Q&A: 5 Things You Need to Know About Zero-Trust

Q&A: 5 Things You Need to Know About Zero-Trust
Download Print

Prior to a webinar with guest speaker Dr. Chase Cunningham of Forrester Research, AlgoSec co-founder and CTO Prof. Avishai Wool sat down to discuss the critical things organizations need to know about zero-trust security. Here are the five key questions that were raised.

1. Where do organizations have trouble with Zero Trust networking?

The biggest problem here is that the network is now so “big” and diverse that it is hard to manage that monster at scale. I typically find that the rule sets and dispersed configurations that are needed to move all those packets is where people stall out on Zero Trust networking.

2. What kind of network visibility is required to initiate a Zero Trust project?

For any Zero Trust project the more visibility one has the better the project will be. Because it’s the rules and the controls that are usually the limiting function of a well-crafted Zero Trust network it is critical that an organization see and understand all of the rules that are necessary to make that network operate.

3. How is automation part of the Zero Trust framework and why does it matter?

It is impossible to be Zero Trust without automation. Today’s infrastructure moves fast and requires an ability to dynamically address connectivity and segmentation within those systems.
Without automation nothing is possible at scale for a Zero Trust network.

4. Where does the network side of Zero Trust come into play as part of a programmatic approach?

Zero Trust is the framework that an organization should use to decide what solutions that enable Zero Trust plug in at which points to the program.

There are a variety of Zero Trust solutions on the market and Zero Trust helps an organization map those technologies into the most applicable pillars that will help them decide how they should leverage those technologies as the employ a Zero Trust program over time.

5. Once you’ve deployed a Zero Trust framework, what are the challenges in maintaining it in the long run?

The biggest problem in the networking side of Zero Trust will be the management and control of the new and adapted isolation rules that are needed to segment infrastructure correctly.

If you don’t have an ability to function at scale and control those rules and controls dynamically the network will become a mess of blocks, rather than an optimally segmented infrastructure that enables secure business.

Watch the Webinar

Get practical tips to successfully implement zero-trust architecture in this webinar featuring Chase Cunningham of Forrester Research and Prof. Avishai Wool, AlgoSec’s co-founder and CTO.