{"id":5805,"date":"2023-11-06T16:05:03","date_gmt":"2023-11-06T21:05:03","guid":{"rendered":"https:\/\/solutionsreview.com\/network-monitoring\/?p=5805"},"modified":"2023-11-06T16:05:54","modified_gmt":"2023-11-06T21:05:54","slug":"zero-trust-implementing-a-path-forward","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/","title":{"rendered":"Zero Trust: Implementing A Path Forward"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-5803\" src=\"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust.jpg\" alt=\"Zero trust\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust.jpg 800w, https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust-300x150.jpg 300w, https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust-768x384.jpg 768w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p><em><strong>Solutions Review\u2019s\u00a0<a class=\"fui-Link ___1idfs5o f3rmtva f1ewtqcl fyind8e f1k6fduh f1w7gpdv fk6fouc fjoy568 figsok6 f1hu3pq6 f11qmguv f19f4twv f1tyq0we f1g0x7ka fhxju0i f1qch9an f1cnd47f fqv5qza f1vmzxwi f1o700av f13mvf36 f1cmlufx f9n3di6 f1ids18y f1tx3yz7 f1deo86v f1eh06m1 f1iescvh ftqa4ok f2hkw1w fhgqx19 f1olyrje f1p93eir f1h8hb77 f1x7u7e9 f10aw75t fsle3fq f17ae5zn\" title=\"https:\/\/solutionsreview.com\/solutions-review-contributor-guidelines\/\" href=\"https:\/\/solutionsreview.com\/solutions-review-contributor-guidelines\/\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\"Link Contributed Content Series\"><u>Contributed Content Series<\/u><\/a> is a collection of contributed articles written by thought leaders in enterprise software categories. Chaim Mazal of <a href=\"https:\/\/www.gigamon.com\/\" target=\"_blank\" rel=\"noopener\">Gigamon<\/a> helps pave the path forward for standardizing zero-trust architecture with these best practices to consider.<\/strong><\/em><\/p>\n<p>Zero trust has been making waves in the cybersecurity community for more than a decade, but there\u2019s still so much ambiguity around the concept and how to achieve it.<\/p>\n<p>The ultimate goal of implementing a zero-trust architecture is to remove any implicit trust in an organization&#8217;s network. Basically, the network should assume you are a malicious player unless you prove otherwise. This approach moves an organization&#8217;s security strategy away from perimeter-based controls to distributed controls across the network, including within your hybrid cloud environment.<\/p>\n<p>Since the onset of this concept, it\u2019s long been thought of as a distant priority or an idealistic end goal organizations would strive to achieve one day. There was little momentum in making a true zero-trust implementation a reality, so achieving this felt unattainable.<\/p>\n<p>Until now.<\/p>\n<h2><strong>Zero Trust: Implementing A Path Forward<\/strong><\/h2>\n<hr \/>\n<h3><strong>What\u2019s Next?<\/strong><\/h3>\n<p>There\u2019s been impressive momentum in recent months, likely stemming from the increasing ramifications of the threatscape coupled with a swift shift to the cloud. For example, both the Department of Defense (DOD) and the Cybersecurity and Infrastructure Security Agency (CISA) released frameworks for organizations to begin implementing zero-trust architectures. CISA\u2019s Zero Trust Maturity Model provides a roadmap that includes a variety of concepts and ideas for organizations to follow; the DOD provides a more actionable approach in its Zero Trust Strategy.<\/p>\n<p>With the DOD and other highly regarded entities pushing for stronger implementation, here\u2019s what cybersecurity leaders need to consider and enact in order to bring their organizations closer to achieving this.<\/p>\n<ol>\n<li><strong>Simplify your systems and focus on the packets. <\/strong>Today\u2019s CISOs and other cybersecurity leaders are dealing with hideous complexity. Cloud architecture drastically changed over the last few years, leading many organizations to revisit their traditional security strategies. Additionally, security leaders are expected to provide near-constant attention to messages from their Supervisory Control and Data Acquisition (SCADA) systems managing their Industrial Control Systems (ICS), BYOD (Bring Your Own Device) demands, and network performance. That said, there is one common thread connecting all of these demands \u2014 packets. The <em>National Institute of Standards and Technology (NIST)\u2019s Zero Trust Architecture<\/em> agrees; packets can be a powerful source of truth and can simplify the environment, helping to provide clarity and get closer to achieving zero trust. Security leaders must keep their eyes on the packets and cut out the noise by simplifying their networks as best as possible. This is important in laying the foundation for zero trust.<\/li>\n<li><strong>Don\u2019t do normal. <\/strong>Much of zero trust architecture hinges on artificial intelligence (AI) and machine learning (ML) anomaly detection. However, the challenge of making this run smoothly is feeding all of the logs, agent telemetry, and configuration service provider (CSP) telemetry into security orchestration, automation, and response (SOAR). Logging gap and normalization, however, will hamper the ability of the AI\/ML environment to detect anomalies and coordinate activities in multiple environments, such as lateral movement from cloud to on-prem. Using Advanced Metering Infrastructure (AMI) offers an alternate approach to filtering data to the same schema. This not only drastically simplifies the environment, but it also complex data in the same schema. This is a massive accelerator for AI\/ML, and will help security leaders bring their organizations one step closer to a zero trust environment.<\/li>\n<li><strong>Don\u2019t overlook the small stuff when it comes to segmentation. <\/strong>As I mentioned before, there are plenty of standards and roadmaps for achieving zero trust, and almost all require micro and macro segmentation. It works, but it is hard to accomplish. In order to incorporate proper segmentation, CISOs and other security leaders should:<\/li>\n<\/ol>\n<ol>\n<li style=\"list-style-type: none;\">\n<ul>\n<li><em>Plan segmentation ahead of time and more thoroughly<\/em><\/li>\n<li><em>Troubleshoot and modify the segmentation when necessary<\/em><\/li>\n<li><em>Keep a broad perspective on all network activities once segmentation has been implemented<\/em><\/li>\n<li><em>Increase random network discovery checkpoints to explore what users can speak to, ultimately drawing attention to any threat actors<\/em><\/li>\n<li><em>Add endpoint tools. Cyber-criminals often turn these agents off, which will make them stick out like a sore thumb in your network<\/em><\/li>\n<\/ul>\n<\/li>\n<\/ol>\n<h3><strong>Final Thoughts<\/strong><\/h3>\n<p>Zero trust should no longer be the unattainable goal on the horizon, but instead something every cybersecurity professional is working toward. I think it\u2019s great that some of the most trusted entities are making a cognizant push toward enforcing zero trust. Though adopting zero trust comes with great responsibility, it also presents an even greater reward. Those in charge must do what they can to bring their organizations closer to achieving it. I truly believe it\u2019s the only sensible path forward to combat the ever-evolving cyber threat landscape.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Solutions Review\u2019s\u00a0Contributed Content Series is a collection of contributed articles written by thought leaders in enterprise software categories. Chaim Mazal of Gigamon helps pave the path forward for standardizing zero-trust architecture with these best practices to consider. Zero trust has been making waves in the cybersecurity community for more than a decade, but there\u2019s still [&hellip;]<\/p>\n","protected":false},"author":970,"featured_media":5803,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[1,21],"tags":[],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Zero Trust: Implementing A Path Forward<\/title>\n<meta name=\"description\" content=\"Chaim Mazal of Gigamon helps pave the path forward for standardizing zero-trust architecture with these best practices to consider.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Zero Trust: Implementing A Path Forward\" \/>\n<meta property=\"og:description\" content=\"Chaim Mazal of Gigamon helps pave the path forward for standardizing zero-trust architecture with these best practices to consider.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/\" \/>\n<meta property=\"og:site_name\" content=\"Best Network Monitoring Vendors, Software, Tools and Performance Solutions\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-06T21:05:03+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-11-06T21:05:54+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Chaim Mazal\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Chaim Mazal\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/\",\"url\":\"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/\",\"name\":\"Zero Trust: Implementing A Path Forward\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust.jpg\",\"datePublished\":\"2023-11-06T21:05:03+00:00\",\"dateModified\":\"2023-11-06T21:05:54+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/#\/schema\/person\/2a3e857f7225da8b05da6b622048acbf\"},\"description\":\"Chaim Mazal of Gigamon helps pave the path forward for standardizing zero-trust architecture with these best practices to consider.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust.jpg\",\"width\":800,\"height\":400,\"caption\":\"Zero trust\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/network-monitoring\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Zero Trust: Implementing A Path Forward\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/#website\",\"url\":\"https:\/\/solutionsreview.com\/network-monitoring\/\",\"name\":\"Best Network Monitoring Vendors, Software, Tools and Performance Solutions\",\"description\":\"Solutions Review Network Monitoring\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/network-monitoring\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/#\/schema\/person\/2a3e857f7225da8b05da6b622048acbf\",\"name\":\"Chaim Mazal\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/network-monitoring\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/Chaim-Mazal.jpeg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/Chaim-Mazal.jpeg\",\"caption\":\"Chaim Mazal\"},\"description\":\"Chaim Mazal is the Chief Security Officer at Gigamon. Prior to joining Gigamon, he held similar roles with several industry leaders, most recently at Kandi, where he was the SVP of Technology and CISO. Chaim is a lifetime member of the Open Web Application Security Project (OWASP) Foundation and currently sits on several advisory boards, including Cloudflare, Gitlab, and Lacework.\",\"url\":\"https:\/\/solutionsreview.com\/network-monitoring\/author\/cmazal\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Zero Trust: Implementing A Path Forward","description":"Chaim Mazal of Gigamon helps pave the path forward for standardizing zero-trust architecture with these best practices to consider.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/","og_locale":"en_US","og_type":"article","og_title":"Zero Trust: Implementing A Path Forward","og_description":"Chaim Mazal of Gigamon helps pave the path forward for standardizing zero-trust architecture with these best practices to consider.","og_url":"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/","og_site_name":"Best Network Monitoring Vendors, Software, Tools and Performance Solutions","article_published_time":"2023-11-06T21:05:03+00:00","article_modified_time":"2023-11-06T21:05:54+00:00","og_image":[{"url":"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust.jpg","width":800,"height":400,"type":"image\/jpeg"}],"author":"Chaim Mazal","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Chaim Mazal","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/","url":"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/","name":"Zero Trust: Implementing A Path Forward","isPartOf":{"@id":"https:\/\/solutionsreview.com\/network-monitoring\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust.jpg","datePublished":"2023-11-06T21:05:03+00:00","dateModified":"2023-11-06T21:05:54+00:00","author":{"@id":"https:\/\/solutionsreview.com\/network-monitoring\/#\/schema\/person\/2a3e857f7225da8b05da6b622048acbf"},"description":"Chaim Mazal of Gigamon helps pave the path forward for standardizing zero-trust architecture with these best practices to consider.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/#primaryimage","url":"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust.jpg","contentUrl":"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/zero-trust.jpg","width":800,"height":400,"caption":"Zero trust"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/network-monitoring\/zero-trust-implementing-a-path-forward\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/network-monitoring\/"},{"@type":"ListItem","position":2,"name":"Zero Trust: Implementing A Path Forward"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/network-monitoring\/#website","url":"https:\/\/solutionsreview.com\/network-monitoring\/","name":"Best Network Monitoring Vendors, Software, Tools and Performance Solutions","description":"Solutions Review Network Monitoring","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/network-monitoring\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/network-monitoring\/#\/schema\/person\/2a3e857f7225da8b05da6b622048acbf","name":"Chaim Mazal","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/network-monitoring\/#\/schema\/person\/image\/","url":"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/Chaim-Mazal.jpeg","contentUrl":"https:\/\/solutionsreview.com\/network-monitoring\/files\/2023\/11\/Chaim-Mazal.jpeg","caption":"Chaim Mazal"},"description":"Chaim Mazal is the Chief Security Officer at Gigamon. Prior to joining Gigamon, he held similar roles with several industry leaders, most recently at Kandi, where he was the SVP of Technology and CISO. Chaim is a lifetime member of the Open Web Application Security Project (OWASP) Foundation and currently sits on several advisory boards, including Cloudflare, Gitlab, and Lacework.","url":"https:\/\/solutionsreview.com\/network-monitoring\/author\/cmazal\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/network-monitoring\/wp-json\/wp\/v2\/posts\/5805"}],"collection":[{"href":"https:\/\/solutionsreview.com\/network-monitoring\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/network-monitoring\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/network-monitoring\/wp-json\/wp\/v2\/users\/970"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/network-monitoring\/wp-json\/wp\/v2\/comments?post=5805"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/network-monitoring\/wp-json\/wp\/v2\/posts\/5805\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/network-monitoring\/wp-json\/wp\/v2\/media\/5803"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/network-monitoring\/wp-json\/wp\/v2\/media?parent=5805"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/network-monitoring\/wp-json\/wp\/v2\/categories?post=5805"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/network-monitoring\/wp-json\/wp\/v2\/tags?post=5805"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}