Intelligent CIO North America Issue 03 | Page 20



Download whitepaper here

A software-defined approach to managing wide-area networks , SD-WAN offers improved connectivity to branch offices and the cloud . End users are excited about SD- WAN because it enables them to manage and add network functionality using a cloud-based software model , which eases deployment , enables central manageability and reduces costs .

As compute resources and associated cloud services have exploded , the traditional enterprise network boundaries have expanded into the public cloud , branch locations and intelligent edges .
Service providers , are increasingly providing managed SD-WAN services to enterprises and the number of enterprise SD-WAN deployments is growing rapidly . So what does this all mean to enterprise branch security ?
Security needs to evolve with SD-WAN
Existing security models cannot effectively address the evolving threat landscape and new security requirements driven by the move to virtualization ( e . g . virtual machines , containers ) and cloud-based architectures .
First , the current protection model in the enterprise branch is basic and can ’ t secure local internet breakout to the cloud , as traffic is steered over MPLS to datacenter ( DC ) sites where security is applied .
Also , there is not much end-to-end microsegmentation between branch and DC / cloud applications across the enterprise .
Second , with the increasing sophistication of attacks and evolving threat landscape , we cannot
20 INTELLIGENTCIO www . intelligentcio . com