By  Insight UK / 3 Jul 2026 / Topics: Cybersecurity
Working as a network security consultant in Insight's dedicated Cisco practice, my days consist of whiteboards sessions, demos, RFPs, and straight-talking with clients trying to keep up with an industry that never sits still. The pace has only accelerated over the past two years.
This is not a detached analyst's "state of the industry." It is a view from the field: what I am seeing in customer environments, how vendor roadmaps are shifting, and what actually matters when you are the one keeping packets flowing and attackers out.
At Insight, we are a Solutions Integrator, which means we do not just advise on architecture; we design, build, and operationalise it alongside our clients. We talk about going from hype to how, and that is exactly what this piece is about: cutting through the noise to show what is actually working in network security today, and how we are helping clients get there.
But here is the thing about moving from hype to how: the biggest blocker is rarely the technology itself.
Before I go deeper into technology trends, I want to address the single biggest pattern I see across every engagement. The gap is not tools; it is people and process.I have placed this section early deliberately, because every technology discussion that follows is ultimately gated by an organisation's ability to operationalise what they buy.
Patterns across clients
How projects succeed
The most successful clients:
My job is not just to explain how a feature works; it is to help teams operationalise it. This is where Insight's role as a Solutions Integrator becomes most visible. We stay engaged beyond the design phase to ensure adoption actually happens.
We have been saying “the perimeter is dead” for a decade. The difference now is that architectures have caught up.
What is happening.
What I am seeing in the field
Practical implication
When I walk into a SASE conversation now, I am not selling a “vision.” I am mapping:
The conversation has become less about “can SASE work?” and more about “how do we migrate without breaking anything?”
Zero Trust used to be a philosophy; now it is showing up as concrete controls that customers actually turn on.
What is changing.
What customers ask me?
Where the friction lies
The key is helping customers pick a narrow, high‑value starting point: a critical app, a remote access use case, or a segment housing sensitive data, and show quick wins without massive disruption.
We are now in a world where 90%+ of traffic is encrypted, and at the same time, regulatory and privacy pressures are rising.
The core tension
Emerging patterns
My role has shifted from justifying the need for inspection to designing nuanced inspection policies that balance security, user experience, and compliance.
Even the most hardware‑centric clients are realizing they cannot scale just with appliances.
What is driving this?
How architectures are shifting
This is where customers either gain massive simplicity or end up with two parallel worlds (on‑prem policy vs cloud policy). The determining factor is how thoughtfully we design the transition.
The industry is in the middle of a consolidation wave.
Customer reality
The trade-offs I help customers navigate.
Selection now often comes down to: Where do you absolutely need best‑of‑breed, and where is “platform-good” acceptable? A lot of my role is to help prioritize those decisions.
I worked with an automotive company that has an SD-WAN spanning the globe and had already invested in an SSE solution but had not unlocked its full potential. They wanted to take the next step by implementing ZTNA to monitor and secure North-South and East-West traffic, to provide secure access to business applications for contractors and third parties, utilise the SSE global backbone, and a single interface for managing their policies. We assessed their network topology, mapped their application flows, identified traffic that was SaaS-bound, and designed a phased SASE migration approach that minimised disruption to business operations.
So, what does it actually look like when an organisation moves from hype to how?
If there is one thread running through everything above, it is this: the industry has finally caught up with its own ambitions.
ZTNA has evolved from a niche “VPN replacement” to a central pillar of modern security architecture. The key advancements; identity first, continuous context-aware verification, app-level micro-segmentation, SSE/SASE convergence, deeper device integration, support for legacy and machine identities, and rich analytics have made zero trust genuinely implementable at scale.
But the most significant change is not technology. It is mindset.
We are finally moving away from "trusted networks" to earned, continuously validated access. This is precisely what we always said we wanted but could not quite operationalise. The organisations that are succeeding are not the ones with the biggest budgets or the newest kit. They are the ones that invest equally in people, process, and technology, and treat security transformation as a programme, not a project.
If you are reading this and recognising your own environment in these patterns, here is my advice:
Every customer I work with is somewhere on this journey, from hearing the hype to figuring out the how. The organisations that succeed are the ones that stop chasing perfect architectures and start with pragmatic, outcome-driven steps.
Go from hype to how. Let us start the conversation.
Whether you are planning a SASE migration, starting your Zero Trust journey, or simply want an honest assessment of where your security architecture stands today, Insight's Cisco practice specialists are here to help.
If you’d like to discuss what this could mean for your organisation, please get in touch: UKCiscoCX@insight.com.
Jon Hackett is a Network Security Consultant in Insight's dedicated Cisco practice, based in the UK. With 30 years of experience designing, deploying and supporting enterprise security architectures across financial services, public sector, retail, and manufacturing. Jon specialises in network security, SASE/SSE migration, Zero Trust implementation, and helping organisations bridge the gap between security strategy and operational reality, working daily with customers navigating the shift from legacy perimeter security to modern, identity-driven architectures.