Which Zero Trust strategies have you found the most success with?
Also, we're trying to get rid of any inessential information that is sensitive or personally identifiable in that segment. Nowadays even somebody's name and address is classified as personal information, so it's been challenging. But why do you need to have anyone’s social security number? Why do you need to have their bank account information? If you ever do need it, direct them to a certain site and obtain the information that way. Don't store it. So our zero trust approach is about risk management at the application level, at the data element level, and then securing applications based on the business risk they pose.
I've got a client mailing PGP keys out to us as we speak so we can access their stuff. I haven't had personal experience with them, but I will by next week. As far as deployment though, having them mailed to us is like, "Oh great, I've got at least another four days before I'm onboarded to do the work that you just paid us to do."
Yeah, it's not perfect but at least we're all starting to think about it, and that makes me happy. The news of all these companies shutting down doesn't make me happy, but it needs more attention than what it's been getting in the past.
Content you might like
Our team will have the option to work remotely for all or part of the week42%
Our team will return to the office as soon as it is safe to do so32%
Our team will permanently work remotely13%
Our team has already returned to the office10%
Our team never left the office to work remotely1%
Undecided2%
Autocratic3%
Transformational59%
Servant9%
Laissez-faire3%
Democratic9%
Coaching16%
Others0%