The Cybersecurity and Infrastructure Security Agency ZeroTrust Maturity Model 2.0, circa 2023, is extremely well thought through and comprehensive

In CISA’s own words, “Zero trust presents a shift from a location centric model to a more datacentric approach for finegrained security controls between users, systems, data and assets that change over time; for these reasons”.

💯 Nothing wrong with that !

However, over the past many years we have seen – implementers struggle with understanding, retaining and most importantly, communicating this effectively within their organizations. This has led to multiple different definitions of Zero Trust, and no two people can explain it the same way.

We have seen some CISOs pooh-pooh the model, while we have seen others hang their careers on it. We have seen budget line items for Zero Trust, and we have heard others say they don’t “believe” in Zero Trust. We have seen CIOs balk at the perceived cost, and CEOs think it’s yet another tool cybersecurity wants. Some have even told us that all their vendors are Zero Trust (Whaaat !) 🤦‍♂️

Every time this happens it defeats the goal & purpose of Zero Trust. The poor communicability & sell-ability, erodes confidence and could eventually compromise security.

The problem is not, and has never been, in the model itself, but its communicability needs to be bettered. Significantly.

Well, so since nobody else did it, we set about to fix that. 🤷

Here is a new way to articulate, understand and sell Zero Trust within your organizations. Presenting the Kliyent WINDOWPANE articulation.

(P.S: you are welcome !)