Zenarmor Extends Industry-First Distributed SASE Architecture to Mobile Endpoints and Containerized Environments

Advancements to Zenarmor SASE Anywhere Architecture™ Enable Sovereign SASE Deployments Across Partner- and Customer-operated Infrastructure

Zenarmor^®, Inc., the company pioneering a distributed Single-App, Single-Stack, Single-Pass Secure Access Service Edge (SASE) architecture for modern networks, today announced significant new advancements to its platform that expand the Zenarmor SASE Anywhere Architecture™ to support mobile endpoints and containerized environments, while enabling sovereign deployments across partner-operated and customer-controlled infrastructure, including managed service providers, network operators, and enterprise environments. This architecture enables security enforcement to run directly within partner or customer infrastructure rather than relying on centralized cloud inspection points.

These advancements expand Zenarmor’s distributed enforcement model to support modern hybrid workforces and cloud-native infrastructure. Unlike traditional SASE architectures that depend on centralized cloud points of presence (PoPs), Zenarmor enables sovereign SASE deployments where security enforcement runs directly within partner or customer environments. This distributed enforcement model replaces centralized PoP inspection, eliminating traffic backhaul entirely, reducing latency, and preserving operational control over security infrastructure.

“Service providers need security platforms that integrate directly into their infrastructure without forcing architectural compromises,” said George Burne, Chief Technology Officer at WiLine Networks. “Zenarmor’s latest advancements to its distributed architecture allow us to embed security directly within our network stack, giving customers secure connectivity, full visibility, and operational control rather than relying on external cloud inspection points.”

As organizations adopt hybrid work models and increasingly distributed application environments, many find that cloud-only SASE architectures can still introduce performance tradeoffs, operational complexity, and reliance on vendor-controlled infrastructure.

The Zenarmor SASE Anywhere Architecture™ – built on a Single-App, Single-Stack, Single-Pass design and forming the foundation of the company’s ONE.APP. SASE™ model – addresses these challenges by placing security enforcement directly in the traffic path, allowing inspection to occur closer to users, applications, and workloads without relying on centralized cloud inspection points. Zenarmor’s latest platform advancements extend its distributed SASE architecture to mobile endpoints, enabling roaming users to receive the same inspection, policy enforcement, and threat protection regardless of where they connect.

“Many organizations struggle to introduce modern security capabilities without disrupting existing network deployments,” said Eelco Akker, ICT Consultant overseeing network and security infrastructure at De Hooge Waerder Accountants, a Netherlands-based accounting and advisory firm. “Zenarmor’s latest architecture advancements allow security to be inserted directly into the traffic path with minimal disruption, enabling organizations to strengthen their security posture while maintaining performance and operational continuity.”

Zenarmor gateways now function as both secure internet exit points and comprehensive inspection engines for roaming iOS and Android devices. Mobile users can securely connect to the nearest Zenarmor gateway, where traffic is inspected inline before reaching the internet or corporate resources. This allows organizations to apply the full suite of Zenarmor’s security capabilities to mobile users across any network, including:

• Application-aware security policies that follow users across networks
• Advanced threat protection including malware detection, phishing prevention, and command-and-control blocking
• Content filtering and web categorization to prevent access to risky or inappropriate sites
• Full visibility into application usage, bandwidth consumption, and security events
• Intelligent routing to the nearest Zenarmor gateway for optimal performance

Unlike cloud-only SASE providers that require traffic to traverse centralized vendor-operated inspection points, Zenarmor allows organizations to deploy security enforcement wherever it makes operational sense, including in their own data centers, branch locations, cloud environments, or directly on user endpoints. Mobile users connect to their organization’s infrastructure, preserving both performance and operational control.

“SASE was originally envisioned as a way to bring networking and security closer to users and applications, but most implementations have reintroduced centralization through cloud inspection points,” said Murat Balaban, Founder and CEO of Zenarmor. “With Zenarmor, security enforcement runs directly where traffic flows – at the branch, in the cloud, on endpoints, or within partner infrastructure – giving organizations the performance, control, and deployment flexibility that modern distributed networks require.”

Zenarmor’s latest advancements also introduce containerized gateway deployment, allowing Zenarmor gateways to run as Docker containers across cloud-native environments and edge infrastructure. This enables organizations and service providers to deploy inline security inspection directly within Kubernetes clusters, ephemeral networks, development platforms, and distributed edge locations without requiring dedicated appliances or centralized cloud inspection infrastructure.

Endpoint connectivity and policy enforcement are centrally managed through Zenconsole, allowing organizations to deploy and manage Zenarmor agents across distributed endpoints and gateways. The platform integrates with enterprise device management solutions such as Microsoft Intune and Jamf, enabling organizations to extend consistent Zero Trust policies across corporate laptops, mobile devices, and remote user environments.

“Traditional SASE architectures introduce integration challenges and operational blind spots due to their dependence on cloud-based PoPs,” said Shamus McGillicuddy, Vice President of Research at Enterprise Management Associates (EMA). “By eliminating PoPs and enabling direct, point-to-point secure connections with inline inspection, Zenarmor’s latest advancements reinforce a next-generation SASE architecture that reduces latency, accelerates deployment, and lowers operational complexity. This differentiated approach is why EMA recognized Zenarmor as a Vendor to Watch.”

Zenarmor is also developing an integration with the CrowdStrike Falcon^® platform to incorporate device posture signals into policy decisions, further enhancing Zenarmor’s Zero Trust enforcement capabilities. This capability is planned for a forthcoming platform release.

By combining distributed enforcement with centralized management and reporting, Zenarmor enables organizations and partners to build scalable SASE deployments that maintain performance, operational flexibility, and data sovereignty.

“Perimeter-dependent security is an outdated assumption,” said Mark Weinberger, Client Solutions Director, Spectrum Networks, a leading Australian ISP. “Users are constantly moving between networks, and security must move with them. Zenarmor’s latest platform advancements enable us to move beyond gateway-only models to distributed enforcement with centralized visibility and control, a necessary evolution for modern SASE architectures built for today’s distributed workforce.”

For enterprises and service providers operating modern distributed networks, Zenarmor’s architecture provides a flexible approach that supports partner-operated infrastructure, sovereign security policies, and high-performance security enforcement without centralized traffic backhaul. Zenarmor continues to expand its distributed SASE platform to support enterprises, managed service providers, and network operators delivering modern security services across increasingly complex digital environments.

Availability

The latest advancements in Zenarmor SASE are available today. For technical details, visit: https://www.zenarmor.com/blog/zenarmor-2.4-release

About Zenarmor

Zenarmor, Inc., delivers ONE.APP. SASE™, a Secure Access Service Edge (SASE) category built on a Single-App, Single-Stack, Single-Pass architecture. Unlike traditional cloud-centric SASE models, Zenarmor performs inline inspection and Zero Trust enforcement directly at the point of access, eliminating forced traffic backhaul, reducing latency, and simplifying security operations.

Built on the Zenarmor SASE Anywhere Architecture™, the platform enables security enforcement to run wherever users, devices, and workloads operate across branch, edge, endpoint, and cloud environments. This distributed approach allows organizations, MSPs, MSSPs, and ISPs to deploy high-performance security within their own infrastructure while preserving privacy, data sovereignty, and operational control. The company is venture backed and headquartered in Cupertino, Calif., with European headquarters in Germany supporting customers and partners globally. For more information, visit https://www.zenarmor.com/.

Zenarmor^® is a registered trademark of Sunny Valley Cyber Security, Inc.

View source version on businesswire.com: https://www.businesswire.com/news/home/20260318493418/en/

New Zenarmor SASE Anywhere Architecture™ advancements support mobile endpoints and containerized environments, while enabling sovereign deployments across partner-operated and customer-controlled infrastructure.