Resource Library

Over the past several years, microsegmentation has evolved from a niche network security control to a foundational component of zero trust architecture. Today, microsegmentation is increasingly identity-driven and applicationaware, leveraging telemetry from endpoints, workloads, and behavioral baselines to dynamically enforce policies.

Looking ahead, microsegmentation is trending toward convergence with broader zero trust frameworks, particularly in areas like cloud workload protection platforms (CWPPs), identity-based segmentation, and secure access service edge/security service edge (SASE/SSE) architectures.

SANS recently reviewed Zscaler Microsegmentation, which provides real-time asset discovery for objects based on metadata tags or cloud attributes, as well as on-premises assets based on IP addresses or network subnet definitions.