The need for secure remote access to corporate networks and applications, accelerated by the push to work from home during the pandemic, is a top priority for organizations implementing a zero-trust security strategy, according to research from Enterprise Strategy Group and Axis Security. “Zero trust” comprises numerous cybersecurity disciplines focused around identity, access, and segmentation.
According to The State of Zero-trust Security Strategies report, the top drivers for zero trust are modernizing cybersecurity programs (51%), reducing security incidents (43%), enabling secure remote access for employees/third parties (41%), supporting digital transformation (35%), and accelerating cloud adoption (34%).
As a result of the pandemic, more than one-third (36%) of respondents accelerated their zero-trust rollouts, while 29% delayed adoption/expansion of zero trust by a few months. Among those organizations that have begun implementing zero trust, 63% report smooth or very smooth transitions to work from home.
The report also finds organizations are using a variety of zero-trust practices, including identifying and inventorying all devices on the network, employing MFA, and using analytics to spot anomalous behavior.
Nearly 9 in 10 organizations have formalized zero-trust strategies. Slightly more than half (53%) started with a single use case and have expanded their strategy over time. Although only 12% of organizations have implemented a zero-trust center of excellence, the data finds interest is very high as a way to formalize collaboration across groups.
Nearly half (46%) of organizations rate their zero-trust initiatives as very successful while 39% say their efforts have been successful but with “bumps in the road.” Respondents say key benefits of zero trust include reduced security incidents, simplified compliance, and better SOC efficiency.
For channel pros, here’s a finding to note: 82% of organizations expect to increase spending on zero trust over the next 12-18 months.
Chart: Enterprise Strategy Group, The State of Zero-trust Security Strategies, Feb. 2021