Feature
Gartner first introduced the concept of Security Service Edge (SSE) in 2021, as a fork of Secure Access Service Edge (SASE). The move separated the security aspects of SASE from the networking, narrowing the focus on protecting cloud workloads, data and users, regardless of device location or where the application is hosted.
This summer, SSE gained significant momentum. As one of the leading solutions for securing remote and hybrid work environments, its growing adoption is unsurprising given the holding power of these models in many organizations.
Security Service Edge Gains Traction
This June, Cisco introduced a new Security Service Edge (SSE) solution designed to help enterprises securely connect an expanding range of edge resources, including cloud, private and SaaS applications. The SSE offering, named Cisco Secure Access, includes Zero Trust Network Access to ensure robust security across these environments.
Soon after, Microsoft launched the general availability of its Entra Suite, officially entering the fast-growing SSE market in July. Forrester analysts noted that the entry of Microsoft into the space would force smaller SSE vendor to either exit the market, find ways to protect their position or adapt through innovation.
SSE can be viewed as a successor to VPN, especially in environments where cloud services, remote work and modern security practices like Zero Trust are key. SSE addresses many of the limitations of VPNs, providing better security, performance and scalability in today's distributed and cloud-centric environments, according to Zscaler research.
VPNs still have their place, however, and continue to be widely used by companies with a heavy reliance on on-premises systems or legacy applications that don’t work well with cloud-based solutions. Smaller organizations also might prefer VPNs due to lower upfront complexity, especially if the company isn't fully leveraging the cloud or doesn't need granular security.
But the future looks to be SSE, especially as remote work persists. According to Gartner’s recent Magic Quadrant for SSE, by 2026, 85% of organizations aiming to secure their web, SaaS and private applications will turn to SSE solutions for their security needs.
Only 10 organizations are mentioned in the MQ, indicating the nascent state of the field. Neither Cisco nor Microsoft are mentioned. Gartner wrote of the market: "Vendors continue to improve their functionality and integrate their capabilities into fewer distinct products and SKUs. They are adding ease-of-use and administration features such as advanced reporting, DEM and better SaaS support."
Related Article: EX Problems? Enter the Digital Employee Experience Management Platform
A Solution to an Expensive and Complex Problem
Wade Barisoff, director of data protection products at Fortra, sees SSE best serving small and mid-size organizations who have limited funds and resources to maintain a traditional hardware environment.
Colocation or even creating data centers with all the necessary equipment and tools is expensive, however they provide the most control over the speed, stability and tools that are deployed to secure the organization, he said. As teams continue to be stretched, SSE solutions can allow teams to focus on configuration and/or monitoring versus ordering, maintaining, upgrading and all the heavy lifting that goes into sustaining a corporate environment.
However, larger and globally distributed enterprises already have the existing infrastructure and processes. SSE products are flexible in that a company does not need to start in a "all or nothing" situation — they can begin with more remote offices (out of country) or start with a service like a CASB or Secure Web Gateway.
"The best part of an SSE solution is that it offers flexibility and options,” he said. “No longer are companies required to map out data centers to house expensive equipment across the nation or across the globe as that is part of the service."
Whether it is the entire network or a portion of it, companies now have the option to offload what's been an expensive and complex problem that's persisted for over three decades.
Related Article: A Zero Trust Security Primer
SSE's Advantage for the Hybrid Workplace
There are several clear advantages to deploying these kinds of solutions in a hybrid workplace, Adhiran Thirmal of Security Compass, told Reworked.
“SSE solutions are indeed well-suited for securely enabling digital remote and hybrid workplaces due to their cloud-native nature, scalable architecture and integrated security capabilities,” he said. "They address many of the challenges associated with remote work, such as maintaining a consistent security posture and providing adaptive access controls.”
The most obvious of these is the scalability and flexibility the cloud-based solution offers. It can accommodate fluctuating demands from a large numbers of users without the need for substantial on-premises infrastructure. But Thirmal adds it has other advantages, too, including:
- Consistent Security Posture: By centralizing security controls and policies in the cloud, SSE ensures a consistent security posture regardless of where users are connecting from. This, he said, is crucial for remote and hybrid environments, where users access resources from various locations and devices.
- Enhanced Visibility and Analytics: Thirmal notes that SSE solutions provide comprehensive visibility into user activities, application access and traffic patterns, which helps organizations detect and respond to potential threats more effectively.
- Adaptive Access Control: Adaptive access controls based on identity, context and risk means that security policies can dynamically adjust based on factors like user location, device security posture and application sensitivity. This provides a more granular and effective access management approach.
- Unified Security Capabilities: SSE integrates multiple security functions, such as secure web gateway (SWG), cloud access security broker (CASB) and zero trust network access (ZTNA) into a single platform. This integration simplifies management and enhances protection against various types of threats.
Thirmal does acknowledge SSE has its limitations, too. Transitioning to an SSE solution might require integration with existing on-premises systems and other security tools, he said, which can be complex and may necessitate careful planning and execution.
There is also the problem of data privacy and compliance. While SSE solutions offer robust security, organizations need to ensure that these solutions comply with relevant data privacy regulations and standards. This is especially important for organizations operating in regulated industries or regions with strict data protection laws.
But Thirmal believes that overall, SSE can be a highly effective component of a comprehensive cybersecurity strategy for remote and hybrid environments when implemented as part of a broader, multi-layered security approach.
Related Article: Public Cloud Security Questions Your Workplace Is Probably Ignoring
Conference
Oct
20
Gartner IT Symposium/Xpo Orlando 2025
Register
Conference
Oct
27
Gartner HR Symposium/Xpo Orlando 2025
Register
Alternatives to SSE
While SSE is a major addition to the security landscape, other technologies are worth exploring, said Clarke Duncan, founder of a recruitment agency for remote workers.
When discussing the security of hybrid and remote workplaces, it is essential to consider a multifaceted approach, he said. While SSE solutions are indeed effective, he suggests also considering the following:
- Zero Trust Architecture (ZTA): This model operates on the principle that no one, whether inside or outside the network, is trusted by default. Every access request, he said, is authenticated, authorized and encrypted. This approach significantly reduces the risk of unauthorized access.
- Endpoint Detection and Response (EDR): He also recommends EDR solutions, which provide continuous monitoring and response to threats at the endpoint level. By collecting data from endpoints, organizations can detect suspicious activity, investigate it, and respond promptly.
- Multi-Factor Authentication (MFA): Enhancing login security with MFA ensures that access requires multiple forms of verification, making it harder for unauthorized users to gain entry even if they have stolen passwords.
- Secure Access Service Edge (SASE): SASE, he says, combines network security functions with wide-area networking capabilities to support the dynamic and secure access needs of modern organizations. It integrates multiple security services into a single cloud-delivered service.
Other technologies, like DLP (data loss prevention), are designed to detect and prevent potential data breaches by monitoring, detecting and blocking the transfer of sensitive information outside an organization's network.
But Duncan notes one of the most significant vulnerabilities of all: human error. “Regular training ensures that employees are aware of the latest security threats and best practices, reducing the risk of breaches due to phishing or other social engineering attacks,” he said.