The Zero Trust concept has been around since the 1990’s, but the COVID pandemic and a forced shift to a remote workforce (and poorly secured home offices) has brought it back to the forefront. A Zero Trust architecture is a move in the right direction and a good match for a Work-from-Anywhere world.
Data Loss Prevention (DLP) vendors have long adopted rigid policies and complex rules that predefine which users can access which data and what actions each user can take. The inevitable false positive alerts from these rules often prevent users from doing their jobs and lead to workarounds. Instead, we recommend a risk-based approach to understanding the intention behind every action based on analysis of the data, machines, applications, and people.
Learn more in this e-book from DTEX Systems and Splunk.
When Zero Trust is applied to insider threat protection, we must be careful to avoid past mistakes that hamper user acceptance and productivity.