Zero Trust a foundation of success in Cyber Security 

In the realm of cyber security, Trust is the foundation for success. And now, the next evolutionary step is ‘Zero Trust’.

At first glance, the concept might sound contradictory. Zero Trust, however, is a strategy that throws the idea of a trusted network, device and user out the window in favour of authentication and authorisation at every step.

Just because we let someone into our homes through the front door doesn’t mean we want them to snoop through our medicine cabinet. Zero trust strategy transcends traditional reliance on perimeter security and aims at designing controls inside-out.

During the Cyber Security Asia 2023 event in Kuala Lumpur, Jay Hira delivered a captivating keynote speech on Zero Trust, marked not only by its compelling content but also bu the engagement it fostered with the audience.

Jay started the session by involving the audience in a lively exercise. He prompted everyone to greet the person on their right and left, repeating the session’s title, “Remember, Trust Nobody!”

This exercise not only energised the audience but also reinforced the central theme of the talk.  Jay further heightened audience participation by offering exciting giveaways to those who accurately guessed the number of times he would use the phrase “Zero Trust” throughout the speech. This clever incentive added an element of excitement to the session.

Continuing the session, Jay delved into the limitations of conventional security approaches and the need for a paradigm shift as the lines between inside and outside the perimeter blur, advocating for micro-segmentation and conditional access controls.

Jay then discussed the drivers for change, including the convergence of IT and OT, increased reliance on supply chains, and the shift towards remote work models.  He emphasised the importance of aligning cybersecurity initiatives with business objectives and transforming cybersecurity from being seen as an expense to being a business enabler.

He presented a comprehensive Zero Trust capabilities model, illustrating the importance of data, user, device, network, and workload pillars. The model emphasised the need for risk management, asset management, governance, and effective detection, response, and recovery capabilities.

Concluding the speech, Jay outlined three steps essential steps to embark on the Zero Trust journey. He encouraged the audience to familiarise themselves with different schools of thought, assess their business needs and risk profiles, and develop a clear strategy, roadmap, and investment priorities.

Jay reminded everyone that Zero Trust is an aspirational state and that every organisation needs to strive to shift the dial from unreserved trust more towards Zero Trust while enabling business objectives.

To conclude the session, Jay artfully revisited the exercise and requested the audience to share their counts. Diverse numbers were put forth, ranging from 20 to 40.

Rather than providing the exact count, Jay redirected the audience’s attention to the initial exercise they had participated in, reiterating the title of the session, “Remember, Trust Nobody!”.

In summary, Jay Hira’s keynote speech on Zero Trust at Cyber Security Asia 2023 was engaging, thought-provoking, and delivered substantial value to the audience.

Through audience engagement, concise content, and a cohesive flow, Jay effectively conveyed the significance of adopting the Zero Trust strategy in today’s cybersecurity landscape.

#Jay Hira shared interesting points during the Cyber Security Asia 2023 event in Kuala Lumpur.

Photo credit — Jay Hira LinkedIn

About Jay Hira

He is a Cyber Security Strategy and Transformation Director with over 15 years of international experience supporting financial services to be come more cyber resilient via the adoption of Zero Trust principles as a way to build Trust and attract more customers to enable growth.