Gigamon has integrated its network telemetry capabilities with Zscaler’s zero-trust access solution to enable security teams to understand not only who accesses private applications but also what users do once inside. This advancement targets a critical visibility gap in modern zero-trust environments.
- Integrates Gigamon’s deep telemetry with Zscaler’s zero-trust access
- Improves detection of user behavior inside private applications
- Addresses widespread visibility challenges faced by security teams
What happened
Gigamon has announced a new integration between its Application Metadata Intelligence tool and Zscaler’s Private Access zero-trust service. This collaboration allows security teams to gain detailed visibility into user actions after they authenticate and access private applications, an area traditionally obscured by zero-trust models.
While Zscaler Private Access restricts entry based on identity and strict policies, it has not tracked activity occurring after connection. Gigamon fills this gap by pulling a wide array of metadata—nearly 6,000 attributes from network traffic including DNS queries and SSL data—from east-west traffic between Zscaler connectors and private applications. This telemetry is then fed into analytics and security tools for improved monitoring.
Why it matters
Many organizations struggle with visibility once users gain access to internal applications, even with zero-trust frameworks in place. Gigamon’s 2026 Hybrid Cloud Security Survey found 45% of surveyed IT leaders still cite visibility as their top security challenge, despite investments in tools. This integration addresses that persistent blind spot by offering deeper insight into what happens inside the network beyond access control.
Enhanced telemetry enables faster detection of lateral movement attacks, ensures least-privilege policies are effectively enforced, and aids quicker investigations inside SIEM, network detection and response, and security operations platforms. This shift from simply gatekeeping to understanding session activity strengthens overall threat detection and response capabilities.
What to watch next
Currently, the Gigamon-Zscaler integration is in limited availability for customers using both platforms. Wider rollout and additional feature enhancements could follow based on early user feedback and evolving security needs in hybrid cloud environments.
Security teams should monitor how this integration impacts operational workflows, particularly whether richer application-level context significantly improves incident timelines and policy validation. Additionally, the move highlights increasing demands for observability solutions that complement zero-trust models by illuminating what happens after access is granted.