• About
  • Advertise
  • Privacy & Policy
  • Contact
Saturday, September 30, 2023
Earth-News
  • Home
  • Business
  • Entertainment
    Golden Week: Chinese Tourists Flock to Destinations Near and Far

    Golden Week: Chinese Tourists Flock to Destinations Near and Far

    A Short History of Shanghai’s Free Trade Zone

    A Short History of Shanghai’s Free Trade Zone

    Supermodels, suits and star power: Loewe, Givenchy, Schiaparelli, Carven and Chloe Paris runways

    Supermodels, suits and star power: Loewe, Givenchy, Schiaparelli, Carven and Chloe Paris runways

    Blackpink’s Rosé boosts Rimowa x Tiffany, plus global collabs

    Blackpink’s Rosé boosts Rimowa x Tiffany, plus global collabs

    How brands can best maximize Chinese apps Xiaohongshu, Douyin, Weibo and Zhihu

    How brands can best maximize Chinese apps Xiaohongshu, Douyin, Weibo and Zhihu

    Alan Wake 2: Release Date, Gameplay Updates, Story Details, and Latest News

    Alan Wake 2: Release Date, Gameplay Updates, Story Details, and Latest News

  • General
  • Health
  • News
    Yo Egg to Unveil Exclusive Plant-Based Quail-Sized Egg at the Vkind Experience

    Yo Egg to Unveil Exclusive Plant-Based Quail-Sized Egg at the Vkind Experience

    The Big Idea: Investing in “sponge cities” can mitigate the toll of climate change

    The Big Idea: Investing in “sponge cities” can mitigate the toll of climate change

    I Need A Homie That Know Me Lyrics

    I Need A Homie That Know Me Lyrics

    I Like The Way You Work It Lyrics

    I Like The Way You Work It Lyrics

    Boiler Market Outlook, Size, Growth Factors and Forecast by 2029

    Boiler Market Outlook, Size, Growth Factors and Forecast by 2029

    Student Information Market 2023 | Scope and Industry Growth Report

    Student Information Market 2023 | Scope and Industry Growth Report

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Tech
    UK tech sector ‘let down’ and ‘betrayed’ over Rishi Sunak’s net-zero policy tweaks

    UK tech sector ‘let down’ and ‘betrayed’ over Rishi Sunak’s net-zero policy tweaks

    First subpostmaster Horizon conviction overturned in Scotland

    First subpostmaster Horizon conviction overturned in Scotland

    US lawmakers write to AI firms about ‘gruelling’ work conditions

    US lawmakers write to AI firms about ‘gruelling’ work conditions

    Businesses disconnected from realities of API security

    Businesses disconnected from realities of API security

    Automated cloud IR: Empowering cyber with AI-powered playbooks

    Automated cloud IR: Empowering cyber with AI-powered playbooks

    Intel Kicks Off High-Volume EUV Production at Irish Plant

    Intel Kicks Off High-Volume EUV Production at Irish Plant

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Golden Week: Chinese Tourists Flock to Destinations Near and Far

    Golden Week: Chinese Tourists Flock to Destinations Near and Far

    A Short History of Shanghai’s Free Trade Zone

    A Short History of Shanghai’s Free Trade Zone

    Supermodels, suits and star power: Loewe, Givenchy, Schiaparelli, Carven and Chloe Paris runways

    Supermodels, suits and star power: Loewe, Givenchy, Schiaparelli, Carven and Chloe Paris runways

    Blackpink’s Rosé boosts Rimowa x Tiffany, plus global collabs

    Blackpink’s Rosé boosts Rimowa x Tiffany, plus global collabs

    How brands can best maximize Chinese apps Xiaohongshu, Douyin, Weibo and Zhihu

    How brands can best maximize Chinese apps Xiaohongshu, Douyin, Weibo and Zhihu

    Alan Wake 2: Release Date, Gameplay Updates, Story Details, and Latest News

    Alan Wake 2: Release Date, Gameplay Updates, Story Details, and Latest News

  • General
  • Health
  • News
    Yo Egg to Unveil Exclusive Plant-Based Quail-Sized Egg at the Vkind Experience

    Yo Egg to Unveil Exclusive Plant-Based Quail-Sized Egg at the Vkind Experience

    The Big Idea: Investing in “sponge cities” can mitigate the toll of climate change

    The Big Idea: Investing in “sponge cities” can mitigate the toll of climate change

    I Need A Homie That Know Me Lyrics

    I Need A Homie That Know Me Lyrics

    I Like The Way You Work It Lyrics

    I Like The Way You Work It Lyrics

    Boiler Market Outlook, Size, Growth Factors and Forecast by 2029

    Boiler Market Outlook, Size, Growth Factors and Forecast by 2029

    Student Information Market 2023 | Scope and Industry Growth Report

    Student Information Market 2023 | Scope and Industry Growth Report

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Tech
    UK tech sector ‘let down’ and ‘betrayed’ over Rishi Sunak’s net-zero policy tweaks

    UK tech sector ‘let down’ and ‘betrayed’ over Rishi Sunak’s net-zero policy tweaks

    First subpostmaster Horizon conviction overturned in Scotland

    First subpostmaster Horizon conviction overturned in Scotland

    US lawmakers write to AI firms about ‘gruelling’ work conditions

    US lawmakers write to AI firms about ‘gruelling’ work conditions

    Businesses disconnected from realities of API security

    Businesses disconnected from realities of API security

    Automated cloud IR: Empowering cyber with AI-powered playbooks

    Automated cloud IR: Empowering cyber with AI-powered playbooks

    Intel Kicks Off High-Volume EUV Production at Irish Plant

    Intel Kicks Off High-Volume EUV Production at Irish Plant

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Tech

Why CISOs need zero trust as a ransomware shield

September 19, 2023
in Tech
Why CISOs need zero trust as a ransomware shield
Share on FacebookShare on Twitter

September 18, 2023 3:30 PM

Zero Trust Network and Zero Trust Architecture - ZTA - Extended Detection and Response Platform - Conceptual Illustration

Image Credit: Getty Images

Head over to our on-demand library to view sessions from VB Transform 2023. Register Here

This year is on pace to be the second-costliest for ransomware attacks ever, with threat actors relying on new deceptive approaches to social engineering combined with weaponized AI. The recent MGM breach began with attackers studying the social media profiles of help desk employees, then calling the help desk and impersonating them to get privileged access credentials and logins.

Zero trust security needs to be a mindset that pervades everything from consolidating tech stacks to managing identities at scale. CISOs and their teams must start with the assumption that a breach has already happened, and an organization’s network needs to be designed to limit an intrusion’s blast radius and depth.

“Zero trust requires protection everywhere — and that means ensuring some of the biggest vulnerabilities like endpoints and cloud environments are automatically and always protected,” said Kapil Raina, VP of zero trust marketing and evangelist for identity, cloud and observability) at CrowdStrike. “Since most threats will enter into an enterprise environment either via the endpoint or a workload, protection must start there and then mature to protect the rest of the IT stack.”

Table of Contents

  • Gartner introduces a new Hype Cycle for Zero Trust Networking
    • Event
  • What is zero trust networking?
  • Ten zero trust technologies worth watching  
    • Container security
    • Enterprise browsers
    • Kubernetes networking
    • Managed SASE
    • Microsegmentation
    • OpenID Connect
    • Remote Browser Isolation (RBI)
    • Security Service Edge (SSE)
    • Unified Endpoint Security (UES)
    • Zero trust strategy
  • Predicting the future of zero trust

Gartner introduces a new Hype Cycle for Zero Trust Networking

Gartner’s inaugural Hype Cycle for Zero Trust Networking comes at a time when CISOs and the organizations they serve are under siege from near-record ransomware attacks. All hype cycles and market frameworks have limitations, yet they do help to filter out vendor noise and those overstating their zero trust capabilities. The Hype Cycle examines 19 key technologies — including microsegmentation, Kubernetes networking, secure access service edge (SASE) and security service edge (SSE) — and maps their maturity level and hype cycle position. 

Event

VB Transform 2023 On-Demand

Did you miss a session from VB Transform 2023? Register to access the on-demand library for all of our featured sessions.

Register Now

VentureBeat believes that ten core technologies in the Hype Cycle have the potential to deliver the most value to CISOs. They include container security, enterprise browsers, Kubernetes networking, managed SASE, microsegmentation, OpenID Connect, remote browser isolation (RBI), security service edge (SSE), unified endpoint security and zero trust strategy.

 Source: Gartner, Hype Cycle for Zero Trust Networking

What is zero trust networking?

Gartner defines zero trust networking (ZTN) as how zero trust concepts are applied and integrated into network infrastructure. Consistent with the NIST zero trust security standard, ZTN only grants users and devices access to a network based on real-time identity and context validation. An enterprise-class ZTN infrastructure grants access to authenticated and authorized identities and adheres to least-privileged access to any network resource.

CISOs tell VentureBeat that the more progress their organizations make in implementing Zero Trust Network Access (ZTNA), the more efficient ZTN becomes to implement. The goal is to secure virtual teams and scale up new digital transformation projects so they aren’t hacked right after launch. New apps are an attack magnet, and ZTNA is helping reduce threat surfaces and protect against privileged access credential theft while strengthening risk-based dynamic access control policies.

Ten zero trust technologies worth watching  

Defining a zero trust security strategy that delivers quick wins is essential to control budgets and gain greater investment. One CISO told VentureBeat that they schedule quick, measurable wins early in their zero trust roadmaps expressly for that purpose. Today’s CISOs are looking to protect and grow budgets to invest in new technologies. 

VentureBeat identifies the ten core technologies below as delivering the greatest value to CISOs pursuing zero trust strategies.

Container security

Developer container security tools detect vulnerabilities and misconfigurations early. These production tools protect against exposed containers and compromised images at runtime. Network segmentation and runtime behavior monitoring secure dynamic container environments. Leading vendors include Aqua Security, Orca Security, Red Hat, Sysdig, Trend Micro and Palo Alto Networks.

Enterprise browsers

Managed, secure browsers consolidate access to reduce the risk of malicious sites or downloads. Secure web browsing is becoming more popular among dispersed workforces. Granular policy control over web content, downloads and extensions is essential. Check Point Software, Ermes Cyber Security, Google, Island, Microsoft, Perception Point, Seraphic Security, SlashNext, SURF and Talon Cyber Security are among the leading vendors.

Kubernetes networking

Kubernetes networking addresses Kubernetes’ requirements for scale, security and visibility. Load balancing, service discovery, multi-cluster connectivity and microsegmentation are all key features. Among the top vendors are Amazon Web Services, Avesha, Azure, Cisco, F5, HashiCorp, Isovalent, Juniper Networks, Tetrate and VMware.

Managed SASE

Managed SASE accelerates deployments with integrated networking and security as a service using providers’ resources and expertise. Key benefits include reduced staffing risks, quicker enablement of SASE capabilities and integrated management. VentureBeat continues to see SASE benefiting from the faster consolidation of networking and security. AT&T, Cato Networks, Comcast, Expereo, KDDI, MetTel, Orange Business Services, Palo Alto Networks, Verizon, VMware and Windstream Enterprise are leading SASE vendors.

Microsegmentation

Microsegmentation is core to the NIST SP800-207 zero trust standard and provides many benefits, including enforcing identity-based access policies between workloads to limit lateral movement after breaches. It also provides granular controls over east-west traffic based on workload identity, not just network zoning. Leading vendors include Airgap Networks, Akamai Technologies, Cisco, ColorTokens, Fortinet, Illumio, Palo Alto Networks, VMware, Zero Networks and Zscaler.

OpenID Connect

OpenID Connect is an authentication protocol that improves user experience, security and privacy. It is gaining adoption to enable single sign-on across devices, apps and APIs. Leading vendors include Auth0, Cloudentity, Curity, ForgeRock, Gluu, Google, IBM, Microsoft, Okta, Ping Identity and Red Hat.

Remote Browser Isolation (RBI)

RBI isolates browsers to reduce the attack surface by remotely executing web code, thwarting threats such as drive-by downloads, phishing and data exfiltration. Leading vendors are focusing their innovation on improving isolation techniques and integrating with Secure Web Gateway (SWG) and ZTNA to address more use cases.

Granular upload/download controls and integrations with Cloud Access Security Brokcers (CASB), data loss prevention (DLP) and sandboxes have been added to analyze threats detected during isolated browsing sessions. Leading vendors include Authentic8, Broadcom, Cloudflare, Cradlepoint (Ericom), Forcepoint, Garrison, Menlo Security, Netskope, Proofpoint, Skyhigh Security and Zscaler.

Security Service Edge (SSE)

SSE consolidates SWG, CASB and ZTNA into a cloud platform to secure web, SaaS and private apps while ensuring that system-wide management stays consistent and at scale. Tight integration enables standardized policies, automated workflows and data sharing across integrated tools. SSE also improves remote user experiences through unified architecture. SSE boosts efficiency and consistency by streamlining administration and coordination between security technologies. Leading vendors include Broadcom, Cisco, Cloudflare, Forcepoint, Fortinet, iboss, Lookout, Netskope, Palo Alto Networks, Skyhigh Security and Zscaler.

Unified Endpoint Security (UES)

UES combines endpoint protection and management to enable risk-aware security policies and automated remediation. It enables risk-based patching prioritization and continuous vetting of endpoint configurations for more effective security posture management by integrating real-time telemetry threat data into operations workflows. Leading vendors include Absolute, BlackBerry, CrowdStrike, IBM, Ivanti, Microsoft, Sophos, Syxsense, Tanium and VMware.

Zero trust strategy

A zero trust strategy establishes the fundamentals and activities of a zero trust program. It enforces least privileged access for every resource and identity request. It reduces the blast radius of intrusions and breaches. Strategies must align with enterprise objectives and risk tolerance. For zero trust strategies to be effective, they must be customized for each organization.

The following table summarizes the ten zero trust technologies worth watching based on VentureBeat interviews with CISOs.  

Predicting the future of zero trust

The massive MGM ransomware attack that began with a simple phone call illustrates how critical it is to have identity-based security and microsegmentation, hardened with real-time validation of credentials, to limit the blast radius. Zero trust assumes a breach has already happened and serves as a framework to contain it.

Zero trust is no panacea against attackers using generative AI to sharpen their tradecraft and launch social engineering-based attacks that devastate victims. As one CISO recently told VentureBeat: “Zero trust needs to deliver resilience. That’s its business case, and the more resilient and capable it is of limiting an attack, the more zero trust proves its value as a business decision.” 

VentureBeat’s mission is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. Discover our Briefings.

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : VentureBeat – https://venturebeat.com/security/why-cisos-need-zero-trust-as-a-ransomware-shield/

Tags: CISOsRansomwaretechnology
Previous Post

Dave the Diver’s director on the breakout indie hit of 2023

Next Post

This week in data: Decrypting the generative AI mania

You Made Your Bed, My Kevin. Now Toss and Turn in It.

You Made Your Bed, My Kevin. Now Toss and Turn in It.

September 30, 2023
Dianne Feinstein’s Empty Seat

Dianne Feinstein’s Empty Seat

September 30, 2023
Debate Sketchbook

Debate Sketchbook

September 30, 2023
Why the Mainstream Media Loved Trump’s Fake Pro-Workers Rally

Why the Mainstream Media Loved Trump’s Fake Pro-Workers Rally

September 30, 2023
This Might Be the Most Cringeworthy “Impeachment” Inquiry in US History

This Might Be the Most Cringeworthy “Impeachment” Inquiry in US History

September 30, 2023

8 INCHES OF RAIN!

September 30, 2023
Scientists Say They’ve Found Thousands of Mysterious Circles Around World…

Scientists Say They’ve Found Thousands of Mysterious Circles Around World…

September 30, 2023

Two quakes strike Northern California, hundreds of miles apart…

September 30, 2023
UK tech sector ‘let down’ and ‘betrayed’ over Rishi Sunak’s net-zero policy tweaks

UK tech sector ‘let down’ and ‘betrayed’ over Rishi Sunak’s net-zero policy tweaks

September 30, 2023
First subpostmaster Horizon conviction overturned in Scotland

First subpostmaster Horizon conviction overturned in Scotland

September 30, 2023
Partenaires
afric.info
europ.info
usa-news
lesmeilleureschaussures.fr
goodsforyoutoday.com
looktopbeauty.com
keto-diet.biz
soccernews.info
nba-news.net
sportsprblog.com compar.biz
the-best.top
bestchoices.biz
expert-plus.fr
travel-mag.info
pksportsnews.com
news-sports.org

Categories

Archives

September 2023
M T W T F S S
 123
45678910
11121314151617
18192021222324
252627282930  
« Aug    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (3,693)
  • Entertainment (3,778)
  • General (2,769)
  • Health (1,801)
  • News (4,248)
  • Science (2,907)
  • Sports (3,920)
  • Tech (2,860)

Recent News

You Made Your Bed, My Kevin. Now Toss and Turn in It.

You Made Your Bed, My Kevin. Now Toss and Turn in It.

September 30, 2023
Dianne Feinstein’s Empty Seat

Dianne Feinstein’s Empty Seat

September 30, 2023
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version

Why CISOs need zero trust as a ransomware shield- https://www.maquillages.info/   https://maquillages.org   https://www.deguisements-fetes.fr   https://maillots-de-bain-shop.com   https://www.le-noeud-papillon.com   https://www.jeepeg.fr   https://maillotde-bain.com   https://pushkarvisit.com   -/- According to Luke Fickell, Wisconsin is ‘all-in’ on NIL   Barbie film hits $1bn mark at global box office   Zhuhai Championships: Andy Murray loses to Aslan Karatsev in last 16   Breece Hall named Jets’ offensive X-factor for 2023   Soundking AK20 BA Amplificateur pour Basse   -*-$$DAKINE Split Roller Mallette ordinateur à roulettes, 21 cm, 110 L, Carbon   Veuve Clicquot – Coffret Retraite V.Clicquot Rose   Enceinte Mobile 700W Sono Active DJ KARAOKE 12″ Autonome Batterie à LED RVB + Micro VHF USB/SD/Bluetooth – LedWood Boostar1400   Volkswagen: IT-Störung bei Volkswagen behoben   Newcastle adds BetMGM UK to its bookmaker alliances   $$* Amalia   El Rancho Place d’Italie, Centre commercial Italie 2, place d’Italie 75013 Paris   Why CISOs need zero trust as a ransomware shield *Why CISOs need zero trust as a ransomware shield