Security icon

Determine Your Zero Trust Readiness

Zero is the new ideal for security.

Get Instant Access to this Blueprint

Contributors

  • John Kindervag, Creator of Zero Trust, Field CTO at Palo Alto Networks, Board Advisor at Strong Salt
  • Roshan Patel, Information Security Engineer at Sony India Software Centre
  • 4 Anonymous Contributors

Your Challenge

CISOs pushing for zero trust as their security strategy face several challenges including:

  • Understanding and clarifying the benefits of zero trust for the organization.
  • The inability to verify all business operations are maintaining security best practices.
  • Convincing business units to add more security controls that go against the grain of reducing friction in workflows while still demonstrating these controls support the business.

Our Advice

Critical Insight

  • Zero trust must benefit the business and security. Because the road to zero trust is an iterative process, IT security will need to constantly determine how different areas of zero trust will affect core business processes.
  • Zero trust reduces reliance on perimeter security. Zero trust is a strategy that solves how to move beyond the reliance on perimeter security and move controls to where the user accesses resources.
  • Not everyone can achieve zero trust, but everyone can adopt it. Zero trust will be different for every organization and may not be applicable in every control area. This means that zero trust is not a one-size-fits-all approach to IT security. Zero trust is the goal, but some organizations can only get so close to the ideal.

Impact and Result

Zero trust is a journey that uses multiple capabilities and requires multiple parties to contribute to an organization’s security. Use Info-Tech’s approach to:

  • Understand zero trust as a strategic platform for building your security roadmap.
  • Assess your current state and determine the benefits of adopting zero trust to help plan your roadmap.
  • Separate vendors from the hype surrounding zero trust to adopt a vendor-agnostic approach to your zero trust planning.

Research & Tools

Start here – read the Executive Brief

Read our concise Executive Brief to find out why you should determine your zero trust readiness, review Info-Tech’s methodology, and understand the ways we can support you in completing this project.

1. Understand zero trust

Recognize the zero trust ideal and understand the different zero trust schools of thought.

2. Assess your zero trust readiness

Assess and determine the benefits of zero trust and identify and evaluate vendors in the zero trust market.

Guided Implementations

This guided implementation is a four call advisory process.

Guided Implementation #1 - Understand zero trust

Call #1 - Zero-trust overview.
Call #2 - Determine the appropriate zero-trust school of thought.

Guided Implementation #2 - Assess your zero trust readiness

Call #1 - Assess the benefits of zero trust.
Call #2 - Review vendors.
Visit our COVID-19 Resource Center and our Cost Management Center
Over 100 analysts waiting to take your call right now: 1-519-432-3550 x2019