Cloud Security for SD-WAN: Best Practices for Branch Office Transformation

Ramesh PrabagaranVice President, Product Management | Viptela

Steve HouseVice President, Product Management | Zscaler

To ask a question

• Type your questions into the Q/A box in the Webexpanel

• We’ll try to get to all questions during the Q&A session. If we do not get to your question, we’ll make sure to follow up afterwards

• At the end of the webcast – please let us know how we did !

• You can also write to us at webcast@zscaler.com

Today’s speaker

Steve HouseVice President,

Product ManagementZscaler, Inc.

Steve House is a seasoned Product Management leader with over 20 years of experience in the networking and security industries. During that time, he has worked for multiple market-leading organizations including Zscaler, Blue Coat Systems, Packeteer and CacheFlow where he has a consistent track record of helping them innovate and grow their market share.

At Zscaler, Steve leads the Product Management team responsible for driving product strategy and execution. Steve’s goal is to help the company through its next phase of growth becoming the standard Internet security platform delivered as a service to any user on any device in any location.

Ramesh Prabagaran is VP of Product Management and Partnerships at Viptela, a provider of Software-Defined WAN technology. He has two decades experience in the networking industry playing an influential role in the network architecture of global enterprises and Tier-1 service providers.

Previously, at Juniper Networks he was instrumental in building Juniper’s enterprise-focused business, and delivered several groundbreaking enterprise routing products with multi-billion dollar revenues.

Ramesh PrabagaranVice President,

Product ManagementViptela, Inc.

Why SD-WAN Matters

By the end of 2019, 30% of enterprises will have deployed SD-WAN technology in their branches, up from less than 1% today

Source: Gartner Predicts 2016: Enterprise Networks and Network Services, Dec 2015

SD-WAN Technology and Services Market Poised to Reach $6 billion by 2020

Source: IDC Forecasts Strong Growth for Software-Defined WAN As Enterprises Seek to Optimize Their Cloud Strategies, March 2016

Viptela At A Glance

VC funding: Sequoia, Redline, Northgate

ContinentsGlobal support

Fortune-500 customers

Devices deployed

Tier-1 Carriers & Global SIs

APAC23%

EMEA18%

US59%

Healthcare

Retail

GovernmentFinancial

Manufacturing

Technology

Today’s WAN Challenges

InsufficientBandwidth

Limited ApplicationAwareness

No Cloud AppsReadiness

FragmentedSecurity

LimitedScale

HighCost

ComplexOperations

DisjointSolutions

Is Your WAN BusinessReady ?

Viptela SD-WAN Solution PhilosophyMost Comprehensive Solution on the Market

Transport Independent Fabric

CellularMPLSBroadband

Delivery Platform

QoS

Application Policies

Security

Per-SegmentTopologies

Segmentation Svc Insertion

CloudPath

Application SLA

SecurePerimeter

TrafficEngineering

SurvivabilityRouting

Analytics

Monitoring

Operations

Multicast

TransportHub

CloudAccel

Viptela Solution ElementsSecure Extensible Network

4G/LTE

MPLSInternet

Private/Viptela/Managed Cloud

Controller & Management

Ubiquitous Data Plane

Secure Control Plane

REST APIGUI

vEdge Routers(Software/Appliance)

Delivering Cloud Enabled Enterprise

IaaS

Secure SD-WANFabric

Security

SaaS

Secure SD-WANFabric

Security

Zscaler Cloud Security Platform

Enabling the secure transformation to the cloud.

Introducing Zscaler

TECHNOLOGY INNOVATION

Cloud security platform: security stack as a service

(80 patents)

Largest security cloud: 100 DCs, 100M threats blocked

from 25B trans/day

FINANCIAL STRENGTH

Accelerating growth, 125% renewal rate

Backed by:

MARKET LEADERTrusted by G2000,

5K customers, 15M users across 185 countries

Recognized leader

Global partners

185

Protection across countries

130125 17511060

Prot

ectio

n ac

ross

loca

tions

500

900

6,000

12,000

30,000

5K+Enterprises15M+ Users

All users – All traffic

Zscaler stands for Zenith of Scalability

11

Leading industry analysts agree…

“…on-premises web content security can’t protect digital business…”

SaaS Web Content Security

“Zscaler continues to be the fastest growing vendor in this market.”

Secure Web Gateway

Leader – 6 years in a row (June 2016)

Ease of App AdoptionBackhauling Internet traffic over expensive MPLS links

How do I manage my costs and deliver a better user

experience?

New Attack VectorsBreaches and Ransomware

attacks are on the rise.

How secure are we? Can I up-level my security?

Appliance SprawlIT infrastructure is getting

complex and costly.

How to SimplifyHow can I simplify IT while

maintaining security controls?

Challenges imposed by the Cloud and MobilityThe Cloud and Mobility are powerful business enablers, but it significantly impacts security, network traffic flows, applications, user experience and cost.

A typical Internet gatewayCan you afford to continue investing in on premise appliances?

• Can’t handle advanced threats• Can’t keep up - patches, threats

Ineffective security

• Capex intensive – not elastic• Traffic backhaul costs

Costly

• Each box introduces latency• Backhaul latency

Poor User Experience

• Multiple admin consoles • Scattered logs, no visibility

Complex to mange

London

San Francisco

Tokyo

Cloud scale and economics eliminates the appliance mess

Better securityThreat Correlation, All Bytes, Cloud Intelligence

“Integrated security platforms are effective in improving your security posture and reducing overall costs.”

SimplificationNo on-prem appliances

Optimized for cloudEnables local breakouts

The natural shiftOn-premise software and appliances to a cloud utility

Exploits APTMalware Botnets

Mobile employee HQ Remote offices

Connect – Control – SecureNothing bad comes in, nothing good leaks

Zscaler App Tunnel - GRE/IPsec

Single policy console Define polices by user, group, location. Policy

follows the user.

Simply configure the router or endpoint device to forward traffic to Zscaler

Zscaler built a perimeter around the Internet so you don’t need to put a perimeter around every office.

Gain visibility into all of the applications, users, threats,

and botnet-infected machines.

Global, real-time reporting

Internet and Cloud Apps

Enter Zscaler: Your security stack as a cloud service

Zscaler Cloud Security PlatformConsolidate and simplify point appliances

105M+threats blocked

every day

25B+transactions

processed every day

100+Data centers

worldwide

100K+security updates

every day

Cloud Security Platform

Serv

ices

Cloud Firewall

Access Control

Cloud Apps (CASB)

Bandwidth QoS

URL Filtering DLP Internal data

DLP Cloud Data

Data Protection

Forensics

Anti-virus

Advanced Protection

Cloud Sandbox

Threat Prevention

Intrusion Prevention

What sets Zscaler’s security apart?

Full inline content inspection

All bytes, all ports, all protocols, including SSL – no compromises.

Real-time threat correlationCorrelation of risk indicators – destination to content to predict and block zero-day

attacks.

Cloud intelligence

Over 105M threats blocked every day and once a new threat is detected, it’s immediately blocked for all users.

100K+ security updates a day.

Threat sharing partnerships, commercial deals, open source, private working groups.

40+ industry threat feeds

“As long as everything is routed through Zscaler, from a security perspective, I’m happy.”— John Taylor, Global Head of IT Security

Uniform security for everyone

A three-step journey to future proof your business for security, mobility and cloud transformation

SecureUp-level your security

No policy or infrastructure changes required.

MPLS WAN

1

Internet / Cloud

TransformCloud-enable your network

Route Internet traffic locally for a better user experience

3

Internet / Cloud

MPLS WAN

Broadband

SimplifyRemove point products

MPLS WAN

Eliminate gateway security appliances at your own pace.

2

Internet / Cloud

• Unmatched security -all users, branches, devices

• Consistent policy & protection

• Always up-to-date

Reduced RiskCISO

• Consolidate point products & simplify IT

• Cloud-enabled network• Rapid deployment

IT SimplificationCTO / IT Head

• No Capex, elastic subscription fee

• Reduced Opex - no box management

• Reduced MPLS costs

Impressive ValueCIO / CFO

• Fast response time –local breakouts

• Localized content• Empowers users to

leverage cloud apps

ProductivityEnd-users

ATrusted&ReliablePartnerCommitment to Quality & Customer Success

Technology Innovator - Market Leader - Financially Strong

Why Zscaler?

Joint Customer Success Story

Cloud Enabled Enterprise With Viptela SD-WAN & Zscaler

Secure SD-WANFabric

§ Application Visibility

§ Direct Cloud Path

§ Advance Security

Cloud Application Traffic

Exploits ATPMalware Botnets

CloudResources

Customer Case Study

Locations: Over 100 locations worldwide

Employees: 12,000 global employees

Market size: $45B

FY15 revenue: US $4.04B

DPI based SD-WAN policies

Entirely cloud controlled

Optimal SaaS access

Dual redundancy everywhere

Customer RequirementsSD-WAN with MPLS & Broadband

Split tunnel for Internet bound traffic

Centralized security and WAN management

FW / IPS / URL Filtering / Behavior Analysis

Fortune-500 Healthcare Equipment

Run a quick and safe security test to begin your journeywww.zscaler.com/securitypreview

Questions and Next Steps

26

Steve HouseVice President,Product ManagementZscaler, Inc.

Ramesh PrabagaranVice President,Product ManagementViptela, Inc.

• Upcoming Live Webcast• Optimizing the WAN for AWS & Azure• Tuesday, Aug 30th at 9:00 a.m. PDT• Go to: http://viptela.com/resources

• Upcoming Live Webcast • Rio Olympics 2016 - Cyber criminals are ready• Thursday, Aug 25th at 8:30 a.m. PDT• Go to: https://www.zscaler.com/company/webcasts

• Live Product Demo• Thursday, Aug 25th, Sep 1st -10:00 a.m. PDT• Register here: https://www.zscaler.com/productdemos

• Live Product Demo• Contact Sales for a Live Product Demo • Register here: http://viptela.com/company/contact-us/

Thank You