Top 5 SASE Trends in 2024

Posted on: 31/03/2024 By:Clara Tan

With the first quarter of 2024 coming to an end, we can now predict with a fair amount of accuracy what the key secure access service edge (SASE) trends of the year will be.

Before discussing trends, let’s set the stage so we’re all working with the same understanding of the cybersecurity market today. According to a recent Forbes survey, 84% of companies now have a hybrid workforce and need to secure those work-from-anywhere (WFA) employees’ access to the network, often from multiple locations—on-site, at home, or anywhere they can get a Wi-Fi connection.

In addition to supporting their WFA staff, IT security teams have to handle many Internet-of-Things (IoT) devices connected to their networks. An IDC research document estimates that 42 billion IoT devices are now in use. And industry experts believe the average number of applications an organization uses, including its remote workforce, is well over a hundred.

Now add the latest cyberthreats, which are becoming more sophisticated and numerous, to the mix, and you have a realistic picture of the current state of cybersecurity worldwide.

SASE Trends for 2024

Given this background, together with what we are hearing from industry analysts and Fortinet customers and partners, there are five clear SASE trends we foresee becoming a reality over the next 9 to 12 months:

1) Single-vendor SASE will become even more popular.

Single-vendor SASE has reached “the tipping point” in the evolution of SASE solutions. Single-vendor SASE ensures the same company delivers all necessary SASE components, simplifying deployment, management, and operations. This contrasts with the traditional process of purchasing SASE components like SD-WAN and firewall services from different vendors. Having products from multiple providers almost always results in complications, preventing smooth integration and creating efficiency issues.

A single-vendor SASE designed with a unified policy engine provides streamlined operations across all SASE use cases. This single-vendor SASE approach also results in a predictable return on investment (ROI) due to fewer point products and clear cost savings due to integration. We estimate that a single-vendor SASE can lead to a 40% or 50% reduction in existing costs.

Another aspect of single-vendor SASE that’s helping its popularity grow is its simplicity in procurement. Using one vendor ensures seamless licensing, a single SKU across the entire SSE stack, and simplified deployment of a SASE solution’s various components.

2) Unified SASE will help fast-track the zero-trust journey with real-time user and device behavior checks.

SASE enables the adoption of zero-trust technology. Zero trust is about real-time validation and verification based on user and device behavior. It’s not enough to verify users, devices, and connections every 30 or even every 15 minutes. Verification must be measured in seconds to ensure you can trust a connection, agent, user, and device whenever they access an application.

A true single-vendor SASE solution also includes unified agent capabilities to help simplify operations. A unified agent allows organizations with a small IT team to troubleshoot and manage everything through a central platform. Consolidation reduces the number of products being employed, and this is enhanced even further by using a single agent for everything.

In addition to providing flexible and scalable zero-trust enforcement, organizations also demand lower latency, better performance, and enhanced efficiency. The Fortinet FortiSASE solution provides all of that, and its benefits include low latency for the best user experience, continuous verification, use of your existing infrastructure, and traffic security inspection all through our single agent.

With continuous monitoring of user and device behavior, SASE solutions can stake a claim to significantly improve any organization’s cybersecurity posture.

3) SASE will be supercharged by AI-powered security and operations.

Integrated SASE solutions must be AI-powered and use machine learning (ML) to help detect zero-day threats and protect users from malware, including ransomware. This is a critical requirement because SASE vendors often talk about the simplification their solutions offer. Still, when you look “under the hood” at their security, it is usually an OEM component that isn’t integrated with the rest of their solution. And often, these incomplete SASE solutions do not include threat intelligence, making it difficult to keep them tuned to the latest threats and exploits.

Given the vulnerable nature of remote workers and devices, your number one consideration should be security when selecting a SASE solution. We foresee the most successful SASE solutions will be those that:

Are capable of detecting zero-day threats and protecting users from ransomware, which is growing, as per our latest threat landscape predictions.
Are not siloed. As a SASE solution is configured and gathers threat intelligence, that data needs to be shared. That means SASE must also be part of the overall security platform strategy and integrated with your security operations center (SOC).
Can be part of the broad product platform so policies, enforcement, and AI-powered capabilities can be applied consistently.

Fortinet is not new to AI or ML. We have been developing, training, and using our AI tools for 10+ years and have 100+ documented AI applications to date. Currently, we have eight security domains using AI and 42 solutions driven by AI. Most recently, Fortinet integrated generative AI into our AI-based security services to predict and prevent emerging threats. This is part of the threat intelligence from our FortiGuard Labs and is directly powering our SASE solutions.

4) SSE will extend connectivity to OT, wired, and wireless LAN devices.

We foresee SASE having full flexibility in connecting and securing locations of all sizes, whether large offices, home offices, or even microbranches that don’t have firewalls or SD-WANs. Of course, there’s still the need for security on-premises, and SASE must also be able to support that architecture. Because of this, we predict SASE will be securing more microbranches with its security service edge (SSE) components that provide cloud security for LAN/WLAN.

Because SASE must adapt to any device and location, it will also enable more “coffee shop networking,” which will feature bring-your-own-device (BYOD) and agent-less secure access capabilities. SASE also aims to secure critical infrastructure through operational technology (OT) security integration and its SSE components.

Fortinet’s platform approach is built around a single operating system, FortiOS, ensuring FortiSASE provides consistent security everywhere and works seamlessly with the rest of your organization’s security framework. Similarly, the same SASE console can manage all locations, including microbranches.

5) End-to-end DEM will be a core part of the SASE solution.

Digital experience monitoring (DEM) provides end-to-end visibility. In the market today, DEM is considered by many to be a premium feature, but we predict it will soon become a core component of SASE solutions. Including DEM will result in improved user experience and application performance reports as well as simplification, resulting in faster mean time to detection and remediation (MTTD/MTTR). IT teams will feel empowered using this tool. And with DEM integrated into the SASE agent, you will also see reduced operational costs.

We recently announced that DEM has been incorporated into our FortiSASE solution, which means FortiSASE now provides comprehensive visibility, correlated metrics and alerts, and proactive responses. We plan to continue to expand the role of DEM in SASE, and we predict it will ultimately lead to improved productivity.

In conclusion, organizations are actively transitioning from legacy solutions like VPN to zero trust and SASE, and we foresee an acceleration in that evolution. The key benefits will be consistent security, unified management, reduced overhead, and better user experiences.

Written By: Nirav Shah

Source: https://www.fortinet.com/blog/business-and-technology/top-5-sase-trends-in-2024

Understand SASE ROI for Network Security Transformation

Posted on: 25/04/2024
By: Clara Tan

In the fast-paced world of enterprise technology, staying ahead of the curve is not […]

Top 5 SASE Trends in 2024

Posted on: 31/03/2024
By: Clara Tan

With the first quarter of 2024 coming to an end, we can now predict […]

Cookie	Duration	Description
_GRECAPTCHA	5 months 27 days	This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-advertisement	1 month	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
visid_incap_2439	1 year	SiteLock sets this cookie to provide cloud-based website security services.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
bcookie	2 years	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
bscookie	2 years	LinkedIn sets this cookie to store performed actions on the website.
ELOQUA	1 year 26 days 23 hours	The domain of this cookie is owned byOracle Eloqua. This cookie is used for email services. It also helps for marketing automation solution for B2B marketers to track customers through all phases of buying cycle.
lang	session	LinkedIn sets this cookie to remember a user's language setting.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
UserMatchHistory	1 month	LinkedIn sets this cookie for LinkedIn Ads ID syncing.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_gtag_UA_110325916_1	1 minute	Set by Google to distinguish users.
_gat_gtag_UA_154241828_1	1 minute	Set by Google to distinguish users.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
ELQSTATUS	1 year 26 days 23 hours	This cookie is set by Eloqua. This cookie is used by PwC to track individual visitors and their use of site. This is set on the first visit of the visitor to the site and updated on subsequent visits.

Cookie	Duration	Description
AnalyticsSyncHistory	1 month	No description
cookieconsent_status	session	No description available.
incap_ses_872_2439	session	No description
isEuropeUser	session	No description available.
li_gc	2 years	No description