Zero trust: Data-centric culture to accelerate innovation and secure digital business

2022-10-14 11:48

Traditional layers of security assume users and data are always operating within the confines of the enterprise walls and data centers - like a physical store.

One of the biggest mistakes organizations make when structuring their zero-trust strategy is to associate zero trust with infrastructure assets, such as network and devices, when its purpose is to serve as a principle to protect data as a strategic asset for the organization to use in a continuous manner.

Another misstep organizations make when it comes to adopting zero trust is believing upgrading managed network connectivity and deploying multi-factor user authentication is sufficient to protect data.

While these security capabilities are critical, many forget about safeguarding enterprise data and content used by users and applications every day, often in unmanaged scenarios such as receiving files from third-party partners, uploading content to unmanaged collaboration sites, automatically exchanging files with supply chain interactions and data lakes.

A data-centric approach to zero-trust also means that we need to eliminate implicit trust, assume all managed and unmanaged user and application access to data can be compromised and mitigate the risk with security controls that enable secure and safe use of data at all times.

No matter the security technologies and services you deploy, the main goal of the zero-trust approach is to introduce a data-centric culture to protect data at the source and enable secure business transformation.

News URL

https://www.techrepublic.com/article/zero-trust-data-centric-culture-secure-digital-business/

#digital #zerotrust