Defense Through Invisibility: Zero Trust Security for the Enterprise
Speaker: Jason Garbis (Individual Contributor, US)
TCP/IP has failed us. Its “implicit trust” philosophy permits anyone to connect to a networked system before authentication or authorization is applied. And, as we witness daily, the results are not pretty: Not only successful attacks, but ongoing operational headaches and complexity for both network defense and incident response teams.
It’s imperative to change the way we approach network security, and adopt a fundamentally more secure, Zero Trust model which enforces the principle of least privilege across the enterprise. The ability to establish a network connection to a system is in fact a privilege, and therefore systems must authorize all users before they can do so. This approach hides systems from all unauthorized users, dramatically shrinks our network attack surface, and enables the enforcement of identity- and context-sensitive access policies.
Zero Trust security, which is a major trend in security, represents a transformation of security principles, technology, and processes. Properly approached, it provides a unified policy model and set of enforcement points across a heterogeneous technology landscape. In this session, we’ll define Zero Trust as a set of principles, and explain how the Software-Defined Perimeter verifies and secures all access to all resources, strictly limits network access, and literally makes network resources invisible to unauthorized users. We’ll explain how SDP avoids the limitations of traditional security architectures, delivers fine-grained network access control in a way that’s tied to each user’s context, and is dynamically responsive to changes in enterprise environments. We’ll conclude with an enterprise case study, showing how one organization obtained technical, business, and compliance benefits.
About the Speaker
Jason Garbis has over 30 years of product management, engineering, and consulting experience at security and technology firms. He is co-chair of the Software Defined Perimeter and Zero Trust Working Group at the Cloud Security Alliance, leading research and publication initiatives. Jason holds a CISSP certification, has a BS in Computer Science from Cornell, an MBA from Northeastern. He is the author of the recently published book Zero Trust Security: An Enterprise Guide. Professionally, he is Senior Vice President of Products at Appgate, a leading provider of cloud- and hybrid-ready Zero Trust security products and services. At Appgate, he’s responsible for the company’s security product strategy and product management.
by FIRST
windows server dhcp
