Zero Trust is more than just vendors and products • The Register

Zero Trust is more than just vendors and products • The Register

The world of Dell technologies Zero-trust architectures have become the focus of enterprises trying to figure out how to protect an IT environment where data and applications are increasingly distributed outside the traditional perimeter defenses of central data centers. .

With the attack surface expanding and cyber threats growing in number and complexity, many organizations are navigating a cybersecurity space that has countless vendors and products to choose from, according to Chad Dunn, vice president of product management for Apex as a Service at Dell. .

Zero trust, which essentially dictates that no person or device attempting to access the network should be trusted and must go through a strict authentication and verification process, will be critical for businesses moving forward, but it has to be more than just simply buying and deploying products, Dunn said Register in an interview here in Las Vegas at the Dell Technologies World trade show.

Customers “have heard of it, some more than others,” he said. “But I don’t think consciousness is where it needs to be yet.

He added: “It’s one thing to have technology that is capable in a zero-trust environment. It’s another thing to have the right processes and procedures to behave in a zero-trust model. That’s the next iteration of learning. It’s kind of a new discipline.” And it makes you re-examine everything from physical access to identity management to things like secure device onboarding.”

Zero trust frameworks are gaining momentum in the market. Analysts at KVB Research said the global market reached $54.6 billion by 2026, growing an average of 18.8 percent annually until then.

The COVID-19 pandemic accelerated demand with the rapid shift to remote work, which increased risk.

In March, the Cloud Security Alliance created the Zero Trust Advancement Center led by Zscaler, CrowdStrike, and Okta to help make sense of the growing number of zero trust products and approaches coming to market by establishing standards, certifications, and best practices.

Such steps could help organizations narrow their focus as they think about zero trust.

“If you ask a customer what they’re doing with zero trust, they may be looking at what this product does, what that product does,” Dunn said. “But it really involves, do you operate under the assumption of zero trust? Putting that mindset and processes into practice is much more important. Sometimes it’s easy to buy a product, but it’s harder to get an organization’s processes to operate it.” “.

Dell is putting a focus on security at this week’s show, offering its cyber recovery services as a full managed service in its Apex portfolio to help organizations more easily recover from ransomware and other attacks.

Additionally, Dell offers data protection products through Amazon Web Services and Microsoft Azure, and allows many of these to run in colocation facilities operated by companies such as Equinix, Digital Realty and Switch.

Dell has been selling Cyber ​​Recovery technology to businesses as a custom product and in recent years has deployed more than 2,000 Cyber ​​Recovery Vaults, which save and protect data that can be used in the event of an attack. of ransomware. Now he offers it as a service.

“With security moving so fast, threats changing so fast, and the attack surface changing so fast, consuming something like this as a service can be very convenient for them,” Dunn said.

The company also sells its CyberSense technology for detecting incidents, as well as a host of other security products through its Secureworks business. Dell is not seeking to be a complete provider of cybersecurity technology, although it is helping organizations plan for and adopt a zero-trust model, he said.

Other providers are also implementing services to protect data. Hewlett Packard Enterprise in September 2021 entry the data protection as a service market with backup and disaster recovery services in its GreenLake portfolio.

Many companies embracing zero trust are placing an emphasis on infrastructure service providers such as colocation companies, Dunn said. They provide enterprises with complete data center operations, from compute and storage to connectivity, that customers do not have to manage but are considered private, allowing them to address data privacy and sovereignty requirements.

There are also operational and administrative headaches, not to mention the increased costs, that come with corporate data centers. A customer told Dunn that it would take him 25 years to pay off the cost of a data center.

“We saw [the shift to colocation facilities] speed up during COVID,” he said. As companies moved to a remote model, they found they were spending a lot on real estate to house people… If you think it’s expensive to house one person in an office, a rack of servers is pretty expensive to house. .

“The way technology is moving in terms of power consumption and heat dissipation due to processors, more and more use of GPUs, it’s going to be very expensive to have a data center. To get reasonable density, you’re going to I have to start looking at things like water cooling and more and more power for each tile. Some data centers just can’t handle it.”

Dunn said that cybersecurity services are the first comprehensive offerings in Apex and that Dell is considering other fields to expand these comprehensive services to include HPC, MLOps and virtual desktop infrastructure (VDI).

The company is also looking to expand its Apex cybersecurity services in other areas, including client systems, which will be important as hybrid working becomes the norm, meaning employees work on home networks. Dunn said that’s a goal he has for the second half of the year. ®

Leave a Comment