Zero Trust is a data-centric approach to security. This involves identifying the data assets that need protection and creating a data classification policy. With this information an Enterprise Information Security Policy (EISP) can be developed to drive an “All of Enterprise” approach to security.
So, what exactly is a “data-centric” approach?
DATA-CENTRIC SECURITY
As a data-centric methodology, Zero Trust is essentially a risk-based approach to security.
So, what does this mean and how do you start?
