Zero Trust: Solving IT Security’s Identity Crisis
- LANGUAGE: English DATE: Thursday, May 03, 2018 TIME: 4:00pm CEST, 10:00am EDT, 7:00am PDT
Although companies are constantly increasing their cybersecurity budgets, this does not seem to help much: each day we learn about new large-scale data breaches. Considering that over 80% of hacking-related breaches leverage compromised user credentials, it’s mindboggling why so many organizations are still focusing on securing their network perimeters.
Instead, in times when the corporate security perimeter has almost disappeared, they should concentrate on rethinking their core defenses by maturing their identity and access management strategies to secure applications, devices, data, and infrastructure — both on-premises and in the cloud. This reflects a common misperception in the industry of the real attack vectors and illustrates the “identity crisis” that IT security faces.
Organizations need to recognize that perimeter-based security, which focuses on securing endpoints, firewalls, and networks, provides no protection against identity and credential-based threats from both external and internal malicious actors. Until IT professionals start implementing identity-centric security measures, account credentials will remain the largest unprotected attack surface for data breaches.
This webinar outlines an entirely new approach — Zero Trust Security. This paradigm assumes that nothing in your corporate IT infrastructure — including users, endpoints, networks, and resources — is ever trusted, and each interaction must be verified to decrease the chance of a security breach. Zero Trust Security ensures secure access to resources while significantly reducing the possibility of access by bad actors.
Join this KuppingerCole webinar to:
- Learn about Zero Trust Security and the reasons for a paradigm shift;
- Understand the four essential pillars of Zero Trust Security in the context of Next-Generation Access;
- Learn how to evaluate your organization’s current Zero Trust Security posture against a best practices maturity model;
- Develop a Zero Trust Security implementation strategy for your organization to secure access to resources while significantly reducing the possibility of compromise by bad actors.
In the first part of the webinar, Paul Simmonds, Fellow Analyst at KuppingerCole, will tap into his former experience as a global CISO and explain why organizations often ignore identity and credential-based threats when it comes to developing an effective cyber defense strategy.
In the second part, Dr. Torsten George, Product Evangelist at Centrify, will provide an overview of the Zero Trust Security model and outline a step-by-step plan on how to implement it in your organization.
Centrify is redefining the legacy approach to Privileged Access Management by delivering cloud-ready Zero Trust Privilege to secure modern enterprise use cases. Zero Trust Privilege mandates a “never trust, always verify, enforce least privilege” approach. Centrify Zero Trust Privilege helps customers grant least privilege access based on verifying who is requesting access, the context of the request, and the risk of the access environment.
Security Orchestration, Automation & Response (SOAR) tools are the latest in the evolution of automated cyber defenses and are set to become the foundation of modern Security Operations Centers (SOCs). But SOAR is not only for large enterprises. The benefits for smaller organizations should not be overlooked.