Change is an amazing thing and an ever present force within the ICT industry. Whilst we can point to evidence of change everywhere the one area that really highlights this is ICT security. Originally viewed as a way to segment corporate networks and deploy firewall policy control through UNIX-based firewalls security has changed significantly since these early days.
Those firewalls turned into appliances however security threats, unabated persisted which led to the introduction of Intrusion Detection Systems (IDS’s) to get a deeper look at the traffic that the firewall considered “valid” but may still represent a risk. Then along came encryption which meant that the IDS’s were blind to the encrypted traffic thus introducing a requirement to implement encryption offload and management, often in multiple places which hurt application performance which in turn required the deployment of proxies (forward & reverse, caching & non-caching) to assist. After the IDS’s kept detecting false positives we introduced Vulnerability Assessment and ultimately Intrusion Prevention Platforms (IPS’s) not to mention Data Loss Prevention (DLP) capabilities, Anti-Virus gateways and the list goes on and on. Today there is a significant focus on DDoS management as well as Advanced Persistent Threat (APT) management, all adding to the ever growing complexity of infrastructure an enterprise needs to buy (which is hard), let alone manage (which is harder) least of which integrate (hardest).
To add insult to injury along came mobility & cloud which put all of that investment out of reach of the user and their business goals. When a user on a mobile device accesses their app’s and data in the cloud that transaction is not even seen let alone controlled by the traditional array of on-premise security controls. Fundamentally, the intersection of mobility & cloud has irreversibly changed the security architecture paradigm.
A new security approach is needed. One that still supports the traditional on-premise approach but embraces the world of mobility & cloud, a platform that securely enables the enterprise to go forward, not a conga line of legacy appliances holding it back.
At airloom we spent a lot of time looking into this opportunity space. Our core focus is mobility & cloud so how do we help our customers achieve an enterprise which is “Mobile First, Cloud First” whilst addressing all of their security requirements without impacting user experience.
After a lot of research, thinking & testing, we found it a cloud Security as a Service called Zscaler
Zscaler is your enterprise perimeter delivered as a service via the global Zscaler cloud. The Zscaler cloud provides the full suite of security services such as Next Generation Firewall, URL Filtering, Anti-Virus, SSL Inspection, DLP and more. The key difference is that Zscaler is a platform for security in the cloud and, as such, is perfectly placed at the intersection of mobility and cloud as well as providing security controls for on-premise environments via integration with your existing networks.
So before you plan your next proxy server refresh, or Advanced Threat Protection investment, take a moment to reach out to us and have a chat about leveraging the Zscaler cloud instead.