Zscaler has announced advancements to the Zero Trust Exchange platform to radically simplify and improve cloud workload security by eliminating lateral movement, reducing operational cost and complexity, and ensuring consistent threat and data protection. Zscaler now offers native integration with AWS user-defined tags to allow granular Zero Trust VPC segmentation, all ports and protocols inspection for cloud-based VDI and expansion to GovCloud and China regional public clouds.
Public cloud adoption enables digital transformation at scale, driving a massive influx in cloud-based workloads hosting sensitive communications and data with SaaS applications or workloads in multiple public clouds or data centers. As a result, securing these mission-critical workloads is vital for enterprises to ensure their continued success and protect sensitive data.
An IDG report states that 35% of customers struggle with increased costs in cloud management and cloud security. Securing cloud workloads without sacrificing protections, expanding the attack surface, increasing operational overhead or degrading performance is a major challenge for organizations embarking on their digital transformation initiatives.
New advancements in Zscaler Workload Communications remove operational complexity, increase security and expand cloud coverage:
- Workload Segmentation using User-Defined Tags: On AWS, Zscaler uniquely enables creating custom security groups based on user-defined tags and native attributes.
- Supporting the AWS maximum tag limit, organizations can leverage their existing workload identities for VPC or network segmentation within the public cloud and eliminate the operational complexity involved in managing security policies based on IP Addresses, FQDNs, and CIDR blocks.
- Real Time Resource Discovery: Enabling custom-groups, Zscaler’s native integration with AWS automatically discovers VPCs, subnets, and EC2 resources, including their associated tags and attributes in real-time. Enterprises can now effortlessly integrate security definitions based on cloud attributes, eliminating the need for manual configurations.
- Multi-Session VDI Security: An industry first, Zscaler inspects all ports and protocols for multi-session, non-persistent VDI deployments in the public cloud. Enterprises can now apply granular threat and data protection policies per individual user session, enabling enterprises to maintain common security policies across all environments.
- Expanded Cloud Coverage: Workload Communications now supports Google Cloud Platform (GCP), plus Azure China Regions and AWS GovCloud with FedRAMP certification. With AWS, Azure, and now expanded cloud support, enterprises can secure their cloud workloads consistently and effectively while maintaining the flexibility of public cloud choice.
“As customers accelerate the adoption of public cloud infrastructure they require a simple and effective cloud security platform to protect their cloud workloads and applications. Legacy architectures built with virtual network and security appliances, or backhauling traffic to data centers, fail to deliver consistent cyber defense and add operational complexity and cost,” said Dhawal Sharma, Senior Vice President and General Manager, Zscaler. “These new innovations radically simplify cloud workload connectivity and deliver cyber security including TLS inspection, data protection, and segmentation at cloud scale and cloud speed. Customers can use the Zscaler Zero Trust Exchange platform to connect and protect workloads across Multi-cloud, Hybrid and private cloud, Government Cloud, and Specialist Availability Regions such as China.”