Zscaler Launches Zero Trust Segmentation to Boost Security

Highlights:

• Zscaler’s Zero Trust Segmentation prevents ransomware attacks, simplifies branch environments, and eliminates the need for firewalls, network access controls, SD-WAN, and site-to-site VPNs.
• The solution is available in two versions: Zero Trust Segmentation for Branches and Factories, and Zero Trust Segmentation for Data Centers and Public Clouds.

Recently, a cloud security company, Zscaler Inc., has launched Zero Trust Segmentation, a solution designed to provide a more secure, flexible, and cost-efficient way to connect users, devices, and workloads across dispersed locations.

At the heart of this new solution is its capability to eliminate the need for traditional firewalls, software-defined wide-area networks (SD-WANs), and site-to-site virtual private networks (VPNs). It does so by transforming branches, factories, and cloud environments into isolated, secure “virtual islands.” These environments connect directly to the Zscaler cloud platform, which enforces business policies to prevent ransomware, secure Internet of Things (IoT) and operational technology (OT) systems, and simplify network management.

Zscaler asserts that traditional networks, such as SD-WAN and site-to-site VPNs while enhancing enterprise connectivity, have also contributed to the rapid spread of ransomware. While firewalls can be used for network segmentation, they often introduce complexity and drive-up costs.

The company’s new Zero Trust Segmentation addresses these issues by preventing ransomware attacks and transforming branches into “simplified, cafe-like environments.” In doing so, it eliminates the need for firewalls, network access controls, SD-WAN, and site-to-site VPNs.

With this new offering, each location is transformed into a virtual island that connects directly to the Zscaler cloud security platform. The Zscaler Zero Trust Exchange platform then enforces business policies to securely link users, workloads, and devices. This approach minimizes the attack surface, prevents ransomware from spreading between locations, and eliminates the need for firewalls and other traditional solutions.

The offering is divided into two components: Zero Trust Segmentation for Branches and Factories, and Zero Trust Segmentation for Data Centers and Public Clouds.

The version designed for branches and factories focuses on securing environments with a high concentration of IoT and operational technology systems. Given that many OT devices run on outdated operating systems prone to attacks, Zscaler’s solution allows for rapid segmentation of these devices within hours, removing the need for a traditional north-south firewall.

The version for data centers and public clouds tackles the challenges of securing hybrid and multi-cloud environments. By removing internet-facing firewalls and site-to-site VPNs, the solution reduces attack surfaces and standardizes security across various cloud services. It secures traffic between clouds, data centers, and virtual private clouds, optimizing workload communication without depending on legacy infrastructure like direct connections.

“Using firewalls to segment business networks is extremely complex, turning into a never-ending initiative for many organizations. Integrating advanced technology from the recent AirGap acquisition, Zscaler Zero Trust Segmentation now offers the most advanced, robust protection against ransomware attacks, which can be implemented in days. Additionally, it delivers up to 50% cost savings by eliminating the need for legacy firewalls and complex infrastructures,” said executive vice president of product management at Zscaler, Dhawal Sharma.