Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the Remote Workforce
1 like307 views
The document discusses best practices for implementing a Zero Trust security model to secure remote workforces. It emphasizes the importance of managing access privileges, real-time breach detection, and providing centralized visibility across multi-cloud environments while suggesting a transition from VPN to Zero Trust Access (ZTA). The proposed approach includes continuous risk assessment and the ability for organizations to adopt Zero Trust at their own pace without service disruption.
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the Remote Workforce
- 1. Zero Trust: Best Practices for Securing the Remote Workforce Wladimir Araujo Senior Director, Product Management
- 2. Excess Access Privileges To what extent do you believe users in your organization have access privileges beyond what they require? 2021 CybersecurityInsiders & Ivanti Zero Trust Report
- 3. Identity Access and Zero Trust Priorities Which of the following identity access/zero trust controls do you prioritize for investment in your organization within the next 12 months? 2021 CybersecurityInsiders & Ivanti Zero Trust Report
- 4. Eliminate “Inside-Outside”distinction DetectBreaches in real-time Hollow-out of DMZ, Get Visibility Compliance & Governance across Clouds Avoid fragmented Policy islands across Hybrid & Multi-Vendor environments Easier Consumption,faster provisioning Data Center Private Cloud Employees, Guests, Contractors, Admins BYOD/Corporate Devices Network and IoT Devices Infrastructure Apps & Data Apps & Data End-user Multi-Cloud Application Access Power-user Infrastructure Access Network or IoT Device Access CIOs, I&O and SecOps Seeking To Leverage IT Convergence
- 5. Copyright © 2021 Ivanti. All rights reserved. From VPN to Zero Trust Access Control Evolving our value proposition to an integrated Zero Trust Access Experience Consolidate Bespoke Secure Access Solutions Complete Visibility, Reduce Operational & Security Risks Simplify Administration and End User Experience MOBILE ACCESS APPLICATION ACCESS CLOUD ACCESS NETWORK ACCESS
- 6. • Flat network ➔ lateral movement allowed • User-based access controls ➔ all apps • Named VPN gateway ➔ user needs to select The ZTNA Paradigm • Micro-segmented network ➔ no lateral movement • User + application + location access controls ➔ specific apps • Dark network ➔ system selects gateway for user Tunnel The VPN Paradigm vpn.acme.com Apps Apps Apps Tunnel Apps Apps Apps
- 7. The Ivanti Neurons for Zero-Trust Access
- 8. • Authenticate and authorize users and devices before any access and throughput the entire session • Only the specific application, data, or service that should be accessedcan be accessed • Both Controller and Gateways are invisible from unenrolled, unauthenticated, unencrypted devices • All backend services, applications, and data are also invisible BYOD/Corp Device NZTA Controller Once enrolled, End-user has seamless Appaccess experience User,Device Identity & Access Controls,via MTLS E2E Advanced Secure Data Transfer,via MTLS Continuous Risk & Threat Assessment,via MTLS Unified Client Platform IAM Apps Apps NZTA NZTA Enterprise Security with Ivanti Neurons for ZTA (nZTA)
- 9. Benefits of Ivanti Neurons for ZTA (nZTA) Multi-Cloud Zero Trust Access ▪ Eliminates distinction between on-premises, SaaS, and different clouds ▪ End-to-end Security with reduced attack surface ▪ Global, granular security and access policies Increase Productivity & Security ▪ Quickly deploy applications that can be securely accessed ▪ Enable collaboration between different organizations without compromising security ▪ HA and always up to date with security patches Visibility and Advanced Analytics ▪ Centralized visibility ▪ Insights into users, devices, applications, and gateways ▪ Automated responses to undesired behavior Flexible Consumption ▪ Deploy as many gateways as needed ▪ Unified client for ZTA/VPN/NAC ▪ Scale up quickly to support more users/sites Proprietary & Confidential 9 nZTA Controller Control Plane Data Plane Pulse Clients nZTA Gateway
- 10. Copyright © 2021 Ivanti. All rights reserved. Co-existence and Unified Security • Seamless among PCS, PPS and nZTA • The entire portfolio can co-exist with each other • nZTA uses the same Pulse Client that end users are accustomed to using • Users can connect to existing PPS (for on-prem access), PCS (for remote access), and nZTA - all at the same time! • Customer can start their Zero Trust journey at their own pace without service disruption • Coexists with other VPN services as well PCS UN-CONNECTED PPS UN- CONNECTED nZTA UN- CONNECTED CONNECTED CONNECTED CONNECTED
- 11. Copyright © 2021 Ivanti. All rights reserved. ▪ Risk and trust assessment tracks: ▪ Access methods ▪ Access times ▪ Geo-location ▪ User Risk Score with 30-day context ▪ Action taken may include: ▪ Disconnecting and disabling user ▪ Reducing privileges 11 Continuous Adaptive Risk and Trust Assessment (CARTA)
- 12. Copyright © 2021 Ivanti. All rights reserved. ▪ User and Entity Behavior Analytics (UEBA) and anomaly detection and mitigation ▪ Industry leading Device Compliance Checker microservice ▪ Significantly reduces attack surface and breaches from inside/outside 12 UEBA and Threat Detection and Response
- 13. Copyright © 2021 Ivanti. All rights reserved. Segment the Network Define Fine Grained Policies Integrate to Automate Segment the network based on applications or application domains to minimize lateral movement Deploy a gateway (or cluster of) for each segment Create application access policies as granular as possible/feasible • For each application, define the required device compliance level Define user groups that have access to each application Assign users to the groups they really need Export events to SIEM for aggregate analysis Leverage anomaly detection to narrow investigation focus Integrate with Neurons for Healing for automatic device non-compliance remediation ZTA Deployment Best Practices
- 14. Copyright © 2021 Ivanti. All rights reserved. To learn more, please visit: www.ivanti.com/solutions/zero-trust-security