AWS re:Invent 2022
Zero Trust Cnapp and Cloud Workload Protection with Zscaler Prt073

Title

AWS re:Invent 2022 - Zero Trust CNAPP and cloud workload protection with Zscaler (PRT073)

Summary

  • Recent sports betting incidents highlight the need for robust security measures.
  • The Department of Defense has published a framework based on Zero Trust, which all entities must adopt by 2027.
  • Zscaler has been a pioneer in Zero Trust for over 15 years, with a cloud-native zero trust exchange.
  • Zero Trust is about decoupling applications from the network, obscuring IP addresses, and inline SSL inspection.
  • Zscaler's focus has expanded from user security to workload and IoT/OT security.
  • The talk emphasizes the importance of securing the entire continuum from build to run, introducing Zscaler's posture control product.
  • Posture control includes cloud security posture management, entitlement management, and cloud workload protection.
  • Zscaler's approach helps prioritize risks by considering factors like public exposure, sensitive data access, and IAM roles.
  • The company also integrates compliance mapping with frameworks like PCI, NIST, and CIS.
  • Zscaler's workload communications product secures real-time data exchange and eliminates the need for a routable network.
  • The Zero Trust Exchange facilitates secure, encrypted micro tunnels, reducing attack surfaces and complexity.
  • Zscaler integrates posture control with workload communication for a feedback loop between real-time workloads and cloud posture management.
  • Attendees are invited to visit booth 118 for demos and detailed architecture discussions.

Insights

  • The Zero Trust model is increasingly recognized as a critical security framework, as evidenced by the Department of Defense's adoption.
  • Zscaler's long-standing experience with Zero Trust positions it as a leader in the space, offering mature solutions.
  • The shift from traditional network security to Zero Trust involves significant changes in how security is approached, focusing on minimizing attack surfaces and preventing lateral movement.
  • The integration of cloud security posture management and cloud workload protection into a single posture control product reflects a holistic approach to cloud security.
  • Zscaler's solutions are designed to address the complexity and security challenges of modern cloud environments, including multi-cloud and hybrid scenarios.
  • The emphasis on reducing alert fatigue through prioritization of risks is a response to the growing volume of security alerts that security teams face.
  • Zscaler's approach to workload communications and the use of micro tunnels can be particularly beneficial for organizations undergoing mergers and acquisitions, where network complexity and IP address conflicts are common issues.
  • The presentation suggests a phased approach to implementing Zero Trust, allowing organizations to progress at a pace that suits their needs and maturity level.
Zero Privilege Operations Running Services without Access to Data Sec327Zero Trust Enough Talk Lets Build Better Security Sec405