Zero Trust

At Prodigy13, we think  Zero Trust security 24×7/365 days a year. We are committed to a complete Zero Trust architecture, delivery, and enforcement across all of our products, and services! Zero Trust for on-site users, and assets, and the Remote workforce.

ZT Overview, and Core Principles

60% of organizations will embrace Zero Trust by 2025, as a starting point for security, more than half will fail to realize the benefits! (Gartner’s prediction).

 

Zero Trust (ZT) is now a prevalent term in security guidance from governments, however, as ZT is both a security principle and an organizational vision, it requires a cultural shift and clear communication that ties it to business outcomes to achieve the benefits.

The Zero Trust Security model is a new, and evolving set of security principles that move the defenses from network-based Perimeters to focus on users, assets, and resources.

Zero Trust (ZT) is a response to the new norm, the enterprise that includes Remote users, bring your own device (BYOD), and Cloud-based assets that are not located within your organization’s network perimeter.

A Zero Trust Architecture (ZTA) uses zero trust principles to plan the organization’s infrastructure and workflows.

Old Approach: Perimeter Security

  • The Perimeter Security (Castle & Moat) model, provides implicit trust to a device and user solely based on IP and network identity.
  • This model unfortunately provides no protection for your remote workforce since they are located outside of your perimeter (corporate office/branch/etc). Using the Perimeter security model requires deployment of additional expensive security controls (firewall, IDS, etc) in each of your offices, branches, etc. Securing your cloud resource and allowing access to trusted parties (remote work force, partners, etc) becomes a challenge.
  • Once user authenticates and logins to the network, access is granted to all resources, without further user/device security checks required.
  • Designed around VPN technology which introduces performance bottlenecks, and risks once access to the corporate network is granted and no further security checks are performed.
  • Since trust is granted implicitly, this model allows for lateral movement of the bad actors (from device to device inside your network), and easy data ex-filtration of your confidential data.

New Model: Zero Trust

  • With Zero Trust Network Access (ZTNA) there is no implicit trust granted to assets or user accounts based solely on their physical or network location (i.e., on site users versus remote workers) or based on asset ownership (enterprise vs personally owned devices). ZTNA does not trust users just because they are connecting through your VPN, or are already part of your network perimeter.
  • Authentication, and authorization (both user and device) is performed before a session to the organization resources is established.
  • Zero Trust focuses on protecting resources (assets, services, workflows, network accounts, etc.), not network segments, as the network location is no longer seen as the prime component to the security posture of the resource.

Our Approach to ZT

Our Zero Trust solutions secure your organization against modern attacks through a design and implementation of a holistic security architecture, backed up by 80+ years of experience in information security architecture, and management.

Our team members have used practically zero trust principles for many years, way before the pandemic, and prior to the remote workforce becoming the new norm. 

Our ZT expertise covers:

  • Network security: ZTNA, VPN replacements, secure gateways for your workforce
  • Cloud and application assets protection
  • Device security (posture management)
  • Users (clients, and workforce).
  • Our experts adhere to the highest security standards, and the Zero Trust principles established by the most rigid organizations such as NIST, and CIS.
  • We work with all leading security companies, and can help you achieve 100% Zero Trust adoption, regardless of your current maturity level.

Prodigy13’s Zero Trust Process

1

Analyze

Initial Assessment of your infrastructure, assets, and users

2

roadmap

Building a Roadmap based on Risk, and available resources

3

architect

Architecture of various components needed for 100% Zero Trust adoption

4

Implement

Implementation assistance (assisted or fully managed)

5

report

Implementation assistance (assisted or fully managed)

ZT Roadmap

We will work closely with your organization’s operations, management, and IT teams to scope out the most complete ZT architecture and security controls needed – based on your organization’s Risks, and current security posture maturity. 

ZT Roadmap
ZT Roadmap

The above is a list sourced from the NIST CSAC publication SP 800-207. *Zero Trust Architecture!

Partnership

Free ZT Certification Report

While there is no currently a certification authority for Zero Trust, at the end of the day, we can provide your organization with formal letter/reports:

1.

Confidential detailed report based on your Zero Trust security posture, which you can distribute to potential clients via NDA (similar to SOC 2 audit report), to help with 3rd party risk assessments.

2.

Basic report, containing no-confidential information and ZT badge, which you can distribute freely or publish on your website

Free Assessment

Frequently Asked Questions

Build and run applications knowing they are protected. Take an adversary-focused approach that provides automated discovery, continuous runtime protection, EDR for cloud workloads and containers, and managed threat hunting, enabling you to securely deploy applications in the cloud with greater speed and efficiency.

Build and run applications knowing they are protected. Take an adversary-focused approach that provides automated discovery, continuous runtime protection, EDR for cloud workloads and containers, and managed threat hunting, enabling you to securely deploy applications in the cloud with greater speed and efficiency.

Build and run applications knowing they are protected. Take an adversary-focused approach that provides automated discovery, continuous runtime protection, EDR for cloud workloads and containers, and managed threat hunting, enabling you to securely deploy applications in the cloud with greater speed and efficiency.

Build and run applications knowing they are protected. Take an adversary-focused approach that provides automated discovery, continuous runtime protection, EDR for cloud workloads and containers, and managed threat hunting, enabling you to securely deploy applications in the cloud with greater speed and efficiency.

Resources
Security

SAML explained

SAML explained in plain English: https://www.onelogin.com/learn/saml SAML is an acronym used to describe the Security Assertion Markup Language (SAML). Its primary role in online security is

Read More
October 5, 2022
Security

Threat Hunting – Practical Guide

Resource: https://www.threathunting.net/files/hunt-evil-practical-guide-threat-hunting.pdf To begin, let’s clarify what threat hunting is: Threat hunting is the human-driven, proactive and iterative search through networks, endpoints, or datasets in

Read More
September 25, 2022

Services

Why Pr13 ?

Zero Trust Security

Company

Experiencing a Breach ?

Our Offices

New York Office

Washington Office

Recent Blog Posts