Skip to main content

    We value your privacy

    We use cookies to enhance your browsing experience, analyze site traffic, and personalize content. By clicking "Accept All", you consent to our use of cookies. Read our Cookie Policy to learn more.

    Skip to main content
    Back to Glossary
    security
    2 min read

    VPN

    A VPN (Virtual Private Network) creates an encrypted tunnel for network traffic, providing secure remote access to private resources.

    VPNs encrypt network traffic and extend private networks across public infrastructure.

    VPN use cases: - Remote access to corporate resources - Site-to-site connection between offices - Securing public Wi-Fi usage - Privacy from ISP/network operators

    VPN types: - SSL/TLS VPN: Browser-based, easier deployment - IPSec VPN: Traditional, full network access - WireGuard: Modern, lightweight protocol

    VPN vs Zero Trust: - Traditional VPN: Castle-and-moat, full network access - ZTNA: Per-application access, identity-based

    Zero Trust Network Access (ZTNA) is increasingly replacing traditional VPN.

    Why It Matters

    While zero trust is replacing traditional VPNs, many organizations still rely on VPN for remote access. The key risk is that traditional VPNs grant full network access once connected—if a VPN account is compromised, attackers have lateral movement capability across the entire network. Organizations should migrate toward Zero Trust Network Access (ZTNA) that provides per-application access based on identity and device posture.

    Key Points

    Encrypts traffic over untrusted networks
    Zero Trust is replacing traditional VPN
    Split tunneling reduces bandwidth but adds risk
    MFA should be required for VPN access
    Monitor for unusual VPN usage

    Applicable Compliance Frameworks

    SOC 2ISO 27001

    Related Terms

    Zero Trust

    Zero Trust is a security model that requires strict identity verification for every person and device, regardless of network location.

    Encryption in Transit

    Encryption in transit protects data as it moves between systems, networks, or devices, typically using TLS/SSL protocols to prevent interception.

    Frequently Asked Questions

    Is VPN still necessary with zero trust?

    Zero Trust Network Access (ZTNA) provides better security. VPN is being replaced but still useful for some use cases.

    What is split tunneling?

    Only corporate traffic goes through VPN; other traffic goes directly to internet. Reduces VPN load but bypasses security controls.

    Related Services & Resources

    Service

    Vanta Implementation

    Expert Vanta deployment with 80+ integrations configured in 4-6 weeks

    Learn more
    Service

    Drata Implementation

    Full Drata setup with automated evidence collection and control mapping

    Learn more
    Standard

    HIPAA Compliance

    Healthcare data protection requirements for PHI security

    Learn more
    Standard

    PCI DSS Compliance

    Payment card industry data security standards

    Learn more
    Resource

    SOC 2 Complete Guide

    Everything you need to know about achieving SOC 2 compliance

    Learn more
    Resource

    HIPAA Checklist

    Comprehensive checklist for HIPAA compliance requirements

    Learn more

    Need Help with VPN?

    Our experts can help you understand and implement the right controls for your organization.

    Talk to an ExpertBrowse All Terms