The Future of Zero Trust and SASE is Now! Watch on-demand

close
magnifying glass
Get Started
magnifying glass
Support
chevron
Support Language
close
  • Why Netskope chevron

    Changing the way networking and security work together.

  • Our Customers chevron

    Netskope serves more than 3,000 customers worldwide including more than 25 of the Fortune 100

  • Our Partners chevron

    We partner with security leaders to help you secure your journey to the cloud.

Highest in Execution. Furthest in Vision.

Netskope recognized as a Leader in the 2023 Gartner® Magic Quadrant™ for Security Service Edge.

Get the report
Netskope recognized as a Leader in the 2023 Gartner® Magic Quadrant™ for Security Service Edge.
We help our customers to be Ready for Anything

See our customers
Woman smiling with glasses looking out window
Netskope’s partner-centric go-to-market strategy enables our partners to maximize their growth and profitability while transforming enterprise security.

Learn about Netskope Partners
Group of diverse young professionals smiling
Your Network of Tomorrow

Plan your path toward a faster, more secure, and more resilient network designed for the applications and users that you support.

Get the white paper
Your Network of Tomorrow
Introducing the Netskope One Platform

Netskope One is a cloud-native platform that offers converged security and networking services to enable your SASE and zero trust transformation.

Learn about Netskope One
Abstract with blue lighting
Embrace a Secure Access Service Edge (SASE) architecture

Netskope NewEdge is the world’s largest, highest-performing security private cloud and provides customers with unparalleled service coverage, performance and resilience.

Learn about NewEdge
NewEdge
Netskope Cloud Exchange

The Netskope Cloud Exchange (CE) provides customers with powerful integration tools to leverage investments across their security posture.

Learn about Cloud Exchange
Netskope video
Explore Borderless SD-WAN
The platform of the future is Netskope

Intelligent Security Service Edge (SSE), Cloud Access Security Broker (CASB), Cloud Firewall, Next Generation Secure Web Gateway (SWG), and Private Access for ZTNA built natively into a single solution to help every business on its journey to Secure Access Service Edge (SASE) architecture.

Go to Products Overview
Netskope video
Next Gen SASE Branch is hybrid — connected, secured, and automated

Netskope Next Gen SASE Branch converges Context-Aware SASE Fabric, Zero-Trust Hybrid Security, and SkopeAI-powered Cloud Orchestrator into a unified cloud offering, ushering in a fully modernized branch experience for the borderless enterprise.

Learn about Next Gen SASE Branch
People at the open space office
Designing a SASE Architecture For Dummies

Get your complimentary copy of the only guide to SASE design you’ll ever need.

Get the eBook
Go to Solutions Overview
Go to Solutions Overview
Go to Solutions Overview
Go to Industries Overview
Make the move to market-leading cloud security services with minimal latency and high reliability.

Learn about NewEdge
Lighted highway through mountainside switchbacks
Safely enable the use of generative AI applications with application access control, real-time user coaching, and best-in-class data protection.

Learn how we secure generative AI use
Safely Enable ChatGPT and Generative AI
Zero trust solutions for SSE and SASE deployments

Learn about Zero Trust
Boat driving through open sea
Netskope achieves FedRAMP High Authorization

Choose Netskope GovCloud to accelerate your agency’s transformation.

Learn about Netskope GovCloud
Netskope GovCloud
  • Resources chevron

    Learn more about how Netskope can help you secure your journey to the cloud.

  • Blog chevron

    Learn how Netskope enables security and networking transformation through security service edge (SSE)

  • Events and Workshops chevron

    Stay ahead of the latest security trends and connect with your peers.

  • Security Defined chevron

    Everything you need to know in our cybersecurity encyclopedia.

Security Visionaries Podcast

How to Use a Magic Quadrant and Other Industry Research
In this episode Max Havey, Steve Riley and Mona Faulkner dissect the intricate process of creating a Magic Quadrant and why it's much more than just a chart.

Play the podcast
How to Use a Magic Quadrant and Other Industry Research podcast
Latest Blogs

Read how Netskope can enable the Zero Trust and SASE journey through security service edge (SSE) capabilities.

Read the blog
Sunrise and cloudy sky
SASE Week 2023: Your SASE journey starts now!

Replay sessions from the fourth annual SASE Week.

Explore sessions
SASE Week 2023
What is Security Service Edge?

Explore the security side of SASE, the future of network and protection in the cloud.

Learn about Security Service Edge
Four-way roundabout
  • Company chevron

    We help you stay ahead of cloud, data, and network security challenges.

  • Leadership chevron

    Our leadership team is fiercely committed to doing everything it takes to make our customers successful.

  • Customer Solutions chevron

    We are here for you and with you every step of the way, ensuring your success with Netskope.

  • Training and Certification chevron

    Netskope training will help you become a cloud security expert.

Go to Customer Solutions
Netskope Training
Supporting sustainability through data security

Netskope is proud to participate in Vision 2045: an initiative aimed to raise awareness on private industry’s role in sustainability.

Find out more
Supporting Sustainability Through Data Security
Thinkers, builders, dreamers, innovators. Together, we deliver cutting-edge cloud security solutions to help our customers protect their data and people.

Meet our team
Group of hikers scaling a snowy mountain
Netskope’s talented and experienced Professional Services team provides a prescriptive approach to your successful implementation.

Learn about Professional Services
Netskope Professional Services
Secure your digital transformation journey and make the most of your cloud, web, and private applications with Netskope training.

Learn about Training and Certifications
Group of young professionals working

Beyond VPN: A Modern Approach to Remote Access

Feb 25 2020
By Lamont Orange

Long considered the standard in the industry, it appears the Virtual Private Network (VPN) is on death’s doorstep after nearly two decades. 

While the cybersecurity industry is making great strides with digital transformation, the VPN continues to hold enterprises back. For a time, the VPN was the best way for enterprises to allow secure access from outside their perimeter to their internal resources and data.  But along with this digital transformation, comes an increasingly mobile and remote workforce that is reliant upon IaaS apps being hosted in the public cloud.

All of this contributes to a dissolving perimeter, where workers are working off of enterprise networks in the cloud. VPN’s just can’t keep up, either causing friction for remote workers or being wholly ineffective at actually establishing a private secure connection.

These signs all point to the imminent death of VPN. But if the VPN is dead, what is going to take its place? 

We’ll get to that in due time, but first let’s touch on some of the specifics of why the VPN is dying.

Why Are VPNs Being Replaced?

The biggest hit to current VPN deployments is coming from the increasingly evident shift away from the dissolving security perimeter, rendering VPNs ineffective.

Many VPNs exist as appliances within an enterprise’s on-prem security stack, backhauling traffic to allow secure access to the network whether employees are on-prem or not. As the traditional perimeter slowly dissolves into the cloud, and the security stack follows suit, there’s no sense in paying for the upkeep of a costly VPN appliance. 

This backhauling also causes more headaches for remote workers trying to access enterprise apps hosted in the public cloud. Instead of having direct cloud access they’re routed back through the corporate security stack only to head back out into the cloud. From here it should be obvious that the VPN emerges as a clunky, costly appliance that only hinders a workforce that is becoming more mobile and geographically dispersed. 

Considering that the VPN itself is a direct, immediately trusted connection to an enterprise’s network, it can be a most sought out asset to a malicious actor, making it a liability in the wrong hands. If a malicious actor or insider gains access to the VPN credentials, and circumvents security controls that may exist, it positions access to any sensitive data on your network that isn’t otherwise locked down.

So, not only is the VPN a clunky and increasingly outdated solution in a digitally transforming world, but it also isn’t providing the secure network access the modern workforce requires. With the VPN clearly on its way out the time is now to name the worthy successor to the VPN’s throne.

What’s Replacing the VPN?

The clear heir to the VPN’s throne is Zero Trust Network Access (ZTNA) and here’s why.

First, as a framework, Zero Trust is much more secure, offering direct, and managed  connections that only allow users to see the data for which they are authorized. This is due to granular micro-segmentation via an encrypted pathway. This is like getting access to a single safe deposit box versus access to the entirety of a library. Users only see what they are authorized to see, and nothing that they aren’t.

Second, ZTNA is much more easily deployed in the cloud. This not only transitions your security off-premise and into the cloud, but also allows for inline visibility so remote and mobile users aren’t forcibly backhauled through your enterprise data center. This allows much easier access to the applications and custom applications your workforce is already using on the public cloud and significantly reduces the friction to your workforce, enabling the freedoms to work anywhere they please without compromising security

While ZTNA may immediately look like a more expensive option than staying with your traditional VPN, it doesn’t require the capital expenditure associated with upkeep on an appliance. Factoring in time, effort, and resources required to maintain and operate traditional VPN, you’ll see savings by implementing ZTNA. 

When you take all of these factors into account, it’s clear that ZTNA is here to eat the VPN’s lunch, and the only humane thing to do is to make the switch and put your VPN out to pasture. The VPN had a good run, but ZTNA is here to offer a less costly, less clunky, and more secure experience for everyone involved.

< Platform, Products, & Services
Next Story >
< Back
Next >
author image
Lamont Orange
Lamont Orange has more than 20 years of experience in the information security industry, having previously served as vice president of enterprise security for Charter Communications (now Spectrum) and as senior manager for the security and technology services practice at Ernst & Young.
Read More
More Articles by Lamont Orange
Read full Bio
More articles

Related Articles

card shape
Platform, Products, & Services

Understanding NIS2 Compliance and How SASE Can Help

By Rich Beckett
chevron Read the blog
card shape
Platform, Products, & Services

How a Private Cloud Approach to SASE Helped Reduce Disruption From a Severed Sub-sea Cable

By Francisca Segovia
chevron Read the blog
card shape
Platform, Products, & Services

A Swiss Army Knife for ISO 27001:2022 Compliance

By Rich Beckett
chevron Read the blog
Show More

Stay informed!

Subscribe for the latest from the Netskope Blog