of companies will extend their existing secure remote access and endpoint security tools by implementing enterprise browser technology to address specific gaps, according to Gartner, Inc.
Threat actors frequently target employees with phishing endpoint detection and response controls , making an additional layer of visibility and control in the web browser necessary.
“Web browsers are the primary access method for most modern enterprise applications and provide an endpoint -independent enterprise security control point ,” says Max Taggett , Senior Principal Analyst at Gartner. “Security leaders can use a SEB to reduce risks and enhance the digital experience.”
Currently, Gartner estimates that less than 10% of companies have adopted a Security Stack Building (SEB). Companies that rely primarily on Software as a Service (SaaS) applications, with few branches or cyber-physical systems to protect, need a simpler method of managing security technology than stacks . SEBs meet this need.
Furthermore, SEBs allow segmented access from poorly or unmanaged end-user devices and personal devices (bring-your-own PC), where the implementation of endpoint would be inappropriate for privacy or maintenance reasons.
“SEBs incorporate enterprise security controls directly into the native web browsing experience using a custom browser or an extension for existing browsers, rather than adding external controls at the endpoint or network layer,” says Evgeny Mirolyubov , Senior Analyst Director at Gartner. “SEBs also enable targeted access to tunneled SaaS applications directly from web browsers, minimizing the need for agents and endpoint .”
Companies that implement SEBs can:
– Apply enterprise security policies and gain visibility into web traffic without needing inline decryption, which can improve application performance and latency.
– To support the transition of clients' legacy applications to the delivery of modern SaaS applications.
– To complement or reduce dependence on Virtual Private Networks (VPNs), Virtual Desktop Infrastructures (VDIs) , and desktop as a service for companies that prioritize remote or outsourced work and cloud provisioning .
– anti-phishing and credential theft protection features , such as protection against the reuse of corporate credentials on unauthorized or phishing , on devices where browser usage is restricted to selected SEBs.
– To enhance visibility and reporting on web application usage , employee performance, and behavioral analytics for poorly managed or unmanaged devices and for companies without a mature Employee Digital Experience strategy.
Topics such as this and others exploring the evolving landscape of risks and strategies, as well as insights on how to address the challenges of increasingly complex cyber environments, will be highlighted at the Gartner Security & Risk Management Conference , which will be held on August 5th and 6th in São Paulo. More information is available at: https://www.gartner.com/pt-br/conferences/la/security-risk-management-brazil
Gartner customers can read more in “ Innovation Insight: Secure Enterprise Browsers ”.
