Is SASE/SD-WAN a foolproof solution for ensuring remote workers access your system securely?

Identity & Access Management (IAM)Vendor/Product RecommendationInfrastructure
1.5k views1 Upvote5 Comments
Sort By:
Oldest
Head of Information Technology3 years ago
We used Okta with Device Trust and that works pretty well for ensuring that people are accessing at least some of the applications from devices that we manage. That works well for the most part. Of course, there are super smart people that can figure their way around it. It's not bad, but the new chip added to the latest Mac OS has thrown some kinks in that. They're going to be re-releasing all of Device Trust.
1
Co-Founder, SVP, CISO3 years ago
When I was at Atmel Semiconductor, we had 20 data centers all over the world, so we had our office in a suitcase—all we needed to do was connect and it had everything. This was before SD-WAN, but we had a firewall, WiFi, and we had some IP phones that we could just put out in a conference room. It would set up a point-to-point VPN and once you plugged it in, you had everything, including a file server. It was a pretty hefty suitcase.

We did a lot of M&A, so it was like, "Okay, we're going to Germany now. Bring the suitcases." We could just get the biggest conference room, open up the suitcase, plug it in and have a complete office within 15 minutes. I imagine that would work at places like WeWorks, but you need to engineer that and produce a bunch of them.
2 1 Reply
CISO in Software3 years ago

I miss the good old secure days when we had a private internet connection from your office to Equinix and then your internet core was at Equinix. Then you had ExpressRoute or Direct Connect to your cage. Everything was happy and fast and good, but things change and now we're all remote.

And all these remote workers are working without agents, I assume. You could have CrowdStrike, SentinelOne, etc., but I still haven't found a good way to keep the end-users safe. We just have Macs and use SentinelOne. I don't know if it does anything.

2
lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
Director of Enablement4 months ago
Yes, and no.

Yes: SD-WAN is a technology that allows you to move faster, deploy quicker and manage easier. SASE on the other hand is a framework that enables and empowers you to make the right business decisions. A core pillar of SASE is ZTNA, which should constantly interrogate the user and device to validate they are who they say they are, and they are accessing resources they’re meant to. When done right, SASE is a game changer. However..

No: you cannot buy a tool or product to give you foolproof protection. People are inherently vulnerabilities, and they will find ways to circumvent your technology. Solutions can help your journey, but if you don’t deploy things correctly (or have the time to ensure your policies are correct), then you might just end up spending 7 figures to bring more security holes into your network.
Director of IT in Energy and Utilities4 months ago
I think the future of SD-WAN is a question mark.  There is a potential for the concept of the WAN to go away totally and be replaced with communication that is inherently not trusted among a ton of end points.  The end points can be an end user device, appliance like a printer or a vending machine, a server or anything else that is defined by those who manage the communication
1

Content you might like

What is your primary deciding factor in adopting enterprise search?

Strategy & ArchitectureCloudEnd-User Services & Collaboration+26 more

TCO19%

Pricing26%

Integrations21%

Alignment with Cloud Provider7%

Security10%

Alignment with Existing IT Skills4%

Product / Feature Set7%

Vendor Relationship / Reputation

Other (comment)

View Results
5.7k views3 Upvotes1 Comment

Will rising cloud costs lead to a reverse migration, from cloud to on-prem?

CloudCost OptimizationInfrastructure
Director IT | CTO Office | Digital Factory / Industry 4.0 in Hardware2 years ago
I don't think rising costs will make people migrate back to on-prem because they're too  invested. If you're already in the cloud, you would have to bring everything down and set up an on-prem environment, which ...read more
2 Replies
Read More Comments
3.2k views11 Comments

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Applications & PlatformsCloudData & Analytics+15 more
Head of Enterprise Architecture MERCK Group in Healthcare and Biotecha year ago
Strategy & Architecture
Read More Comments
39k views5 Upvotes34 Comments

Single sign-on (SSO) increases the chance of a major network security breach.

Single Sign-On (SSO/SAML)Identity & Access Management (IAM)Third Party Risk Management (TPRM)

Strongly agree4%

Agreee59%

Neutral23%

Disagree12%

Strongly disagree1%

View Results
3.8k views2 Upvotes3 Comments

Has anyone been successful switching cloud backup solutions?  We are using CommVault for our M365 data (Exchange, SPO, One Drive, Teams, etc). I'd like to move to another solution, however the sticking point has been that some of the data has a 1 year backup retention period. I'd rather not pay for 2 backup solutions at the same time, so how do we get our data out of one place and into another? One recommendation has been to restore the data to an alternative tenant/location and then back it up with the new solution.  In our case, we're talking about thousands of SPO sites with daily backups which is not likely to work. Any other options, aside from letting the data age-off and being forced into paying "double"? 

Vendor/Product AssessmentVendor/Product RecommendationCloud
Director of IT in Healthcare and Biotech7 days ago
In my experience we've always had some overlap between technologies when replacing one, especially a cornerstone technology. Switching platforms isn't easy, there's a lot of risk, teething issues, staff learning, and time ...read more
Read More Comments
613 views2 Comments