Zscaler, Inc., a prominent cybersecurity platform provider, announced a major expansion of its Zscaler Zero Trust SASE solution at its annual conference. The company unveiled the ZAgent Framework alongside several cloud-native innovations engineered to protect corporate data streams from browser to cloud workload, standardizing security parameters across modern enterprise IT networks.
The contemporary professional landscape increasingly relies on unmanaged hardware and complex, multi-tiered supply chains, leaving corporate networks vulnerable to highly automated, machine-speed cyber threats. Traditional SASE frameworks—frequently anchored to legacy firewall configurations and virtual private networks (VPNs) were not designed to defend these distributed perimeters. By exposing applications directly to the public internet, these legacy setups often enable lateral threat movement while creating immense administrative complexity for internal IT teams.
To combat this, the Zscaler inline security cloud now scales to monitor and protect more than 750 billion transactions every single day. This massive volume of real-time telemetry acts as a continuous training pool for the Zscaler Zero Trust Exchange™ architecture and its integrated machine learning engine, driving a highly adaptive and resilient Zero Trust SASE posture.
Applying Agentic AI to Streamline Daily Security Operations
The product expansion introduces the ZAgent Framework, an orchestration layer designed to unify individual platform agents and transform traditional network administration into an automated, self-managing operation.
Through the ZAgent Framework, system administrators can interact directly with the platform using simple natural language prompts within the Zscaler Experience Center, allowing teams to bypass complex scripting to deploy configurations and isolate backend system errors rapidly. A core component of this ecosystem is the Zscaler Digital Experience™ (ZDX™) Agent. Operating under the ZAgent umbrella, it enables IT teams to instantly diagnose and resolve end-user performance issues—such as local Wi-Fi drops, ISP outages, or device lag—before they interrupt active business workflows.
“Legacy SASE was built in the post-pandemic rush, based on a firewall and VPN model for a network perimeter that no longer exists. In a world of AI with distributed users, partners, and cloud workloads, that model leaves enterprises exposed,” said Jay Chaudhry, Founder, Chairman, and CEO of Zscaler. “Security in the AI era has to be dynamic. With this expansion of Zero Trust SASE, we are giving organizations one platform that secures every communication, simplifies operations through agentic AI, without the cost and complexity of legacy infrastructure.”
Also Read: BlueVoyant Launches GenAI Security Architecture to Automate Threat Defense
Unifying Security Across Browsers, Supply Chains, and B2B Partners
The platform update rolls out a suite of endpoint and partner connectivity solutions built to protect data across highly fragmented corporate attack surfaces:
-
Zero Trust Browser Extension & Enterprise Browser: Embeds Zero Trust protection into standard, cross-browser extensions or a full Chromium-based enterprise browser. The technology provides localized data controls and active Browser Detection & Response, eliminating the need for expensive Virtual Desktop Infrastructure (VDI) or legacy VPNs on personal (BYOD) and unmanaged devices.
-
Zero Trust B2B Connectivity: Establishes the Zscaler B2B exchange to facilitate secure, bi-directional application access between enterprise networks and external partners. The framework removes the need for complex firewall rules, site-to-site VPNs, or costly MPLS networks, securing the supply chain without exposing core networks to external lateral movement.
-
Endpoint Sandbox Capabilities: Extends Zscaler’s cloud sandboxing functionality directly to local hardware, protecting enterprise users from malicious files introduced via offline vectors such as flash drives.
“Security teams are spending too much time stitching together fragmented tools and reacting to misconfigurations they should never have to see,” said Adam Geller, Chief Product Officer at Zscaler. “By embedding our ZAgent Framework into Zscaler’s platform, we are making SASE management largely autonomous–with root cause analysis, drift detection, policy validation all happening via agents in the platform. Combined with browser-based access and PQC readiness, this gives organizations a foundation that can scale with their AI initiatives.”
Extending Microsegmentation and Multi-Cloud Protections
Beyond endpoint and user security, the update extends uniform SASE policy enforcement to multi-cloud environments, officially introducing the Zero Trust Gateway for GCP. This release matches existing AWS integrations, providing consistent security policies for workload-to-workload and workload-to-internet data streams while eliminating siloed, cloud-specific firewalls.
Concurrently, the platform delivers Microsegmentation for Kubernetes. The technology automates granular security boundaries within Google Kubernetes Engine (GKE) and adjacent container frameworks, stopping lateral threat migration between virtual machines and microservices without requiring manual code changes or interrupting live operational infrastructure.
“The SASE market is undergoing a fundamental shift as organizations realize that legacy network security approaches cannot keep pace with the scale of the AI era,” said John Grady, Principal Analyst at Omdia. “Today’s modern, AI-driven enterprise needs Zero Trust protections across everything from unmanaged devices and B2B partners to multi-cloud workloads. Zscaler’s introduction of the ZAgent agentic AI framework goes beyond basic automation and redefines how enterprises can manage and scale security across all these areas, within a single, unified architecture.”
“As we accelerate our AI initiatives, data security and operational agility are our top priorities,” said Brad Skibitzki, CISO, Zebra Technologies. “Legacy VPN and firewall models have failed to provide the granular control and visibility required for a distributed workforce and multi-cloud environment. Zscaler’s Zero Trust SASE platform gives us the confidence to innovate rapidly. By leveraging the ZAgent Framework and the new Zero Trust Browser, we can secure every connection, whether it involves employee BYOD devices or cloud workloads, all while dramatically simplifying our security management.”
The expanded Zero Trust SASE capabilities and the ZAgent Framework are fully integrated into the cloud-native Zscaler ecosystem, providing scaling enterprises with a data-driven, unified security architecture optimized for modern cloud operations.