SlideShare uma empresa Scribd logo

Secure Access – Anywhere by Prisma, PaloAlto

Prime Infoserv
Prime Infoserv

The purpose of the session is to ensure security on the rapidly scaled work from Home situations during the COVID-19 outbreak. The objective is to ensure that they can securely and rapidly connect to all of their applications, including SaaS, cloud, and data-center applications. The session will be delivered by Mohammad Faizan Sheikh, Channel Systems Engineer, India & SAARC for Palo Alto Networks..

Tecnologia
1 de 28
Global Webinar Series, Hosted by Prime Infoserv Supported by Supported by Community Partner
Securely Connect and Scale Remote Workforces Hosted by: Faizan Sheikh, CSE, India and SAARC March 30, 2020
Enabling a Secure Mobile Workforce 3 | © 2020 Palo Alto Networks, Inc. All rights reserved. “India Lockdown for 3 weeks” “Teachers need to be prepared to educate remotely” “We only have capacity to supply remote access to 20% of our workforce” “We do not have the network capacity to support over 50% of our users working remotely” Enabling a secure mobile workforce is of primary concern to organizations right now
Situation: Remote Access Capacity Challenge Remote access VPN traffic is backhauled to the data center PUBLIC CLOUD / SaaS / INTERNET DATA CENTER (PRIVATECLOUD) MOBILE USERS Under-Architected Remote Access • Finite Scalability: Adding hardware is the only contingency option • Deployment Challenges: Procurement, hardware implementation, connectivity, location challenges • User Experience/Internet Connectivity: Customers may not have Internet capacity to route all internet traffic through their internet circuits via datacenter (bi-directional) 4 | © 2020 Palo Alto Networks, Inc. All rights reserved.
A Single Platform to Connect and Secure Everything SaaS PUBLIC CLOUD INTERNET DATA CENTER BRANCH RETAIL MOBILE 2019 Palo Alto Networks. All Rights Reserved. HQ
6 | © 2020 Palo Alto Networks, Inc. All rights reserved. Scale Remote Access with the Strata Firewall Platform Same Security - 3 Consumption Models On-Premise Expand NGFW scale in your existing GP gateways Add GlobalProtect to existing NGFWs Rapid Expansion and Hybrid Quickly add scale to your on-prem gateways Hybrid Public Cloud/DC gateways Cloud-Delivered The cloud becomes your distributed head-end Reduce constraints on your network No scale or capacity planning burden
Prisma Access is designed for providing secure cloud access from anywhere DATA CENTER (PRIVATECLOUD) PUBLIC CLOUD / SaaS / INTERNET MOBILE USERS Solution: Prisma Access Scalable Remote Access for Mobile Users • Deploy quickly: In the cloud, the internet or the data center • Global Reach: Remote Access with connections to the cloud to over 100 locations • Dynamic Scale up, Scale down: Leveraging the cloud to ramp with customer demand 7 | © 2020 Palo Alto Networks, Inc. All rights reserved.
8 | © 2020 Palo Alto Networks, Inc. All rights reserved. Security as a Service Layer Network as a Service Layer SaaS PUBLIC CLOUD INTERNET HQ/DATA CENTER BRANCH RETAIL MOBILE Prisma Access: The Industry’s Most Comprehensive Secure Access Service Edge
Prisma Access 9 | © 2020 Palo Alto Networks, Inc. All rights reserved. BRANCH RETAIL MOBILE Security as a Service Layer SSL Decryption CASB Cloud SWGZTNA DNS FWaa S DLPSandboxing Network as a Service Layer SD-WAN IPSec VPN Policy Based Forwarding Network as a ServiceSSL VPNQoS SaaS PUBLIC CLOUD INTERNET HQ/DATA CENTER 9 | © 2020 Palo Alto Networks, Inc. All rights reserved.
Dynamic Scalability and Resiliency 10 | © 2020 Palo Alto Networks, Inc. All rights reserved.
Prisma Access - Multi-Tenancy Architecture Management Plane / Cloud Orchestration / Operations Single Tenant Specific Cloud Instantiated Data Plane Multitenant Management 11 | © 2020 Palo Alto Networks, Inc. All rights reserved. Customer 1 Tenant Customer 2 Tenant Customer 3 Tenant Tenancy Architecture Multitenant management plane Single tenant data plane per customer Avoids performance and security issues
Resilient and Scalable Solution ● Auto-Scaling ○ More intelligent scaling algorithms / approaches - taking multiple inputs ○ Dynamic scaling and different methods ● Monitoring ○ Advanced operational monitoring in place ● Cloud Service Providers partnership ○ Commitments from both GCP and AWS regarding scaling in all regions
Situation: Solving the Remote Access Network Capacity Challenge 13 | © 2020 Palo Alto Networks, Inc. All rights reserved. MOBILE USERS MOBILE USERS MOBILE USERS MOBILE USERS MOBILE USERS MOBILE USERS DATA CENTER DATA CENTER Limited Internet Circuit and Gateway Capacity Public Cloud SaaS Web Inbound remote access user traffic Internet-bound egress traffic Cloud fiber network transit traffic Branch traffic BRANCH BRANCH
Frequent Questions about Cloud-Delivered Remote Access Q: Are you adding cloud nodes to your data center for this? A: No, we leverage public cloud services. Just like why you use public cloud, we don’t want to add boxes to data centers to scale either. Q: Will other customers using your service impact my performance? A: No, our platform provides dedicated customer instances (no shared data plane), customers do not compete with others for resources. Q: How many locations are included with Prisma Access, and how much does it cost to add more? A: All edge locations are available for all customers, there is no additional cost to leverage all of them. Q: Are you expanding capacity for new customers? A: We don’t need to. We have been onboarding new customers daily and there has been no impact to other customers 14 | © 2020 Palo Alto Networks, Inc. All rights reserved.
Prisma Access - Tenancy Architecture Management Plane / Cloud Orchestration / Operations Single Tenant Specific Cloud Instantiated Data Plane Multitenant Management 15 | © 2020 Palo Alto Networks, Inc. All rights reserved. Customer 2 Tenant Customer 3 Tenant Customer 1 Tenant Tenancy Architecture Multi-tenant management plane Single tenant data plane per customer Avoids performance and security issues
16 | © 2020 Palo Alto Networks, Inc. All rights reserved. Security as a Service Layer Network as a Service Layer SaaS HQ/DATA CENTER PUBLIC CLOUD INTERNET BRANCH RETAIL MOBILE STRATA Firewall Platform The Industry’s Most Comprehensive Secure Access Service Edge
STRATA Firewall Platform 17 | © 2020 Palo Alto Networks, Inc. All rights reserved. BRANCH RETAIL MOBILE Security as a Service Layer SSL Decryption CASB Cloud SWGZTNA DNS FWaa S DLPSandboxing Network as a Service Layer SD-WAN IPSec VPN Policy Based Forwarding Network as a ServiceSSL VPNQoS SaaS PUBLIC CLOUD INTERNET HQ/DATA CENTER 17 | © 2020 Palo Alto Networks, Inc. All rights reserved.
Clientless / Browser-based Access Unmanaged / BYO Connecting Mobile Users to STRATA 18 | © 2020 Palo Alto Networks, Inc. All rights reserved. GP client can be installed on home PC via link provided by admin Managed SaaS HQ/DATA CENTER INTERNET PUBLIC CLOUD
Prisma Access (as a Service) STRATA: Use Case Flexibility through Firewall as a Platform 19 | © 2020 Palo Alto Networks, Inc. All rights reserved. Single Policy and Management Cortex XDR, XSOAR for Context and Automation NextGen Firewall (Physical) VM-Series (Virtual) Panorama
(Offer 1) Points of clarification: ● Ensure the network capacity for the additional user traffic has been reviewed ○ If most traffic is internet bound Prisma Access may be more applicable ● Expedited shipping follows standard process How to: ● Have the customer log into their CSP ● Goto Support -> Assets -> Devices and click the pencil icon in the Actions column ● Click Activate Trial License -> select the licenses they with to test -> click Agree and Submit If they have previously activated this license and it is expired, then you can email SalesOps with the device serial # and ask them to process a Trial license extension. 20 | © 2020 Palo Alto Networks, Inc. All rights reserved.
Cloud Delivered Remote access VPN traffic goes through the SASE in the cloud Remote Access Architecture Options On-Prem Remote access VPN traffic is backhauled to the data center PUBLIC CLOUD / SaaS / INTERNET DATA CENTER (PRIVATECLOUD) DATA CENTER (PRIVATECLOUD) MOBILE USERS PUBLIC CLOUD / SaaS / INTERNET MOBILE USERS
22 | © 2020 Palo Alto Networks, Inc. All rights reserved. (Offer 2) Points of clarification: ● FREE DEPLOYMENT SERVICES → SKU : PAN-CONSULT-GPCS-ACCEL ○ SoW scope, terms & conditions CANNOT be negotiated ○ Order must be booked within 90 days ● Only applies to Prisma Access Mobile Users in response to COVID-19 ● NEW Prisma Access customers = customers that have NOT owned Prisma Access before today How to: ● AM NSP request to DD and Sales Ops apply 100% discount (with quote comment “COVID-19”) ○ Standard approval process will then execute ○ Standard SoW process will be initiated via this link ○ Signed SoW is required for booking the order (standard process)
23 | © 2020 Palo Alto Networks, Inc. All rights reserved. (Offer 3) Points of clarification: ● Prisma Access Mobile Users ONLY…..not Prisma Access Remote Networks ● Spikes are unbounded…..expectation should be 2-3X ● New customers today = EXISTING customers tomorrow ○ New customers that have immediate spikes will be monitored/reported on How to: ● No action required - customer needs to ignore admin warnings within Panorama
Our Commitment to Our Customers: Solutions to help during this COVID-19 Outbreak 24 | © 2020 Palo Alto Networks, Inc. All rights Prisma Access Quickstart Service GP 90-Day Subscription Prisma Access Additional Licensing For new Prisma Access mobile customers, free accelerated deployment and onboarding Free 90-day GlobalProtect subscription trial for existing customers For existing Prisma Access customers who need more capacity, no- cost spike coverage
Our Rapid Response Email Please direct all COVID-19 related inquiries to: rapid-response@paloaltonetworks.com 25 | © 2020 Palo Alto Networks, Inc. All rights reserved.
Questions??
Thank you 27 ● Thank you for your attendance and kind co-operations ● Please submit your feedback from which you will receive by mail. ● The session video, presentation etc. will be available on Prime YouTube Channel, Slideshare and Facebook ● There are upcoming interesting sessions in the coming days, if you have not yet registered, please register soon.
Stay Tuned for the upcoming programs 2nd April (4pm - 5.30pm) Application Delivery - Scaling Capacity & Availability: Mr.Tarun Verma, A10 Networks Webex Link: https://meetingsapac.webex.com/meet ingsapac/j.php?MTID=m41f69a4efcf49 01a59479ec0dec96501 Meeting number: 577 492 175 Password: adc@123 3rd April (4pm - 5.30pm) ONE Platform - Connecting Everything: Mr.Vivek Srivastava, Soti Webex Link: https://meetingsapac.webex.com/meet ingsapac/j.php?MTID=m3ffe0d1ccd19 b819dfe80e1d6083bfc9 Meeting number: 576 456 660 Password: soti@123 1st April (4pm - 5.30pm) Email Security – Everyone is a Target -Mr.Ishtiyaq Shah, FireEye Webex link :https://meetingsapac.webex.com/meeti ngsapac/j.php?MTID=mf1556de342a8c 9fc26cbc02b10b48016 Meeting number: 577 927 955 Password: es@123

Recomendados

Demystifying Prisma Access
Demystifying Prisma AccessDemystifying Prisma Access
Demystifying Prisma Access
Haris Chughtai
 
PaloAlto Enterprise Security Solution
PaloAlto Enterprise Security SolutionPaloAlto Enterprise Security Solution
PaloAlto Enterprise Security Solution
Prime Infoserv
 
Understanding SASE
Understanding SASE Understanding SASE
Understanding SASE
Haris Chughtai
 
Palo Alto Networks: Protection for Security & Compliance
Palo Alto Networks: Protection for Security & CompliancePalo Alto Networks: Protection for Security & Compliance
Palo Alto Networks: Protection for Security & Compliance
Amazon Web Services
 
4_Session 1- Universal ZTNA.pptx
4_Session 1- Universal ZTNA.pptx4_Session 1- Universal ZTNA.pptx
4_Session 1- Universal ZTNA.pptx
aungyekhant1
 
Privileged Access Management (PAM)
Privileged Access Management (PAM)Privileged Access Management (PAM)
Privileged Access Management (PAM)
danb02
 
Palo alto networks product overview
Palo alto networks product overviewPalo alto networks product overview
Palo alto networks product overview
Belsoft
 
Succeeding with Secure Access Service Edge (SASE)
Succeeding with Secure Access Service Edge (SASE)Succeeding with Secure Access Service Edge (SASE)
Succeeding with Secure Access Service Edge (SASE)
Cloudflare
 

Recomendados

Demystifying Prisma Access
Demystifying Prisma AccessDemystifying Prisma Access
Demystifying Prisma Access
Haris Chughtai
 
PaloAlto Enterprise Security Solution
PaloAlto Enterprise Security SolutionPaloAlto Enterprise Security Solution
PaloAlto Enterprise Security Solution
Prime Infoserv
 
Understanding SASE
Understanding SASE Understanding SASE
Understanding SASE
Haris Chughtai
 
Palo Alto Networks: Protection for Security & Compliance
Palo Alto Networks: Protection for Security & CompliancePalo Alto Networks: Protection for Security & Compliance
Palo Alto Networks: Protection for Security & Compliance
Amazon Web Services
 
4_Session 1- Universal ZTNA.pptx
4_Session 1- Universal ZTNA.pptx4_Session 1- Universal ZTNA.pptx
4_Session 1- Universal ZTNA.pptx
aungyekhant1
 
Privileged Access Management (PAM)
Privileged Access Management (PAM)Privileged Access Management (PAM)
Privileged Access Management (PAM)
danb02
 
Palo alto networks product overview
Palo alto networks product overviewPalo alto networks product overview
Palo alto networks product overview
Belsoft
 
Succeeding with Secure Access Service Edge (SASE)
Succeeding with Secure Access Service Edge (SASE)Succeeding with Secure Access Service Edge (SASE)
Succeeding with Secure Access Service Edge (SASE)
Cloudflare
 
The secure, direct to-internet branch
The secure, direct to-internet branchThe secure, direct to-internet branch
The secure, direct to-internet branch
Zscaler
 
The evolution of IT in a cloud world
The evolution of IT in a cloud worldThe evolution of IT in a cloud world
The evolution of IT in a cloud world
Zscaler
 
Data Loss Prevention from Symantec
Data Loss Prevention from SymantecData Loss Prevention from Symantec
Data Loss Prevention from Symantec
Arrow ECS UK
 
Cisco umbrella overview
Cisco umbrella overviewCisco umbrella overview
Cisco umbrella overview
Cisco Canada
 
Zero trust in a hybrid architecture
Zero trust in a hybrid architectureZero trust in a hybrid architecture
Zero trust in a hybrid architecture
Hybrid IT Europe
 
Secure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
Secure your Access to Cloud Apps using Microsoft Defender for Cloud AppsSecure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
Secure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
Vignesh Ganesan I Microsoft MVP
 
Palo alto networks next generation firewalls
Palo alto networks next generation firewallsPalo alto networks next generation firewalls
Palo alto networks next generation firewalls
Castleforce
 
F5 Networks: architecture and risk management
F5 Networks: architecture and risk managementF5 Networks: architecture and risk management
F5 Networks: architecture and risk management
AEC Networks
 
cn-series-se-presentation.pptx
cn-series-se-presentation.pptxcn-series-se-presentation.pptx
cn-series-se-presentation.pptx
eli lama sabachtani sinaga
 
The Akamai Security Portfolio
The Akamai Security PortfolioThe Akamai Security Portfolio
The Akamai Security Portfolio
Elisabeth Bitsch-Christensen
 
Forcepoint Dynamic Data Protection
Forcepoint Dynamic Data ProtectionForcepoint Dynamic Data Protection
Forcepoint Dynamic Data Protection
MarketingArrowECS_CZ
 
Presentacion Palo Alto Networks
Presentacion Palo Alto NetworksPresentacion Palo Alto Networks
Presentacion Palo Alto Networks
Laurent Daudré-Vignier
 
What is SASE
What is SASEWhat is SASE
What is SASE
Adi Ruppin
 
Journey to the Center of Security Operations
Journey to the Center of Security OperationsJourney to the Center of Security Operations
Journey to the Center of Security Operations
♟Sergej Epp
 
Presentation cisco iron port email & web security
Presentation cisco iron port email & web securityPresentation cisco iron port email & web security
Presentation cisco iron port email & web security
xKinAnx
 
Akamai waf
Akamai wafAkamai waf
Akamai waf
Aysegul Ekinci
 
Zero Trust Network Access
Zero Trust Network Access Zero Trust Network Access
Zero Trust Network Access
Er. Ajay Sirsat
 
Fortigate Training
Fortigate TrainingFortigate Training
Fortigate Training
NCS Computech Ltd.
 
Multi cloud security architecture
Multi cloud security architecture Multi cloud security architecture
Multi cloud security architecture
Maganathin Veeraragaloo
 
SDWAN vs MPLS: What Enterprises need?
SDWAN vs MPLS: What Enterprises need?SDWAN vs MPLS: What Enterprises need?
SDWAN vs MPLS: What Enterprises need?
Haris Chughtai
 
Introduction to ThousandEyes
Introduction to ThousandEyesIntroduction to ThousandEyes
Introduction to ThousandEyes
ThousandEyes
 
Hybrid cloud - Datacomm Azure Stack
Hybrid cloud - Datacomm Azure StackHybrid cloud - Datacomm Azure Stack
Hybrid cloud - Datacomm Azure Stack
PT Datacomm Diangraha
 

Mais conteúdo relacionado

Mais procurados

The secure, direct to-internet branch
The secure, direct to-internet branchThe secure, direct to-internet branch
The secure, direct to-internet branch
Zscaler
 
Data Loss Prevention from Symantec
Data Loss Prevention from SymantecData Loss Prevention from Symantec
Data Loss Prevention from Symantec
Arrow ECS UK
 
Palo alto networks next generation firewalls
Palo alto networks next generation firewallsPalo alto networks next generation firewalls
Palo alto networks next generation firewalls
Castleforce
 

Mais procurados (20)

The secure, direct to-internet branch
The secure, direct to-internet branchThe secure, direct to-internet branch
The secure, direct to-internet branch
 
The evolution of IT in a cloud world
The evolution of IT in a cloud worldThe evolution of IT in a cloud world
The evolution of IT in a cloud world
 
Data Loss Prevention from Symantec
Data Loss Prevention from SymantecData Loss Prevention from Symantec
Data Loss Prevention from Symantec
 
Cisco umbrella overview
Cisco umbrella overviewCisco umbrella overview
Cisco umbrella overview
 
Zero trust in a hybrid architecture
Zero trust in a hybrid architectureZero trust in a hybrid architecture
Zero trust in a hybrid architecture
 
Secure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
Secure your Access to Cloud Apps using Microsoft Defender for Cloud AppsSecure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
Secure your Access to Cloud Apps using Microsoft Defender for Cloud Apps
 
Palo alto networks next generation firewalls
Palo alto networks next generation firewallsPalo alto networks next generation firewalls
Palo alto networks next generation firewalls
 
F5 Networks: architecture and risk management
F5 Networks: architecture and risk managementF5 Networks: architecture and risk management
F5 Networks: architecture and risk management
 
cn-series-se-presentation.pptx
cn-series-se-presentation.pptxcn-series-se-presentation.pptx
cn-series-se-presentation.pptx
 
The Akamai Security Portfolio
The Akamai Security PortfolioThe Akamai Security Portfolio
The Akamai Security Portfolio
 
Forcepoint Dynamic Data Protection
Forcepoint Dynamic Data ProtectionForcepoint Dynamic Data Protection
Forcepoint Dynamic Data Protection
 
Presentacion Palo Alto Networks
Presentacion Palo Alto NetworksPresentacion Palo Alto Networks
Presentacion Palo Alto Networks
 
What is SASE
What is SASEWhat is SASE
What is SASE
 
Journey to the Center of Security Operations
Journey to the Center of Security OperationsJourney to the Center of Security Operations
Journey to the Center of Security Operations
 
Presentation cisco iron port email & web security
Presentation cisco iron port email & web securityPresentation cisco iron port email & web security
Presentation cisco iron port email & web security
 
Akamai waf
Akamai wafAkamai waf
Akamai waf
 
Zero Trust Network Access
Zero Trust Network Access Zero Trust Network Access
Zero Trust Network Access
 
Fortigate Training
Fortigate TrainingFortigate Training
Fortigate Training
 
Multi cloud security architecture
Multi cloud security architecture Multi cloud security architecture
Multi cloud security architecture
 
SDWAN vs MPLS: What Enterprises need?
SDWAN vs MPLS: What Enterprises need?SDWAN vs MPLS: What Enterprises need?
SDWAN vs MPLS: What Enterprises need?
 

Semelhante a Secure Access – Anywhere by Prisma, PaloAlto

Making Money in the Cloud
Making Money in the CloudMaking Money in the Cloud
Making Money in the Cloud
Gravitant, Inc.
 

Semelhante a Secure Access – Anywhere by Prisma, PaloAlto (20)

Introduction to ThousandEyes
Introduction to ThousandEyesIntroduction to ThousandEyes
Introduction to ThousandEyes
 
Hybrid cloud - Datacomm Azure Stack
Hybrid cloud - Datacomm Azure StackHybrid cloud - Datacomm Azure Stack
Hybrid cloud - Datacomm Azure Stack
 
An Easy Way to Adopt Hybrid Cloud, Datacomm Solution
An Easy Way to Adopt Hybrid Cloud, Datacomm SolutionAn Easy Way to Adopt Hybrid Cloud, Datacomm Solution
An Easy Way to Adopt Hybrid Cloud, Datacomm Solution
 
Taw opening session
Taw opening sessionTaw opening session
Taw opening session
 
Making Money in the Cloud
Making Money in the CloudMaking Money in the Cloud
Making Money in the Cloud
 
Datacenter and cloud - corporate presentation
Datacenter and cloud - corporate presentationDatacenter and cloud - corporate presentation
Datacenter and cloud - corporate presentation
 
ciscothousandeyesusecase
ciscothousandeyesusecaseciscothousandeyesusecase
ciscothousandeyesusecase
 
SDWAN.pdf
SDWAN.pdfSDWAN.pdf
SDWAN.pdf
 
Getting Started With ThousandEyes Proof of Concepts: End User Digital Experience
Getting Started With ThousandEyes Proof of Concepts: End User Digital ExperienceGetting Started With ThousandEyes Proof of Concepts: End User Digital Experience
Getting Started With ThousandEyes Proof of Concepts: End User Digital Experience
 
Firewall friendly pipeline for secure data access
Firewall friendly pipeline for secure data accessFirewall friendly pipeline for secure data access
Firewall friendly pipeline for secure data access
 
Introduction to ThousandEyes
Introduction to ThousandEyesIntroduction to ThousandEyes
Introduction to ThousandEyes
 
Network Transformation: What it is, and how it’s helping companies stay secur...
Network Transformation: What it is, and how it’s helping companies stay secur...Network Transformation: What it is, and how it’s helping companies stay secur...
Network Transformation: What it is, and how it’s helping companies stay secur...
 
Faster, simpler, more secure remote access to apps in aws
Faster, simpler, more secure remote access to apps in awsFaster, simpler, more secure remote access to apps in aws
Faster, simpler, more secure remote access to apps in aws
 
Rethinking Cybersecurity for the Digital Transformation Era
Rethinking Cybersecurity for the Digital Transformation EraRethinking Cybersecurity for the Digital Transformation Era
Rethinking Cybersecurity for the Digital Transformation Era
 
Celera Networks on Cloud Computing
Celera Networks on Cloud Computing Celera Networks on Cloud Computing
Celera Networks on Cloud Computing
 
AWS re:Invent 2016: Future-Proofing the WAN and Simplifying Security On Your ...
AWS re:Invent 2016: Future-Proofing the WAN and Simplifying Security On Your ...AWS re:Invent 2016: Future-Proofing the WAN and Simplifying Security On Your ...
AWS re:Invent 2016: Future-Proofing the WAN and Simplifying Security On Your ...
 
Lessons Learned from Buliding a CSB Part II
Lessons Learned from Buliding a CSB Part IILessons Learned from Buliding a CSB Part II
Lessons Learned from Buliding a CSB Part II
 
Contrail Launch: Capitalize on SDN and Cloud. Now.
Contrail Launch: Capitalize on SDN and Cloud. Now.Contrail Launch: Capitalize on SDN and Cloud. Now.
Contrail Launch: Capitalize on SDN and Cloud. Now.
 
2021 Predictions and Trends for the SD-WAN and Edge Market
2021 Predictions and Trends for the SD-WAN and Edge Market2021 Predictions and Trends for the SD-WAN and Edge Market
2021 Predictions and Trends for the SD-WAN and Edge Market
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 

Mais de Prime Infoserv

Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend MicroRoadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Prime Infoserv
 
IBM Qradar & resilient
IBM Qradar & resilientIBM Qradar & resilient
IBM Qradar & resilient
Prime Infoserv
 
Crush Cloud Complexity, Simplify Security - Shield X
Crush Cloud Complexity, Simplify Security - Shield XCrush Cloud Complexity, Simplify Security - Shield X
Crush Cloud Complexity, Simplify Security - Shield X
Prime Infoserv
 
Endpoint Detection & Response - FireEye
Endpoint Detection & Response - FireEyeEndpoint Detection & Response - FireEye
Endpoint Detection & Response - FireEye
Prime Infoserv
 
Email Security – Everyone is a Target
Email Security – Everyone is a TargetEmail Security – Everyone is a Target
Email Security – Everyone is a Target
Prime Infoserv
 
BCM Webinar presentation
BCM Webinar presentationBCM Webinar presentation
BCM Webinar presentation
Prime Infoserv
 

Mais de Prime Infoserv (20)

Face Recognition under COVID19 crisis
Face Recognition under COVID19 crisisFace Recognition under COVID19 crisis
Face Recognition under COVID19 crisis
 
Face Chk - Face Recognition
Face Chk - Face RecognitionFace Chk - Face Recognition
Face Chk - Face Recognition
 
Data Protection and E-contracting
Data Protection and E-contractingData Protection and E-contracting
Data Protection and E-contracting
 
Remote Workforces Secure by Barracuda
Remote Workforces Secure by BarracudaRemote Workforces Secure by Barracuda
Remote Workforces Secure by Barracuda
 
Trend micro research covid19 threat brief summary 27 mar
Trend micro research covid19 threat brief summary 27 marTrend micro research covid19 threat brief summary 27 mar
Trend micro research covid19 threat brief summary 27 mar
 
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend MicroRoadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
 
IBM Qradar & resilient
IBM Qradar & resilientIBM Qradar & resilient
IBM Qradar & resilient
 
DLP solution - InDefend in WFH Situations
DLP solution - InDefend in WFH SituationsDLP solution - InDefend in WFH Situations
DLP solution - InDefend in WFH Situations
 
Crush Cloud Complexity, Simplify Security - Shield X
Crush Cloud Complexity, Simplify Security - Shield XCrush Cloud Complexity, Simplify Security - Shield X
Crush Cloud Complexity, Simplify Security - Shield X
 
Endpoint Detection & Response - FireEye
Endpoint Detection & Response - FireEyeEndpoint Detection & Response - FireEye
Endpoint Detection & Response - FireEye
 
Corporate Presentation - Netmagic
Corporate Presentation - NetmagicCorporate Presentation - Netmagic
Corporate Presentation - Netmagic
 
Teamwork with Microsoft Teams
Teamwork with Microsoft TeamsTeamwork with Microsoft Teams
Teamwork with Microsoft Teams
 
Microsoft Teams-flyer
Microsoft Teams-flyerMicrosoft Teams-flyer
Microsoft Teams-flyer
 
Windows Virtual Desktop Customer benefits
Windows Virtual Desktop Customer benefitsWindows Virtual Desktop Customer benefits
Windows Virtual Desktop Customer benefits
 
Email Security – Everyone is a Target
Email Security – Everyone is a TargetEmail Security – Everyone is a Target
Email Security – Everyone is a Target
 
BCM Webinar presentation
BCM Webinar presentationBCM Webinar presentation
BCM Webinar presentation
 
FireEye Portfolio
FireEye PortfolioFireEye Portfolio
FireEye Portfolio
 
Phishing Simulation By Shield Alliance
Phishing Simulation By Shield AlliancePhishing Simulation By Shield Alliance
Phishing Simulation By Shield Alliance
 
FireEye Solutions
FireEye SolutionsFireEye Solutions
FireEye Solutions
 
IBM MaaS360 with watson
IBM MaaS360 with watsonIBM MaaS360 with watson
IBM MaaS360 with watson
 

Último

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
Delhi Call girls
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
giselly40
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
Enterprise Knowledge
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
Enterprise Knowledge
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 

Último (20)

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdf
 

Secure Access – Anywhere by Prisma, PaloAlto

  • 1. Global Webinar Series, Hosted by Prime Infoserv Supported by Supported by Community Partner
  • 2. Securely Connect and Scale Remote Workforces Hosted by: Faizan Sheikh, CSE, India and SAARC March 30, 2020
  • 3. Enabling a Secure Mobile Workforce 3 | © 2020 Palo Alto Networks, Inc. All rights reserved. “India Lockdown for 3 weeks” “Teachers need to be prepared to educate remotely” “We only have capacity to supply remote access to 20% of our workforce” “We do not have the network capacity to support over 50% of our users working remotely” Enabling a secure mobile workforce is of primary concern to organizations right now
  • 4. Situation: Remote Access Capacity Challenge Remote access VPN traffic is backhauled to the data center PUBLIC CLOUD / SaaS / INTERNET DATA CENTER (PRIVATECLOUD) MOBILE USERS Under-Architected Remote Access • Finite Scalability: Adding hardware is the only contingency option • Deployment Challenges: Procurement, hardware implementation, connectivity, location challenges • User Experience/Internet Connectivity: Customers may not have Internet capacity to route all internet traffic through their internet circuits via datacenter (bi-directional) 4 | © 2020 Palo Alto Networks, Inc. All rights reserved.
  • 5. A Single Platform to Connect and Secure Everything SaaS PUBLIC CLOUD INTERNET DATA CENTER BRANCH RETAIL MOBILE 2019 Palo Alto Networks. All Rights Reserved. HQ
  • 6. 6 | © 2020 Palo Alto Networks, Inc. All rights reserved. Scale Remote Access with the Strata Firewall Platform Same Security - 3 Consumption Models On-Premise Expand NGFW scale in your existing GP gateways Add GlobalProtect to existing NGFWs Rapid Expansion and Hybrid Quickly add scale to your on-prem gateways Hybrid Public Cloud/DC gateways Cloud-Delivered The cloud becomes your distributed head-end Reduce constraints on your network No scale or capacity planning burden
  • 7. Prisma Access is designed for providing secure cloud access from anywhere DATA CENTER (PRIVATECLOUD) PUBLIC CLOUD / SaaS / INTERNET MOBILE USERS Solution: Prisma Access Scalable Remote Access for Mobile Users • Deploy quickly: In the cloud, the internet or the data center • Global Reach: Remote Access with connections to the cloud to over 100 locations • Dynamic Scale up, Scale down: Leveraging the cloud to ramp with customer demand 7 | © 2020 Palo Alto Networks, Inc. All rights reserved.
  • 8. 8 | © 2020 Palo Alto Networks, Inc. All rights reserved. Security as a Service Layer Network as a Service Layer SaaS PUBLIC CLOUD INTERNET HQ/DATA CENTER BRANCH RETAIL MOBILE Prisma Access: The Industry’s Most Comprehensive Secure Access Service Edge
  • 9. Prisma Access 9 | © 2020 Palo Alto Networks, Inc. All rights reserved. BRANCH RETAIL MOBILE Security as a Service Layer SSL Decryption CASB Cloud SWGZTNA DNS FWaa S DLPSandboxing Network as a Service Layer SD-WAN IPSec VPN Policy Based Forwarding Network as a ServiceSSL VPNQoS SaaS PUBLIC CLOUD INTERNET HQ/DATA CENTER 9 | © 2020 Palo Alto Networks, Inc. All rights reserved.
  • 10. Dynamic Scalability and Resiliency 10 | © 2020 Palo Alto Networks, Inc. All rights reserved.
  • 11. Prisma Access - Multi-Tenancy Architecture Management Plane / Cloud Orchestration / Operations Single Tenant Specific Cloud Instantiated Data Plane Multitenant Management 11 | © 2020 Palo Alto Networks, Inc. All rights reserved. Customer 1 Tenant Customer 2 Tenant Customer 3 Tenant Tenancy Architecture Multitenant management plane Single tenant data plane per customer Avoids performance and security issues
  • 12. Resilient and Scalable Solution ● Auto-Scaling ○ More intelligent scaling algorithms / approaches - taking multiple inputs ○ Dynamic scaling and different methods ● Monitoring ○ Advanced operational monitoring in place ● Cloud Service Providers partnership ○ Commitments from both GCP and AWS regarding scaling in all regions
  • 13. Situation: Solving the Remote Access Network Capacity Challenge 13 | © 2020 Palo Alto Networks, Inc. All rights reserved. MOBILE USERS MOBILE USERS MOBILE USERS MOBILE USERS MOBILE USERS MOBILE USERS DATA CENTER DATA CENTER Limited Internet Circuit and Gateway Capacity Public Cloud SaaS Web Inbound remote access user traffic Internet-bound egress traffic Cloud fiber network transit traffic Branch traffic BRANCH BRANCH
  • 14. Frequent Questions about Cloud-Delivered Remote Access Q: Are you adding cloud nodes to your data center for this? A: No, we leverage public cloud services. Just like why you use public cloud, we don’t want to add boxes to data centers to scale either. Q: Will other customers using your service impact my performance? A: No, our platform provides dedicated customer instances (no shared data plane), customers do not compete with others for resources. Q: How many locations are included with Prisma Access, and how much does it cost to add more? A: All edge locations are available for all customers, there is no additional cost to leverage all of them. Q: Are you expanding capacity for new customers? A: We don’t need to. We have been onboarding new customers daily and there has been no impact to other customers 14 | © 2020 Palo Alto Networks, Inc. All rights reserved.
  • 15. Prisma Access - Tenancy Architecture Management Plane / Cloud Orchestration / Operations Single Tenant Specific Cloud Instantiated Data Plane Multitenant Management 15 | © 2020 Palo Alto Networks, Inc. All rights reserved. Customer 2 Tenant Customer 3 Tenant Customer 1 Tenant Tenancy Architecture Multi-tenant management plane Single tenant data plane per customer Avoids performance and security issues
  • 16. 16 | © 2020 Palo Alto Networks, Inc. All rights reserved. Security as a Service Layer Network as a Service Layer SaaS HQ/DATA CENTER PUBLIC CLOUD INTERNET BRANCH RETAIL MOBILE STRATA Firewall Platform The Industry’s Most Comprehensive Secure Access Service Edge
  • 17. STRATA Firewall Platform 17 | © 2020 Palo Alto Networks, Inc. All rights reserved. BRANCH RETAIL MOBILE Security as a Service Layer SSL Decryption CASB Cloud SWGZTNA DNS FWaa S DLPSandboxing Network as a Service Layer SD-WAN IPSec VPN Policy Based Forwarding Network as a ServiceSSL VPNQoS SaaS PUBLIC CLOUD INTERNET HQ/DATA CENTER 17 | © 2020 Palo Alto Networks, Inc. All rights reserved.
  • 18. Clientless / Browser-based Access Unmanaged / BYO Connecting Mobile Users to STRATA 18 | © 2020 Palo Alto Networks, Inc. All rights reserved. GP client can be installed on home PC via link provided by admin Managed SaaS HQ/DATA CENTER INTERNET PUBLIC CLOUD
  • 19. Prisma Access (as a Service) STRATA: Use Case Flexibility through Firewall as a Platform 19 | © 2020 Palo Alto Networks, Inc. All rights reserved. Single Policy and Management Cortex XDR, XSOAR for Context and Automation NextGen Firewall (Physical) VM-Series (Virtual) Panorama
  • 20. (Offer 1) Points of clarification: ● Ensure the network capacity for the additional user traffic has been reviewed ○ If most traffic is internet bound Prisma Access may be more applicable ● Expedited shipping follows standard process How to: ● Have the customer log into their CSP ● Goto Support -> Assets -> Devices and click the pencil icon in the Actions column ● Click Activate Trial License -> select the licenses they with to test -> click Agree and Submit If they have previously activated this license and it is expired, then you can email SalesOps with the device serial # and ask them to process a Trial license extension. 20 | © 2020 Palo Alto Networks, Inc. All rights reserved.
  • 21. Cloud Delivered Remote access VPN traffic goes through the SASE in the cloud Remote Access Architecture Options On-Prem Remote access VPN traffic is backhauled to the data center PUBLIC CLOUD / SaaS / INTERNET DATA CENTER (PRIVATECLOUD) DATA CENTER (PRIVATECLOUD) MOBILE USERS PUBLIC CLOUD / SaaS / INTERNET MOBILE USERS
  • 22. 22 | © 2020 Palo Alto Networks, Inc. All rights reserved. (Offer 2) Points of clarification: ● FREE DEPLOYMENT SERVICES → SKU : PAN-CONSULT-GPCS-ACCEL ○ SoW scope, terms & conditions CANNOT be negotiated ○ Order must be booked within 90 days ● Only applies to Prisma Access Mobile Users in response to COVID-19 ● NEW Prisma Access customers = customers that have NOT owned Prisma Access before today How to: ● AM NSP request to DD and Sales Ops apply 100% discount (with quote comment “COVID-19”) ○ Standard approval process will then execute ○ Standard SoW process will be initiated via this link ○ Signed SoW is required for booking the order (standard process)
  • 23. 23 | © 2020 Palo Alto Networks, Inc. All rights reserved. (Offer 3) Points of clarification: ● Prisma Access Mobile Users ONLY…..not Prisma Access Remote Networks ● Spikes are unbounded…..expectation should be 2-3X ● New customers today = EXISTING customers tomorrow ○ New customers that have immediate spikes will be monitored/reported on How to: ● No action required - customer needs to ignore admin warnings within Panorama
  • 24. Our Commitment to Our Customers: Solutions to help during this COVID-19 Outbreak 24 | © 2020 Palo Alto Networks, Inc. All rights Prisma Access Quickstart Service GP 90-Day Subscription Prisma Access Additional Licensing For new Prisma Access mobile customers, free accelerated deployment and onboarding Free 90-day GlobalProtect subscription trial for existing customers For existing Prisma Access customers who need more capacity, no- cost spike coverage
  • 25. Our Rapid Response Email Please direct all COVID-19 related inquiries to: rapid-response@paloaltonetworks.com 25 | © 2020 Palo Alto Networks, Inc. All rights reserved.
  • 27. Thank you 27 ● Thank you for your attendance and kind co-operations ● Please submit your feedback from which you will receive by mail. ● The session video, presentation etc. will be available on Prime YouTube Channel, Slideshare and Facebook ● There are upcoming interesting sessions in the coming days, if you have not yet registered, please register soon.
  • 28. Stay Tuned for the upcoming programs 2nd April (4pm - 5.30pm) Application Delivery - Scaling Capacity & Availability: Mr.Tarun Verma, A10 Networks Webex Link: https://meetingsapac.webex.com/meet ingsapac/j.php?MTID=m41f69a4efcf49 01a59479ec0dec96501 Meeting number: 577 492 175 Password: adc@123 3rd April (4pm - 5.30pm) ONE Platform - Connecting Everything: Mr.Vivek Srivastava, Soti Webex Link: https://meetingsapac.webex.com/meet ingsapac/j.php?MTID=m3ffe0d1ccd19 b819dfe80e1d6083bfc9 Meeting number: 576 456 660 Password: soti@123 1st April (4pm - 5.30pm) Email Security – Everyone is a Target -Mr.Ishtiyaq Shah, FireEye Webex link :https://meetingsapac.webex.com/meeti ngsapac/j.php?MTID=mf1556de342a8c 9fc26cbc02b10b48016 Meeting number: 577 927 955 Password: es@123