Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

Zscaler February 2026 Feature Highlights

Zscaler
07/16/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


This is our monthly podcast taking a look at the Zscaler release notes and picking out any features that have been added that are particularly relevant from a security quality of life perspective. This month joining me, I have Abe. Howdy. Hey, Abe. Thanks for being on. And Dustin. Hello. Hello. Thank you, Dustin, for joining us. As usual, my guests have picked out a number of features that they think are interesting to talk about this month. So without further ado, I think, Dustin, you have the first feature, which is the ZIA feature. So if you want to go ahead and talk about that. Yeah, so we have a bit of a transformative change to Insight Logs. I know historically, it's kind of been a little bit of a pain point. We've done some, you know, had some recommendations around how to run Insight Logs with the understanding that if you run a full month of logging at once, multiple filters, this can take a really long time. Most of us have learned how to get around this running, you know, smaller amounts of time when you run those Insight Logs or decreasing the number of filters. So the cool thing about the improvement to the Insight Logs is you can now run those in the background. So you can continue forward with your administrative tasks without having to stay on the Insight Log screen. This will allow you to not terminate the query that you're running, and you can still do things like exporting up to a million records to a CSV file, viewing up to 25,000 records directly in the portal. You can specify custom names for the downloaded CSVs for better organization. The only real limitation to this in terms of usability is only one asynchronous query can run at a time per admin. And only the user who initiated that query can view the results on the screen or access the downloaded file afterwards. That is still vastly better than what we had before. So I have fond memories of sitting there waiting for Web Insights to spit out some data that I was trying to fetch and having to sit there and wait for 20 minutes or an hour, depending on how much data I was fetching. Oh, yeah, we all do. Good improvement. And then I think the next feature we have is a ZipPA feature, and Aby, we're going to talk about that. Yeah. So this one, basically, we've added the ability to control VPN for legacy apps. So think of, you know, when using ZipPA for server-initiated traffic, think your things like active FTP or DCOM traffic. In the past, you know, we weren't really able to add access control policies on that. With this new update, now we can finally control access to set applications or set server traffic, but it is much more like a firewall policy in that those controls and policies are essentially five-tuple, right? Source, destination, IP address, ports, and protocol. That's about it. Like I said, a simple feature. Yeah, and that's going to be particularly useful for VoIP as well, right? I think that stuff like VoIP phones are something that people have been trying to run through ZipPA for a little while, and that wasn't possible until now. So my understanding is that this new feature will allow you to go ahead and control those via ZipPA. So a simple feature, but a good one to add. And then I think the last couple of features are a DSPM one. So Dustin, I think that's you. If you want to maybe briefly mention what DSPM is before you explain the features? Yeah. So DSPM is Data Security Posture Management. So this kind of runs in line with DLP. It is an additional add-on to like baseline DLP functionality with its own sort of module or tenant within the Zscaler platform. The cool thing that we're really adding here, AI is going crazy all across the world. We're keeping up with that trend and adding some additional threat categories to DSPM. So you'll be able to, moving forward, you'll be able to do things like scan AI models to identify vulnerabilities. Malicious code, backdoors, data leakage, once again, in line with that DLP functionality. Some additional cool features are the ability to scan AWS ECR images. So those are like containerized machine learning workload images that are run in AWS. Also Azure AI agents and Google Cloud Vertex AI agents, specifically around who is gaining access to sensitive data, exfiltration opportunities, et cetera. Cool. Thank you. So additional security controls then for a number of AI models as part of the DSPM modules. So good ways to strengthen your controls around AI and AI applications to make sure that none of your data is being leaked by your users and no one is accessing that data. With that, I think that that is it for the features that we had selected this month. So a very short month, only a handful of features that were worth talking about. Abe, thank you for coming on and talking about your feature. Thanks everyone. And Dustin, thank you for coming on and talking about your features. Absolutely. Happy to be here. And we'll see everybody in the next episode. Thanks all. Bye-bye.

TL;DR

  • ZIA's Web Insights now supports asynchronous log retrieval, letting admins run large queries in the background and export up to one million records without interrupting other portal tasks.
  • ZPA's new VPN for Legacy Apps feature introduces five-tuple firewall-style policy controls for server-initiated traffic types like active FTP, DCOM, and VoIP that previously lacked access control.
  • Zscaler DSPM gains new Generative AI security controls, enabling scanning of AI models for vulnerabilities, backdoors, and data leakage across AWS, Azure, and Google Cloud environments.
  • All three features reflect Zscaler's focus on closing operational gaps — improving admin efficiency in ZIA, extending ZPA coverage to legacy protocols, and keeping pace with enterprise AI adoption risks.

ZIA Web Insights: Asynchronous Log Retrieval

One of the most practical improvements covered in this episode is the overhaul of Insight Logs within the ZIA admin portal. Historically, running large log queries — particularly those spanning a full month with multiple filters — could lock administrators to the screen for 20 minutes or more, waiting for results before they could continue other tasks. The new asynchronous log retrieval capability changes this entirely: admins can now initiate a query and continue navigating the portal freely while the data compiles in the background. The feature supports exporting up to one million records to a CSV file and viewing up to 25,000 records directly in the portal. Admins can also assign custom names to downloaded CSV files for better organization. The primary constraint is that only one asynchronous query can run at a time per admin, and only the initiating user can access the results — a reasonable trade-off given the significant workflow improvement over the previous experience.

ZPA VPN for Legacy Apps and DSPM AI Controls

The second feature addresses a long-standing gap in Zscaler Private Access: the ability to apply access control policies to server-initiated traffic such as active FTP, DCOM, and VoIP. The new VPN for Legacy Apps capability introduces firewall-style five-tuple policy controls — source and destination IP addresses, ports, and protocol — giving administrators meaningful governance over traffic types that previously bypassed ZPA policy enforcement entirely. VoIP in particular is highlighted as a use case that customers have been requesting for some time. Rounding out the episode, the team covers new Generative AI security controls within Zscaler's Data Security Posture Management (DSPM) module. DSPM extends baseline DLP functionality with its own dedicated module, and the latest additions allow organizations to scan AI models for vulnerabilities, malicious code, backdoors, and data leakage risks. New visibility extends to AWS ECR containerized machine learning images, Azure AI agents, and Google Cloud Vertex AI agents, with a focus on identifying who is accessing sensitive data and where exfiltration opportunities may exist.

Chapters

0:00 - Introduction and Guests
0:56 - ZIA Asynchronous Log Retrieval
2:47 - ZPA VPN for Legacy Apps
3:55 - DSPM Generative AI Controls
5:33 - Wrap-Up and Closing

Key Quotes

0:56 "We have a bit of a transformative change to Insight Logs. I know historically, it's kind of been a little bit of a pain point."
1:54 "You can still do things like exporting up to a million records to a CSV file, viewing up to 25,000 records directly in the portal."
2:29 "I have fond memories of sitting there waiting for Web Insights to spit out some data that I was trying to fetch and having to sit there and wait for 20 minutes or an hour, depending on how much data I was fetching."
3:12 "Now we can finally control access to set applications or set server traffic, but it is much more like a firewall policy in that those controls and policies are essentially five-tuple."
4:29 "You'll be able to do things like scan AI models to identify vulnerabilities, malicious code, backdoors, data leakage, once again, in line with that DLP functionality."

FAQ

Can multiple admins run asynchronous log queries simultaneously in ZIA Web Insights?

Each admin can run one asynchronous query at a time, and only the admin who initiated the query can view the results or access the downloaded file. Multiple admins can each run their own queries concurrently, but they cannot share results within the portal.

What types of traffic does the new ZPA VPN for Legacy Apps feature support?

The feature is designed for server-initiated traffic such as active FTP, DCOM, and VoIP. It applies firewall-style five-tuple policy controls — source IP, destination IP, ports, and protocol — to traffic types that previously could not be governed through ZPA access control policies.

Categories:
  • » Webinar Library » Zscaler
  • » Data Protection » Backup & Recovery
  • » Cybersecurity » Zero Trust
  • » Data Protection
Channels:
News:
Events:
Tags:
  • SASE
  • SSE
  • Zero Trust
  • Data Protection
  • AI & Machine Learning
  • Security Operations
  • Best Practices
  • Webinar
  • ZIA Web Insights log retrieval
  • Asynchronous admin workflows
  • ZPA legacy application support
  • VPN for server-initiated traffic
  • AWS ECR image scanning
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: Zscaler February 2026 Feature Highlights

              XStreaminars (watch here)

              • Jul
                28

                Illumio + Netskope: Zero Trust in the Age of AI Autonomy

                07/28/202601:00 PM ET
                • Jul
                  29

                  Ask Your Cloud Anything: Unlocking Governance Silos in your Environments

                  07/29/202601:00 PM ET
                  More events

                  Industry Events (watch there)

                  • Jul
                    22

                    Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue

                    07/22/202601:00 PM ET
                    • Aug
                      19

                      Becoming Agent Ready: Insights from Cyera's Expertise

                      08/19/202612:00 PM ET
                      More events

                      Upcoming Webinar Calendar

                      • 07/21/2026
                        04:00 AM
                        07/21/2026
                        Strategies for Managing AI Governance and Securing App-to-LLM API Traffic
                        https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
                      • 07/22/2026
                        06:30 AM
                        07/22/2026
                        Insights and Strategies for Effective Data Privacy and Protection
                        https://www.truthinit.com/index.php/channel/2000/insights-and-strategies-for-effective-data-privacy-and-protection/
                      • 07/22/2026
                        01:00 PM
                        07/22/2026
                        Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue
                        https://www.truthinit.com/index.php/channel/2029/insights-from-attackers-during-the-fifa-world-cup-a-human-dialogue/
                      • 07/28/2026
                        01:00 PM
                        07/28/2026
                        Illumio + Netskope: Zero Trust in the Age of AI Autonomy
                        https://www.truthinit.com/index.php/channel/2031/illumio-netskope-zero-trust-in-the-age-of-ai-autonomy/
                      • 07/29/2026
                        04:00 AM
                        07/29/2026
                        Real-Time Strategies for Safeguarding Against Prompt Injections
                        https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
                      • 07/29/2026
                        01:00 PM
                        07/29/2026
                        Ask Your Cloud Anything: Unlocking Governance Silos in your Environments
                        https://www.truthinit.com/index.php/channel/2048/ask-your-cloud-anything-unlocking-governance-silos-in-your-environments/
                      • 08/19/2026
                        12:00 PM
                        08/19/2026
                        Becoming Agent Ready: Insights from Cyera's Expertise
                        https://www.truthinit.com/index.php/channel/2036/becoming-agent-ready-insights-from-cyeras-expertise/
                      • 09/02/2026
                        12:00 PM
                        09/02/2026
                        Unified Data Security in Action: Uncover, Analyze, and Resolve Threats
                        https://www.truthinit.com/index.php/channel/2045/unified-data-security-in-action-uncover-analyze-and-resolve-threats/
                      • 09/30/2026
                        04:00 AM
                        09/30/2026
                        AI Command Center: Optimizing Visibility and Control in Your Operations
                        https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/
                      Truth in IT
                      • Sponsor
                      • About Us
                      • Terms of Service
                      • Privacy Policy
                      • Contact Us
                      • Preference Management
                      Desktop version
                      Standard version