SlideShare a Scribd company logo

Zero Tolerance Zero Trust Architecture

aNumak & Company, profile picture
aNumak & Company

The Zero Trust Architecture (ZTA) is a cybersecurity approach that operates on the principle of no implicit trust within a network, continuously requiring authentication and authorization for access to resources. It emphasizes a data-centric model focused on protecting assets rather than network segments, and integrates multi-factor authentication to limit potential threats. Implementing ZTA is complex and organizations are encouraged to improve their security posture incrementally, especially when adopting new cloud-based services.

Technology
1 of 6
Download to read offline
1
2
3
4
5
6
ZERO TOLERANCE ZERO TRUST ARCHITECTURE Tuğçe ARSLAN
The Zero Trust Architecture (ZTA) has made a lot of noise in the cybersecurity world, primar- ily due to a recent issue. In that order, the Zero Trust Architecture (ZTA) is cited as one of the best practices for modernizing Federal Government cybersecurity. It is a method of designing the cybersecurity infrastructure of an organization’s network based on the Zero Trust Architecture (ZTA) Model. At its core, Zero Trust Architecture (ZTA) operates on the principle that there is no implicit trust given to any part of a network. The Zero Trust Architec- ture (ZTA) Model was developed to reduce the potential attack threat and increase the security posture. Network security generally deals with ac- cess. Gaining access to a resource requires users to prove their identity by showing their creden- tials, thereby achieving the network’s trust. The traditional “fort and moat” approach to security relies on establishing perimeter defenses where these credentials are checked and access is allowed once verified. However, this practice poses potential security threats. In the Zero Trust Architecture (ZTA) Model, every network request should be treated as if the network had been compromised, and even simple requests should be treated as a potential threat. As a result, multi–factor authentication and authorization are required before a session can be started or any access allowed. Also, when an authenticated user requests access to a new resource, their credentials need to be rechecked. This approach helps limit lateral movement when there is a threat inside the net- work and helps to quickly detect, identify and neutralize threats coming from the outside or inside the network. The total transformation of an organiza- tion’s IT systems to implement a Zero Trust Architecture (ZTA) is complex. Instead, organi- zations should continually improve their security posture in small and simple steps. Also, migrat- ing existing services to the new architecture is often more costly than designing new services from scratch. Therefore, it may be an excellent strategy to implement new services, especially cloud-based ones, by Zero Trust Architecture (ZTA) principles. anumak.ai
Zero Trust Architecture (ZTA) is a data–cen- tric approach because it focuses on protecting the network’s assets rather than its segments. A critical factor for implementing Zero Trust Archi- tecture (ZTA) should be to identify the resources that need protection and the best method to protect them. Data must be protected at rest and in transit, so encryption, especially PKI, is the cornerstone of Zero Trust Architecture (ZTA) implementation. Data collection on the efficien- cy of the policies implemented and user behav- ior is also critical in creating a dynamic system that can adapt to cybersecurity’s ever–changing environment. As the Zero Trust Architecture (ZTA) devel- ops and matures rapidly, the concept of Zero Trust Architecture (ZTA) is explained in different dimensions for different situations. However, based on the Zero Trust Architecture (ZTA) approach; • Network locality is not sufficient to decide trust in a network. • External and internal threats are always present on the network. • Every device, user, and network flow must be authenticated and authorized. • Policies should be dynamic and calculated from as many data sources as possible. Integration of IoT devices into IT networks is quite common nowadays. However, this inte- gration of IoT devices comes with its own set of problems. These devices are not recognized with high–security standards, thus putting the entire network at risk of unauthorized breach. To get it, Zero Trust Architecture (ZTA) is a policy implemented to counter this new vulnera- bility. Design Principles of Zero Trust Architecture (ZTA) • Know your architecture, including users, devices, and data: In other cases, you can identify your pur- chases by following a non–technical procedure such as querying procurement records. It is also essential to know what data is stored in your environment, its location, and its sensitivity. • Evaluate user behavior, service, and device health: • Focus on monitoring users, devices, and services: In a Zero Trust Architecture (ZTA), your mon- itoring strategy will likely change to focus on users, devices, and services. Monitoring your devices, services, and user behavior will help you build your cyber health. anumak.ai
Tracking must be done on the device and exported via a secure transfer (to a central loca- tion). User behavior, such as regular working hours or standard working location, is another critical metric to monitor. It is also essential to have visibility of your services and services. Un- derstand the interaction between users and their data. This information can be used as a signal with any observed abnormal activity operated by a policy engine to make an access decision. You should know what devices, users, and services perform and their access data. Your monitoring should go back to the policies you set and verify that they are implemented as you expect. • Do not trust any network, including your own: Please do not trust any network between the device and its accessing service, including the local network. Communication over a network to access data or services must use a secure transport such as TLS. In addition, the device must be configured to prevent attacks existing on a local web. • Know your user, service, and device IDs: An identity can represent a user (human), service (software process), or device. Each must be uniquely identifiable in Zero Trust Architecture (ZTA). This is one of the most critical factors in deciding whether to grant someone or something access to data or services. These unique IDs are a series of signals that feed a policy engine that uses this information to make access decisions. Completing a discovery exercise is an essential first step towards allocating a single identity resource to your users, services, and devices. • Authenticate and authorize everyone: When assessing the risk associated with access requests. MFA is a requirement for Zero Trust Architecture (ZTA). This does not mean that the user experience has to be poor. On the contrary, powerful MFA can be achieved with a good user experience on modern devices and platforms. • Use policies to authorize requests: Policies can also help facilitate risk–managed to share of data or services with guest users or partner organizations. Use product–managed services and protocols that support a continuous authentication and authorization process. anumak.ai
ANUMAK & COMPANY aNumak & Company is a global management consulting firm, an India private company limited by warranty. It is a company with expertise in creating scalable business models for different industry verticals. The Company strives to provide solutions through consulting, digital transformation, and innovative products that solve modern business problems. Offering on– site and offshore support and unique strategies, aNumak & Company transforms traditional business models into high–performance, dynamic, and distinctive business enterprises. It brings insights from core domain experts to deliver the best possible solutions to drive growth. aNumak & Company and each of its member firms are legally separate and independent entities. For more detailed information about aNumak & Company and its member companies, please visit https://www.anumak.com This material was prepared by aNumak & Company. This material (including any information it contains) is intended to provide general information on a particular topic(s). This material may contain information obtained from publicly available information or other third–party sources. aNumak & Company does not independently verify such sources and is not responsible for any loss resulting from reliance on information obtained from such sources. aNumak & Company does not provide any investment, legal, or other professional advice or services through this material. You should seek specific advice from the relevant specialist(s) for such services. This material or information is not intended to be considered the sole basis for any decision that could affect you, your business, or the operations of the company. Before making any decision or taking any action that could affect your finances or business, you should consult a professional. No institution at aNumak & Company can be held responsible for any loss suffered by any person or institution due to access to, use, or reliance on this material. By using this material or any information it contains, the user accepts he entirety of this notice and the terms of use. ©2022 aNumak & Company anumak.ai
CONTACTS Amith Kumar Chief Executive Officer, aNumak & Company amith@anumak.com Neha Anush Chief Operating Officer, aNumak & Company neha.anush@anumak.com Cesibel Rodriguez Chief Branding Officer, aNumak & Company cesi@anumak.com Ricky Devaya Chief Human Resource Officer – India, aNumak & Company ricky@anumak.com Vilas Khole Chief Delivery Officer – India, aNumak & Company vilas@anumak.com Karthik Reddy Chief Sales Officer – UAE, aNumak & Company karthik@anumak.in Iván Muñiz Rothgiesser Sales Director, aNumak & Company ivan@anumak.com aNumak & Company marketing@anumak.com Pr@anumak.in - info@anumak.com CONTRIBUTORS Gino Mori Valenzuela Client Partner – Retail, aNumak & Company gino@anumak.in Diana Marcela Rios Client Partner – Retail, aNumak & Company diana@anumak.in Víctor Freundt Client Partner – Education, aNumak & Company victor@anumak.in Agyemang Mensah Kwadwo Graphic Designer, aNumak & Company agyemang@anumak.in Author: Tuǧçe ARSLAN arslan@anumak.in anumak.ai

More Related Content

PDF
Zero Trust Architecture - Allendevaux.pdf
SourabhKumar32807
 
PDF
What Is Zero Trust Architecture and Why Do You Need It.pdf
Mesh Security
 
PPTX
COSAC 2021 presentation - AWS Zero Trust
Frans Sauermann
 
PPTX
Zero Trust Architecture Zero Trust ArchitectureZero Trust ArchitectureZero Tr...
MohammadShamsuddin16
 
PPTX
microsoft-cybersecurity-reference-architectures (1).pptx
GenericName6
 
PPTX
What is zero trust model (ztm)
Ahmed Banafa
 
PPTX
Zero Trust: Redefining Security in the Digital Age
Arnold Antoo
 
PPTX
ZERO-TRUST ARCHITECHTURE IN CYBER SECURITY
uu232003
 
Zero Trust Architecture - Allendevaux.pdf
SourabhKumar32807
 
What Is Zero Trust Architecture and Why Do You Need It.pdf
Mesh Security
 
COSAC 2021 presentation - AWS Zero Trust
Frans Sauermann
 
Zero Trust Architecture Zero Trust ArchitectureZero Trust ArchitectureZero Tr...
MohammadShamsuddin16
 
microsoft-cybersecurity-reference-architectures (1).pptx
GenericName6
 
What is zero trust model (ztm)
Ahmed Banafa
 
Zero Trust: Redefining Security in the Digital Age
Arnold Antoo
 
ZERO-TRUST ARCHITECHTURE IN CYBER SECURITY
uu232003
 

Similar to Zero Tolerance Zero Trust Architecture (20)

PDF
BATbern48_How Zero Trust can help your organisation keep safe.pdf
BATbern
 
PDF
Understanding the Zero Trust Architecture Market: A Comprehensive Overview
MarkAdams493291
 
PDF
SAP Application Access with Instasafe Zero Trust
InstaSafe Technologies
 
PDF
Nitel USA_ Enhancing Data Security with Zero Trust Network Access.pdf
Nitel USA
 
PDF
Zero Trust Network Security- A Modern Approach to Cyber Defense (1).pdf
jvinay0898
 
PPTX
ZERO TRUST ARCHITECTURE - DIGITAL TRUST FRAMEWORK
Maganathin Veeraragaloo
 
PDF
The Zero Trust Security Model for Modern Businesses!
Caroline Johnson
 
PPTX
The Importance of Zero Trust Security in Modern.pptx
issahakukuwerej
 
PDF
Fortifying Cybersecurity_ The Imperative of Zero Trust Network Access
Nitel USA
 
PDF
Zero trust in a hybrid architecture
Hybrid IT Europe
 
PPTX
Zero Trust and Data Security
Career Communications Group
 
PDF
Fortinet ZTNA - Um contexto de sua Implementação
mjssbahia
 
PDF
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Mark Simos
 
PPTX
architectures trim.pptx
ssuserc945ac
 
PDF
Zero Trust Networks Evan Gilman Doug Barth
xovaniparpov15
 
PDF
Zero Trust Networks Evan Gilman Doug Barth
buracakerina41
 
PDF
Zero Trust Model Presentation
Gowdhaman Jothilingam
 
PPTX
zerotrustmodelpresentation-200107094517.pptx
niyazhasanov35
 
PPTX
The Open Group - ZT Commandments and Reference Model.pptx
Mark Simos
 
PPTX
Zero Trust 20211105
Thomas Treml
 
BATbern48_How Zero Trust can help your organisation keep safe.pdf
BATbern
 
Understanding the Zero Trust Architecture Market: A Comprehensive Overview
MarkAdams493291
 
SAP Application Access with Instasafe Zero Trust
InstaSafe Technologies
 
Nitel USA_ Enhancing Data Security with Zero Trust Network Access.pdf
Nitel USA
 
Zero Trust Network Security- A Modern Approach to Cyber Defense (1).pdf
jvinay0898
 
ZERO TRUST ARCHITECTURE - DIGITAL TRUST FRAMEWORK
Maganathin Veeraragaloo
 
The Zero Trust Security Model for Modern Businesses!
Caroline Johnson
 
The Importance of Zero Trust Security in Modern.pptx
issahakukuwerej
 
Fortifying Cybersecurity_ The Imperative of Zero Trust Network Access
Nitel USA
 
Zero trust in a hybrid architecture
Hybrid IT Europe
 
Zero Trust and Data Security
Career Communications Group
 
Fortinet ZTNA - Um contexto de sua Implementação
mjssbahia
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Mark Simos
 
architectures trim.pptx
ssuserc945ac
 
Zero Trust Networks Evan Gilman Doug Barth
xovaniparpov15
 
Zero Trust Networks Evan Gilman Doug Barth
buracakerina41
 
Zero Trust Model Presentation
Gowdhaman Jothilingam
 
zerotrustmodelpresentation-200107094517.pptx
niyazhasanov35
 
The Open Group - ZT Commandments and Reference Model.pptx
Mark Simos
 
Zero Trust 20211105
Thomas Treml
 
Ad

More from aNumak & Company (20)

PDF
The Challenges Of Multi-cloud Management.pdf
aNumak & Company
 
PDF
5 Pillars Of Effective Data Management In Modern Data Systems.pdf
aNumak & Company
 
PDF
How CFOs Are Helping Corporations Integrate ESG Into Their Business Strategie...
aNumak & Company
 
PDF
Impact Of Industry 4.0 Technologies On Business Development And Management.pdf
aNumak & Company
 
PDF
The Future Of Smart Technology And Its Effect On Business performance.pdf
aNumak & Company
 
PDF
The effects of Industry 5.pdf
aNumak & Company
 
PDF
Importance Of The Dignity Of Compliance Risk In Organizations.pdf
aNumak & Company
 
PDF
NEXT GENERATION SOFTWARE DEVELOPMENT.pdf
aNumak & Company
 
PDF
Getting Through the Fear Factor When Hiring Tech Talents.pdf
aNumak & Company
 
PDF
Rebuilding social capital and improving business performance.pdf
aNumak & Company
 
PDF
How Advanced Connectivity__ affects the prospects of the market trends today.pdf
aNumak & Company
 
PDF
How Praise And recognition affect bottom line.pdf
aNumak & Company
 
PDF
DANGERS OF TOXIC WORKPLACE.pdf
aNumak & Company
 
PDF
How To Build Mentally Resilience Workforce for An Organization.pdf
aNumak & Company
 
PDF
FUTURE OF RETAIL WILL LOOK LIKE WHAT'S HAPPENED IN THE MUSIC INDUSTRY.pdf
aNumak & Company
 
PDF
Localization of data privacy laws creates opportunities for competition.pdf
aNumak & Company
 
PDF
How a Revamped Data Analytics Approach Can Mitigate Healthcare Disparities.pdf
aNumak & Company
 
PDF
Effects of High Inflation on Private Equity Performance in Business.pdf
aNumak & Company
 
PDF
How Low-code Can Help Businesses Automate IoT In Their Business.pdf
aNumak & Company
 
PDF
How the CEO's visionary leadership can tip the scales in favor of success in ...
aNumak & Company
 
The Challenges Of Multi-cloud Management.pdf
aNumak & Company
 
5 Pillars Of Effective Data Management In Modern Data Systems.pdf
aNumak & Company
 
How CFOs Are Helping Corporations Integrate ESG Into Their Business Strategie...
aNumak & Company
 
Impact Of Industry 4.0 Technologies On Business Development And Management.pdf
aNumak & Company
 
The Future Of Smart Technology And Its Effect On Business performance.pdf
aNumak & Company
 
The effects of Industry 5.pdf
aNumak & Company
 
Importance Of The Dignity Of Compliance Risk In Organizations.pdf
aNumak & Company
 
NEXT GENERATION SOFTWARE DEVELOPMENT.pdf
aNumak & Company
 
Getting Through the Fear Factor When Hiring Tech Talents.pdf
aNumak & Company
 
Rebuilding social capital and improving business performance.pdf
aNumak & Company
 
How Advanced Connectivity__ affects the prospects of the market trends today.pdf
aNumak & Company
 
How Praise And recognition affect bottom line.pdf
aNumak & Company
 
DANGERS OF TOXIC WORKPLACE.pdf
aNumak & Company
 
How To Build Mentally Resilience Workforce for An Organization.pdf
aNumak & Company
 
FUTURE OF RETAIL WILL LOOK LIKE WHAT'S HAPPENED IN THE MUSIC INDUSTRY.pdf
aNumak & Company
 
Localization of data privacy laws creates opportunities for competition.pdf
aNumak & Company
 
How a Revamped Data Analytics Approach Can Mitigate Healthcare Disparities.pdf
aNumak & Company
 
Effects of High Inflation on Private Equity Performance in Business.pdf
aNumak & Company
 
How Low-code Can Help Businesses Automate IoT In Their Business.pdf
aNumak & Company
 
How the CEO's visionary leadership can tip the scales in favor of success in ...
aNumak & Company
 
Ad

Recently uploaded (20)

PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PPTX
TLE Review Electricity (Electricity).pptx
JayPolicarpio2
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PPTX
cloud_computing_Infrastucture_as_cloud_p
mainakbhattacharya20
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
PPTX
SOPHOS-XG Firewall Administrator PPT.pptx
AgnesMunisi
 
PDF
Accuracy of neural networks in brain wave diagnosis of schizophrenia
IAESIJAI
 
PDF
Mushroom cultivation and it's methods.pdf
mailmeonrishi
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PPTX
1. Introduction to Computer Programming.pptx
bonakiduza1024
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PPTX
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
TLE Review Electricity (Electricity).pptx
JayPolicarpio2
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
cloud_computing_Infrastucture_as_cloud_p
mainakbhattacharya20
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
A Presentation on Artificial Intelligence
memembruh336
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
SOPHOS-XG Firewall Administrator PPT.pptx
AgnesMunisi
 
Accuracy of neural networks in brain wave diagnosis of schizophrenia
IAESIJAI
 
Mushroom cultivation and it's methods.pdf
mailmeonrishi
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
1. Introduction to Computer Programming.pptx
bonakiduza1024
 
Teaching material agriculture food technology
LiaRayya
 
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 

Zero Tolerance Zero Trust Architecture

  • 1. ZERO TOLERANCE ZERO TRUST ARCHITECTURE Tuğçe ARSLAN
  • 2. The Zero Trust Architecture (ZTA) has made a lot of noise in the cybersecurity world, primar- ily due to a recent issue. In that order, the Zero Trust Architecture (ZTA) is cited as one of the best practices for modernizing Federal Government cybersecurity. It is a method of designing the cybersecurity infrastructure of an organization’s network based on the Zero Trust Architecture (ZTA) Model. At its core, Zero Trust Architecture (ZTA) operates on the principle that there is no implicit trust given to any part of a network. The Zero Trust Architec- ture (ZTA) Model was developed to reduce the potential attack threat and increase the security posture. Network security generally deals with ac- cess. Gaining access to a resource requires users to prove their identity by showing their creden- tials, thereby achieving the network’s trust. The traditional “fort and moat” approach to security relies on establishing perimeter defenses where these credentials are checked and access is allowed once verified. However, this practice poses potential security threats. In the Zero Trust Architecture (ZTA) Model, every network request should be treated as if the network had been compromised, and even simple requests should be treated as a potential threat. As a result, multi–factor authentication and authorization are required before a session can be started or any access allowed. Also, when an authenticated user requests access to a new resource, their credentials need to be rechecked. This approach helps limit lateral movement when there is a threat inside the net- work and helps to quickly detect, identify and neutralize threats coming from the outside or inside the network. The total transformation of an organiza- tion’s IT systems to implement a Zero Trust Architecture (ZTA) is complex. Instead, organi- zations should continually improve their security posture in small and simple steps. Also, migrat- ing existing services to the new architecture is often more costly than designing new services from scratch. Therefore, it may be an excellent strategy to implement new services, especially cloud-based ones, by Zero Trust Architecture (ZTA) principles. anumak.ai
  • 3. Zero Trust Architecture (ZTA) is a data–cen- tric approach because it focuses on protecting the network’s assets rather than its segments. A critical factor for implementing Zero Trust Archi- tecture (ZTA) should be to identify the resources that need protection and the best method to protect them. Data must be protected at rest and in transit, so encryption, especially PKI, is the cornerstone of Zero Trust Architecture (ZTA) implementation. Data collection on the efficien- cy of the policies implemented and user behav- ior is also critical in creating a dynamic system that can adapt to cybersecurity’s ever–changing environment. As the Zero Trust Architecture (ZTA) devel- ops and matures rapidly, the concept of Zero Trust Architecture (ZTA) is explained in different dimensions for different situations. However, based on the Zero Trust Architecture (ZTA) approach; • Network locality is not sufficient to decide trust in a network. • External and internal threats are always present on the network. • Every device, user, and network flow must be authenticated and authorized. • Policies should be dynamic and calculated from as many data sources as possible. Integration of IoT devices into IT networks is quite common nowadays. However, this inte- gration of IoT devices comes with its own set of problems. These devices are not recognized with high–security standards, thus putting the entire network at risk of unauthorized breach. To get it, Zero Trust Architecture (ZTA) is a policy implemented to counter this new vulnera- bility. Design Principles of Zero Trust Architecture (ZTA) • Know your architecture, including users, devices, and data: In other cases, you can identify your pur- chases by following a non–technical procedure such as querying procurement records. It is also essential to know what data is stored in your environment, its location, and its sensitivity. • Evaluate user behavior, service, and device health: • Focus on monitoring users, devices, and services: In a Zero Trust Architecture (ZTA), your mon- itoring strategy will likely change to focus on users, devices, and services. Monitoring your devices, services, and user behavior will help you build your cyber health. anumak.ai
  • 4. Tracking must be done on the device and exported via a secure transfer (to a central loca- tion). User behavior, such as regular working hours or standard working location, is another critical metric to monitor. It is also essential to have visibility of your services and services. Un- derstand the interaction between users and their data. This information can be used as a signal with any observed abnormal activity operated by a policy engine to make an access decision. You should know what devices, users, and services perform and their access data. Your monitoring should go back to the policies you set and verify that they are implemented as you expect. • Do not trust any network, including your own: Please do not trust any network between the device and its accessing service, including the local network. Communication over a network to access data or services must use a secure transport such as TLS. In addition, the device must be configured to prevent attacks existing on a local web. • Know your user, service, and device IDs: An identity can represent a user (human), service (software process), or device. Each must be uniquely identifiable in Zero Trust Architecture (ZTA). This is one of the most critical factors in deciding whether to grant someone or something access to data or services. These unique IDs are a series of signals that feed a policy engine that uses this information to make access decisions. Completing a discovery exercise is an essential first step towards allocating a single identity resource to your users, services, and devices. • Authenticate and authorize everyone: When assessing the risk associated with access requests. MFA is a requirement for Zero Trust Architecture (ZTA). This does not mean that the user experience has to be poor. On the contrary, powerful MFA can be achieved with a good user experience on modern devices and platforms. • Use policies to authorize requests: Policies can also help facilitate risk–managed to share of data or services with guest users or partner organizations. Use product–managed services and protocols that support a continuous authentication and authorization process. anumak.ai
  • 5. ANUMAK & COMPANY aNumak & Company is a global management consulting firm, an India private company limited by warranty. It is a company with expertise in creating scalable business models for different industry verticals. The Company strives to provide solutions through consulting, digital transformation, and innovative products that solve modern business problems. Offering on– site and offshore support and unique strategies, aNumak & Company transforms traditional business models into high–performance, dynamic, and distinctive business enterprises. It brings insights from core domain experts to deliver the best possible solutions to drive growth. aNumak & Company and each of its member firms are legally separate and independent entities. For more detailed information about aNumak & Company and its member companies, please visit https://www.anumak.com This material was prepared by aNumak & Company. This material (including any information it contains) is intended to provide general information on a particular topic(s). This material may contain information obtained from publicly available information or other third–party sources. aNumak & Company does not independently verify such sources and is not responsible for any loss resulting from reliance on information obtained from such sources. aNumak & Company does not provide any investment, legal, or other professional advice or services through this material. You should seek specific advice from the relevant specialist(s) for such services. This material or information is not intended to be considered the sole basis for any decision that could affect you, your business, or the operations of the company. Before making any decision or taking any action that could affect your finances or business, you should consult a professional. No institution at aNumak & Company can be held responsible for any loss suffered by any person or institution due to access to, use, or reliance on this material. By using this material or any information it contains, the user accepts he entirety of this notice and the terms of use. ©2022 aNumak & Company anumak.ai
  • 6. CONTACTS Amith Kumar Chief Executive Officer, aNumak & Company amith@anumak.com Neha Anush Chief Operating Officer, aNumak & Company neha.anush@anumak.com Cesibel Rodriguez Chief Branding Officer, aNumak & Company cesi@anumak.com Ricky Devaya Chief Human Resource Officer – India, aNumak & Company ricky@anumak.com Vilas Khole Chief Delivery Officer – India, aNumak & Company vilas@anumak.com Karthik Reddy Chief Sales Officer – UAE, aNumak & Company karthik@anumak.in Iván Muñiz Rothgiesser Sales Director, aNumak & Company ivan@anumak.com aNumak & Company marketing@anumak.com Pr@anumak.in - info@anumak.com CONTRIBUTORS Gino Mori Valenzuela Client Partner – Retail, aNumak & Company gino@anumak.in Diana Marcela Rios Client Partner – Retail, aNumak & Company diana@anumak.in Víctor Freundt Client Partner – Education, aNumak & Company victor@anumak.in Agyemang Mensah Kwadwo Graphic Designer, aNumak & Company agyemang@anumak.in Author: Tuǧçe ARSLAN arslan@anumak.in anumak.ai