2019 Infrastructure

The benefits of SD WAN (Software-Defined Wide-Area Networks) seem to have resonated with many companies in Africa, providing an intelligent and cost-effective way to use the internet to supplement, or even replace, expensive MPLS (Multiprotocol Label Switching). While SD WAN delivers tangible benefits which include faster access to web-based applications, lower cost and more intelligent application routing - the one thing it does that goes against most organisational mindsets is the decentralisation and loss of control over security.

“The SD WAN business case promises lower cost and better performance, but is often undermined by the need to decentralise security and add a firewall at each branch break out to the internet. In this regard, maintaining the same level of security as in a centralised model is complex and prohibitively expensive”, says Stuart Hardy, Director at OneSecure

Today, most organisations still run centralised security architectures, with secure internet breakout from an MPLS network. However, in a growing cloud application world and due to SD WAN growth, this traditional architecture is breaking. Some of the challenges related to the old security perimeter include:

1. Users and branches are only protected when they are inside the secure perimeter making it challenging to enforce policies when outside.

2. It’s difficult and prohibitively expensive to replicate this (centralised) security stack at the edge when using SD WAN or local internet breakout.

3. Appliance driven security cannot keep up with the exponential growth of internet, creating a bottleneck.

4. The security stack is often made up of a range of point solutions with little visibility or real-time analytics.

5. Deploying appliance-based security at the edge for hundreds of sites on SD WAN comes with a high cost, and logistical and management overhead – especially in Africa.

6. Secure remote access solutions still require users to connect to corporate HQ even when accessing cloud applications.

7. Secure remote access provides network wide access to users when remote.

Moving to cloud security

Moving your centralised security stack to the cloud is the only logical option when your users and applications are moving out of the network. Essentially, it’s the same argument as when moving business-critical applications to IaaS (Infrastructure-as-a-Service) like Azure and AWS, as opposed to placing applications on hardware in your head office.

With a product like Zscaler, you can seamlessly protect your users, branches and applications in any architecture, which will underpin your drive into both SD WAN and cloud.

Some key benefits include:

1. Secure your users no matter where they are by routing all mobile user and branch based internet traffic through the Zscaler cloud.

2. Secure all internet breakouts without compromising security and maintaining same standard as the headquarters.

3. No appliances means instant deployment and evergreen scalability, with no logistical or high-availability issues.

4. Connect remote users directly to corporate applications and not the network (zero trust).

5. Direct access to private cloud applications securely, bypassing the corporate network for faster private and public cloud application delivery.

“When you move your security to the cloud, you remove all the limitations associated with physical hardware, while positioning your company to easily evolve into greater mobility and cloud application delivery. With Zscaler your users will always be driven to the Zscaler cloud ensuring global policy enforcement no matter where the user is,” adds Hardy

Zscaler for SD WAN

The Zscaler Cloud Security solution is not only recognised by leading companies worldwide, but by almost all SD WAN vendors as the No 1 cloud security solution for SD WAN network designs.

In most cases, integrating Zscaler in a SD WAN deployment, is as simple as provisioning a simple API call at the click of a button. This makes sure all internet traffic will go directly to Zscaler, ensuring comprehensive security enforcement and protection. This full inline inspection provides a full security layer and includes URL filtering, antivirus, sandboxing, DLP and advanced Level-7 firewall in the cloud.

It’s clear that the traditional appliance-based strategy is out-dated and is being replaced by a new generation of cloud-focused services. The benefits of IaaS solutions like Azure and AWS go beyond just the economics of cloud, driving straight into the concept of digital transformation where organisations can quickly, efficiently and economically, take advantage of technology that will improve their business processes.





Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

New commercial and technical appointments at Veeam
News & Events Infrastructure
Veeam Software has announced two senior appointments in its South African business as it continues to invest in local market growth and partner and customer engagement.

Read more...
Access as a Service is inevitable
Technews Publishing SMART Security Solutions ATG Digital Access Control & Identity Management Infrastructure
When it comes to Access Control as a Service (ACaaS), most organisations (roughly 90% internationally) plan to move, or are in the process of moving to the cloud, but the majority of existing infrastructure (about 70%) remains on-premises for now.

Read more...
Privacy by design or by accident
Security Services & Risk Management Infrastructure
Africa’s data future depends on getting it right at the start. If privacy controls do not withstand real-world conditions, such as unstable power, fragile last-mile connectivity, shared devices, and decentralised branch environments, then privacy exists only on paper.

Read more...
Access trends for 2026
Technews Publishing SMART Security Solutions RR Electronic Security Solutions Enkulu Technologies IDEMIA neaMetrics Editor's Choice Access Control & Identity Management Infrastructure
The access control and identity management industry has been the cornerstone of organisations of all sizes for decades. SMART Security Solutions asked local integrators and distributors about the primary trends in the access and identity market for 2026.

Read more...
Protecting high-value data from AI
CASA Software Infrastructure Information Security Products & Solutions
As artificial intelligence accelerates the speed and sophistication of cyberattacks, protecting high-value data, such as financial records, legal files, patient data, intellectual property, and compliance records, has never been more urgent.

Read more...
Integrated security key to protecting cloud applications
Infrastructure Information Security
Cloud-native applications have transformed the way businesses operate, enabling faster innovation, greater agility, and enhanced scalability. Yet this evolution brings an equally complex security landscape.

Read more...
The global state of physical security
Genetec News & Events Infrastructure
Physical security has become a strategic business function, improving IT collaboration and decision-making. Moreover, interest in AI has more than doubled among users, and organisations seek flexibility to deploy workloads on-premises, in the cloud, or hybrid.

Read more...
SA availability of immutable backup storage appliance
CASA Software Infrastructure Security Services & Risk Management
CASA Software has launched the newly released Nexsan VHR-Series, a fully integrated, enterprise-class, immutable backup storage appliance purpose-built for Veeam software environments, with usable capacity ranging from 64 TB to 3,3 PB.

Read more...
What is your ‘real’ security posture?
BlueVision Editor's Choice Information Security Infrastructure AI & Data Analytics
Many businesses operate under the illusion that their security controls, policies, and incident response plans will hold firm when tested by cybercriminals, but does this mean you are really safe?

Read more...
What is your ‘real’ security posture? (Part 2)
BlueVision Editor's Choice Information Security Infrastructure
In the second part of this series of articles from BlueVision, we explore the human element: social engineering and insider threats and how red teaming can expose and remedy them.

Read more...











SMART Security Business Directory


While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.