Security Congress Abstract
In 2014, Google published BeyondCorp: A New Approach to Enterprise Security, detailing their implementation of Zero Trust networks, and the industry was aflutter. Since then Zero Trust has continued generating interest but, despite the existence of reference materials and mature supporting technologies, large scale real-world implementations have been slow to appear. Like all security, Zero Trust is a journey, not a destination. Given that even the very best corporate IT and information security departments may lack the budget, infrastructure and/ or technical expertise available to the world’s largest Internet companies, what factors—both cultural and technical—influence an organization’s decision to begin that journey? How do they assess their current infrastructure for fitness to support it? This talk will help answer these questions and more.