As more work shifts into SaaS applications, the browser is becoming one of the most important control points in enterprise security. To address this, NordLayer is bringing access control, visibility, and policy enforcement directly into the browsing layer with NordLayer Browser.For MSPs, this isn’t just another tool. It points to a broader change in where security is applied and how services can be delivered to SMB customers.
“Work is moving to the browser - companies are becoming increasingly dependent on web-based software-as-a-service (SaaS). Consequently, the browser has become the new endpoint.”That shift explains why capabilities like data loss prevention, SaaS access control, and zero-trust policies are being embedded directly into the browser. Instead of relying only on endpoint agents or network controls, organizations can enforce security policies at the point where users interact with applications.
“Starting in May, VARs and MSPs will be able to purchase a combo deal that includes NordLayer, a toggle-ready network security platform, and the NordLayer Browser. For partners, NordLayer and the NordLayer Browser are bundled and billed at NordLayer’s standard price, with no extra charge for the NordLayer Browser. This allows us to maintain the high margins partners have come to expect from NordLayer,” Tatum says.That approach lowers the barrier to entry for partners and makes it easier to include browser-level security in broader service offerings without reworking pricing models.
The browser is becoming the new endpoint
Employees now spend most of their time inside web apps. That changes the threat landscape. Phishing, malicious extensions, and account takeovers all originate in the browser, which makes it a logical place to enforce controls.Kyle Tatum, senior channel sales manager at Nord Security, framed it simply to ChannelE2E. He said,“Work is moving to the browser - companies are becoming increasingly dependent on web-based software-as-a-service (SaaS). Consequently, the browser has become the new endpoint.”That shift explains why capabilities like data loss prevention, SaaS access control, and zero-trust policies are being embedded directly into the browser. Instead of relying only on endpoint agents or network controls, organizations can enforce security policies at the point where users interact with applications.
How it fits into the existing security stack
One of the key questions for partners is how a secure browser fits alongside existing investments in endpoint protection, identity platforms, and SASE architectures.According to Tatum, the positioning is meant to be additive, not disruptive. “The NordLayer Browser can be deployed in any existing security stack to offer security at the browser level," he said.The browser also introduces integration points that connect to broader security operations. For example, it can work with tools like SentinelOne to automatically revoke access to SaaS applications if a compromise is detected.Tatum explains how that extends into operations. He explained, “The NordLayer Browser offers security at the browser level, empowering security administrators and MSPs/MSSPs to enable data loss prevention (DLP) tools, secure browsing capabilities, SaaS access control, and zero-trust browsing. The NordLayer Browser helps mitigate shadow IT, offering observability into how employees use the browser by tracking SaaS and browser extension use, and allows domain blocking. The browser can also leverage integrations with solutions like SentinelOne to automatically cut off access to SaaS solutions in the event of a data breach.”For MSPs and MSSPs, the real value will depend on how this telemetry feeds into detection and response workflows. If browser-level signals can be operationalized within existing MDR or SOC processes, it adds another layer of visibility tied directly to user behavior.A new service layer around SaaS governance
Beyond technology integration, the bigger opportunity is in services. A managed browser creates a foundation for offerings around SaaS governance, shadow IT visibility, and compliance enforcement. The platform allows administrators to define policies based on user roles, teams, or organization-wide requirements, and then enforce those policies automatically.Tatum points to how this can translate into repeatable services. “The NordLayer Browser allows administrators to set firm policies around access to different resources based on the users’ team, role, or even to enforce certain policies for the entire organization. Once those policies are in place, restrictions are enforced automatically. The NordLayer Browser’s integrations with solutions like SentinelOne also provide automated paths to revoke access to SaaS solutions via APIs, should a compromising incident occur," Tatum highlighted.For MSPs, that opens the door to packaging ongoing services around policy management, reporting, and access governance, rather than one-time deployments.Packaging and margins matter for SMB adoption
For any new category to gain traction in the SMB market, pricing and packaging need to align with how partners sell and deliver services.NordLayer is bundling the browser with its existing platform, rather than introducing it as a separate cost.“Starting in May, VARs and MSPs will be able to purchase a combo deal that includes NordLayer, a toggle-ready network security platform, and the NordLayer Browser. For partners, NordLayer and the NordLayer Browser are bundled and billed at NordLayer’s standard price, with no extra charge for the NordLayer Browser. This allows us to maintain the high margins partners have come to expect from NordLayer,” Tatum says.That approach lowers the barrier to entry for partners and makes it easier to include browser-level security in broader service offerings without reworking pricing models.




