Sophos Zero Trust Network Access
Securely connect anyone,
anywhere, to any application
Sophos ZTNA transparently connects users to important business applications and data, providing enhanced
segmentation, security, and visibility over traditional remote access VPN. It works as
a standalone product and as a fully integrated Synchronized Security solution with
Sophos Firewall and Intercept X.
Regain Trust in a World of Zero Trust
Sophos ZTNA delivers on the principles of zero trust: trust nothing, verify everything.
Individual users and devices become their own micro-segmented perimeter that are
constantly validated and verified. They are no longer “on the network” with all the implied
trust and access that usually comes with it. Trust is now earned – not given.
Enable remote
Workers
Sophos ZTNA enables your remote workers to securely and seamlessly access the applications and data they need while making deployment, enrollment, and management much easier than traditional VPN.
Micro-Segment Your Applications
Sophos ZTNA provides the ultimate micro-segmentation so you can deliver secure
application access whether your applications are hosted on premises, in a data center, or
in your public cloud infrastructure. You also get real-time visibility into application activity
for status, security posture, and usage.
Stop Ransomware and Threats
The possibility for ransomware and other threats to propagate across the network from a
compromised user device is no longer a concern with ZTNA. Users and devices only have
explicit policy-based access to specific applications. This eliminates the implied trust and
broad network access that is one of the key challenges with VPN.
Deploy, Adapt, and Scale Quickly
Sophos ZTNA is built for the modern network that is dynamically changing, rapidly
growing, and moving quickly to the cloud. It is a lean, clean solution that makes it quick
and easy to stand up new applications securely, enroll or decommission users and
devices, and get important insights into application status and usage.
Cloud-Delivered, Cloud-Managed
Sophos ZTNA delivers on the principles of zero trust: trust nothing, verify everything.
Individual users and devices become their own micro-segmented perimeter that are
constantly validated and verified. They are no longer “on the network” with all the implied
trust and access that usually comes with it. Trust is now earned – not given.
Single Agent, Single Console, Single Vendor
Sophos ZTNA uniquely integrates with the full Sophos cybersecurity ecosystem to make your job a lot easier. You get a single agent solution for both ZTNA and your next-gen endpoint protection. You also get a single-pane-of-glass management console in Sophos Central for unprecedented insights across all your IT security products.
Customers agree: the time saving benefits of a fully integrated Sophos cybersecurity solution are enormous. They say it’s like doubling the size of their IT team.
Uniquely Integrated: ZTNA and Next-Gen Endpoint Protection
Sophos ZTNA is the only ZTNA solution that is tightly integrated with a next-gen endpoint product – Sophos Intercept X. This provides significant benefits in protection, deployment, and management.
- End-to-end protection: Secure your application access and protect your endpoints and networks from breaches and threats like ransomware with themost powerful machine learning and next-gen endpoint technology available.
- Synchronized Security: With your ZTNA and endpoint integrated, they areconstantly sharing status and health information to automatically isolatecompromised systems to prevent threats from moving or stealing data.
- Single agent, single console, single vendor convenience.
It’s a winning combination that you won’t find anywhere else.
Single Agent Deployment
Sophos ZTNA is tightly integrated with Sophos Intercept X next-gen endpoint protection, enabling a single client deployment option.
You can have the world’s best endpoint and ransomware protection along with the ultimate in application security and segmentation, all with a single client deployment.
Clientless access for browser-based applications is also an option.
Synchronized Device Health
Sophos ZTNA takes full advantage of Sophos Synchronized Security, utilizing the Security Heartbeat™ between Sophos Intercept X endpoints and Sophos Central and ZTNA to assess device health and identify active threats and signs of compromise. The result is an instant response to limit access, both on the network and off, for compromised or non-compliant devices.
Scalable Application Gateways
Sophos ZTNA gateways are free and easy to deploy where you need them. Available as a virtual appliance, you can easily deploy high-availability gateways and scale them as your organization grows.
Integrated Identity
With zero trust, identity is everything. Sophos ZTNA continuously verifies user identity with support for the most popular IDP solutions, including Microsoft Azure and Okta. Of course, you can also leverage your preferred multi-factor authentication (MFA) solution that integrates with these IDPs to guard against credential theft or compromised devices.
Sophos Central
Sophos Central cloud management provides easy deployment, granular policy controls, and insightful visibility and reporting from the cloud. ZTNA is integrated with Intercept X to leverage Synchronized Security Heartbeat™.
Sophos ZTNA Client
Sophos ZTNA Client with one-click deployment alongside Intercept X, provides transparent and frictionless remote access to applications based on identity and device health.
Sophos ZTNA Gateway
Sophos ZTNA Gateway is available as a virtual appliance on VMware and AWS to secure networked applications that’s free and easy to deploy. Protected applications can be on premises, in your data center, or in your AWS public cloud infrastructure.
Sophos ZTNA Feature Summary
- Secure access: for business applications hosted on premises or in your public cloud infrastructure
- Applications: all browser-based web apps in clientless mode; thick apps like SSH, VNC, RDP, and others via the ZTNA client
- Access policies: user group-based policies, Synchronized Security health-based access policies
- Reporting, monitoring, logging, and auditing of application status, access, and usage through Sophos Central
- User portal for end users to access bookmarked applications.