Is it possible to implement Zero Trust in a 100% remote company?

3.3k views3 Upvotes6 Comments

Director of IT in Manufacturing, 1,001 - 5,000 employees
I believe in most companies you can implement principals of Zero Trust across the environment. You will rarely be able to accomplish a pristine Zero Trust environment for varying reasons so the key is to take the core principals of zero trust and try to apply them to your environment, particularly the aspects around microsegmentation, least privilege and least access. Microsegmentstion isn’t impossible to implement, even at on a host to host basis.

Use hypervisor or cloud based network ACL like AWS security groups, use host base firewalls with appropriately restrictive rules, where possible use firewall control planes across environment segments (dev, test, prod, workstations, etc.
Director Of Technology in Education, 51 - 200 employees
Yes. If you don’t “trust” the employees laptops or smartphones and make them login/verify identity EVERY time they use those devices. Possible but not very practical for daily use.

If their work provided laptop or personal mobile device is trusted then it isn’t 100% ZERO TRUST. If someone steals the laptop or mobile device and it’s trusted…
CEO, MSSP - High Assurance Cybersecurity SOC in Services (non-Government), 1,001 - 5,000 employees
Yes, and that scenario is the poster child for ZT.
Director of IT in Software, 201 - 500 employees
Zero Trust can be implemented in any company, if you have 100% remote company then you absolutely need Zero Trust
VP of IT, Self-employed
Yes, absolutely, such environments are as if made to order for zero trust implementation using micro-segmentation platforms that can segment user to application, application to application both agent and agentless approaches, across data centers, multi-cloud and Kubernetes.
VP of IT & CISPO in Finance (non-banking), 201 - 500 employees
Absolutely. I would argue that it is needed more in a remote company.  

With remote organizations you don't have access or control over the networks your users connect from. You also don't have the fear of being seen mitigating some of their actions.  In this type of environment Zero Trust is critical.  

Content you might like

CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
47.2k views133 Upvotes326 Comments

Accountability - There's no system for accountability - we just rely on people keeping their word33%

Innovation - There's a structured process to contribute an idea and see the eventual outcome and decisions53%

People - Our company finds it difficult to do any of the above33%

People - Laggards hold things back but certain people and teams make it happen31%

General - We find it difficult to do any of the above15%

IT - We are held back from most of the above by legacy systems and a dependence on IT24%

Processes and Workflow - We've reached a point where email, chat and documentation have been replaced with accountable tasking and repeatable processes17%

Processes and Workflow - We publish processes or documentation and try to keep it up-to-date13%

Something else (comments below)1%


5k views6 Upvotes2 Comments