Gigamon and Zscaler integrate to close Zero Trust visibility gap

Gigamon and Zscaler have announced a technical integration that brings Gigamon's Application Metadata Intelligence (AMI) together with Zscaler Private Access (ZPA), aiming to close a visibility gap that security teams frequently encounter after migrating away from legacy VPNs.

The joint solution is available now in limited access for existing customers of both platforms. It captures East-West traffic forwarded from the Zscaler App Connector to private applications, enriching ZPA's identity- and context-aware access controls with network-derived telemetry that Gigamon extracts from live traffic flows.

What the integration does

Gigamon AMI extracts and enriches close to 6,000 metadata attributes from network traffic, covering application behaviour indicators, DNS queries, SSL certificate details, and latency telemetry. When layered on top of ZPA, which grants access to private applications based on business policy without placing users directly on the corporate network, the combined platform is intended to give security operations teams a fuller picture of activity after access is granted.

Srinivas Chakravarty, vice president of cloud ecosystem at Gigamon, framed the division of labour clearly: "Zero Trust access determines who can connect to an application. Deep observability helps organisations understand what happens after access is granted. By combining Zscaler Private Access with Gigamon AMI, customers can detect lateral movement faster, validate policy, and give security teams the application-level context needed to accelerate investigations."

The vendors cite their own 2026 Hybrid Cloud Security Survey, which polled more than 1,000 security and IT leaders. It found that 45 per cent identified visibility as their top security challenge, even as organisations continue to increase spending on security tooling. The figure is notable given how broadly that cohort has adopted cloud-native and Zero Trust architectures in recent years.

Market context

The partnership sits at the intersection of two well-established product categories: Zero Trust Network Access and network detection and response (NDR). Zscaler is one of the largest ZTNA vendors by revenue, competing primarily with Palo Alto Networks, Cloudflare Access, and Microsoft Entra Private Access. Gigamon occupies a more specialised niche, providing deep packet inspection and metadata extraction that feeds downstream SIEM, NDR and SOAR platforms rather than replacing them.

The underlying market dynamic the deal addresses is a structural one. As encrypted tunnels and identity-based micro-segmentation become standard, the network layer that traditional security monitoring relied on becomes less visible. Security teams migrating from perimeter-based architectures often find their NDR and SIEM tools receive less telemetry, not more, in the transition period. Vendors offering metadata bridges between ZTNA control planes and analytics tools are positioning to fill that gap.

Regulatory read-across

Regulatory frameworks are adding commercial urgency to the visibility argument. The EU's NIS2 Directive, which took effect for member states in late 2024, imposes incident detection and reporting obligations that require organisations to demonstrate they can observe network activity across hybrid environments. The UK's counterpart update to the NIS Regulations is proceeding through consultation. In the United States, CISA's Zero Trust Maturity Model explicitly lists network visibility as a pillar alongside identity, device, and application controls. Organisations under FedRAMP or working toward Cyber Essentials Plus accreditation in the UK face similar requirements to evidence monitoring capability beyond access logs.

The integration's limited-access launch suggests the two vendors are still working through joint go-to-market and technical validation with early customers. Buyers will be watching for general availability timing and whether the solution supports multi-cloud environments beyond the hybrid configurations described in the current release.