Zscaler Inc.

11/08/2024 | News release | Distributed by Public on 11/08/2024 13:11

Zero Trust Meets Multicloud: A Guide to Secure Workload Segmentation

Workload Segmentation with the Zscaler Zero Trust Cloud

To restore order amidst this chaos, Zscaler has unveiled new innovations to segment workloads across multiple clouds, regions, availability zones, and processes. With expanded support for architectural components that bring zero trust to Azure, GCP, and AWS environments, these advancements empower customers to secure workloads in a true hybrid cloud setting.

  1. Workload visibility: Realtime discovery service is now expanded to cover AWS/Azure and GCP. With support for multiple accounts across multiple regions in a public cloud, customers can truly think of a cross-cloud global namespace to write security policies
  2. Workload identity: Security teams working with Azure can now identify workloads by applying User-defined tags along with other cloud metadata attributes and network constructs (FQDN/ Subnets)
  3. Workload authentication: Coming soon to the portfolio is the capability to support workload authentication based on JSON web tokens!

It is imperative that a modern segmentation solution should be built ground up based on cloud-first principles. Watch this short video from Brian Deitch (Chief Technology Evangelist, Zscaler) on how this works.

Segment Processes Inside a Host with Zscaler Microsegmentation

A host based approach now extends the Zscaler platform to segment processes deployed within a VPC/VNET. Customers can now extend the Zscaler zero trust architecture to segment processes deployed in the hybrid cloud.

  1. Real-time visibility: Zscaler delivers unparalleled visibility into traffic flows, allowing businesses to understand the interactions between hosts, initiators, and receivers of traffic. This traffic flow-based analysis is crucial for identifying potential vulnerabilities and ensuring that workloads are properly segmented.
  2. Intelligent segmentation: Leveraging AI-driven assistance, Zscaler provides intelligent configuration recommendations. The platform groups resources based on various attributes and traffic flows. Once these groups are identified, Zscaler recommends which groups can communicate with each other, ensuring optimal segmentation and security.
  3. Policy enforcement across hybrid cloud deployments: Zscaler's policy enforcement capabilities extend across hybrid cloud environments, including multiple cloud regions. This ensures that security policies are consistently applied, regardless of where workloads are hosted. By enforcing policies uniformly, Zscaler helps businesses maintain a strong security posture and comply with regulatory requirements.

Watch this video from Daniel Perkins, Principal Product Specialist, Zscaler Microsegmentation, to learn more.