EP59 Zero Trust: So Easy Even a Government Can Do It?

Guest: 

• Sharon Goldberg, CEO and cofounder of BastionZero and a professor at Boston University

Topics:

• What is your favorite definition of zero trust?
• You had posted a blog analyzing the whitehouse ZT a memo on the federal government’s transition to “zero trust”,  what caught your eye about the Zero Trust memo and why did you decide to write about it?
• What’s behind the federal government’s recommendations to deprecate VPNs and recommend users “authenticate to applications, not networks”?
• What do these recommendations mean for cloud security, today and in the future?
• What do you think would be the hardest things to implement in real US Federal IT environments?
• Are there other recommendations in the memo to think about as organizations design zero trust strategies for their infrastructure? 
• What are some of the challenges of implementing zero trust in general?

Resources:

• "Zero Trust: Fast Forward from 2010 to 2021" (ep8)
• “Moving the U.S. Government Toward Zero Trust Cybersecurity Principles”
• “I read the federal government’s Zero-Trust Memo so you don’t have to” 
• “F12 isn’t hacking: Missouri governor threatens to prosecute local journalist for finding exposed state data”