Around the globe, there are regular headlines of high-profile cybersecurity breaches hitting organizations large and small—and even government agencies. In response, more and more companies are adopting a “zero-trust” stance when it comes to cybersecurity. This framework, which assumes that networks are constantly at risk from both internal and external attacks, attempts to secure vulnerable data by defaulting to allowing as little access to it as possible.
For many organizations, moving to zero trust entails widespread changes to architecture, processes and culture, so it’s not a change that can happen overnight. There are certain areas that need to be addressed first, as well as important groundwork to lay so that zero trust doesn’t negatively impact users and employees. Below, 16 members of Forbes Technology Council discuss essential early steps for creating an effective zero-trust environment.