If you are planning to implement Zero-Trust for your organization, ensure to follow certain pre-requisites.

  • Discovery of all assets, resources, applications and identities that should be protected.
  • Identify high-risk assets, business critical and sensitive apps, service accounts/privileged accounts etc.,
  • Ensure to have modern IAM platform along with MFA and Adaptive risk management.
  • Solid SIEM for auditing & reporting; compliance purposes
  • FIDO2 support is required to enable in the system
  • Identify the Privileged access management system for your environment.

There are few other params to be taken care around network layer, RBAC/ABAC models. AI powered threat detection tools should be available.

I have experience around this.

More Mahendra Krishnapatnam's questions See All
Similar questions and discussions