Zero Trust: Solving IT Security’s Identity Crisis
- LANGUAGE: English DATE: Thursday, May 03, 2018 TIME: 4:00pm CEST, 10:00am EDT, 7:00am PDT
Although companies are constantly increasing their cybersecurity budgets, this does not seem to help much: each day we learn about new large-scale data breaches. Considering that over 80% of hacking-related breaches leverage compromised user credentials, it’s mindboggling why so many organizations are still focusing on securing their network perimeters.
Instead, in times when the corporate security perimeter has almost disappeared, they should concentrate on rethinking their core defenses by maturing their identity and access management strategies to secure applications, devices, data, and infrastructure — both on-premises and in the cloud. This reflects a common misperception in the industry of the real attack vectors and illustrates the “identity crisis” that IT security faces.
Organizations need to recognize that perimeter-based security, which focuses on securing endpoints, firewalls, and networks, provides no protection against identity and credential-based threats from both external and internal malicious actors. Until IT professionals start implementing identity-centric security measures, account credentials will remain the largest unprotected attack surface for data breaches.
This webinar outlines an entirely new approach — Zero Trust Security. This paradigm assumes that nothing in your corporate IT infrastructure — including users, endpoints, networks, and resources — is ever trusted, and each interaction must be verified to decrease the chance of a security breach. Zero Trust Security ensures secure access to resources while significantly reducing the possibility of access by bad actors.
Join this KuppingerCole webinar to:
- Learn about Zero Trust Security and the reasons for a paradigm shift;
- Understand the four essential pillars of Zero Trust Security in the context of Next-Generation Access;
- Learn how to evaluate your organization’s current Zero Trust Security posture against a best practices maturity model;
- Develop a Zero Trust Security implementation strategy for your organization to secure access to resources while significantly reducing the possibility of compromise by bad actors.
In the first part of the webinar, Paul Simmonds, Fellow Analyst at KuppingerCole, will tap into his former experience as a global CISO and explain why organizations often ignore identity and credential-based threats when it comes to developing an effective cyber defense strategy.
In the second part, Dr. Torsten George, Product Evangelist at Centrify, will provide an overview of the Zero Trust Security model and outline a step-by-step plan on how to implement it in your organization.
Centrify delivers Zero Trust Security through the power of Next-Gen Access. Centrify verifies every user, their devices, and limits access and privilege. Centrify’s Next-Gen Access is the only industry-recognized solution that uniquely converges Identity-as-a Service (IDaaS), enterprise mobility management (EMM) and privileged access management (PAM).
Nearly all high-impact cyberattacks have a phase in which the attacker must conduct lateral movement from their initial landing point to their ultimate target. To do this, the attacker needs a combination of credentials and available connections between one system and another. This is the evasive process of “living off the land” using the connectivity native to the organization.
Blockchain is still on everyone’s lips and the 2019 can be the year when large enterprises finally embrace the distributed ledger technology. KuppingerCole's inaugural blockchain-themed event will go beyond the hype and will present you real use cases and applications for your enterprise. Blockchain Enterprise Days (#BeDays19) will take place on September 18-19, 2019 in Frankfurt, Germany.