Why SASE Vendors are Adopting the Enterprise Browser but Downplaying the Use Cases

By Peter Lunk

The Enterprise security market is undergoing a fundamental shift, and Secure Access Service Edge (SASE) vendors are having to adapt. The rise of the Enterprise Browser (EB) is forcing them to wrestle with a hard truth: traditional SASE solutions—while powerful—are expensive, complex, and overkill for many companies and use cases.

Many SASE vendors are trying to reposition Enterprise Browsers as mere complements to their existing security platforms. Their messaging is clear: Enterprise Browsers are great, but only for unmanaged devices and BYOD. Their proposed solution? Pair the Enterprise Browser with a SASE platform. That certainly makes sense for companies that have already deployed a SASE solution.

But let’s take a step back and ask: Are SASE vendors just trying to enhance their offerings with an Enterprise Browser—or are they trying to contain its impact? SASE vendors can see that the browser is now the primary workspace, and an Enterprise Browser makes a ton of sense as a primary security plan for small and mid –size companies. This is especially true for companies that may not have the staff or budget to implement SASE.

SASE vendors framing the Enterprise Browser as a niche solution are typically acting defensively as they see the EB could be a better fit depending on the company size and use cases. Enterprise Browsers threaten to disrupt a segment of the SASE market because they:

• Eliminate complexity by securing access directly at the browser level
• Dramatically simplify deployment—an EB can be installed in minutes, without requiring VPNs or agents
• Separate access security from network infrastructure to reduce policy and management complexity
• Offer significant cost savings by cutting out redundant layers of security infrastructure
• Deliver a better user experience by increasing speed and responsiveness while still enforcing robust security policies

SASE Vendors are Protecting Their Core Business

One major SASE vendor recently announced an Enterprise Browser product offering, again positioning it as useful for unmanaged devices and BYOD, but stating that on its own, it lacks TLS traffic inspection and DLP controls—both of which are available in their SASE solution. The vendors are pushing a hybrid model because it maintains the need for their high-margin product offerings. If Enterprise Browsers were framed as stand-alone security solutions for all devices, not just unmanaged ones, organizations might start questioning the necessity of expensive SASE platforms altogether.

For large Enterprises that have already expended significant budget and staff to implementing a SASE solution, it won’t make sense to rip that out and start over right away. But for companies that have not yet taken the SASE path, it can make more sense to start with an Enterprise Browser. This calculus gets even more compelling for companies with smaller security teams and for managed security service providers.

The Future: Enterprise Browsers as the New Security Standard

This shift is already happening. Forward-thinking security teams recognize that securing user interactions at the browser level is more efficient than securing the network. SASE incumbents may continue to downplay the standalone potential of Enterprise Browsers, but the market is moving in a different direction. Organizations looking to optimize security, reduce complexity, and cut costs should ask themselves: Do we really need full-scale SASE, or can an Enterprise Browser handle most of our security needs?

The answer is becoming clearer every day.