Articles, trends, and advice on cloud security without compromise. Keep up with the latest blog insights on web isolation, network cybersecurity, malware, and more.

Menlo’s Vision to Revolutionize Web Security

In the technology industry, the word “visionary” refers not just to the ability to see the future, but to actually change it. Quite a few companies achieve the first part of this definition. Very few pull off the second part.

At Menlo, we have the opportunity to be one of those few. Five years after we began developing a new kind of web security product based on a technology called isolation, we are rapidly signing up large customers across financial services, healthcare, critical infrastructure, and more. So far, the millions of employees who use our isolation-based Secure Web Gateway (SWG) have not had their devices infected by malware. And we recently got another meaningful piece of validation: Gartner has named Menlo a Visionary in its highly influential SWG Magic Quadrant report for 2018.


We knew when we started the company that we were offering a radical new approach: Rather than detect threats and block employees from accessing dangerous web content, we would simply isolate all of their endpoint devices from all browser-based traffic. We weren’t the first to try to apply isolation to security, but we were the first to figure out how to do it without forcing employees to put up with a slowed, defeatured web-browsing experience.


In fact, the need for such a solution was obvious to us when we started. The two major trends in the enterprise—accelerating adoption of cloud applications and an ever-mobile workforce—have made the browser the most important productivity application by far. Yet it was unreasonable to expect a legacy SWG to accomplish the impossible by identifying the thousands of as-yet unknown threats that emerge every day.


Since then, we’ve created a secure access platform for web applications and websites, available as a service in the cloud or on the customer’s premises. Either way, since no web traffic is executed on employees’ PCs and other devices, there’s no way they can be infected. And from the start, we focused on making this revolutionary platform scalable, manageable, and easy for corporate customers to adopt.


We continue to add capabilities to expand how we can help companies deal with ever-increasing security risks. We’ve added tools that let administrators research the source of attacks that we isolate from their networks, so they can better understand the threat landscape. For companies that don’t want to isolate all web traffic, we are providing greater ability to specify which users or categories of websites to isolate. For example, we can now automatically isolate any web service that was created with software known to be vulnerable to hacking, such as unpatched versions of WordPress and Drupal. End users don’t even realize their web sessions are actually occurring on our platform rather than on their PCs. With our new “Isolate and Read-Only” capability, administrators can allow employees to access—but not interact on—webmail and social media sites. That way, they can’t be tricked into providing credentials to clever phishing scams.


We realize that embracing this new approach to web security doesn’t mean other tools have no value. Since customers appreciate smart collaboration among their deployed security technologies, we have forged partnerships and built interoperability with a variety of popular vendors, including Check Point Software, Cisco Systems, Palo Alto Networks, and McAfee in firewall and network security; Okta, Ping Identity, and OneLogin in identity and access management software; and IBM QRadar, Splunk, and ArcSight in enterprise security infrastructure. Our platform can be deployed with AWS in the cloud, or with VMware or Red Hat for on-prem OVAs. We will continue working to extend our range of partnerships to deliver further interoperability and value for our customers.


We intend to execute on this once-in-a-generation opportunity to make a difference. Legacy web security solutions are obviously not cutting it, as evidenced by the nonstop headlines about sometimes-catastrophic corporate cyberbreaches. Security teams are underresourced and overworked, constantly putting out fires rather than finding better, more efficient ways to deal with this existential threat. As a result, we are more confident than ever that our new architectural approach is the answer. That’s the gratifying message we get from hundreds of customers, and now from Gartner as well. We invite all customers to give Menlo’s isolation-based SWG a try and experience the future of malware prevention firsthand.


To read the Gartner SWG MQ Report, download your copy here.


Connect with us

Lists by Topic

see all

Recent Posts