| |MAY 20229software to a data set via an application programming interface (API).As organizations globally rushed to support the remote workforce with the threat vectors spread across endpoints, combining that with surging cyber attacks prompted them to deploy a zero-trust security model. Early this year, COVID-19 related data of around 20,000 people were reported to have leaked from Indian government sites and were put on sale on the darknet. The data showed name, age, gender, mobile number, address, date and result of COVID-19 report of these people. This is a breach of people's personal identity information and happened on a government website. Even companies like Apple and Meta could not evade data breaches, when recently hackers managed to obtain unauthorized access to their customer databases. Hence, it is given that bad actors will inevitably get inside any organization's network. Hence, everything possible must be tried-out to minimize the attack surfaces and protect the business-critical data from being damaged or destroyed.As part of this Zero Trust strategy, organizations must also be exceptionally vigilant around their data backup and recovery strategies. The concept of constantly verifying, continuously authenticating, and always logging who is going where & doing what should apply to regular operations and application usage. It should also apply to the data backup and recovery processes. For instance, it's critical to know who is initiating that backup and where they are backing up the data.It's also essential to ensure that whatever applications you're using for your backup and recovery, those applications have embedded authentication mechanisms such as multifactor authentication, identity services, and role-based access. Take for instance, a worker who needs to have data recovered from her laptop. What are the credentials that allow this employee to restore the machine? What permissions were granted, and do those permissions need to be changed to reflect a new set of requirements? If the IT team is restoring a laptop set-up a year ago, who ensures no one else has access to that machine? A Zero Trust approach to data backup and recovery can go a long way towards resolving these questions while securing enterprise data further.Adopting Zero Trust for backup and recovery can mean extending the security controls that already exist within your environment. For example, applying multifactor authentication to your backup and recovery processes can help establish identity insurance and add a greater level of protection to your organization.Immutable storage should also be part of any Zero Trust initiative. Immutability is when data is converted to a write-once, read many times format. Immutable storage safeguards data from malicious intent by continuously taking snapshots of that data every 90 seconds. Because the object store is immutable, you can quickly restore data even if someone tampers with it.As data breaches grow in volume and complexity, organizations must consider novel approaches to strengthen their protection against cyber threats. Zero Trust is not a specific technology or architecture. Instead, it is a new way of thinking that can help you achieve robust threat protection and gain next-level security. ZERO TRUST IS ALSO ABOUT GRANTING JUST ENOUGH PRIVILEGE, JUST IN TIME, SO THAT USERS CAN PERFORM THEIR NEEDED TASKS AND OPERATIONS, AND NOTHING MORE
< Page 8 | Page 10 >