CyberRatings, the leading non-profit security testing organization, recently tested several vendors\u2019 security service edge (SSE) offerings with the goal of deriving empirical data that would answer the question, \u201cAre SSE products secure by default?\u201d <\/p>\n

The emphasis is aligned to a shift in the industry towards \u201csecure by default\u201d approaches to develop and deploy software products. The trend is an outcome of a 2023 report authored by CISA and its international partners that emphasizes that the burden of security should be shifted away from the end-user and back towards software vendors.<\/p>\n

In CISA\u2019s words:<\/p>\n

Secure-by-Default means products are resilient against prevalent exploitation techniques out of the box without additional charge. These products protect against the most prevalent threats and vulnerabilities without end-users having to take additional steps to secure them.<\/p>\n

Scope of the test: a \u201cquick look\u201d at default security postureCyberRating labeled this as a \u201cmini-test\u201d because their analysts did not intentionally run through a comprehensive evaluation of the full capabilities of the vendors\u2019 SSE platforms. Instead, with the mini-test, CyberRating\u2019s analysts sought to provide a data-driven \u201cquick look\u201d at the default security posture vendors can deliver with minimal to no additional security configuration of their SSE.<\/p>\n

In short, CyberRatings wanted to test the initial functional working state of these SSE offerings. For a more complete evaluation of Zscaler SSE, see the June 2024 CyberRatings SSE Report in which Zscaler achieved an \u201cAAA\u201d rating. <\/p>\n

SSE security posture test methodologyThe SSE mini-test was designed to provide insight into the default security posture across these platforms using a small subset of malware samples (using ~3,000 samples vs. the 100,000+ samples in CyberRating\u2019s more all-inclusive tests). CyberRatings ran the following tests using Windows 11 clients configured with each vendor\u2019s SSE client software:<\/p>\n

Test 1: Download ~1,000 benign samples over HTTP designed to be susceptible to being classified as malware despite being innocuous (e.g., the solution\u2019s propensity for triggering false positives).
\nTest 2: Download ~3,000 active malware samples over HTTP, current to within 30 days of the test (e.g., the SSE\u2019s ability to detect and block basic malware downloads). No evasions were applied.<\/p>\n

Zscaler SSE found \u201csecure-by-default\u201d with zero false positivesIn its default configuration, Zscaler stands above our competitors in the mini-test of SSE platforms: Zscaler blocked about 97% of the malware test samples with no false positives. Zscaler also includes Cloud Sandbox capability out of the gate, unlike several of our competitors. <\/p>\n

Here\u2019s what’s notable in the evaluation results in relation to our competitors: <\/p>\n

Zscaler blocked the most malware samples when compared to other vendors\u2019 SSE platforms running in their default configurations. Zscaler also did not produce any false positives. With our SSE, the most important security controls needed are automatically enabled to protect enterprises from malicious cyber actors.
\nCisco\u2019s, Checkpoint\u2019s, and Versa Networks\u2019 SSE platforms did not detect any malware samples when their default configuration remained unchanged. In other words, they do not provide security by default. Their ability to inspect traffic for malware is dependent on making configuration changes. Yet, security teams are frequently overloaded with security and operational responsibilities, resulting in limited time to dig through documentation to understand and implement robust cybersecurity posture.
\nCisco still drew false-positives, even when the CyberRatings evaluators made changes to their default configuration.<\/p>\n

The keys to effective AI-driven threat detection are a quality dataset and Zscaler\u2019s AI models training on the telemetry collected by operating the world\u2019s largest security cloud. This cloud continuously collects and analyzes over 500 trillion daily signals and 500 billion daily transactions. <\/p>\n

An effective SSE offering also reduces complexityThe results of this mini-test are clear: customers need ease-of-use combined with high efficacy to defeat today\u2019s advanced cyberthreats\u2014and Zscaler was found to deliver: <\/p>\n

Security by default\u2014there is no configuration option hidden somewhere in the administrative console that must be enabled. Zscaler automatically enables the most important security controls needed to protect enterprises from malicious threat actors. In short: we deliver security value upon deployment and thus deliver fast time to value.
\nEffective blocking of malware without introducing false positives. False positives can consume a security team\u2019s valuable time that could have been spent on higher-value work.
\nFrictionless configuration that eliminates complexity. Security teams are frequently overloaded with security and operational responsibilities, resulting in limited time to understand and implement robust cybersecurity posture. <\/p>\n

Find out more about the CyberRating\u2019s SSE mini-test: Get your copy now\u00a0\u00a0<\/p>\n

\u200b[#item_full_content]\u00a0[[{“value”:”CyberRatings, the leading non-profit security testing organization, recently tested several vendors\u2019 security service edge (SSE) offerings with the goal of deriving empirical data that would answer the question, \u201cAre SSE products secure by default?\u201d <\/p>\n

The emphasis is aligned to a shift in the industry towards \u201csecure by default\u201d approaches to develop and deploy software products. The trend is an outcome of a 2023 report authored by CISA and its international partners that emphasizes that the burden of security should be shifted away from the end-user and back towards software vendors.<\/p>\n

In CISA\u2019s words:<\/p>\n

Secure-by-Default means products are resilient against prevalent exploitation techniques out of the box without additional charge. These products protect against the most prevalent threats and vulnerabilities without end-users having to take additional steps to secure them.<\/p>\n

Scope of the test: a \u201cquick look\u201d at default security postureCyberRating labeled this as a \u201cmini-test\u201d because their analysts did not intentionally run through a comprehensive evaluation of the full capabilities of the vendors\u2019 SSE platforms. Instead, with the mini-test, CyberRating\u2019s analysts sought to provide a data-driven \u201cquick look\u201d at the default security posture vendors can deliver with minimal to no additional security configuration of their SSE.<\/p>\n

In short, CyberRatings wanted to test the initial functional working state of these SSE offerings. For a more complete evaluation of Zscaler SSE, see the June 2024 CyberRatings SSE Report in which Zscaler achieved an \u201cAAA\u201d rating. <\/p>\n

SSE security posture test methodologyThe SSE mini-test was designed to provide insight into the default security posture across these platforms using a small subset of malware samples (using ~3,000 samples vs. the 100,000+ samples in CyberRating\u2019s more all-inclusive tests). CyberRatings ran the following tests using Windows 11 clients configured with each vendor\u2019s SSE client software:<\/p>\n

Test 1: Download ~1,000 benign samples over HTTP designed to be susceptible to being classified as malware despite being innocuous (e.g., the solution\u2019s propensity for triggering false positives).
\nTest 2: Download ~3,000 active malware samples over HTTP, current to within 30 days of the test (e.g., the SSE\u2019s ability to detect and block basic malware downloads). No evasions were applied.<\/p>\n

Zscaler SSE found \u201csecure-by-default\u201d with zero false positivesIn its default configuration, Zscaler stands above our competitors in the mini-test of SSE platforms: Zscaler blocked about 97% of the malware test samples with no false positives. Zscaler also includes Cloud Sandbox capability out of the gate, unlike several of our competitors. <\/p>\n

Here\u2019s what’s notable in the evaluation results in relation to our competitors: <\/p>\n

Zscaler blocked the most malware samples when compared to other vendors\u2019 SSE platforms running in their default configurations. Zscaler also did not produce any false positives. With our SSE, the most important security controls needed are automatically enabled to protect enterprises from malicious cyber actors.
\nCisco\u2019s, Checkpoint\u2019s, and Versa Networks\u2019 SSE platforms did not detect any malware samples when their default configuration remained unchanged. In other words, they do not provide security by default. Their ability to inspect traffic for malware is dependent on making configuration changes. Yet, security teams are frequently overloaded with security and operational responsibilities, resulting in limited time to dig through documentation to understand and implement robust cybersecurity posture.
\nCisco still drew false-positives, even when the CyberRatings evaluators made changes to their default configuration.<\/p>\n

The keys to effective AI-driven threat detection are a quality dataset and Zscaler\u2019s AI models training on the telemetry collected by operating the world\u2019s largest security cloud. This cloud continuously collects and analyzes over 500 trillion daily signals and 500 billion daily transactions. <\/p>\n

An effective SSE offering also reduces complexityThe results of this mini-test are clear: customers need ease-of-use combined with high efficacy to defeat today\u2019s advanced cyberthreats\u2014and Zscaler was found to deliver: <\/p>\n

Security by default\u2014there is no configuration option hidden somewhere in the administrative console that must be enabled. Zscaler automatically enables the most important security controls needed to protect enterprises from malicious threat actors. In short: we deliver security value upon deployment and thus deliver fast time to value.
\nEffective blocking of malware without introducing false positives. False positives can consume a security team\u2019s valuable time that could have been spent on higher-value work.
\nFrictionless configuration that eliminates complexity. Security teams are frequently overloaded with security and operational responsibilities, resulting in limited time to understand and implement robust cybersecurity posture. <\/p>\n

Find out more about the CyberRating\u2019s SSE mini-test: Get your copy now”}]]\u00a0<\/p>","protected":false},"excerpt":{"rendered":"

CyberRatings, the leading non-profit security testing organization, recently tested several […]<\/p>\n","protected":false},"author":0,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[],"class_list":["post-90042","post","type-post","status-publish","format-standard","hentry","category-zenith-zscaler"],"yoast_head":"\n