14 lines
No EOL
951 B
Markdown
14 lines
No EOL
951 B
Markdown
Source: [IT Governance USA](https://www.itgovernanceusa.com/blog/implementing-zero-trust-with-iso-27001)
|
|
Author: [Luke Irwin](https://www.linkedin.com/in/luke-irwin-aa80ba143/)
|
|
Publication Date: 10 dec. 2019
|
|
Retrieved: January 10, 2022
|
|
|
|
Zero trust is an approach to cybersecurity that assumes that no one is trusted by default, either from inside or outside the network. To access any information resources, verification is required from everyone.
|
|
|
|
(IT) systems require techniques like micro-segmentation, least privileged access, and multifactor authentication.
|
|
|
|
Zero trust can consist of monitoring all network communications, avoiding default configurations, tracking all devices, and implementing multifactor authentication.
|
|
|
|
Related:
|
|
- [Zero Trust and ISO 27001](../Sparks/Zero%20Trust%20and%20ISO%2027001.md)
|
|
- [Checklist for auditing Zero Trust approach](Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Zero%20Trust%20approach.md) |