Zscaler Internet Access (ZIA) 

Zscaler Internet Access provides various security protection to the user as a services. There are no appliances or server  required to start this services.  ZIA provides user protection beyond web browsing and covers all ports and protocols.  This  make it suitable to be Internet bound traffic gateway at any HQ or branches .

ZIA sits between your users and the Internet, inspecting every byte of trafc inline across multiple security techniques, even within SSL. As a result, you get full protection from web and all Internet threats. It is also a platform that supports Cloud Sandboxing, Next-Generation Firewall, Data Loss Prevention (DLP), and Cloud Application Visibility and Control that allow user  to start small and grow later.

Zscaler Private Access (ZPA)

Zscaler Private Access (ZPA™) provides user an always on experience to access corporate information from office or home.  User can  seamless and secure access to internal applications whether they’re hosted in the data center or multiples clouds. ZPA delivers a software defned perimeter, a network security method that stemmed from work of the Defense Information Systems Agency (DISA) in 2007. As such, ZPA is a completely different network security method than the traditional DMZ. It is lastest to obtain FEDRAMP certification.
Zscaler ZPA Zero Trust
ZPA is a zero-trust access to internal applications using software micro segementation . It is working on  two criterias that is user device and user identity.  ZPA’s unique design is based on four key tenets as following:
• Connect users to applications without placing users on the network
• Never expose applications to unauthorized users
• Enable app segmentation without network segmentation
• Provide secure remote access without using VPN appliances