"I've done a few consulting calls about 'Zero Trust' and left the client practically in tears. It's fascinating, to me, that someone can read a bunch of marketing drivel and conclude from that, that it's the future of networking. Really? Do they think it's going to work? Why?" —Marcus J. Ranum
"I've done a few consulting calls about 'Zero Trust' and left the client practically in tears. It's fascinating, to me, that someone can read a bunch of marketing drivel and conclude from that, that it's the future of networking. Really? Do they think it's going to work? Why?" —Marcus J. Ranum
This note from Marcus was enough for me to want to follow up on my previous conversation on this topic: Zero Trust.
Hold on to your hats: this tumultuous ride starts off with a bang, accelerates with wild abandonment, and brakes abruptly at a close to avoid additional brain cell casualties.
If you think Zero Trust is a binary state achievable with serious planning and significant investments, you may be right. But it's not likely. The potential complexity alone may be enough to make this model worse for many organizations, and the "state" unattainable for most. There are far too many places where trust must remain a factor, where exceptions will rule the roost, and where the basic elements of hygiene will still plague the InfoSec program regardless of the level of trust placed in any/all of the components.
Don't take my word for it though. Tune in and have a listen to an InfoSec curmudgeon share his thoughts bounced off a CISO's (and InfoSec curmudgeon in training's) views based on their own realities of tech + team + time.
Don't worry, while you won't be able to unhear some of this, you can go back and pick up your hat later.
Enjoy!
Guests
Ron Dilley, CISO | Security Innovation, Research, and Deception
Marcus J. Ranum
This Episode’s Sponsors:
Nintex: https://itspm.ag/itspntweb
Imperva: https://itspm.ag/imperva277117988
RSA Security: https://itspm.ag/itsprsaweb
Resources
Book: Huawei and Snowden Questions: https://openlibra.com/en/book/the-huawei-and-snowden-questions
Podcast: Zero To Trust In 60 Seconds | The Race To Overcoming Our Cybersecurity Challenges: https://itspm.ag/redefining-security-317
To see and hear more Redefining Security content on ITSPmagazine, visit:
https://www.itspmagazine.com/redefining-security
Are you interested in sponsoring an ITSPmagazine Channel?
https://www.itspmagazine.com/podcast-series-sponsorships