Cloud-native, Zero Trust networking is the future for Asian businesses

By Dipesh Ranjan, VP & MD, NetFoundry, APAC & India

SASE is the security cloud computing needs.
Source: NetFoundry. Ranjan.
Asian economies were the first to feel the impact of COVID-19, owing to their proximity to the pandemic’s origins in China. Enterprises across the region have been in the frontline of the crisis ever since. Corporate IT teams in particular have been feeling the heat. From the earliest days of the pandemic, they have had to find ways to manage the COVID-related upsurge in remote working, while all the while striving to maintain their focus on digital transformation.

To take Malaysia as just one example, a study by independent consulting firm KPMG revealed that 64% of workers in the country said they had felt challenged in adapting to home working during the country’s Movement Control Order (MCO) period. The top three difficulties cited were: network or connection issues (61%), communication barriers (14%) and a lack of technology readiness (10%).

When asked what would improve the remote working experience, most said a stable Internet connection, better IT infrastructure, and clearer guidelines on remote work from bosses*. There is no question that similar challenges have been experienced across the region.

The reality is that when country after country was forced into lockdown measures at the beginning of the pandemic, nobody was truly prepared from a technology perspective. Many workers found themselves relying on their own devices on a bring-your-own-device (BYOD) basis. Corporate devices had not been procured because it had never been expected that people would be working from home on such a scale. 

A parallel problem was how to give access to corporate applications to those workers. The first step for many enterprises was to put applications into the cloud so that they could be accessed from any location.

All this, of course, demands appropriate connectivity. In the past, enterprises have turned to communications service providers to connect a head office at point A to a branch office at point B. But at a time of mass cloud migration, with enterprises often spreading their reliance across multiple public cloud platforms, old school telco networks are just not up to the job. It’s not something they were designed for.

These days there are software-defined alternatives to conventional Multiprotocol Label sSwitching (MPLS) and virtual private network (VPN)-based connections. Just as you can spin up a virtual machine in the cloud, you can now spin up a network in the same way. There’s no need to go to a traditional service provider to help you do that.

Using normal home broadband, software can be deployed on the laptop of a remote worker that will provide connectivity to multiple clouds. Policies can then be set to decide who has access to which application. We’re talking about a network that resides in the cloud, so-called "cloud-native". The Internet acts as an underlay for the connectivity layer that lies on top in the form of an overlay.

One of the first questions that any responsible CIO will ask about such a solution is ‘How secure is it?’. Could such a cloud-native network overlay end up compromising corporate data in any way?

Given that workers are dispersed to a multitude of locations, needing access to perhaps several different platforms, what sort of cloud access is so secure that nobody can hack into it? The answer here is secure access service edge, or SASE. It’s cloud-native networking with cloud-native security integrated.

This model allows software-defined access to the cloud, and also lets you connect to multiple cloud providers. In addition it delivers security at both cloud and user end, as well as the middle mile. With SASE, handling BYOD is a piece of cake. Providers of SASE include NetFoundry, VeloCloud, VMware, Cloudflare. All have slightly different capabilities, but all are much more adapted to multicloud demands than anything offered by a traditional telco.

Enterprises need to seek out a connectivity platform that is based around Zero Trust principles. To be more specific, they need to adopt a software-defined perimeter that comes complete with Zero Trust security. This gives you a gateway that can be spun up inside a cloud provider. Once activated, this interacts with software at the other end with the consequent communications channel completely invisible. There’s no need to depend on any kind of traditional network. You get connectivity that’s performant, fast, in fact five times faster than a VPN connection.

The Zero Trust aspect is all about trusting nobody, as the name suggests. Most security models, like one-time passwords, can be misused. They rely on individuals doing their job right. Zero Trust means all you trust is the policy which your company has created. As a model, it has clear-cut, policy-based restrictions. It limits who can use which type of application as without authentication, a connection cannot be made. 

Some 80% of cyberattacks come from a connection being opened without the right authentication taking place, but with Zero Trust in place this can’t happen. It works on multiple layers of verification, and doesn’t depend on individuals doing the right thing. That’s why everybody will soon be moving on from the Secure Sockets Layer (SSL) or VPN-based technology there were relying on only a couple of years ago.

With the right kind of software-defined, cloud-native, Zero Trust multicloud solution, you can easy share your workloads around between different clouds without having to integrate anything yourself. Only one network is needed to control everything, managed through a single window. You are not limited to a particular location to have this control, or to use the cloud services. Connect from anywhere at any time, agnostic of any one network.

The pandemic may be a long way from over just yet, but armed with the right tools enterprises can face the future with a degree of confidence.

*https://home.kpmg/my/en/home/media/press-releases/2020/06/kpmg-survey-majority-support-wfh-arrangements-to-continue-post-mco.html

Comments

Post a Comment

Popular posts from this blog

Fortinet enhances FortiRecon to align with CTEM framework

Fortinet, the global cybersecurity provider driving the convergence of networking and security, has turned the FortiRecon platform into a comprehensive solution aligned with the continuous threat exposure management (CTEM) framework. The latest release introduces expanded internal attack surface monitoring, adversary-centric dark web intelligence, and security orchestration, all in a unified platform. These enhancements help organisations proactively identify and prioritise real-world exposures, validate risks like an attacker would, and accelerate response. “CISOs and security teams are overwhelmed by growing attack surfaces and an endless stream of unprioritised alerts,” said Nirav Shah, Senior VP of Products and Solutions at Fortinet. “With the latest enhancements to FortiRecon , we’re giving organisations an attacker’s eye view of their internal and external exposures, backed by AI-powered threat intelligence from FortiGuard Labs, real-world validation, and automated response...
Read more

SentinelOne recognised as a 2025 Gartner Peer Insights Customers’ Choice for XDR

SentinelOne, a global provider of AI-powered security, has been named a Customers’ Choice in the 2025 Gartner Peer Insights ‘Voice of the Customer’ for Extended Detection and Response (XDR) report* – one of only two companies with this distinction. A hundred and forty-four users reviewed SentinelOne's Singularity Platform, and 97% said they would recommend the solution to respond to threats across endpoints with AI-powered security, while 97% rated the solution four stars or better.** “With the growing complexity of cyberthreats, organisations need more than siloed security—they need AI-powered, autonomous protection that delivers real-time detection and response across their entire attack surface. Customers have made it clear that SentinelOne’s XDR provides the intelligence, automation, and efficiency they need to stay ahead of threats and secure their environments with confidence,” said Ely Kahn, VP, Product Management, SentinelOne. Gartner defines extended detection and ...
Read more

AWS: AI adoption grows 20% in Singapore

Image
Amazon Web Services (AWS), an Amazon.com company, has found* that AI adoption continues to accelerate in Singapore. In the past year alone, 27,000 1 Singapore businesses adopted AI for the first time—equivalent to over three new adopters every hour. In sum, nearly 170,000 (48%) of businesses in Singapore have adopted AI 2 , up from approximately 143,000 (40%) a year ago. This represents a 20% year-over-year growth rate, AWS said. AI adoption is the strongest in the financial services industry (71%), followed by the technology sector ( software developers, data analytics firms, cloud service providers, and digital startups) at 70%, and healthcare at 63%. Among Singapore’s businesses that have adopted AI, 82% reported an increase in revenue, at an average increase of 19%, while 90% report significant productivity improvements. A large majority (85%) of those who have adopted AI say the technology is likely to increase their growth in the next year, and 89% expect an average of 17%...
Read more