IT disaster recovery, cloud computing and information security news

More than half of organizations have gaps in their zero-trust implementations

Fortinet has published a new survey-based report, the ‘Global State of Zero Trust Report’. This highlights that although most organizations have a vision of zero trust, more than half of organizations cannot translate this vision into the solutions they are implementing because they lack some basic core fundamentals of zero trust.

The report illustrates some confusion about what comprises a complete zero-trust strategy. Respondents indicated they understand zero trust (77 percent) and Zero Trust Network Access (ZTNA) (75 percent) concepts and over 80 percent reported already having a zero-trust and/or ZTNA strategy in place or development. Yet over 50 percent indicated being unable to implement core zero-trust capabilities. Nearly 60 percent indicated they do not have the ability to authenticate users and devices on an ongoing basis and 54 percent struggle to monitor users post-authentication.

The report says that this gap is concerning because these functions are critical tenets of zero-trust and it brings into question what the actual reality of these implementations is across organizations. Adding to the confusion are the terms ‘Zero Trust Access’ and ‘Zero Trust Network Access’, which are sometimes used interchangeably.

A vast majority of the survey respondents believe that it is vital for zero-trust security solutions to be integrated with their existing infrastructure, work across cloud and on-premises environments, and be secure at the application layer. However, more than 80 percent of respondents indicated that it is challenging to implement a zero-trust strategy across an extended network. For organizations without a strategy in place or development, obstacles included a lack of skilled resources with 35 percent of organizations using other IT strategies to address zero trust.

More details (PDF).

Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.