In today’s ecosystems, one organization can manage multiple internal networks, offices with its own on-premises infrastructure, or cloud services. This level of complexity makes the old network security models inadequate. For this reason, Yusuf Evmez, Country Manager Turkey and Greece states that zero trust architecture, a new generation of security management form, is an important solution for all organizations and states that 59 of the decision makers are working on a strategy for a zero trust architecture and there are is something to know about this area.

Ecosystems change, hackers improve, but defense systems are outdated. Zero trust architecture, a next-generation cybersecurity approach, is important for organizations in the process where organizations are looking for many things to protect data. Zero trust architecture, emerging as a broad cybersecurity paradigm covering all corporate resources and data, from network access identities to access management, operations to endpoints, is beginning to form the cornerstone of the entire cybersecurity network. Yusuf Evmez, country manager of WatchGuard Turkey and Greece, noting that when the zero trust model is applied correctly, intrusions can be prevented faster compared to traditional cybersecurity architectures. trust architecture and there are 5 things to know about this field. considers it an important step.

35 of executives consider trustless architecture a top priority

Comprehensive attacks such as supply chain attacks, which have increased in recent years and have led to the hacking of even the world’s leading companies and institutions, entail effective security approaches and measures. Zero trust architecture, one of these security approaches, adds an effective dimension to the concept of cybersecurity and makes it difficult for attackers and software. Underlining that 59 of the decision-makers are currently implementing a security strategy based on a zero trust architecture, according to the research published by NIST, WatchGuard Turkey and Greece Country Manager Yusuf Evmez said the results of the research support this view. Evmez underlines that 35 of the respondents prefer a zero trust architecture to identity verification solutions or cloud-based security services, and states that the next-generation security architecture creates a solid line of defense against hackers.

Zero Trust architecture complicates hackers

Yusuf Evmez, Country Manager for Turkey and Greece at WatchGuard, the leading global provider of network security and intelligence, secure Wi-Fi, advanced endpoint protection and multi-factor authentication, underlines that extensive attacks, such as supply chain attacks, are caused by security vulnerabilities at institutions. Evmez points out that zero trust architecture is a very good solution to protect against hacker attacks and draws attention to 5 points that should be known about the topic.

1. Identify business applications and which user groups have access to them. It includes many micro segments such as institutions, cloud applications, VPNs, encrypted data infrastructures. All these applications can be used individually or authorized according to the duties and responsibilities of the individuals within the organization. The key issue required for data protection and the full functioning of zero trust systems is who has access to what data.

2. Build a zero-trust architecture to uncover hidden cybersecurity breaches. All employees of the company play a key role in increasing the maturity level of this architecture, as zero trust is built not only from the outside, but also from the inside. Zero-trust architecture should be implemented in all departments to help create a more secure infrastructure and detect potential cyber-attacks across different data flows between departments.

3.Add multi-factor authentication (MFA) to reduce the risk of spoofing. No trust means systematically removing the implicit trust in secure credentials so that users and computers are safe before accessing company resources.

4.Continuously monitor all internal network traffic. It is necessary to constantly monitor the use of automation tools to monitor all internal network traffic in real time, both for the user and the device, where the connection is coming from and the connected application. This allows you to detect potentially dangerous connections on the endpoint as the ultimate target.

5. Define the end points. Define the endpoints used to access the protected resource. A user with a corporate laptop whose security is managed by the company provides more confidence than someone using a personal or public computer. Ensure that the device used to access a sensitive resource is well protected against malware.