Cloud Security , SASE SASE manages your network access, but who manages your SASE? May 19, 2026 Share By Anthony Lobretto (Adobe Stock) COMMENTARY: Once upon a time, Secure Access Service Edge (SASE), which provides network connectivity and security through a single, cloud-based platform, was a type of technology that was only within reach of large businesses. SASE solutions were expensive, and they often depended on legacy enterprise authentication or identity systems (like Active Directory) that smaller or newer organizations didn’t always operate. That has changed. Today, the SASE market is more dynamic than ever, making it easy to find a solution tailored to a given business’s needs. At the same time, SASE solutions have become more flexible than ever. No matter what your network architecture or software stack looks like, there is a way to deploy SASE for it. [ SC Media Perspectives columns are written by a trusted community of SC Media cybersecurity subject matter experts. Read more Perspectives here . ] In this sense, SASE has been democratized, which is great news in a world where every year sets new records for the frequency and scale of cybersecurity attacks, making it paramount for organizations to find ways to secure distributed applications and users. The growing challenge of SASE adoption But there’s also some bad news: Along with SASE’s increasing power and flexibility come deep deployment and management challenges. SASE vendors themselves often don’t solve them; they simply provide network connectivity and security solutions, leaving it up to their customers to figure out how to deploy their software effectively. Related reading: AI can accelerate microsegmentation, but it cannot govern policy SASE’s role in securing AI adoption: How existing tools can manage AI security Four elements of high-availability and resilient cloud networks As a result, the barrier standing in the way of successful SASE adoption for many businesses has become expertise. Like other paradigm-shifting technologies (such as virtualization or the cloud), SASE is only effective and practical to implement if businesses have access to the deep expertise necessary to make SASE solutions work in the ways they require. Why SASE management is challenging To prove the point, let’s drill into the specifics of why modern SASE platforms are often so challenging to deploy and operate effectively. Key pain points include: Integration requirements : To connect and secure applications using a SASE solution, businesses must integrate SASE with their various applications. This can be challenging for organizations that use dozens or hundreds of applications that they source from a multitude of vendors. Policy implementation : Securing applications using SASE requires the presence of policies that define who can connect and how. Crafting zero-trust policies that grant the right levels of access, without allowing unnecessary privileges, requires deep familiarity with application access and authentication architectures. User management : Defining which users should have access to resources can be challenging, especially when user identities are managed through multiple systems, or when user roles change frequently. To manage users securely and at scale, it’s critical to automate processes like adding or removing users but creating those automations is no mean feat. SASE monitoring : Setting up an effective SASE deployment is only part of the battle. Businesses must also monitor SASE solutions continuously to detect risks, such as anomalous access events. These are challenges that are often tough to solve, even for organizations with seasoned IT and networking staff. Because SASE is a fundamentally new type of approach to network connectivity and security, engineers accustomed to working with more traditional types of technologies, like VPNs and physical routers, may face a steep learning curve when tasked with setting up and maintaining a SASE solution. The pitfalls of ineffective SASE management Given that SASE solutions have effectively become the glue that bonds endpoints together in modern, distributed enterprises, the consequences of failing to implement and manage SASE effectively can be severe. They include, for starters, the risk that applications or other resources won’t be accessible to those who need them. Imagine, for example, how business productivity suffers if a member of the sales team can’t connect to a business’s CRM because a SASE policy was not configured properly. Even worse are the security risks that can emerge from SASE deployment and management oversights. Policy gaps or oversights may lead to situations where users are able to access sensitive data or applications that should not be accessible to them. In addition, lack of effective monitoring may cause an organization to overlook malicious endpoints on a network, a risk that is all the greater given that traditional approaches to network security monitoring typically don’t work well in contexts where there is no fixed network perimeter. SASE monitoring has become critical for detecting risks in modern IT estates where endpoints can be anywhere. An effective approach to SASE adoption It’s possible to get ahead of these risks but doing so requires more than choosing a SASE solution and calling it a day. Businesses must instead make it a priority to invest upfront in the expertise they need to set up and manage SASE effectively, either by acquiring in-house SASE experts or working with SASE service providers who have deep experience in deploying, configuring, integrating and administering SASE solutions. The bottom line: Don’t let the increasing flexibility of SASE solutions disguise their complexity. While SASE vendors have, to their credit, made their technology more environment-agnostic and customizable than ever, this doesn’t mean that every IT department is ready to deploy and manage SASE effectively tomorrow. The expertise gap is real, and addressing it must be a part of every SASE adoption strategy. An In-Depth Guide to Cloud Security Get essential knowledge and practical strategies to fortify your cloud security. Learn More Anthony Lobretto Anthony Lobretto is SVP of Connectivity Services at 11:11 Systems . Related Cloud Security The hidden risk in hybrid IT: Fragmented vulnerability management Srikant Sreenivasan May 7, 2026 Hybrid IT and AI expand attack surfaces, making continuous, context-aware risk management essential. Email security Amazon SES abused for sophisticated phishing attacks SC Staff May 5, 2026 Attackers are leveraging Amazon SES, a legitimate and trusted service, to send malicious emails that bypass authentication checks like SPF, DKIM, and DMARC. Phishing New ConsentFix v3 attack automates Microsoft Azure account hijacking SC Staff May 4, 2026 ConsentFix v3 targets Microsoft Azure environments by first identifying valid tenant IDs and gathering employee details for impersonation. Related Events Cybercast Cloud Security: The AI Effect and How to Proceed On-Demand Event Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Bandwidth Bastion Host Border Gateway Protocol (BGP) Cache Circuit Switched Network Crossover Cable Datagram Domain Name System (DNS) Dynamic Routing Protocol Greynet You can skip this ad in 5 seconds