Are you still relying on device cert checks at user laptops for conditional access? If not, what are the alternative controls you recommend?

Strategy & Architecture Security & GRC Infrastructure +1 more

492 views3 Comments

CISO in Insurance (except health), 5,001 - 10,000 employees

The device certificate is definitely still checked however, using advanced conditional access from toolsets like Okta, Intune and Zscaler are used to ensure high fidelity controls over access to assets. Contextual decisions can include the following with these types of toolsets.
- Device
- User
- Location
- Application
When contextual information raises any red flag's further identity proofing can be engaged to ensure access to assets is appropriate.

CTO in Software, 11 - 50 employees

We use Microsoft Intune.

CTO in Software, 2 - 10 employees

MFA and Zero trust architecture e.g Okta

Content you might like

Are you planning to improve endpoint security in the next 12 months with any of these additional capabilities?

Security & GRC Threat & Vulnerability Management Identity & Access Management (IAM)+8 more

Patch management: to reduce attack surface and avoid system misconfigurations39%

Malware and ransomware prevention: to protect endpoints from social engineering attacks58%

Malware and fileless malware detection and response: to protect against malicious software49%

Threat Hunting: to detect unknown threats that are acting or dormant in your environment and have bypassed the security controls32%

Not planning to change endpoint security strategy10%

185 PARTICIPANTS

408 views

What cyber threat are you most concerned about?

Security & GRC Data Protection & Encryption Strategy & Architecture

Insider threats – rogue admins19%

Encrypting my data51%

Deleting my backup copies11%

Resident malware8%

Data theft – data exfiltration11%

Other1%

142 PARTICIPANTS

1.6k views1 Comment

If you had a magic wand - what's the #1 daily business challenge you'd eliminate?

People & Leadership Strategy & Architecture Cloud +57 more

CTO in Software, 201 - 500 employees

Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.

142 19 Replies

Cloudflare is really after Zscaler these days, competing in SASE solution. Can anyone explain how those two SASE solutions have different architecture, and how sticky these architectures are respectively? I know Clouflare's SASE still miss many features but assuming they might catch up later, do they really have better architecture than Zscaler?

Cloud Security & GRC

Director of Network Transformation, Self-employed

I need to refrain from providing direct advice on SASE vendor comparisons as I work for one of the vendors in the space. SASE is a large portfolio of solutions which encompasses a swath of network and security solutions. ...read more

Has anyone moved to Password less authentication for their organization, and if so, how did you handle change management??

Security & GRC

Chief Technology Officer in Media, 2 - 10 employees

Have adopted passwordless authentication for improved security and user convenience. Changed management which involved assessing needs, selecting the right solution, conducting training, and clear communication to employ...read more