VersaONE SASE update adds AI DLP, inline CASB, Verbo co-pilot, and broader Linux support

VersaONE 23.1.1: Practical AI for Ops Teams

Versa has upgraded its Universal SASE Platform with three things Ops leaders care about: stronger, AI-assisted data protection, AI-guided troubleshooting, and broader OS support. It's all built on the Versa Operating System with SASE components like SD-WAN, SWG, CASB, ZTNA, and FWaaS running in one stack on a zero-trust foundation.

The goal is simple: cut noise, tighten control, and speed up incident resolution without adding yet another tool to babysit.

AI-enhanced DLP that actually sees context

The new release brings AI-assisted DLP that reads images and documents via OCR and applies policy with far more context than legacy pattern-matching. It uses transformer models and fine-tuned LLMs to spot sensitive data across PDFs, Office files, screenshots, and inline traffic.

Here's the operational win: fewer false positives and automated, policy-driven protections that don't interrupt normal work. The ML engines run as containerized microservices on SASE gateways, so sensitive data stays local-useful for data sovereignty and audits.

These upgrades also reinforce the GenAI Firewall to curb risky AI usage and manage exposure to unvetted apps.

Inline CASB for real-time control

Inline CASB now inspects traffic and enforces policy in real time. As new AI apps appear or existing ones change behavior, the platform detects, classifies, and applies the right controls fast.

You can manage user actions at a granular level-who can upload, post, or share specific data in a given app-without bolting on extra tooling.

AI-guided troubleshooting with Verbo

Versa integrated its MCP server with Verbo, the co-pilot for NetOps and SecOps. Assistants like Claude, ChatGPT, Gemini, or Microsoft Copilot can query Versa systems through APIs, and Verbo orchestrates agent-based workflows for faster answers.

The 23.1.1 "agentic" architecture includes documentation, debugging, tool-calling, and MCP agents. The debugger agent follows expert-built, deterministic rulebooks-so you get predictable workflows instead of AI guesswork.

Verbo now taps into Versa Behavioral Insights for event correlation, anomaly detection, alert compression, and guided remediation. Telemetry gets turned into actionable steps, helping teams move from detection to resolution with less swivel-chair time.

Expanded OS support for modern hardware

Support for Ubuntu 22.04 and Linux kernel 6.8 improves compatibility with current SoC-based hardware from AMD, Intel, and others. That matters for edge appliances and AI inference devices where you want stable drivers and consistent performance.

If you standardize on Ubuntu in your infra, this aligns well with AI-driven classification, anomaly detection, and observability use cases. See Ubuntu 22.04 details here: Ubuntu 22.04 release notes.

Why this matters for Ops

• Lower toil: AI-driven correlation and rulebook-backed troubleshooting reduce MTTD/MTTR without flooding Slack.
• Fewer false positives: Context-aware DLP means less manual triage and fewer escalations.
• Tighter guardrails: Inline CASB enforces real-time policy for SaaS and AI tools, per user and action.
• Data stays local: On-gateway ML keeps inspections inside your boundary, supporting compliance.
• Smoother rollouts: Updated OS support eases hardware refreshes and edge deployments.

Quick start checklist for NetOps/SecOps

• Prioritize DLP policies: Start with financial, customer, and source code data. Define what's blocked, quarantined, or allowed with justification.
• Enable inline CASB in monitor-then-enforce mode: Observe app behaviors for 1-2 weeks, tune labels, then turn on enforcement per role.
• Adopt Verbo for tier-1 triage: Wire it to your ticketing and telemetry. Use debugger rulebooks for top 10 incident classes.
• Baseline metrics: Track false positive rate, alert volume, MTTD/MTTR, and policy exceptions before/after rollout.
• Stage the OS updates: Validate Ubuntu 22.04 / kernel 6.8 on a pilot set of SoC appliances, then roll out by site or region.
• Govern AI usage: Map allowed AI tools and actions per department. Log prompts/outputs where legally permissible.

Market context

Industry research points to AI-driven automation and zero-trust policies becoming standard across SD-WAN and SASE. Vendors are building intent-based controls that automate routine tasks, enforce dynamic policies, and surface anomalies before users feel the pain.

Versa's approach leans on a single software stack with shared AI engines and multitenancy. For Ops, that unified design means simpler policy management and cleaner visibility across NOC and SOC.

If you're building or refining a zero-trust strategy, NIST's guidance is a solid reference: NIST SP 800-207.

Next steps

• Run a 60-day pilot across two sites and one high-risk business unit. Measure false positives, MTTR, and policy exception counts.
• Codify your top troubleshooting runbooks into Verbo's debugger agent and retire redundant scripts where feasible.
• Set quarterly reviews for CASB app catalogs and DLP pattern updates tied to new AI tools entering the stack.

Want to upskill your team on practical AI for Ops? Browse focused programs by job role here: AI courses by job.