Upload
lyque
View
224
Download
6
Embed Size (px)
Citation preview
Cloud Security for SD-WAN: Best Practices for Branch Office Transformation
Ramesh PrabagaranVice President, Product Management | Viptela
Steve HouseVice President, Product Management | Zscaler
To ask a question
• Type your questions into the Q/A box in the Webexpanel
• We’ll try to get to all questions during the Q&A session. If we do not get to your question, we’ll make sure to follow up afterwards
• At the end of the webcast – please let us know how we did !
• You can also write to us at [email protected]
Today’s speaker
Steve HouseVice President,
Product ManagementZscaler, Inc.
Steve House is a seasoned Product Management leader with over 20 years of experience in the networking and security industries. During that time, he has worked for multiple market-leading organizations including Zscaler, Blue Coat Systems, Packeteer and CacheFlow where he has a consistent track record of helping them innovate and grow their market share.
At Zscaler, Steve leads the Product Management team responsible for driving product strategy and execution. Steve’s goal is to help the company through its next phase of growth becoming the standard Internet security platform delivered as a service to any user on any device in any location.
Ramesh Prabagaran is VP of Product Management and Partnerships at Viptela, a provider of Software-Defined WAN technology. He has two decades experience in the networking industry playing an influential role in the network architecture of global enterprises and Tier-1 service providers.
Previously, at Juniper Networks he was instrumental in building Juniper’s enterprise-focused business, and delivered several groundbreaking enterprise routing products with multi-billion dollar revenues.
Ramesh PrabagaranVice President,
Product ManagementViptela, Inc.
Why SD-WAN Matters
By the end of 2019, 30% of enterprises will have deployed SD-WAN technology in their branches, up from less than 1% today
Source: Gartner Predicts 2016: Enterprise Networks and Network Services, Dec 2015
SD-WAN Technology and Services Market Poised to Reach $6 billion by 2020
Source: IDC Forecasts Strong Growth for Software-Defined WAN As Enterprises Seek to Optimize Their Cloud Strategies, March 2016
Viptela At A Glance
VC funding: Sequoia, Redline, Northgate
ContinentsGlobal support
Fortune-500 customers
Devices deployed
Tier-1 Carriers & Global SIs
APAC23%
EMEA18%
US59%
Healthcare
Retail
GovernmentFinancial
Manufacturing
Technology
Today’s WAN Challenges
InsufficientBandwidth
Limited ApplicationAwareness
No Cloud AppsReadiness
FragmentedSecurity
LimitedScale
HighCost
ComplexOperations
DisjointSolutions
Is Your WAN BusinessReady ?
Viptela SD-WAN Solution PhilosophyMost Comprehensive Solution on the Market
Transport Independent Fabric
CellularMPLSBroadband
Delivery Platform
QoS
Application Policies
Security
Per-SegmentTopologies
Segmentation Svc Insertion
CloudPath
Application SLA
SecurePerimeter
TrafficEngineering
SurvivabilityRouting
Analytics
Monitoring
Operations
Multicast
TransportHub
CloudAccel
Viptela Solution ElementsSecure Extensible Network
4G/LTE
MPLSInternet
Private/Viptela/Managed Cloud
Controller & Management
Ubiquitous Data Plane
Secure Control Plane
REST APIGUI
vEdge Routers(Software/Appliance)
Delivering Cloud Enabled Enterprise
IaaS
Secure SD-WANFabric
Security
SaaS
Secure SD-WANFabric
Security
Zscaler Cloud Security Platform
Enabling the secure transformation to the cloud.
Introducing Zscaler
TECHNOLOGY INNOVATION
Cloud security platform: security stack as a service
(80 patents)
Largest security cloud: 100 DCs, 100M threats blocked
from 25B trans/day
FINANCIAL STRENGTH
Accelerating growth, 125% renewal rate
Backed by:
MARKET LEADERTrusted by G2000,
5K customers, 15M users across 185 countries
Recognized leader
Global partners
185
Protection across countries
130125 17511060
Prot
ectio
n ac
ross
loca
tions
500
900
6,000
12,000
30,000
5K+Enterprises15M+ Users
All users – All traffic
Zscaler stands for Zenith of Scalability
11
Leading industry analysts agree…
“…on-premises web content security can’t protect digital business…”
SaaS Web Content Security
“Zscaler continues to be the fastest growing vendor in this market.”
Secure Web Gateway
Leader – 6 years in a row (June 2016)
Ease of App AdoptionBackhauling Internet traffic over expensive MPLS links
How do I manage my costs and deliver a better user
experience?
New Attack VectorsBreaches and Ransomware
attacks are on the rise.
How secure are we? Can I up-level my security?
Appliance SprawlIT infrastructure is getting
complex and costly.
How to SimplifyHow can I simplify IT while
maintaining security controls?
Challenges imposed by the Cloud and MobilityThe Cloud and Mobility are powerful business enablers, but it significantly impacts security, network traffic flows, applications, user experience and cost.
A typical Internet gatewayCan you afford to continue investing in on premise appliances?
• Can’t handle advanced threats• Can’t keep up - patches, threats
Ineffective security
• Capex intensive – not elastic• Traffic backhaul costs
Costly
• Each box introduces latency• Backhaul latency
Poor User Experience
• Multiple admin consoles • Scattered logs, no visibility
Complex to mange
London
San Francisco
Tokyo
Cloud scale and economics eliminates the appliance mess
Better securityThreat Correlation, All Bytes, Cloud Intelligence
“Integrated security platforms are effective in improving your security posture and reducing overall costs.”
SimplificationNo on-prem appliances
Optimized for cloudEnables local breakouts
The natural shiftOn-premise software and appliances to a cloud utility
Exploits APTMalware Botnets
Mobile employee HQ Remote offices
Connect – Control – SecureNothing bad comes in, nothing good leaks
Zscaler App Tunnel - GRE/IPsec
Single policy console Define polices by user, group, location. Policy
follows the user.
Simply configure the router or endpoint device to forward traffic to Zscaler
Zscaler built a perimeter around the Internet so you don’t need to put a perimeter around every office.
Gain visibility into all of the applications, users, threats,
and botnet-infected machines.
Global, real-time reporting
Internet and Cloud Apps
Enter Zscaler: Your security stack as a cloud service
Zscaler Cloud Security PlatformConsolidate and simplify point appliances
105M+threats blocked
every day
25B+transactions
processed every day
100+Data centers
worldwide
100K+security updates
every day
Cloud Security Platform
Serv
ices
Cloud Firewall
Access Control
Cloud Apps (CASB)
Bandwidth QoS
URL Filtering DLP Internal data
DLP Cloud Data
Data Protection
Forensics
Anti-virus
Advanced Protection
Cloud Sandbox
Threat Prevention
Intrusion Prevention
What sets Zscaler’s security apart?
Full inline content inspection
All bytes, all ports, all protocols, including SSL – no compromises.
Real-time threat correlationCorrelation of risk indicators – destination to content to predict and block zero-day
attacks.
Cloud intelligence
Over 105M threats blocked every day and once a new threat is detected, it’s immediately blocked for all users.
100K+ security updates a day.
Threat sharing partnerships, commercial deals, open source, private working groups.
40+ industry threat feeds
“As long as everything is routed through Zscaler, from a security perspective, I’m happy.”— John Taylor, Global Head of IT Security
Uniform security for everyone
A three-step journey to future proof your business for security, mobility and cloud transformation
SecureUp-level your security
No policy or infrastructure changes required.
MPLS WAN
1
Internet / Cloud
TransformCloud-enable your network
Route Internet traffic locally for a better user experience
3
Internet / Cloud
MPLS WAN
Broadband
SimplifyRemove point products
MPLS WAN
Eliminate gateway security appliances at your own pace.
2
Internet / Cloud
• Unmatched security -all users, branches, devices
• Consistent policy & protection
• Always up-to-date
Reduced RiskCISO
• Consolidate point products & simplify IT
• Cloud-enabled network• Rapid deployment
IT SimplificationCTO / IT Head
• No Capex, elastic subscription fee
• Reduced Opex - no box management
• Reduced MPLS costs
Impressive ValueCIO / CFO
• Fast response time –local breakouts
• Localized content• Empowers users to
leverage cloud apps
ProductivityEnd-users
ATrusted&ReliablePartnerCommitment to Quality & Customer Success
Technology Innovator - Market Leader - Financially Strong
Why Zscaler?
Joint Customer Success Story
Cloud Enabled Enterprise With Viptela SD-WAN & Zscaler
Secure SD-WANFabric
§ Application Visibility
§ Direct Cloud Path
§ Advance Security
Cloud Application Traffic
Exploits ATPMalware Botnets
CloudResources
Customer Case Study
Locations: Over 100 locations worldwide
Employees: 12,000 global employees
Market size: $45B
FY15 revenue: US $4.04B
DPI based SD-WAN policies
Entirely cloud controlled
Optimal SaaS access
Dual redundancy everywhere
Customer RequirementsSD-WAN with MPLS & Broadband
Split tunnel for Internet bound traffic
Centralized security and WAN management
FW / IPS / URL Filtering / Behavior Analysis
Fortune-500 Healthcare Equipment
Run a quick and safe security test to begin your journeywww.zscaler.com/securitypreview
Questions and Next Steps
26
Steve HouseVice President,Product ManagementZscaler, Inc.
Ramesh PrabagaranVice President,Product ManagementViptela, Inc.
• Upcoming Live Webcast• Optimizing the WAN for AWS & Azure• Tuesday, Aug 30th at 9:00 a.m. PDT• Go to: http://viptela.com/resources
• Upcoming Live Webcast • Rio Olympics 2016 - Cyber criminals are ready• Thursday, Aug 25th at 8:30 a.m. PDT• Go to: https://www.zscaler.com/company/webcasts
• Live Product Demo• Thursday, Aug 25th, Sep 1st -10:00 a.m. PDT• Register here: https://www.zscaler.com/productdemos
• Live Product Demo• Contact Sales for a Live Product Demo • Register here: http://viptela.com/company/contact-us/
Thank You