Zscaler security as a service is delivered by a next-generation security architecture built from the ground up for performance and scalability. It is distributed across more than 150 data centers on 6 continents, which means that users are always a short hop to their applications, and we peer with hundreds of partners in major internet exchanges around the world for performance and reliability.
Transform with Zscaler.
Designed for resiliency, redundancy, and fast performance, the three-tiered Zscaler platform modules comprise the control plane (Zscaler Central Authority), the data plane (Zscaler Enforcement Nodes), and the logging and statistics plane(Zscaler Nanolog Servers).
The Zscaler Central Authority monitors our entire security cloud and provides a central location for software and database updates, policy and configuration settings, and threat intelligence. The collection of Zscaler Central Authority instances together form the brain of the cloud, and they are geographically distributed for redundancy and performance.
Traffic is directed to the Zscaler Enforcement Node (ZEN) nearest the user, where security, management, and compliance policies are enforced consistently, no matter where the user connects. Each ZEN utilizes a full proxy architecture and is built to ensure that data is not written, but scanned in RAM only and then erased. Logs are continuously created in memory and forwarded to the logging plane.
Built into ZENs, Nanolog technology performs lossless compression of logs, which are transmitted to Nanolog servers over secure connections and multicast for redundancy. Zscaler customers can mine billions of transaction logs to generate reports that provide insight into network utilization and traffic. We continuously update our dashboards and reporting and can stream logs to a third-party Security Information and Event Management (SIEM) service as they arrive. Customers can choose to have logs written to disk in a physical location that complies with regional regulations.
Because of its position between every user and the internet, the Zscaler platform is positioned to provide secure access to any destination—the open internet, apps and services in the cloud, and internal apps in the data center and public and private clouds.
Our position also makes Zscaler a critical integration point for a range of services. We complement and interoperate with key technology vendors across major market segments, including SD-WAN, identity and access management, device and endpoint management, as well as SIEM for reporting and analytics.
Many of these vendors, like us, were born in the cloud and, together, we form a dynamic cloud ecosystem for modern security and access. Read about them here.