Enterprise Need for Edge Security

Cybersecurity is and has been a major component of all Enterprise IT buildouts, especially as network attacks become more sophisticated and expose data network vulnerabilities. From malware and ransomware to intellectual property leakage and customer database breaches, IT and security professionals must continuously monitor and provide remediation for new threats.

Most security vendors develop single-purpose software that do not always integrate well with other software – or with the underlying network infrastructure. As the market evolves towards SASE, vendors bundle many product offerings and deliver from the cloud, with acquisitions and consolidation occurring in the industry at an accelerated pace, often to the detriment of consistency and user experience.

And while, rightfully, great emphasis is placed on cloud-based security, not all enterprise needs are created equal, and one size does not fit all. While some security features may be provided through a Cloud Security Provider (e.g. to applications running on IaaS and SaaS public clouds), others might be needed on the premise (e.g. a bank branch), or at the Enterprise’s Data Center (e.g. safeguard against customer database breaches – or to preserve data sovereignty per regulation mandates).


Why ngena Security

ngena enables you to implement and automate the comprehensive functionality promised by the Secure Access Service Edge (SASE) definition to satisfy real-life enterprise use cases, independent of network or security deployment topologies, with a rich offering of validated security options that can fit your specific needs, and experience consistently through our .connect toolkit.

ngena offers the flexibility of deploying security features across SASE-ready endpoints on-premise, on the SD-WAN Management Layer in the ngena SASE POPs, or via connecting to a SASE Cloud Security Provider (CSP), such as Cisco Umbrella or Zscaler Cloud Security Platform. Such flexibility assures a comprehensive Security strategy for Enterprise IT, driven by application and data security; privacy and regulatory requirements and not dictated via any underlying technology or network infrastructure.

Advanced Security on the Edge deployed locally on ngena’s validated Access Designs (AD), fundamental security functions can be applied closest to the end user. The functions and benefits of deploying on the edge (depending on product and license used to build the AD) are:

  • Enterprise Firewall
  • Stateful Firewall / Zone-Based Firewall (ZBFW)
  • URL Filtering
  • Intrusion Prevention System (IPS)\
  • SSL/TLS Proxy

Direct Internet Access (DIA) Breakouts, connecting directly to the Internet using SD-WAN bypasses data center security and exposes branch offices to a range of cyber-attacks from basic malware to sophisticated multi-vector attacks. This ultimately compromises an Enterprise’s privacy, data, and intellectual property. ngena provides the following ways to enable secure Direct Internet Access (DIA):

  • Regional Internet Breakouts – Inbound and/or Outbound
  • Local Internet Breakouts

Why ngena is the right partner to help you achieve your security goals

ngena has a proven track record of automating the network design, ordering, deployment and monitoring processes. Using a dynamic set of validated SD-WAN Access Designs, security functionality can be integrated into, provisioned and deployed at different points in the network with just a few clicks

The 7 pillars of our portfolio provide a pragmatical and intuitive view of the different capabilities digitization deals with, all offered as-a-service: