Zscaler Internet Access (ZIA) 
Zscaler Internet Access delivers your security stack as a service from the cloud, eliminating the cost and complexity of traditional secure web gateway approaches. By moving security to a globally distributed cloud, Zscaler brings the Internet gateway closer to the user for a faster experience. Organizations can easily scale protection to all offices or users, regardless of location, and minimize network and appliance infrastructure.

Zscaler Internet Access sits between your users and the Internet, inspecting every byte of trafc inline across multiple security techniques, even within SSL. You get full protection from web and Internet threats. And with a cloud platform that supports Cloud Sandboxing, Next-Generation Firewall, Data Loss Prevention (DLP), and Cloud Application Visibility and Control, you can start with the services you need today and activate others as your needs grow
Zscaler Private Access (ZPA) 
Zscaler Private Access (ZPA™) provides seamless and secure access to internal applications, whether they’re
hosted in the data center or cloud. ZPA delivers a software defned perimeter, a network security method that
stemmed from work of the Defense Information Systems Agency (DISA) in 2007. As such, ZPA is a completely
different network security method than the traditional DMZ.

It provides zero-trust access to internal applications using software—on a need-to-know basis—by looking at two
criteria: user device and user identity. ZPA’s unique design is based on four key tenets:
• Connect users to applications without placing users on the network
• Never expose applications to unauthorized users
• Enable app segmentation without network segmentation
• Provide secure remote access without using VPN appliances