Book Image

Diving into Secure Access Service Edge

By : Jeremiah
Book Image

Diving into Secure Access Service Edge

By: Jeremiah

Overview of this book

The SASE concept was coined by Gartner after seeing a pattern emerge in cloud and SD-WAN projects where full security integration was needed. The market behavior lately has sparked something like a "space race" for all technology manufacturers and cloud service providers to offer a "SASE" solution. The current training available in the market is minimal and manufacturer-oriented, with new services being released every few weeks. Professional architects and engineers trying to implement SASE need to take a manufacturer-neutral approach. This guide provides a foundation for understanding SASE, but it also has a lasting impact because it not only addresses the problems that existed at the time of publication, but also provides a continual learning approach to successfully lead in a market that evolves every few weeks. Technology teams need a tool that provides a model to keep up with new information as it becomes available and stay ahead of market hype. With this book, you’ll learn about crucial models for SASE success in designing, building, deploying, and supporting operations to ensure the most positive user experience (UX). In addition to SASE, you’ll gain insight into SD-WAN design, DevOps, zero trust, and next-generation technical education methods.

Related Content you might be interested in

Current Title:

Small book image
Diving into Secure Access Service Edge
Jeremiah
Nov, 2022 | 192 pages
Small book image
Edge Computing Patterns for Solution Architects
Ashok Iyengar | Joseph Pearson
Jan, 2024 | 214 pages
Small book image
Network Architect's Handbook
Alim H Ali
Jan, 2024 | 418 pages
Small book image
Zscaler Cloud Security Essentials
Ravi Devarasetty
Jun, 2021 | 236 pages
Table of Contents (28 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
1
Part 1 – SASE Market Perspective
Part 1 – SASE Market Perspective
Free Chapter
2
Chapter 1: SASE Introduction
Chapter 1: SASE Introduction
Define SASE
Market SASE
Value SASE
Embrace SASE
Present SASE
Summary
3
Chapter 2: SASE Human
Chapter 2: SASE Human
Human Issue
Human Problem
Human Behavior
Human Solution
Human Patterns
Summary
4
Chapter 3: SASE Managed
Chapter 3: SASE Managed
SASE Self
SASE Co-managed
SASE Managed
SASE Operational
SASE Success
Summary
5
Chapter 4: SASE Orchestration
Chapter 4: SASE Orchestration
SASE Manual
SASE Template
SASE Integrate
SASE Orchestrate
SASE Automate
Summary
6
Chapter 5: SASE SD-WAN
Chapter 5: SASE SD-WAN
SD-What
SD-Why
SD-How
SD-When
SD-SASE
Summary
7
Part 2 – SASE Technical Perspective
Part 2 – SASE Technical Perspective
8
Chapter 6: SASE Detail
Chapter 6: SASE Detail
Service Definition
Service Components
Service Roles
Service Requirements
Service Flight
Summary
9
Chapter 7: SASE Session
Chapter 7: SASE Session
SASE Session
SASE UNI
SASE Actors
SASE Flow
SASE Lifecycle
Summary
10
Chapter 8: SASE Policy
Chapter 8: SASE Policy
SASE Policy
SASE Quality
SASE Dynamic
SASE Trust
SASE Effective
Summary
11
Chapter 9: SASE Identity
Chapter 9: SASE Identity
Access Identity
Dimensional Identity
Context Identity
Situation Identity
Integrate Identity
Summary
12
Chapter 10: SASE Security
Chapter 10: SASE Security
Secure Overview
Secure Details
Secure Session
Secure Automation
Secure Summary
Summary
13
Chapter 11: SASE Services
Chapter 11: SASE Services
Services Overview
Services Core
Service Options
Services Expanse
Services Explain
Summary
14
Chapter 12: SASE Management
Chapter 12: SASE Management
Management Overview
Management Systems
Management Templates
Management Automation
Management Simplified
Summary
15
Part 3 – SASE Success Perspective
Part 3 – SASE Success Perspective
16
Chapter 13: SASE Stakeholders
Chapter 13: SASE Stakeholders
Stakeholders Overview
Stakeholders Business
Stakeholders Technical
Stakeholder Users
Stakeholder Success
Summary
17
Chapter 14: SASE Case
Chapter 14: SASE Case
Case Overview
Case Insight
Case Examples
Case Design
Case Value
Summary
18
Chapter 15: SASE Design
Chapter 15: SASE Design
Design Overview
Design Theory
Design Function
Design Support
Design Communication
Summary
19
Chapter 16: SASE Trust
Chapter 16: SASE Trust
Zero Overview
Zero Framework
Zero Feed
Zero Trust
Zero Explained
Summary
20
Part 4 – SASE Bonus Perspective
Part 4 – SASE Bonus Perspective
21
Chapter 17: SASE Learn
Chapter 17: SASE Learn
Learn Overview
Learn Model
Learn Perpetual
Learn Timing
Learn Explain
Summary
22
Chapter 18: SASE DevOps
Chapter 18: SASE DevOps
DevOps Overview
DevOps Fervor
DevOps Continuous
DevOps Act
DevOps Impact
Summary
23
Chapter 19: SASE Forward
Chapter 19: SASE Forward
Forward Overview
Forward Present
Forward Future
Forward Measured
Forward Concept
Summary
24
Chapter 20: SASE Bonus
Chapter 20: SASE Bonus
SD-WAN Overview
SD-WAN Design
SD-WAN Failure
SD-WAN Experience
SD-WAN Practice
Summary
SASE Conclusion
25
Index
Index
Why subscribe?
26
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Download a free PDF copy of this book
Appendix: SASE Terms
Appendix: SASE Terms

Value SASE

Effective security is inherently valuable, but how do we accurately estimate that value? How do we quantify the value of a solution for an unknown risk impact? Former President of the US, Ronald Reagan, was quoted as saying: "Information is the oxygen of the modern time. It seeps through the walls topped by barbed wire; it wafts across the electrified borders." If information is oxygen, what is the accurate value of oxygen to human life? Effective security pays for itself in reducing risk, liability, and loss of unknown quantities by protecting that oxygen or—in this case—non-public information.

To evaluate SASE in a value proposition or ROI, the investment should be first quantified. Steven Ross, Executive Principal of Risk Masters Inc., points to the Return on Security Investment (ROSI), which is a calculable assessment as a way of identifying the monetary value of the security investment. This may be important to the CFO or investors as a model for understanding financially the inherent value of secure IT investments. More information can be found at the following link: https://www.isaca.org/resources/isaca-journal/past-issues/2011/what-is-the-value-of-security#1.

Without effective security solutions, an organization will cease to achieve a primary ROI for time and capital invested. A recommended value proposition for security is the ability to conduct, without obstruction, the primary business of the organization on whose behalf the secure solution is employed. SASE provides cost-effective security and builds value by reducing inefficiencies in previously developed generations of secure communications. Cost reductions can be achieved by reducing labor, time, capital, focus, outages, performance issues, and educational requirements for staff members trying to build their own perfect technology. Simply speaking, the investment required to develop secure technology solutions in-house with homegrown or best-of-breed market solutions has been providing a negative ROI, which has driven the market to leverage an MSP that specializes in a specific technology. This method also allows for the transfer of liability to the MSP, which provides some relief for executives not choosing to develop their own secure communications solution in-house.

Leveraging SASE with SD-WAN prepares networking and security solutions for a future of automated and secure IT provisioning with real-time operations remediation. To eliminate the inefficiencies that every network has experienced, the solution starts with abstracted components and the disaggregation of data and control-plane activity (separating components). By leveraging a deconstructive process, smaller changes may be made, reducing the risk of any one change causing a major impact to secure network communications. The smaller the change, the quicker the change can provide business value. The target process is analogous to a garden-pruning process that makes small changes until the overall desired effect is achieved. Unlike physical garden pruning, small changes in SASE can be reversed quickly if a negative outcome is realized. Overall, this methodology allows IT organizations to move much quickly than we could even 5 years ago, which allows us to do more with less at the pace of the market.

Orchestration allows for solutions to be templated. The orchestrator allows templates to be overlain upon any of the logical components in the overall solution or service. The creation of a template-based design offers rapid deployment across the abstracted solution. An additional benefit of orchestration is that template continuity may be enforced by the orchestrator and any variance in behavior be reported to security operations systems for tracking and mitigation. This process allows the achievement of compliance with approved network or security designs and immediately identifies violations for action.

SASE provides value in efficiencies, scale, automation, enforcement, and orchestration over similar secure communications technologies in production today. The overall value reduces the design, build, deploy, and operate labor required to keep an organization communicating securely.

Overall, the value of a SASE solution lies in its ability to reduce productivity losses caused by security risks or threats. SASE integrates independent security solutions for a holistic approach that can be automated, reducing the amount of human labor required while taming a mission that was once near impossible.

In the following section, I hope that you will learn to embrace SASE for the inherent benefits it provides to your organization.

Previous Section
End of Section 4
Next Section