ITSPmagazine

Have You Lost Count Of Your Technical Controls Exceptions Yet? | Redefining (Demolishing) Zero Trust With Marcus J. Ranum And Ron Dilley

Episode Summary

"I've done a few consulting calls about 'Zero Trust' and left the client practically in tears. It's fascinating, to me, that someone can read a bunch of marketing drivel and conclude from that, that it's the future of networking. Really? Do they think it's going to work? Why?" —Marcus J. Ranum

Episode Notes

"I've done a few consulting calls about 'Zero Trust' and left the client practically in tears. It's fascinating, to me, that someone can read a bunch of marketing drivel and conclude from that, that it's the future of networking. Really? Do they think it's going to work? Why?" —Marcus J. Ranum

This note from Marcus was enough for me to want to follow up on my previous conversation on this topic: Zero Trust.

Hold on to your hats: this tumultuous ride starts off with a bang, accelerates with wild abandonment, and brakes abruptly at a close to avoid additional brain cell casualties.

If you think Zero Trust is a binary state achievable with serious planning and significant investments, you may be right. But it's not likely. The potential complexity alone may be enough to make this model worse for many organizations, and the "state" unattainable for most. There are far too many places where trust must remain a factor, where exceptions will rule the roost, and where the basic elements of hygiene will still plague the InfoSec program regardless of the level of trust placed in any/all of the components.

Don't take my word for it though. Tune in and have a listen to an InfoSec curmudgeon share his thoughts bounced off a CISO's (and InfoSec curmudgeon in training's) views based on their own realities of tech + team + time.

Don't worry, while you won't be able to unhear some of this, you can go back and pick up your hat later.

Enjoy!

Guests
Ron Dilley, CISO | Security Innovation, Research, and Deception

Marcus J. Ranum

This Episode’s Sponsors:

Nintex: https://itspm.ag/itspntweb

Imperva: https://itspm.ag/imperva277117988

RSA Security: https://itspm.ag/itsprsaweb

Resources
Book: Huawei and Snowden Questions: https://openlibra.com/en/book/the-huawei-and-snowden-questions

Podcast: Zero To Trust In 60 Seconds | The Race To Overcoming Our Cybersecurity Challenges: https://itspm.ag/redefining-security-317

To see and hear more Redefining Security content on ITSPmagazine, visit:
https://www.itspmagazine.com/redefining-security

Are you interested in sponsoring an ITSPmagazine Channel?
https://www.itspmagazine.com/podcast-series-sponsorships