Why Implement Zero Trust

IBM knows how to creating videos explaining complex topics in a very simple and precise manner

Great analogy of House to simplify the understanding - How to secure IT infra at Zero Trust Level. Nicely Explained - Never Trust Always Verify. Thanks a lot Jeff!

Excellent explanation! Very easy to understand. Thanks and hope you produce more of this type of content.

This is a nice presentation. Thank you.
Another way I like to put it is this, "The role of security is to let the right people in, not to keep the wrong people out". Looked at it this way, zero trust doesn't look so draconian. This doesn't sit well with the house analogy, but does with real commercial computer systems (sadly, there have been cases throughout the history of IT where systems have been abused from the inside as well as from the outside).
The point about granting people only the rights they need is well made - though you do need facilities and procedures to give temporary access when a critical worker on a system is suddenly unavailable: someone has to have the authority to grant temporary access - and then take it away as soon as the usual person returns.
The point about "risk assessment" is also well made. You want everyone to come to your website and browse freely if you are selling something - but you want a solid guarantee of identity if they have a purchasing account with you: so different parts of your application may well have very different levels of security from total trust to zero trust, Granularity is key, and must be designed into the application from the outset. Good Code is Not Enough!

These vids rock. Whoever came up with the idea is the man

I like the build-up scenario of the house security, is like holding a baby's hand from level 0 to a higher level of talking about the least privilege. Thank you.

Impressive overview of complicated subject made simple by best of the best - @Jeff Crume!

Jeff this was a great presentation !!!

Clear and genius explanation! As usual :)

This is excellent!

Awesome presentation! Thank you for sharing the knowledge.

Great analogy.

Well explained. Good comparisons.

This was a great explanation and great video!!

Brilliant stuff.

Very short, but nicely packaged overview of zero trust concept. Thank you,

Very informative and useful, thank you.

It was very good, thanks for the explanation!

“The things that I trust the most are the things that I have verified the most”
Depending on risks, we are setting our point in the implicit-zero tolerance spectrum… how much we’re willing to risk and our risk tolerance.

Thank you for the great information

I think it lacks the explanation of “why zero trust is essential when you are using the public cloud ?”
Many companies are still thinking of perimetrical security because they are used of the “on premise” world. In the public cloud, the attacks can arrive from any place, any component…

only things i can verify.. do i trust .. start from zero and rebuild..

I give you ⭐⭐⭐⭐⭐

What kind of board is that? I want one.

Distinguish engineer,what is this role. This topic is related to security engineer isn’t it ?

What does DMZ mean?

Fun

How very 1984

I don't trust this man.

said nothing

Lol saying pay per view in 2024.