Zscaler Blog

Erhalten Sie die neuesten Zscaler Blog-Updates in Ihrem Posteingang

Abonnieren
Products & Solutions

Extending Zero Trust for Workloads in Google Cloud and China Region

image
SREEKANTH KANNAN
November 08, 2023 - 3 Lesezeit: Min

Global enterprise organizations are rapidly expanding their application footprints across multiple public clouds to leverage the unique capabilities of each cloud provider and mitigate lock-in risks. However, this multicloud adoption significantly expands the security risks. Unfortunately, legacy security architectures that retrofit on-premises models for multicloud are outdated and obsolete.

To address these challenges, Zscaler has extended its zero trust architecture to provide secure connectivity for the cloud workloads in Amazon Web Services (AWS) and Microsoft Azure. Today, we announce the availability of our Zscaler workload communications in the Google Cloud Platform, Azure public clouds in the China region, and AWS GovCloud along with our FedRamp certification. Customers can now confidently extend their deployments and benefit from the world’s largest inline cloud security platform with consistent security and segmentation policies.

China Region Support

Many industries such as technology, life sciences, and financial services are undergoing accelerated business transformations. They require deploying application workloads in public clouds closer to their employees for enhanced innovation and productivity. As organizations tap into the global footprint for resources and talent, we see a rapid rise in expansion into countries like China. They aim to provide consistent access and user experience to employees, regardless of their location. However, deploying workloads in public clouds for the China region poses the following challenges: 

  1. Strict Great Firewall inspection (GFW)
  2. Random bandwidth throttling 
  3. Spurious DNS injections for compliance enforcement
  4. Poor connectivity often with high packet loss and latency

In response, Zscaler launched China premium access to help customers with  enhanced connectivity and security. Many of our customers sought an extension of zero trust architecture for workloads deployed in public cloud regions of China, especially Microsoft Azure. Today, with this announcement, customers can now seamlessly extend cloud workloads to Azure Beijing and Hebei regions with the benefits of: 

  1. Purpose-built workload communications for China regions adhering to all local compliance mandates
  2. Centralized and granular policy for workload egress traffic to domestic China or an international website
  3. Additional monitoring to maintain the country-specific risk and compliance requirements

Diagram

 

GCP Support

Business transformation acceleration is happening across industry verticals with the adoption of modern application frameworks like microservices, serverless, and the new epoch of applications with Generative AI. One of Zscaler’s largest financial services customers embarked on a multicloud expansion with workloads deployed in Azure and GCP. Key drivers for the expansion were: 

  • Adopting GCP’s shared VPC architecture with granular workload egress security
  • Enhancing the website chatbots based on Gen AI co-pilot with better security
  • Extending threat protection and SSL inspection capabilities

This customer has now deployed Zscaler Workload Communications in Azure and GCP with the single shared VPC and centralized infrastructure design. This flexible design enables workload deployments across multiple regions. They have benefited from minimal changes to existing network routing configurations, advanced policy-based SSL inspection, and strict data protection policies with inline SSL decryption for full visibility into Gen AI user queries and downloaded content.

Image

In summary, these innovations and platform expansion for Zscaler Workload Communications will significantly improve business agility, end-user experience, and security for our customers’ workloads in multicloud.  

To learn more about the capabilities of Workload Communications, visit the product page here.

Watch our launch event to hear more about our extended cloud support here.

form submtited
Danke fürs Lesen

War dieser Beitrag nützlich?

Erhalten Sie die neuesten Zscaler Blog-Updates in Ihrem Posteingang

Mit dem Absenden des Formulars stimmen Sie unserer Datenschutzrichtlinie zu.