Gigamon-Zscaler integration adds application visibility to zero-trust access - SiliconANGLE

Gigamon-Zscaler integration adds application visibility to zero-trust access

Gigamon Inc. today said it has integrated its network telemetry with Zscaler Inc.’s zero-trust access service, a move meant to show security teams what users do once they’re inside a private application rather than just who let them in.

The tie-up connects Zscaler Private Access with Gigamon Application Metadata Intelligence, part of the Gigamon Deep Observability Pipeline. Zscaler Private Access grants access to a given application based on identity and policy. Users never land on the corporate network. What the service does not track is the behavior that follows, and that’s the gap Gigamon is meant to fill.

The problem is familiar to teams that have retired legacy virtual private networks. Zero-trust access tightens the front door but tends to dim the lights behind it. Gigamon pulls metadata and traffic detail from the network itself, then lines that up against Zscaler’s record of who connected and where.

The metadata is the selling point. Gigamon says its tool reads close to 6,000 attributes from network traffic, among them DNS queries, SSL certificate data and latency readings. It captures east-west traffic moving from the Zscaler App Connector to private applications and hands that telemetry off to monitoring and analytics tools further down the chain. The pitch to security teams is faster detection of lateral movement, a way to check that least-privilege rules are holding, and quicker investigations inside SIEM, network detection and response and security operations tools.