Major gap: proper IT security at the branch office
While the branch office has become an increasing area of cyber security risk over the last several years (a Gartner report noted that 30% of attacks would enter through the branch by 2016), many enterprises are not able to budget or support the needed security infrastructure (Dimension Data cited 40% of surveyed enterprises did not have even a stateful firewall deployed at their branches; November 2016).
Managed security services can help a subset of enterprises, but they can be expensive for both provider and customer due to a hardware-based approach which is slow and expensive to deploy, requires proprietary appliances, and is designed around a closed architecture that can be difficult to scale.
Managed SD-Security: simplify branch security for large and small companies
By transitioning from a hardware-based managed service to a software-based and more DevOps-oriented approach, service providers can harness the power of software-defined security (SD-Security) to provide a broad range of managed security offerings that meet the needs and budgets of both large and small enterprises.
To make this transition achievable, Versa has created broad set of virtualized security functions that run on commodity x86-based hardware, and that are open and fully programmable. Providers can create basic managed firewall services or rich multi-function services like unified threat management (UTM) that replace complex physical or virtual appliances. These services can operate at the customer premises, in the provider data center/cloud or a combination of both, and start at a much lower price-point than traditional managed offerings using proprietary enterprise hardware or software packages.
By migrating from proprietary hardware- to Versa VNF-based security services, providers can reduce the deployment time of managed security services from weeks or months down to hours.
For branch deployments, providers simply ship a commodity appliance and use Versa Director central management to zero-touch provision the device — no truck rolls are required.
Incremental security functions can be centrally provisioned and downloaded in real-time to the commodity appliance as needed, significantly reducing deployment and integration work.
Capex is radically lowered by replacing proprietary security appliances and perpetual software with Versa multi-function single VNF and pay-as-you-go subscription pricing. Built-in multi-tenancy further lowers Capex.
Opex is reduced through the Versa Director management platform and zero-touch provisioning, which eliminate truck rolls and greatly simplify ongoing operations such as software updates and capacity expansion.
Ongoing operations are simplified through the Versa Director management platform, which provides a single console and control across all Versa security functions. Capacity increases can be dynamically provisioned centrally, and incremental security functions can be easily added by downloading a VNF.
The Versa managed security solution enables providers to cost-effectively build their own custom security offerings to meet the needs of different market segments from SMB to large enterprise.
For example, a provider can create a simple managed firewall service for SMB customers with a stateful or next-generation firewall in the telco cloud, and use the same Versa resources to build and manage a comprehensive enterprise security service with full on-premises UTM functionality and cloud-based malware protection.