Enterprises are grappling with fragmented security as traffic patterns shift, agent deployments multiply, and cloud environments expand. Traditional point tools for each layer are struggling to keep pace. Versa Networks aims to resolve these challenges with three coordinated updates to its VersaONE Universal SASE Platform, adding Cloud Security Posture Management (CSPM), a major upgrade of Concerto orchestration, and an upcoming AI agent trust and verification framework.

These updates come amid mounting evidence that integration gaps create serious security risks. Versa's inaugural State of SASE + AI Report, based on a survey of 525 senior IT and security decision-makers at U.S. enterprises, reveals that 35% of organizations suffered a breach in the past year tied to coordination gaps between networking and security teams. Nearly three-quarters (73%) report that technical integration complexity has delayed or derailed critical projects. While 99% of respondents listed convergence as a strategic priority, only 30% have achieved it.

Research Findings Point to Systemic Fragmentation

The report covers financial services, retail, energy, manufacturing, healthcare, technology, and government sectors. Key findings highlight the severity of the fragmentation problem:

• 35% experienced a security breach linked to coordination gaps between networking and security teams.
• 53% report higher operational costs from managing redundant tools.
• 73% say technical integration complexity delayed or derailed a critical project.
• 99% named convergence a strategic priority, but only 30% have implemented shared ownership of SASE strategy.
• 95% say AI is forcing networking and security teams to collaborate more closely.
• 58% cite strengthening security posture as the top driver for convergence, compared to 19% who cited lowering total cost of ownership.

Organizations running 50 or more vendors are nearly twice as likely to face delayed application rollouts than those with leaner stacks (61% vs. 34%) and more likely to report inconsistent policy enforcement (57% vs. 40%). The research also uncovers a shadow AI problem: more than 80% of organizations say AI is in use somewhere in their environment, yet fewer than 20% know exactly what it is being used for.

Concerto Orchestration Update Simplifies SD-WAN and SSE Policy Management

The complexity findings directly correspond to an orchestration problem that Versa has been tackling with significant engineering resources. The Concerto 13.1.1 release redesigns the SD-WAN configuration experience and unifies security and authentication profiles across SD-WAN and SSE, collapsing disparate policy islands into a single construct. This means users can set a policy once for any user, site, or cloud environment, ensuring consistency regardless of location.

The update introduces hierarchical policy templates, enabling organizations to define a master policy and then extend subsets to different user groups or departments without rebuilding from scratch. This targets enterprise-grade SD-WAN without the traditional staffing overhead. As Versa's CEO explains, achieving scale while simplifying configuration is crucial for modern enterprises.

Cloud Security Posture Management (CSPM) Integrated into VersaONE

Policy configuration is one layer of fragmentation; cloud risk visibility is another. Many enterprises run separate ZTNA or secure internet gateways for user/device posture and separate CSPM tools for cloud configuration risk, managed by different teams with no shared context. Versa's CSPM capability, added directly to the VersaONE platform, extends access security to continuous cloud risk visibility across AWS, Azure, GCP, and OCI. Telemetry feeds into Concerto alongside access risk data, unifying risk intelligence that the industry has long discussed but rarely achieved without multiple portals.

Versa's CSPM plans predate the recent $32 billion acquisition of Wiz by Google, which underscored the hotness of the CSPM space. The focus remains on solving customer needs by bringing cloud misconfiguration, compliance gaps, and security risks into the same view as network and user access risks.

AI Agent Trust and Verification Framework

CSPM extends visibility into cloud infrastructure, but the next challenge is AI agents that can change that infrastructure autonomously. A single user prompt can trigger many agents that make changes to policies and configurations, many of which are invisible to operators. Versa's response, due around May 21, is a trust and verification framework that applies policy-based access controls to agents, similar to how they are applied to users and devices. It functions as a verification gateway within the management and orchestration layer.

Putting a human in the loop for every agent action is impractical at scale. Versa draws on its existing work for user and device secure access to apply analogous controls to agentic behavior, ensuring only authorized actions are permitted without slowing down operations.

This three-pronged update—CSPM integration, Concerto orchestration simplification, and AI agent trust—reflects a broader industry push toward unified security and networking. By collapsing multiple tools and policy domains into a single platform, Versa aims to reduce the coordination gaps that have led to breaches, delays, and rising costs. The new research provides a stark reminder that while most enterprises prioritize convergence, implementation remains elusive, and those that achieve it gain significant advantages in security posture and operational efficiency.

Source: Network World News