COMMENTARY: Once upon a time, Secure Access Service Edge (SASE), which provides network connectivity and security through a single, cloud-based platform, was a type of technology that was only within reach of large businesses. SASE solutions were expensive, and they often depended on legacy enterprise authentication or identity systems (like Active Directory) that smaller or newer organizations didn’t always operate.That has changed. Today, the SASE market is more dynamic than ever, making it easy to find a solution tailored to a given business’s needs. At the same time, SASE solutions have become more flexible than ever. No matter what your network architecture or software stack looks like, there is a way to deploy SASE for it.[SC Media Perspectives columns are written by a trusted community of SC Media cybersecurity subject matter experts. Read more Perspectives here.]In this sense, SASE has been democratized, which is great news in a world where every year sets new records for the frequency and scale of cybersecurity attacks, making it paramount for organizations to find ways to secure distributed applications and users.
Related reading:
As a result, the barrier standing in the way of successful SASE adoption for many businesses has become expertise. Like other paradigm-shifting technologies (such as virtualization or the cloud), SASE is only effective and practical to implement if businesses have access to the deep expertise necessary to make SASE solutions work in the ways they require.These are challenges that are often tough to solve, even for organizations with seasoned IT and networking staff. Because SASE is a fundamentally new type of approach to network connectivity and security, engineers accustomed to working with more traditional types of technologies, like VPNs and physical routers, may face a steep learning curve when tasked with setting up and maintaining a SASE solution.
The growing challenge of SASE adoption
But there’s also some bad news: Along with SASE’s increasing power and flexibility come deep deployment and management challenges. SASE vendors themselves often don’t solve them; they simply provide network connectivity and security solutions, leaving it up to their customers to figure out how to deploy their software effectively.Why SASE management is challenging
To prove the point, let’s drill into the specifics of why modern SASE platforms are often so challenging to deploy and operate effectively. Key pain points include:- Integration requirements: To connect and secure applications using a SASE solution, businesses must integrate SASE with their various applications. This can be challenging for organizations that use dozens or hundreds of applications that they source from a multitude of vendors.
- Policy implementation: Securing applications using SASE requires the presence of policies that define who can connect and how. Crafting zero-trust policies that grant the right levels of access, without allowing unnecessary privileges, requires deep familiarity with application access and authentication architectures.
- User management: Defining which users should have access to resources can be challenging, especially when user identities are managed through multiple systems, or when user roles change frequently. To manage users securely and at scale, it’s critical to automate processes like adding or removing users but creating those automations is no mean feat.
- SASE monitoring: Setting up an effective SASE deployment is only part of the battle. Businesses must also monitor SASE solutions continuously to detect risks, such as anomalous access events.




