Essentials Brussels: Marketing Cloud Breakout Session Corona Direct
Direct-to-cloud
10
DIRECT-TO-CLOUD Issues & Implications Dale McCarty
description
Direct-to-cloud. Issues & Implications. Dale McCarty. DTC in the News. “Just Like Everything Else in the Enterprise Space, Security is About to be Disrupted”. Trends Transforming IT. Business Users go Mobile. Cloud Apps go Mainstream. Social goes Enterprise. 50%. 90% . 75% . - PowerPoint PPT Presentation
Transcript of Direct-to-cloud
DIRECT-TO-CLOUDIssues & Implications
Dale McCarty
DTC IN THE NEWS
“Just Like Everything Else in the Enterprise Space, Security is About to be
Disrupted”
Mobile, Cloud & Social: Driving business beyond the corporate network (often without policy & protection)
Business Users go MobileUsers work from home or on-the-goUsers who BYOD50%
90%
80% of my MLPS traffic used to be for applications at my HQ and 20% was Internet bound. Now it’s just the opposite.” – CIO, Fortune 50 company
“
Cloud Apps go MainstreamCloud-based applications used by an enterprise50%
Social goes Enterpriseemployees use Facebook at work75%
TRENDS TRANSFORMING IT
This is the biggest transformation in IT security in the last 20 years.
MPLS backhaul kept life under control for IT
InternetBackhaul
On the Road/Mobile
Regional Gateway
Headquarters
Branch
Branch
Internet
VPNBackhaul
MPLS
Home/Hotspot
No policy or protection
TRADITIONAL IT
• Servers, applications & Data at Corp HQ or DC
• Protect the perimeter with firewalls
• Gateway proxies to protect Users
• MPLS backbone connected various offices
Internet breakout off-loaded MPLS circuits for ”trivial” applicationsOn the Road/Mobile
Regional Gateway
Headquarters
Branch
Branch
Internet
VPNBackhaul
MPLS
Home/Hotspot
No policy or protection
InternetBackhaul
THE NET EFFECT
• Perimeter becomes dynamic
• Applications & data are moving to the cloud
• Users embrace mobile apps
• Gateway proxies and firewalls get bypassed
Internet
DISAPPEARING PERIMETER
Full policy & protectionMPLS
On the Road/Mobile
Headquarters
Branch
Branch Home/Hotspot
Direct-to-Cloud reduces MPLS backhaul & improves user experience
Regional Gateway
• Perimeter becomes “the world wide web”
• The Cloud becomes a Data Center
• Users are going direct to net for applications
• Policy can only be enforced in the Cloud
GEOIP & “REAL” CLOUDS
Los Angeles Dallas
Chicago (East)Denver
TorontoNew York
Washington DCAtlanta (South)
S. Amer. Hub (Miami)
Paris
Sao Paulo Johannesburg
LondonAmsterdam
Oslo
BernFrankfurt (West)
Gdansk
StockholmMoscow
MumbaiChennai
Singapore
Sydney
Hong Kong
TokyoMadrid
TaipeiDubaiRiyadhCairo Kuwait City
Kuala Lumpur
Cape Town
San FranciscoSunnyvale
Santiago
Lima
AmmanAtlanta (North)Herndon
Ft. Worth
Chicago (West) Frankfurt (South)
Nigeria
DIRECT-TO-CLOUD TOPOLOGY
Block the bad, protect the good
Global check post Enforces business policyMobile & Distributed Workforce
Regional Office
Home or Hotspot
HQ
On-the-go
Cloud Services
Social Media
Cloud Apps
Mobile Apps
Botnet
Exploits
Compliance-based security: URL filters & A/V Protection
Risk-based security: Behavioral Analysis & Data Loss Prevention
Not Infrastructure! (That is the role of traditional firewalls, IPS, etc.)Secure Users
Proxy-based Data Loss Prevention and SSL Intercept & DecryptProtect Data
Improve Response Time and Selective AccessEnable Applications
Prioritize bandwidth by application and reduce backhaulStreamline WAN
WHAT DIRECT-TO-CLOUD CAN …AND CAN’T DO
QUESTIONS?(and thank you for your attention!)
