Zero Trust is now become a hot word within digital transformation journey, but what is Zero Trust? Why Zero Trust? How to achieve Zero Trust?
According to Wiki: Zero Trust is an information security framework which states that organizations should not trust any entity inside or outside of their perimeter at any time. It provides the visibility and IT controls needed to secure, manage and monitor every device, user, app and network being used to access business data. It also involves on-device detection and remediation of threats.
With the explosion of cloud technologies and the mobile workforce, the corporate network perimeter has been redefined.
As a result, today’s organizations need a new security model that can provide secure access to their resources, regardless of user or application environment. This means adapting to the modern distributed workplace, embracing the mobile workforce, and protecting people, devices, apps, and data wherever they are located.
A Zero Trust approach transforms the security model into one that verifies request explicitly using all available signals, including:
This approach should extend throughout the entire digital estate. It should also serve as an integrated security philosophy and end-to-end strategy based on six foundational pillars.
Identities: Verify all identities with strong authentication
Devices: get visibility into all the devices accessing your network
Applications: Discover shadow IT, and monitor and control access with real-time analytics
Network: encrypt all internal communications, limited access by policies, and segment networks,
Infrastructure: employ real-time threat detection, automatically block and flag risks, and employ least privilege access principles.
Data: Classify, label, and encrypt data to protect it wherever it lives or travels.
Each of these six pillars is a critical resource to be defended, but where do you start?
Every Zero Trust journey is unique, so start by evaluating your current environment, available resources, and priorities, every step forward will make a difference in reducing risk throughout your digital estate.