I'm the only security person at my company, and I need to recommend a SASE vendor by this Friday. Here's the situation: we have 800 employees spread out across 12 offices on three continents, with most of the team working remotely. Currently, we're relying on MPLS for site connectivity, split-tunnel VPN for remote users, and a mix of patchwork security solutions set up by the previous guy six years ago, which were never documented. My job for the last two months has been to figure out what we have, why it keeps failing, and what we should replace it with. The main issues are "more than anyone realized" and "everything is held together with hope and static routes." Now, I have to make a case for a full network and security consolidation to a board that doesn't understand SD-WAN and a CTO who just wants to ensure nothing breaks during the World Cup since that's when our traffic peaks. I understand that a converged SASE approach makes sense—combining SD-WAN, ZTNA, secure web gateway, cloud firewall, and XDR all on one platform with a single management console, and AI to handle incident triage around the clock. However, I'm second-guessing myself because I've never done a network transformation of this magnitude and I'm looking for insights from those who've tackled something similar. What unexpected challenges did you face? What crucial questions should I be asking the vendor before committing? And is that 'single pane of glass' concept ever truly realistic, or is it just a sales pitch?
6 Answers
Just a heads up, if you're under time constraints, maybe think about utilizing a Value Added Reseller (VAR) to simplify the process. They can weigh in with cost-effective solutions as well, just like we did with iboss.
I’ve gone through a similar process and we decided to use Netskope for ZTNA and DLP features. We’ve been using it for about a year and it’s been great for the remote workforce—much easier to manage and it even replaced our Cisco VPN. The downside is, it is a bit pricey, but the visibility it provides is worth it.
Netskope or Zscaler are solid options. They’re designed to handle remote workforces with ease.
Honestly, I think you need to get some consultant quotes pronto and present those instead of trying to figure it out on your own with such a tight deadline. You’re looking at a huge transformation, and your recommendation could either gain you praise or get you in serious trouble. Don’t go at it alone here; bring in the experts!
Totally agree! Getting an outside perspective can help clarify the situation quickly. Remember, a solid assessment independent of vendors is key.
Exactly. Also, consider what your networking team thinks; their input is just as important for a decision like this.
If you’re looking for a straightforward recommendation under pressure, I’d suggest Cato. Many folks have found it does what it promises without the usual hassles that come with a complicated setup.
Agreed! Cato seems to have a more integrated approach compared to other solutions.
Yeah, Cato could be your best bet to keep things manageable as a one-person team.
Remember, this challenge is more about balancing resources than finding the perfect tool. Choose someone reliable, like Netskope or FortiSASE, and you’ll be on the right track.
One thing to keep in mind is the pressure from management often leads to hasty decisions. Take a breath and make sure you fully understand your existing setup—sometimes just a few config changes can solve problems without needing a whole new system. Remember, more complexity can lead to more headaches.
Totally! I once saw a church upgrade their sound system when the issues were just poor control setup. Understanding what you already have is crucial.
That's spot on! Make sure you have a grasp on the impacts of such changes before diving in.
We went with Zscaler and it's been working well for us too! Keeping everything streamlined without LAN access simplifies the entire structure.