Solution Briefs

Off-Network Security without VPN

Issue link: https://learn-umbrella.cisco.com/i/710463

Contents of this Issue

Navigation

Page 0 of 1

Our need: always-on network security It's quite simple: the more your employees can work from anywhere, the more productive and profitable your business becomes. But as the way we work has changed, so how will your security change? Over the years, you've implemented a security stack with best practices to protect your intellectual property, employee information, and customer data. You've stacked multiple security solutions (e.g. firewall, proxy, antivirus) for "defense-in- depth." And yet, you're still re-imaging laptops and flooded by security alerts. First dilemma: too much malware reaches you Your security stack must wait until malicious traffic reaches your perimeter or endpoints. Then, your firewall, proxy, and antivirus can detect and prevent the threat. If you use a SIEM, it receives too many alerts for every attack that reaches each of these security layers. Your CISO is asking, "Would a better firewall or proxy or antivirus result in more effective security, OR do we need something new?" Second dilemma: perimeter security is often blind Your employees have more flexibility and freedom than ever before. Whether they're using Office 365, Salesforce, DocuSign, or other industry-specific cloud apps, the data your employees need to access is no longer on-premises. As remote users work more and more via the cloud, visibility is lost. Perimeter security appliances and VPNs are no longer always going to protect your devices and data. Your CISO now wonders, "How can we enable the business to work from anywhere, yet, ensure consistent, always-on security?" The bottom line The VPN is not always-on despite "best practice" or "locked down" policies. And your firewall, proxy, and AV are not enough to protect your mobile workforce. The reality today " By 2021, Gartner estimates that 25% of corporate data traffic will bypass perimeter security and flow directly from mobile devices to the cloud." © 2016 Cisco and/or its affiliates. All rights reserved. Security when off the corporate network, off the VPN. S O LU T I O N B R I E F You cannot rely on the VPN You need off-network security Remote access to the corporate network is no longer required to get work done. Enable your employees to embrace the cloud and work from anywhere. NGFW Protected on-network Extend existing security beyond the perimeter Internet Vulnerable o-network Enforce security over all ports, everywhere VPN OFF Umbrella Always ON VPN ON / OFF PROXY SANDBOX NGFW PROXY SANDBOX

Articles in this issue

view archives of Solution Briefs - Off-Network Security without VPN