From CISO Marketplace — the hub for security professionals Visit

SASE

Data Protection

Definition

A network architecture that combines network security functions with WAN capabilities to support secure access needs of organizations.

Technical Details

SASE, or Secure Access Service Edge, is a network architecture that integrates various security functions such as secure web gateways, firewall as a service (FWaaS), and zero trust network access (ZTNA) with wide area network (WAN) capabilities. This model allows organizations to provide secure access to their users regardless of their location, combining network security and connectivity into a single cloud-delivered solution. SASE leverages software-defined networking (SDN) and network function virtualization (NFV) to dynamically route traffic and apply security policies based on user identity and context rather than relying solely on the physical location of the user or the resources they are accessing.

Practical Usage

SASE is increasingly adopted by organizations transitioning to cloud services and remote work environments. It enables secure access for remote employees, branch offices, and mobile devices while simplifying network management. Companies can deploy SASE solutions to ensure consistent security policies across all endpoints and applications, regardless of where the data resides. This is particularly useful for organizations with a dispersed workforce, as SASE architectures can scale easily to accommodate varying numbers of users and devices. Additionally, SASE enhances visibility and control over network traffic, making it easier to detect and respond to potential threats.

Examples

Related Terms

Zero Trust Network Access (ZTNA) Firewall as a Service (FWaaS) Software-Defined Wide Area Network (SD-WAN) Cloud Access Security Broker (CASB) Network Function Virtualization (NFV)
← Back to Glossary