images
figures
Blog

Why Remote Workforce and Legacy Security Architectures Don’t Mix

Guest Writer
30.03.2021
image 3 Min read
SD-WAN and SASE

Make no mistake about it, work-from-home (WFH) and the remote workforce aren’t going away any time soon. Only 7%of respondents indicated that everyone will move back to the office. More than half (80%) indicated their companies will continue with a remote workforce in whole or in part.

With users working remotely, IT organizations still need the same level of security controls and visibility. But delivering those capabilities can’t be done by compromising application performance. And that’s a problem for legacy security architectures as they add latency, crippling application performance, and lack the optimization techniques for improving the remote experience.

It’s no surprise then that boosting remote access performance was the most popular primary focus for IT leaders over the next 12 months (47% of respondents). At the same time, when asked to cite the primary security challenges facing their IT organizations, 58% of respondents pointed to “enforcing corporate security policies on remote users” making it second to only “Defending against emerging threats like malware/ransomware” (66% of respondents).

But the problems of securing the remote workforce don’t stand on their own. They’re compounded by all of the legacy security challenges facing IT teams. More than half (57% of respondents) indicated that they lacked sufficient time and resources to implement security best practices. And those best practices can be as mundane as patching software and systems shortly after vendors release patches (32% of respondents).

Astounding. In the 21st century with networks that have seen throughput jump ten thousand-fold over the past 30 years and we still have patching problems?

IT managers shouldn’t blame themselves, though. It’s clear where the problem lies — in the architecture. As Cato security engineer, Peter Lee, noted in this blog when documenting the vulnerability and subsequent patches issued for VPN servers:

“Patching has become so common that we just assume that’s the way it has to be. “Patch Tuesday” has us expecting fixes to problems every week. In reality, patching is an artifact of the way all appliances are built. If we eliminate the appliance architecture, we can eliminate the overhead and risk of patches.”

Eliminating appliances will not only eliminate patching problems, it will also eliminate the performance and visibility challenges introduced by legacy security architectures. Of course, this assumes enterprises can replace legacy security architectures with an approach that will:

  • Simplify today’s security stack
  • Eliminate the patching headaches
  • Deliver secure access everywhere, at scale, without compromising performance
  • Give visibility and control into all traffics flows

What architecture will do that? According to respondents — SASE.

More than 91% of respondents expect SASE to simplify management and security. Of those who’ve already adopted SASE, 86% of respondents experienced increased security, 70% indicated time savings in management and maintenance, 55% indicated overall cost saving and greater agility, 36% saw fewer complaints from remote users, and 36% realized all these benefits. No wonder that more than half of the respondents indicated that SASE would be very or extremely important to their business post COVID-19.

Originally published in https://www.catonetworks.com/blog/why-remote-workforce-and-legacy-security-architectures-dont-mix/.

Comments

0 comments

There’s more to see

slider item
SD-WAN and SASE

What is SASE? Your 2021 Definitive guide

Gershon Tchemakin 08.11.21

Pronounced ‘sassy’, SASE (Secure Access Service Edge), is a terminology first proposed by Gartner. While there are many definitions of SASE, it can be simply said to be a network architecture that combines the capabilities of SD-WAN with network security functions and delivers it as a service delivered via the cloud. What is SASE used […]

Read more
slider item
SD-WAN and SASE

SASE vs. Zero Trust: Your Definitive Guide

Gershon Tchemakin 31.10.21

In a world of quickly-expanding cloud traffic, SASE has emerged as the clear choice for ensuring a proactive security posture and consistent protection against emerging cloud-native threats. SASE also gains popularity for converging security and speed – a potent combination which helps realize the potential of the cloud. What is Secure Access Service Edge (SASE)? […]

Read more
slider item
SD-WAN and SASE

Solution Brief: Secure Access Service Edge (SASE)

Admin Globaldots 13.04.21

Increase performance, cut network TCO. Step into the world of enterprise network and security as a cloud-based service. Discover how fast & easy you can upgrade your SD-WAN or MPLS into a hardware-free, growth-ready, and cost-effective solution. This solution brief includes top features, capabilities, and benefits. Fill out the form to get your copy.

Read more

Unlock Your Cloud Potential

Schedule a call with our experts. Discover new technology and get recommendations to improve your performance.
Contact us
figure figure figure figure figure