In at present’s Data Age, information is gold. Fashionable enterprises are chargeable for defending the delicate data of consumers and workers, enterprise secrets and techniques, and their mental property from unintentional leakage or theft in a safety local weather the place breaches are more and more prevalent.
The pandemic caused a dramatic shift to hybrid work, requiring workers to entry delicate information from wherever. And the explosion of SaaS apps signifies that the info lives nearly in every single place. Mixed, these elements dramatically enhance the assault floor. How is it doable to safe information constantly beneath these circumstances?
Organizations look to ZTNA as the brand new strategy to securely join their hybrid workforce with the purposes and information they want. Nonetheless, earlier ZTNA variations – ZTNA 1.0 – don’t at all times take information safety into consideration.
I beforehand highlighted a few of the deficiencies in ZTNA 1.0 approaches, akin to violating the precept of least privilege and following an “permit and ignore” mannequin, each of that are elementary flaws that expose organizations to elevated dangers. One other key space of deficiency is a scarcity of constant and sturdy information safety for all enterprise apps. And, similar to permit and ignore, missing constant information safety for any app is a recipe for catastrophe.
ZTNA 1.0 Lacks Knowledge Safety
ZTNA 1.0 options don’t present information safety, particularly the info inside personal purposes. Our software site visitors is a mixture of personal cloud, public cloud, web and SaaS, not simply web and SaaS. ZTNA 1.0 options utterly lack visibility into information exfiltration or loss, thus offering no information safety for any personal apps. This leaves many of the group’s app site visitors (particularly the custom-built personal apps) weak to information exfiltration from malicious insiders or exterior attackers and requires utterly completely different information loss prevention (DLP) options to guard delicate information in SaaS purposes. This introduces extra complexity and threat because it requires organizations to make use of a number of level merchandise to safe information in every single place.
With ZTNA 1.0 approaches, you must manually create completely different insurance policies on completely different screens, every with a special record of controls. You additionally should manually reconcile these insurance policies to specific safety intent with any diploma of certainty and auditability. That is unimaginable to realize for something greater than a handful of apps, which inevitably results in over-privileged entry and coverage gaps. This in flip, results in breaches.
ZTNA 2.0 Ensures Constant Knowledge Safety Throughout the Enterprise
ZTNA 2.0, delivered by Prisma Entry, affords constant, complete information visibility and management throughout all apps used within the enterprise, together with personal apps and SaaS, with a single DLP coverage. As a substitute of simply specializing in a subset of enterprise apps, Prisma Entry was purpose-built to safe all app site visitors and information throughout all ports and protocols, from a single, unified resolution. This implies the identical sturdy information protections that govern SaaS purposes will also be utilized to any app, even legacy premises-based purposes in personal information facilities, and be managed all from a single coverage.
Your hybrid workforce wants entry to SaaS and personal apps, and the internet-at-large to get work completed. Offering information safety for a simply portion of these apps leaves organizations and their information ripe for exploitation and exfiltration. ZTNA 2.0 with Prisma Entry incorporates the business’s most complete cloud-delivered enterprise DLP, powered by machine studying to precisely defend delicate information in real-time, throughout all purposes.
ZTNA 2.0 Is Zero Belief with Zero Exceptions
Pursuing a real Zero Belief posture is a journey, and defending information constantly, no matter the place it’s situated or accessed from, is a vital step. That’s why constant management of information throughout all apps used within the enterprise, together with personal apps and SaaS, is a core pillar of ZTNA 2.0.
Make sure you watch our ZTNA 2.0 digital occasion, the place we talk about improvements and greatest practices for securing the hybrid workforce with ZTNA 2.0.
Kumar Ramachandran serves as Senior Vice President of Merchandise for Safe Entry Service Edge (SASE) merchandise at Palo Alto Networks. Kumar co-founded CloudGenix in March 2013 and was its CEO, establishing the SD-WAN class. Previous to founding CloudGenix, Kumar held management roles in Product Administration and Advertising for the multi-billion greenback department routing and WAN optimization companies at Cisco. Previous to Cisco, he managed purposes and infrastructure for firms akin to Citibank and Providian Monetary. Kumar holds an MBA from UC Berkeley Haas Faculty of Enterprise and a Grasp’s in Laptop Science from the College of Bombay.
