Frost & Sullivan | December 18, 2021
Frost & Sullivan recently analyzed the global SD-WAN vendor industry and, based on its findings, recognizes VMWare with the 2021 Global SD-WAN Vendor Market Leadership Award. Frost & Sullivan research shows that VMware has consistently ranked as the leader in this market since 2017.
VMware SD-WAN, a core component of VMware secure access service edge (SASE), is delivered as a service across over 150 global points of presence (PoPs) deployed by VMware and its SASE service provider partners through the company's network of cloud services. The PoPs bridge the gap between users, cloud, and SaaS-based applications. Industry analyst Roopa Honnachari stated, "VMware SD-WAN, located at major PoP locations around the world, offers optimized paths for users accessing cloud IaaS and SaaS applications, eliminating the need to backhaul traffic to the data center."
Many businesses deploy clouds to increase application availability, a factor that continues to drive deployment of the company's SD-WAN solution. Other industry drivers responsible for VMware's consistent market-leading position through its cloud deployments include:
The COVID-19 pandemic continues to strengthen businesses' dependence on cloud to improve business continuity.
Traditional WAN architectures such as MPLS VPNs, widely used to connect globally distributed enterprises, do not provide an efficient way to connect the ever-increasing remote workforce to cloud-based applications.
Branch network traffic across MPLS VPNs is still routed via headquarters or hub locations (to ensure data security and compliance), resulting in delays.
Hybrid work continues to gain traction and remote workers increasingly access cloud applications over internet connections. As a result, the inefficient "hairpin" model of traffic being routed via the enterprise data center no longer applies.
VMware addresses these industry drivers through the SASE PoPs, which co-locate SD-WAN and cloud security solutions in close proximity to enterprise users around the world. This proximity optimizes end users' experience with cloud-hosted enterprise applications. VMware SD-WAN also has a unique feature called Dynamic Multipath Optimization, which uses continuous link monitoring and application awareness to remediate network problems and prioritize access to enterprise applications.
VMware Edge Network Intelligence, another VMware SASE service that is co-located within SASE PoPs, processes high volumes of data from a wide range of network, device, and application sources. The solution can pinpoint with clarity whether a perceived application problem is due to issues with the local Wi-Fi network, broadband network, WAN, network services, or with the application. This greatly simplifies network operations and management for IT teams.
VMware provides SD-WAN through its global network of channel partners, which include network service providers (NSPs), value-added resellers (VARs), managed service providers (MSPs), system integrators, and 270 telecom service providers. The company's rich SASE partner ecosystem includes:
Multi-Cloud and Cloud Infrastructure as a Service (IaaS) (e.g., AWS, Azure, Google Cloud, Alibaba Cloud, Oracle, Equinix)
Unified Communications as a Service (e.g., Zoom, Microsoft Teams, RingCentral)
Security (e.g., Zscaler, Check Point, Netskope, Menlo Security)
Service Providers (e.g., AT&T, T-Mobile, Telstra)
Access Anywhere (e.g., Eero, Transatel)
Edge (e.g., AWS Outposts, Azure Private MEC, Lenovo)
5G (e.g., AWS Wavelength, Azure for Operators, ASOCS)
VMware, with its strong SD-WAN solution, continues to lead the market in terms of number of deployed sites and revenue share. The company continues to innovate and invest in its product strategy and go-to-market programs as it expands its SASE platform, which includes SD-WAN as a core component. VMware's excellent strategy for growth, product differentiation and implementation, and technology leverage drive its position as a leader in the SD-WAN market."
Roopa Honnachari, Industry analyst
Each year, Frost & Sullivan presents this award to the company that has developed an innovative element in a product by leveraging leading-edge technologies. The award recognizes the value-added features/benefits of the product and the increased ROI it offers customers, which, in turn, raises customer acquisition and overall market penetration potential.
Frost & Sullivan Best Practices awards recognize companies in various regional and global markets for demonstrating outstanding achievement and superior performance in leadership, technological innovation, customer service, and strategic product development. Industry analysts compare market participants and measure performance through in-depth interviews, analyses, and extensive secondary research to identify best practices in the industry.
About Frost & Sullivan
For six decades, Frost & Sullivan has been world-renowned for its role in helping investors, corporate leaders, and governments navigate economic changes and identify disruptive technologies, Mega Trends, new business models, and companies to action, resulting in a continuous flow of growth opportunities to drive future success.
ISACA | December 22, 2021
As the year winds down, many audit professionals are shifting their focus to 2022 priorities—including developing dynamic new strategies such as agile auditing, revisiting established technologies from a remote or hybrid working environment perspective, and closing any gaps between compliance expectations and current practices—and how they can enhance their skills to meet the needs of the evolving audit landscape. To meet these needs, ISACA has released three new audit resources—its VPN Security Audit Program, Destination: Agile Auditing white paper, and a new edition of its IT Control Objectives for Sarbanes-Oxley publication.
During the pandemic, the reliance on virtual private networks (VPNs) was heightened as many shifted to working from home—as did the need to manage its risks and implement safeguards. ISACA’s VPN Security Audit Program provides a foundation for auditors to provide assurance around the effectiveness of implemented VPN controls, including pre-audit planning, governance and oversight, implementation and configuration, operations, and maintenance and monitoring, to avoid some of the following risks:
The increase in number of end users combined with extended VPN use may put additional pressure on infrastructure and adversely affect performance.
Failure to detect unauthorized VPN activity may cause denial of service due to excessive traffic or connection attempts.
Lack of alignment of data classification requirements with VPN requirements and configuration may impair compliance initiatives that are reliant on data classification.
During the pandemic, organizations embraced methods to increase agility and efficiency, including by using Agile. Destination: Agile Auditing outlines how audit professionals can incorporate Agile principles into their audit methodologies. Auditors can learn the basics about Agile auditing, its benefits, how Agile complements established assurance standards, how developing competency in Agile can enhance the planning, fieldwork, and reporting phases of an audit. The white paper also includes examples of elements from the Agile tool set, including an Agile road map and Agile audit engagement workflows and illuminates key components like sprints, audit backlog and daily standups.
Internal and external auditors, IT auditors and managers, and financial and operational managers can also ensure they are keeping up with the latest guidance in complying with the Sarbanes-Oxley Act in a new edition of ISACA’s IT Control Objectives for Sarbanes-Oxley publication. This latest edition incorporates updated guidance and standards from the Public Company Accounting Oversight Board (PCAOB) and the American Institute of CPAs (AICPA) and its Auditing Standards Board, with updates including:
Integrating guidance for implementing internal control over financial reporting (ICFR) using COBIT® 2019, for IT and financial management within enterprises and for their internal and external auditors and consultants
Aligning with COBIT 2019 Focus Area: Information & Technology Risk
Providing the mapping of the role of COSO Internal Control – Integrated Framework, 2013 to COBIT 2019
Highlighting technological innovations and their impacts on auditing IT controls.
The audit landscape is constantly shifting as technologies and regulations evolve, making it essential that audit professionals prioritize continuous learning to ensure they are applying the most current and effective audit practices. ISACA is committed to equipping the global audit community with the tools they need to deliver the highest audit standards at their organizations.”
Robin Lyons, IT Audit Professional Practices Lead
For more than 50 years, ISACA has advanced the best talent, expertise and learning in technology. ISACA equips individuals with knowledge, credentials, education and community to progress their careers and transform their organizations, and enables enterprises to train and build quality teams. ISACA is a global professional association and learning organization that leverages the expertise of its more than 150,000 members who work in information security, governance, assurance, risk and privacy to drive innovation through technology. It has a presence in 188 countries, including more than 220 chapters worldwide. In 2020, ISACA launched One In Tech, a philanthropic foundation that supports IT education and career pathways for under-resourced, under-represented populations.
VMware | April 26, 2022
VMware, Inc. (NYSE: VMW) today announced the availability of VMware vRealize Cloud Management Services in India. This will enable Indian enterprises to accelerate their SaaS-based Multi-Cloud Management.
Today App Developers, DevSecOps Platform teams, IT and Security Operators have the freedom to choose between different cloud services to enhance customers’ experience. Managing cloud workloads can give rise to complexities, making it difficult to manage app deployment, security, provisioning cost, and operations for these distributed clouds.
Inclusive of CloudHealth by VMware, vRealize Cloud Management has empowered thousands of customers with consistent deployment and operations of apps, infrastructure, and platform services across multi-cloud. It has helped customers enhance agility, efficiencies and accelerate innovation while managing cost, security and governance across clouds.
With this expansion in India, vRealize Cloud Management services are now available in 10 regions globally, US West, US East, Brazil, Canada, the UK, Germany, Australia, Singapore, Japan and India. Customers can take advantage of minimal latency and local data hosting to comply with performance standards and data residency laws.
“No matter where enterprises are in their cloud journey, vRealize Cloud Universal solution brings consistency and speed in managing all types of clouds and enables organizations to adapt, respond, and innovate on the go. We want to empower our customers to build, operate and secure applications anywhere in a multi-cloud environment by choice of deployment options that best meet their business requirements – both on-premises and in the cloud.”
Pradeep Nair, Vice President and Managing Director, VMware
VMware is a leading provider of multi-cloud services for all apps, enabling digital innovation with enterprise control. As a trusted foundation to accelerate innovation, VMware software gives businesses the flexibility and choice they need to build the future. Headquartered in Palo Alto, California, VMware is committed to building a better future through the company’s 2030 Agenda.
VMware Inc. | April 28, 2022
VMware Inc. (NYSE: VMW) today announced that the Defense Information Systems Agency (DISA) has added the Security Technical Implementation Guide (STIG) for VMware NSX® to the Department of Defense (DoD) Cyber Exchange.
The updated DISA STIG outlines the installation requirements, security policies and controls for deploying VMware NSX within the Department of Defense and other federal agencies. The STIG will also help provide a vetted, more secure baseline for non-DoD entities to measure their security posture.
Across the public sector, agencies are navigating accelerated innovation alongside the journey to Zero Trust security. As the threat landscape evolves, the release of DISA's STIG for VMware NSX will empower agencies to leverage VMware's advanced network virtualization and security platform to better protect and manage their multi-cloud environments. With VMware NSX, we are helping customers modernize their cloud networks to deliver apps faster while also protecting against today’s threats.”
Jennifer Chronis, vice president, public sector, VMware.
The STIG requirements confirm VMware NSX implementation is consistent with DoD cybersecurity policies, standards, architectures, security controls and validation procedures, when applicable NIST SP 800-53 cybersecurity controls are applied to all systems and architectures. The DISA STIG for VMware NSX provides guidance on configuring various components of an NSX environment, including the NSX Manager, Gateway Router, Distributed Firewall, and Gateway Firewall.
The latest version of NSX joins VMware vSphere and VMware vSAN for which DISA has previously released STIGs. To view the official STIG, visit the DoD Cyber Exchange Public website and view the STIG release memo for VMware NSX.
Multi‑Cloud for Mission Success
Earlier this month, VMware announced the findings of a study on how government agencies are scaling the use of multi-cloud environments. The study, titled “Multi-cloud Is The New Frontier Of Government IT," conducted by Forrester Consulting, found that while the move to multi-cloud is a priority, agencies face challenges in supporting growing cloud environments, including compliance standards, data security and upskilling employees.