Governance & Risk Management , SASE , Zero Trust
Securing Your Hybrid Workforce Using a SASE ApproachExperts Offer Insights on How to Start the SASE Journey
SASE adoption is being driven by numerous factors, including the opportunity to address the challenges with unmanaged applications and devices, provide greater visibility into various tasks, and ensure consolidation of investments in the networking infrastructure to bring down the administrative cost, according to a panel of experts. (See: 2021 Gartner Strategic Roadmap for SASE Governance)
"SASE is particularly useful for financial services, where there is a need for additional visibility and assurance for people and systems to ensure we understand the normal behaviors of users and take proactive actions when something is out of the norm and with the cloud-native," says Australia-based Dr. Tim Nedyalkov, technology information security officer - or TISO, Commonwealth Bank of Australia.
SASE provides the blueprint and articulates what is currently going on and what different functions are doing, making everyone accountable for security, says Australia-based Dr. Siva Sivasubramanian, CISO, Optus.
"The SASE framework encourages organizations to natively integrate SD-WAN with security-as-a-service - ZTNA, Cloud SWG, CASB, FWaaS - to significantly improve security posture and user experience. Many organizations undertake this transformation journey in incremental steps, leveraging existing investments and addressing immediate business needs along the way," says Singapore-based Siddharth Deshpande, field CTO, Palo Alto Networks.
The traditional hub-and-spoke architectures with disparate network and security stacks don’t scale for hybrid work and cloud, he says.
In this video, the three experts discuss:
- The SASE-based architectural approach to addressing hybrid workforce challenges;
- Essentials of enforcing risk-based controls in a SASE model;
- Building a security program in a SASE model.
Nedyalkov is currently the TISO of the Commonwealth Bank of Australia. He has over 18 years of multi-industry experience in information technology and cybersecurity across Europe, the U.S., Australia and the Middle East. He has held management and executive roles for SNC-Lavalin, the Australian Broadcasting Corp., Cyber Synergy, OurSay, and Open Biz. Most recently, he established the cybersecurity practice for the $24 billion Riyadh Metro transport network, one of the world's most significant public transport infrastructure projects.
Sivasubramanian is currently the CISO at Optus. Previously, he was the global chief of security at Airtel, head of information security at SingTel Optus, CTO/CIO at Universal Studios in the U.S., and chief architect at Siemens. He has vast IT experience and has been a CIO, CTO, chief architect and project director for large projects.
Deshpande is field CTO at Palo Alto Networks. In this role, he is responsible for engaging CISOs and the broader security community on emerging cybersecurity topics, such as cloud-native application security and securing the hybrid workforce. Before Palo Alto Networks, he worked at Gartner and Akamai in roles that gave him a practical viewpoint on cybersecurity market trends and strategic direction.