Automating For Zero Trust
Architecture and Governance, Wednesday, October 11,2023
Increasing automation and using change management techniques can help you integrate a Zero Trust strategy into a function SecOps environment.
Some keys to modeling this workstream:
> Start by creating security zones for high-value assets.
? Determine what automation is already in use from a cybersecurity perspective. Everything that can be automated should. Start with orchestration (SAO - security automation and orchestration), governance enforcement (AAC - adaptive access control), and security monitoring, detection, and response (SIEM - security information and event management). Collaborate with the people that modeled the pillars to determine the maturity level of automation for each.
> Design a tokenization solution that reduces the threat surface area.
> Identify the policy enforcement points (PEPs), and associated policy administration, decision, information, and retrieval points (PAPs, PDPs, PIPs, PRPs).
You can't do it all at once and certainly won't be able to get funding for everything, so put together and prioritize your automation wish list, and determine the alignment with business objectives and ROI compared to the other roadmap efforts.