Simplify Secure Cloud Adoption with Your Next-Gen Secure Web Gateway

By on Jun 09, 2020

Today, with increased cloud adoption, more than eighty percent of corporate network traffic is destined for the internet. Backhauling internet traffic to a traditional Web Gateway’s “Hub and Spoke” architecture can be very costly. Network slows to a halt as traffics spikes, and VPN for remote workers proved to be ineffective and low performance in a situation like COVID.

Figure 1. Legacy Secure Web Gateway architecture in a cloud world.

Performance aside, as you adopt new cloud services and move more data to the cloud, you’re probably thinking: how do I protect business critical data, and how can I prevent threats coming in from the internet and cloud applications?

Many organizations are either adopting cloud services faster than they can secure them, or applying on-premises Web Gateway tools and architectures that were not designed to meet the challenges of cloud traffic. This can lead to attacks, malware, data leaks, and an unproductive work force.

IT departments need a secure yet flexible direct-to-cloud Web Gateway solution that ensures availability, maintain employee productivity and defend against threats.

Here are some of the capabilities of a Next-gen Cloud Secure Web Gateway to consider:

Real-time Zero-day Malware Prevention: Today’s threats are frequently customized and targeted. Zero-day protection is essential, and traditional gateways handle this by offloading to an out of band sandbox. The key to a next generation gateway is to provide that protection in real time – not forensically after the fact.

Unification with CASB: Gartner recommends that to reduce complexity on the network security side is to move to ideally one vendor for secure web gateway (SWG), cloud access security broker (CASB).  The Next-gen Cloud Secure Web Gateway should be a cloud- managed solution that is unified with CASB with shared risk databases, closed loop remediation and unified workflow.

Scalability and Availability: A cloud-native architecture that can offer the cloud-scale which is required as your remote workforce mushrooms as opposed to a SWG that is simply hosted in the cloud. A true cloud-grade service availability provides five nines 99.999% uptime – consistently.   Ask yourself, can you afford 50+ minutes of downtime?

Figure 2. Downtime Calculation Example.

McAfee’s Next-gen Cloud Secure Web Gateway (offered via MVISION Unified Cloud Edge) is unified with MVISION Cloud (CASB) to offer cloud-delivered web security to protect web traffic, provide visibility into data flowing to cloud applications, and safely enable both on-prem and remote workers. Furthermore, it is a direct to cloud solution that helps drive down cost and increase scalability and performance.

To find out more, listen to our latest podcast.


About the Author

Sadik Al-Abdulla

As Vice President of Product Management, Sadik is responsible for McAfee’s product strategy, execution, and user experience for the Web, Network, and Hybrid product lines. Sadik is both a former engineer and security consultant, and a tenured business leader. He brings more than 20 years of experience serving customers with their most sophisticated security challenges. ...

Read more posts from Sadik Al-Abdulla

Categories: Cloud Security

Subscribe to McAfee Securing Tomorrow Blogs