Organizations continue to struggle understanding what Zero Trust is, how they move towards it, and ultimately how they implement it. There’s been a lot of co-opting of the term and practitioners are so tired of it and sometimes react in disgust or think that it’s marketing noise. I’d like to talk about the history of Zero Trust and where organizations can focus their efforts to start and/or continue their journey towards ZT.
So what is Zero Trust really?
Can organizations buy Zero Trust?
How do organizations get started implementing Zero Trust?
What kind of skills does an organization need to implement Zero Trust
Where does XDR, EDR, NAV, pick your technology fit in the Zero Trust narrative?
https://go.forrester.com/blogs/zero-trust-is-not-a-security-solution-it-is-a-strategy/ https://go.forrester.com/blogs/degree-requirements-are-poisoning-your-cybersecurity-talent-pool/ https://csrc.nist.gov/publications/detail/sp/800-207/finalFull Episode Show Notes
Steve Turner - Analyst - Security and Risk at Forrester Research
Steve is an analyst at Forrester advising security and risk professionals about Zero Trust. Prior to joining Forrester, Steve served multiple security/infrastructure architecture, engineering, and emerging technology roles within the Fortune 500 financial, energy, public, and managed services provider (MSP) sectors.
Adrian Sanabria - Senior Research Engineer at CyberRisk Alliance
Adrian is an outspoken researcher that doesn't shy away from uncomfortable truths. He loves to write about the security industry, tell stories, and still sees the glass as half full.