Xcitium Launches SD-WAN, SASE, and ZTNA Platform with Patented OmniVPN® to Unify Enterprise Networking and Zero Trust Security

April 24, 2026 | Latest News

Bloomfield, NJ — April 24, 2026

A single platform consolidates SD-WAN, ZTNA, and threat prevention, eliminating overlay networks and traversing CGNATs without upstream router changes.

Xcitium today announced the launch of Xcitium SD-WAN, SASE, and ZTNA, a unified Secure Access Service Edge platform built to replace the fragmented mix of SD-WAN, VPN, firewall, and zero-trust tools that most enterprises operate today.

The platform is powered by patented OmniVPN® technology and is delivered through cloud-managed appliances with matching applications for PCs, laptops, tablets, and phones. It is available immediately for enterprise customers and channel partners.

For many organizations, network and security architectures have grown layer by layer, with each new capability introducing another vendor, another console, and another integration point. This launch is designed to reverse that pattern.

The Problem with Traditional SASE

Most SASE offerings in the market route customer data through the vendor's cloud, introduce overlay networks that add latency and new points of failure, or require changes to upstream routers to enable VPN connectivity.

This approach creates hidden costs. Sensitive traffic traverses third-party infrastructure. Overlay networks concentrate on risk. And CGNAT environments, increasingly common across cellular, satellite, and residential ISP connections, often cannot be reached by conventional VPN at all.

Xcitium SD-WAN, SASE, and ZTNA take a different architectural approach.

Distributed SASE Without Overlay Networks

The Xcitium platform separates the control plane from the data plane. Only management traffic passes through Xcitium's cloud. Customer data stays on direct network paths between sites, users, and applications.

This architecture eliminates the latency and exposure of overlay networks while still delivering centralized policy management, continuous updates, and real-time visibility across distributed environments.

For regulated industries that cannot use public cloud infrastructure at all, Xcitium also offers a Private SASE deployment option that remains fully isolated from the Internet.

OmniVPN®: Connectivity Without Compromise

OmniVPN®, a patented technology at the core of the platform, is designed to traverse the network conditions where conventional VPN fails. It establishes direct, site-to-site connections through CGNATs, cascaded NATs, cellular routers, satellite links, and private IP addresses without requiring port forwarding, UPnP, or modifications to upstream routers.

This removes one of the most persistent barriers to branch and remote connectivity, particularly for organizations operating across mobile, field, or geographically distributed environments.

OmniVPN® also automatically detects duplicate IP assignments before establishing connections and notifies administrators, reducing the risk of silent routing conflicts as networks scale.

Universal ZTNA for Remote and Local Users

Most zero-trust network access products are designed for remote users only, leaving on-premises access governed by legacy firewall rules. Xcitium's Universal ZTNA extends the same zero-trust policy framework to users inside the office and outside it.

Access decisions are enforced at the application level based on:

  • User role and group membership
  • Time-of-day and schedule-based policies
  • Geographic location, verified through GPS and IP data from endpoints
  • Multi-factor authentication, with geofencing as an additional authorization layer

Users roam seamlessly between home and office networks while the same identity and policies follow them. There is no separate VPN client to launch when leaving the building.

Agentless Micro-Segmentation for IT, OT, and IoT

Lateral movement remains one of the most damaging stages of a breach. Xcitium addresses it with patent-pending agentless micro-segmentation that isolates devices at the network layer without requiring endpoint software, VLAN switches, or complex cable-management changes.

This makes the capability equally deployable in traditional IT environments and in OT and IoT settings, where installing agents is often not feasible. Administrators can isolate a suspicious device in two clicks from the Xcitium web console, whether for incident response or scheduled maintenance windows.

Built for Enterprise and MSP Scale

The platform is delivered through a range of appliances, from compact branch devices to enterprise-grade units with 10G SFP+ and 1G RJ45 interfaces, redundant power supplies, and industrial-grade processors. Virtual and cloud deployments are also supported.

For Managed Service Providers, Managed Security Service Providers, and IT consultants, the platform includes multi-tenancy, zero-touch deployment, automatic software and security database updates, and integration via local and remote APIs.

Additional platform capabilities include:

  • SD-WAN with multi-WAN load balancing, prioritization, and automatic failover
  • Next-generation firewall with wire-speed IP and DNS filtering
  • CountryBlock filtering of entire country IP ranges at wire speed
  • Automatic and continuous asset discovery with device fingerprinting
  • Posture management for local and remote devices
  • Locally running OpenVAS-based vulnerability scanning
  • Network monitoring powered by ntopng
  • Real-time notifications for user activity, network events, and suspicious behavior

Availability

Xcitium SD-WAN, SASE, and ZTNA is available immediately to enterprise customers, Managed Service Providers, Managed Security Service Providers, and channel partners. For more information or to request a demo, visit www.xcitium.com.

About Xcitium

Xcitium is a prevention-first cybersecurity company redefining how organizations stop breaches. Unlike traditional security models that rely on detection and response, Xcitium eliminates attacker dwell time through patented ZeroDwell Containment technology that virtualizes and isolates unknown threats instantly. By allowing unknown files to run safely in secure, isolated environments, Xcitium removes the risk of compromise without disrupting business operations. This detection-less architecture prevents execution risk before an attack can spread, encrypt, or exfiltrate data.

Xcitium's cloud-native platform delivers Managed Detection and Response, Extended Detection and Response, SOC-as-a-Service, and Managed EDR capabilities backed by 24x7 human-led SOC expertise. Powered by its tri-detection intelligence engine combining static, dynamic, and expert analysis, Xcitium provides trusted file verdicts with zero uncertainty.

Organizations and MSPs rely on Xcitium to achieve zero dwell time outcomes, reduce alert fatigue, strengthen cyber resilience, and align security investments with measurable business impact.

For more information, visit www.xcitium.com.

Media Contact

Chander Rawat
Head of Global Demand Generation
chander.rawat@xcitium.com

By clicking “Accept All" button, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. Cookie Disclosure

Manage Consent Preferences

When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience. Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.
These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
Breach Alert
Experiencing a Breach?

Lock In 10 Free Hours of Incident Response