5 phases of zero trust in cloud adoption

Image from Pixabay

Over 85% of organizations around the world have increased their zero trust cybersecurity budgets since 2021. Last year, 24% of organizations had a zero trust initiative in place, while in 2022 that number increased to 55%.

The State of Zero Trust Security 2022 report from Okta surveyed 700 security decision-makers about zero trust adoption and maturity at their organizations. The report identified five levels of zero trust maturity across businesses and found key characteristics of each maturity level.

1. Traditional

At the first stage of zero trust adoption, the report found that organizations experience the challenges of a lack of zero trust maturity, such as higher levels of cyber risk. According to the report, implementing multi-factor authentication (MFA) for employees at this stage can help organizations progress to the next step of zero trust adoption.

2. Emerging

As an organization's cloud adoption expands, the need to secure the expanding cyberattack surface becomes more relevant. For organizations considering zero trust, this step involves implementing MFA for external users, adding tools such as single sign-on (SSO) across the employee base, and determining secure applications for enterprise use automatically.

3. Maturing

Organizations with advanced cloud and remote work structures may have a greater need for identity management frameworks, such as zero trust. Maturing businesses can expand SSO to external users, introduce automated role-based access control (RBAC), and monitor for cyber threats across their cloud infrastructure.

4. Elevated

Businesses in the elevated stage of cloud and zero trust adoption can look into phasing out legacy technologies and focusing on application security. Securing application programming interfaces (APIs) and focusing on context-based access management can be goals during this stage.

5. Evolved

Evolved organizations have put zero trust strategies in place in their networks and can monitor for real-time threats to their attack surface. Identity management strategies that evolved organizations can consider include passwordless authentication and access control at the data level, according to the report.

For more report insights, click here.

Madeline Lauver is the Editor in Chief of Security magazine. Lauver joined Security in 2021 as its Assistant Editor, and she covers news affecting enterprise security leaders, including physical security, cybersecurity, leadership and management, risk and resilience and more. Within her role at Security, Lauver focuses on news articles, Web Exclusives, features, and several departments for Security’s monthly digital edition, as well as managing social media and multimedia content. Lauver graduated in 2019 with a BA in English, German and Media Studies from Kalamazoo College.

ON DEMAND: Business-impacting events such as severe weather, man-made disasters, and supply chain disruption are increasing in frequency and making impacts around the globe.

A head of state needs heart surgery at your facility. High-profile members of a national sports team are getting updated vaccinations. What do you do when you get the call?

5 phases of zero trust in cloud adoption

1. Traditional

2. Emerging

3. Maturing

4. Elevated

5. Evolved

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest enterprise risk and security industry trends.

5 phases of zero trust in cloud adoption

1. Traditional

2. Emerging

3. Maturing

4. Elevated

5. Evolved

Share This Story

Related Articles

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest enterprise risk and security industry trends.