Zero Trust: Solving IT Security’s Identity Crisis
- LANGUAGE: English DATE: Thursday, May 03, 2018 TIME: 4:00pm CEST, 10:00am EDT, 7:00am PDT
Although companies are constantly increasing their cybersecurity budgets, this does not seem to help much: each day we learn about new large-scale data breaches. Considering that over 80% of hacking-related breaches leverage compromised user credentials, it’s mindboggling why so many organizations are still focusing on securing their network perimeters.
Instead, in times when the corporate security perimeter has almost disappeared, they should concentrate on rethinking their core defenses by maturing their identity and access management strategies to secure applications, devices, data, and infrastructure — both on-premises and in the cloud. This reflects a common misperception in the industry of the real attack vectors and illustrates the “identity crisis” that IT security faces.
Organizations need to recognize that perimeter-based security, which focuses on securing endpoints, firewalls, and networks, provides no protection against identity and credential-based threats from both external and internal malicious actors. Until IT professionals start implementing identity-centric security measures, account credentials will remain the largest unprotected attack surface for data breaches.
This webinar outlines an entirely new approach — Zero Trust Security. This paradigm assumes that nothing in your corporate IT infrastructure — including users, endpoints, networks, and resources — is ever trusted, and each interaction must be verified to decrease the chance of a security breach. Zero Trust Security ensures secure access to resources while significantly reducing the possibility of access by bad actors.
Join this KuppingerCole webinar to:
- Learn about Zero Trust Security and the reasons for a paradigm shift;
- Understand the four essential pillars of Zero Trust Security in the context of Next-Generation Access;
- Learn how to evaluate your organization’s current Zero Trust Security posture against a best practices maturity model;
- Develop a Zero Trust Security implementation strategy for your organization to secure access to resources while significantly reducing the possibility of compromise by bad actors.
In the first part of the webinar, Paul Simmonds, Fellow Analyst at KuppingerCole, will tap into his former experience as a global CISO and explain why organizations often ignore identity and credential-based threats when it comes to developing an effective cyber defense strategy.
In the second part, Dr. Torsten George, Product Evangelist at Centrify, will provide an overview of the Zero Trust Security model and outline a step-by-step plan on how to implement it in your organization.
ThycoticCentrify is a leading cloud identity security vendor, enabling digital transformation at scale. ThycoticCentrify's industry-leading privileged access management (PAM) solutions reduce risk, complexity, and cost while securing organizations' data, devices, and code across cloud, on-premises, and hybrid environments. ThycoticCentrify is trusted by over 14,000 leading organizations around the globe including over half of the Fortune 100, and customers include the world's largest financial institutions, intelligence agencies, and critical infrastructure companies.
Access Governance-Tools sind in der heutigen Business-IT ein unverzichtbares Element. Sie dienen dem Management von Benutzer- und Berechtigungsworkflows, der Vergabe von Zugangsrechten, der Durchführung von Kampagnen zur Zugriffszertifizierung und der Implementierung und Prüfung von Controls für die Funktionstrennung (SOD). Mit einer wachsenden Zahl von Business-Applikationen, gerade auch aus der Cloud, und ihrer Vernetzung wächst die Herausforderung, Access Governance übergreifend und automatisiert umzusetzen.