Cloud 101CircleEventsBlog
Join AT&T's experts & CSA's Troy Leach on April 4 to boost your cyber resilience in 2024!

Security Service Edge (SSE) Reflects a Changing Market: What You Need to Know

Security Service Edge (SSE) Reflects a Changing Market: What You Need to Know

Blog Article Published: 02/24/2022

This blog was originally published by CXO REvolutionaries here.

Written by Sanjit Ganguli, VP Transformation Strategy/Field CTO - Global Enterprise, Zscaler.

What the world needs is another acronym in cyber security, said absolutely NO ONE. However, as a former Gartner analyst who helped bring my fair share of new acronyms into the world, I believe that SSE–the Security Service Edge–is an important and new direction.

So why is this change of direction significant? Creating a new Gartner market segment is not done lightly--it often reflects trends and shifts in client inquiries (the typical analyst does well over 600 client interactions per year). The introduction of SSE reflects the fact that increasingly clients require:

  • Security that isn’t tied to a network
  • Reduction of risk posed by gaps in disparate solutions
  • Zero-trust access that's least-privilege based on identity and context
  • Consistent policy across all channels: Internet, SaaS, and private applications in the data center or cloud
  • Fast digital experience regardless of user location or connection

So first, a bit of history. Gartner introduced the Secure Access Service Edge (SASE) back in 2019 to describe the convergence of WAN edge network services, like SD-WAN, with network security services, like secure web gateway (SWG) and zero trust network access (ZTNA). SASE described a world where the security perimeter wasn’t defined by appliances in a data center but as integrated services offered via the cloud closest to where the users were.

The adoption of SASE required crossing organizational silos and coordinating buying motions across disparate groups--for example, networking teams considering SD-WAN and security teams considering a consolidated security platform. This often required networking and security buyers to integrate solutions from multiple vendors.

With SSE, Gartner extracts the security portion of its SASE architecture into its own taxonomy and research area, creating a separate market segment. SSE is a cloud-centric security platform, most often offered by a single vendor, that consolidates multiple security capabilities including SWG, ZTNA, cloud access security broker (CASB), data protection, remote browser isolation (RBI), and firewall as a service (FWaaS) (see Figure 1). SSE has even earned itself a place on the most recent Gartner Hype Cycles as a ‘high benefit,’ ‘emerging’ technology that is set to be mainstream over the next 2-5 years.

SSE promises to ensure secure administration and policies of cloud and web usage; identify and protect sensitive information; connect and secure remote workers, and detect and mitigate threats. And it promises to do so with a network-agnostic, single-vendor solution that offers consistent policy, zero-trust access, and a fast digital experience.

The SSE market definition addresses these client requirements. Fundamentally, SSE acknowledges that often disparate security services like SWG, ZTNA, data protection, and CASB should not be procured as standalone solutions, sold separately (where lots of assembly is required; batteries not included). The prevalence of cloud-hosted applications and data being everywhere, along with the emergence of the hybrid workplace, requires the streamlined approach of a best-in-class, single-vendor solution.

It also makes clear that single-vendor SSE platforms reduce risk by eliminating gaps created by multi-vendor offerings and also allow a consistent policy to be set for functions like data inspection and malware inspection.

Importantly, the definition of SSE as its own market segment also acknowledges that these security services should be network-agnostic, and not dependent on the underlying network infrastructure.

SSE further highlights the importance of zero trust access as the most secure way to connect users to applications, eliminating the need to allow users access to the network.

Finally, Gartner’s SSE definition includes a section on user experience, acknowledging the importance of ensuring users get seamless access and optimal performance. This highlights the need for digital experience monitoring (DEM) solutions as an integrated part of a vendor’s SSE offering (see my blog here). Ensuring the digital experience of the end user is not only crucial for the adoption of SSE, but also for broader digital transformation initiatives.

Now, where do we see the SSE market evolve from here? We expect to see a broadening of SSE architectures to encompass cloud-to-cloud and workload-to-workload security, leveraging the same security cloud and policies that protect connections between users and applications. We expect the SSE market to evolve toward protecting non-human users, with support for IoT/OT devices as well as 5G environments. We also see SSE vendors increasingly achieving operational benefits through automation and business intelligence, as these factors will play a bigger role in differentiating vendors in the space.

What does this mean for executives architecting a cybersecurity strategy? It means that executives need to leverage the Gartner SSE model to evolve their cybersecurity strategies around a single platform vendor that can converge their disparate security solutions in a scalable and unified manner while optimizing end-user experience.

Not all SSE platforms are created equal, so anyone evaluating SSE options should look for solutions with the following capabilities:

A unified platform

A unified platform for growth to deliver all SSE services, plus network transformation and digital experience services.

Zero trust architecture

Native app segmentation, where business policies connect authenticated users to an authorized app without bringing users on the network.

Purpose-built for performance

Cloud-native architecture, globally distributed, with inspection and peering at the edge to provide the fastest app and user experience.

Inspection scalability

Proxy-based architecture that holds and decrypts data in real-time in order to confidently inspect business-critical SSL traffic without limitations or SLA concerns.

While the introduction of SSE does add to the alphabet soup of Gartner acronyms, in this case, the juice is definitely worth the squeeze.

Share this content on your favorite social network today!