15th June 2022

SASE – Does healthcare need another acronym?

In the modern world, the number of people working from remote locations and on different devices has increased. Healthcare workers no longer have control over where their data is being accessed. They must consider how they can allow these different devices to securely interact and share company information.

SASE is a technology that can adapt to the changing boundaries of the modern network and help to prepare your IT infrastructure for the new normal. We look at what this means and how it relates to your business.

What is SASE?

You may have heard the term SASE banded around lately (pronounced sassy). SASE stands for Secure Access Service Edge. Let’s break down what this means.

Edge

In this instance, the word edge relates to a geographic location.

Edge computing’ is computing that’s done at or near the source of the data, instead of the information going through the cloud to a data centre to be processed, and then data being returned to your computing device. The location where this computing takes place can be thought to be the new edge of a company’s computing network. It still travels through a cloud, but only as far as the ‘edge’ where the process is taking place.

For example, the iPhone uses a form of edge computing. It stores your security information on your device, rather than elsewhere in a centralised cloud, thereby avoiding security concerns with this data leaving the users’ devices. This would be classed as a Device Edge. Other examples of edge computing include the on-premises edge, network edge and regional edge. One great benefit of using edge computing is that things can happen significantly faster.

Service Edge

‘Service on the edge’ generally relates to any product or service that can fulfil a user’s request at the moment is it is asked for, by completing the action on the user’s device itself. Any device that has this service built into it can, therefore, be said to be providing “service on the edge”.

The ‘Secure Access’ part of the term SASE means that this service is provided to the user in a way that has security features built in. These include:

  • Security as a service
  • Firewall as a service (FWaaS)
  • Secure web gateway (SWG)
  • Next-generation antimalware (NGAM)
  • Cloud access security broker (CASB)
  • Software-defined perimeter (SDP), also referred to as Zero Trust network access (ZTNA)

SASE as a whole

Overall then SASE can be defined as a technology that provides both network and security functions together as a cloud computing service that connects directly to the source of the data rather than through a data centre.

Why is SASE right for my business?

The accelerated rate of change over the past 12 months has meant that remote working has become more prevalent, requiring the use of more cloud services. Current networking and security solutions use old hardware networks and use a security architecture that has become incompatible with the cloud-centric and mobile-first digital business. These networks are ridged and static, and security is heavily fragmented across multiple domains. Together, network and security are slowing down the business instead of enabling innovation and agility.

SASE will allow you to unify your network and security tools into a unified, global cloud service that allows employees and resources to be located anywhere

Key benefits of SASE include:

Increased confidence in technology: Users can collaborate from anywhere across your network, without fear that they will compromise their organization’s infrastructure security.

Enabling business agility: You can quickly and easily deliver networking and security provision to all locations, applications, and users, regardless of location. This enables scalability when setting up new sites or closing old ones.

Providing end-to-end visibility and control: IT teams can manage all network and security by using single interface, using a common terminology, and gain deep visibility into network and security events wherever they happen.

Increasing operational efficiency: The work needed to maintain on-premises network and security infrastructure is reduced, allowing IT to focus on delivering better service and strategic value to the business.

Reducing management complexity and costs: Consolidating the network and security requirements into in a single solution reduces the overall costs of acquiring, operating, and maintaining networking and security infrastructure.

Why should I buy SASE from Adept?

Established in 2003, AdEPT is a managed services and telecommunications provider, offering award-winning technical solutions to over 15,000 organisations across the UK. In a world where there is so much technology to choose from, we aim to make choosing the right solution simpler.

Using Cato, customers easily migrate from their current network, to gain all of the advantages of an SASE platform, such as optimised user access, reduced operational complexity and enhanced security.

To meet these criteria, a true SASE solution must be built on a cloud-native and cloud-based architecture; distributed globally across many Points of Presence (PoPs); and support all edges (locations, users, clouds, and applications).

The Cato SASE platform that we provide is the world’s first true SASE platform, was purpose-built to meet the challenges of the modern digital business, and solve problems point solutions can’t. That’s why the technological research and consulting firm Gartner recognized Cato as a “sample vendor” in the SASE category in last year’s Hype Cycle for Enterprise Networking.
With Cato, the network, and your business, are ready for whatever’s next.

SASE: Key terms

A network consists of two or more computers that are linked in order to communicate with each other. This network may be linked by using cables, telephone lines, radio waves, satellites, or infrared light beams.

A wide area network (WAN) is a network that extends over a large geographic area and between different networks. This network uses telecommunications circuits. The Internet may be considered a WAN.

A Software-defined Wide Area Network (SD-WAN) is a Software-Defined approach to managing the WAN. An SD-WAN is a virtual WAN architecture (cloud or data centre) that uses any combination of transport services, such as 4G/5G LTE, and other connection types and broadband internet services – to securely connect users to their computer software or device. The benefits for this approach are the increases in security, performance, quality, speed and agility it provides.

Software as a Service (SaaS) – also known as “on-demand software” – is software that can be licenced on a subscription basis, while being hosted on the web. Anything that has the phrase ‘as a service’ in this context usually means it is sold on a subscription model.

Infrastructure as a Service (IaaS) is a pay-as-you-go cloud computing service model where the computing resources, such as compute, storage, and networking resources, are hosted in a public, private, or hybrid cloud. Therefore, you don’t have to worry about buying and managing physical servers and datacentre infrastructure yourself.

Security as a Service (SECaaS) is a subscription model for security services, such as authentication, anti-virus, anti-malware/spyware, intrusion detection, Penetration testing and security event management.

Secure Access Service Edge (SASE – pronounced sassy) is a network model that includes security services in a single cloud service. It can be managed by a single management console, and completes process work as close to the data source as possible, making it quick and secure.

Zero Trust Network or zero trust security means that no one is trusted by default wherever they may be accessing your data – whether from inside your network or outside. To prevent data breaches verification is required by everyone trying to gain access to resources on the network.

Written by Karen Sheard