Professional Documents
Culture Documents
Zscaler Internet Access delivers your security stack as a service from the
cloud, eliminating the cost and complexity of traditional Trusted Internet
Connection (TIC) approaches. By moving security to Zscaler GovCloud,
Zscaler™ brings the internet gateway closer to the user for a faster
experience. Agencies can easily scale protection to all offices or users,
regardless of location, and minimize network and appliance infrastructure.
The data center used to be the center of gravity. When applications resided there, it made sense to
backhaul traffic from branch offices over a hub-and-spoke network. As traffic patterns shifted to the
internet, TICs were built with stacks of security appliances to allow secure internet access. These gateways
were also centralized to minimize the cost and complexity of securing multiple locations.
Firewall/IPS
Web/URL filter
Antivirus Backhauling and Slow gateways
DLP inspection layered appliances drive users to use
hinder the user direct-to-cloud
SSL interception experience connections for
Sandbox analysis HQ Data application access
Center
Despite massive appliance investments, The new world? Your perimeter has
breaches continue. It’s clear this aging dissolved and the internet is your new
perimeter-based design has lost its network. A new internet security
The failing hub-and-spoke
effectiveness over time. architecture is needed.
architecture
Zscaler Internet Access is the leading TIC in the industry, supporting multiple TIC 3.0 use cases, offering
an alternative to the traditional parameter-based TIC approach. Zscaler becomes the agency’s secure on-
ramp to the internet for all agency traffic, making Zscaler the user’s first hop to the internet. Agencies may
either simply set up a connection with an IPsec tunnel to the closest Zscaler data center, or forward user
traffic via our lightweight Zscaler Client Connector or PAC file, providing the user with identical security
protection whether they are connecting from the agency location, user home office, airport, or a local
coffee shop.
Zscaler Internet Access sits between your users and the internet, inspecting every byte of traffic inline
across multiple security techniques, even within SSL. You get full protection from web and internet threats.
And with a cloud platform that supports Cloud Firewall, Cloud IPS, Cloud Sandbox, Cloud DLP, and CASB,
you can start with the services you need today and activate others as your needs grow.
All these capabilities are delivered from Zscaler’s global multitenant cloud security platform, which
processes more than 200 billion requests per day at peak periods. With more than 100 patents, the
Zscaler platform has been architected from the ground up as a truly distributed, multitenant cloud with
enterprise performance and scale.
Cloud effect
Full inline content / SSL Inspection
Strengthen your security with data collected
Inspect ALL your traffic, with no compromises.
from millions of users. Any threat detected
Our patented ByteScan™ engine inspects
anywhere in our cloud is immediately blocked
each outbound and inbound byte, including
for all customers. Zscaler also delivers more
hard-to-inspect SSL traffic, with only a
than 175,000 unique security updates to the
microsecond delay.
cloud every day.
Threat Prevention
Proxy (native SSL) IPS and advanced Cloud Sandbox DNS security
protection
Find hidden threats with full Block zero-day exploits by Identify and route suspicious
and unlimited inspection of Deliver full threat protection analyzing unknown files command-and-control
SSL traffic at scale. from malicious web content, for malicious behavior, and connections to Zscaler threat
such as browser exploits, easily scale to every user detection engines for full
and scripts. Identify and regardless of location. content inspection.
block botnets and malware
callbacks.
Access Control
Data Protection
Cloud DLP with EDM Cloud Access Cloud Security Posture* Cloud Browser Isolation*
Easily scale DLP across all Security Broker (CASB) Management (CSPM) Eliminate exposure to risky
users and inside SSL. Prevent data exposure and Extend data protection into web content and data
Improve custom data ensure SaaS compliance AWS, Azure, and SaaS. exfiltration by separating
detection with exact data with out-of-band CASB. Monitor and mitigate app browsing activity from the
match and indexed Discover and control u misconfiguration along with end user device.
document matching. known cloud apps with compliance reporting and
inline CASB. violation remediation.
ADDITIONAL SERVICES
Standard Zscaler Digital Experience (ZDX)
Monitor and isolate user experience issues with complete check check
end-to-end visibility for 3 apps
Enterprise License
An Enterprise License Agreement (ELA) is available for
customers with 5,000+ seats. Includes all available add-on
services (except Cloud Browser Isolation and CSPM for IaaS
and PaaS) and Premium Support
Zscaler was named a Leader in the Gartner Magic Quadrant for Secure Web Gateways for 10 consecutive
years. In 2021, Gartner defined the security service edge—a new category that includes SWG—and
subsequently recognized Zscaler as a Leader in the 2022 Gartner Magic Quadrant for Security Service
Edge, with the highest “Ability to Execute.”
“ We have
over 350,000
employees in
192 countries in
2,200 offices
being secured
by Zscaler.”
Frederik Janssen
Zscaler: A Leader in the Gartner® Magic Quadrant™ Global Head of IT
Infrastructure, Siemens
for Security Service Edge (SSE)
1. https://www.zscaler.com/gartner-magic-quadrant-security-service-edge-sse-2022
+1 408.533.0288 Zscaler, Inc. (HQ) • 120 Holger Way • San Jose, CA 95134 zscaler.com