Hi all – long time lurker here on this sub, have a high appreciation for tech and security. I work in cybersecurity but more on the account management side delivering solutions and services to large enterprise customers mainly within global financial services space which is highly regulated.
Long story short, client is looking for help with a zero trust implementation for IoT devices as well as all endpoints (authentication, API standards, micro segmentation, network testing, etc). I understand that this is a bit vague and high level. I did some googling but they’re essentially asking us to put together a 1-2 page presentation on what zero trust means to us and how we would potentially go about implementing it in their use case(s). I have more details and can provide as needed but figured I’d start here.
Normally I bring in technical engineers but in this case I don’t believe I have anyone on my team with enough knowledge or expertise around this topic. Any suggestions, is anyone familiar with this concept and how to take it from design to production?
Any feedback, suggestions or ideas will be greatly appreciated! Feel free to comment or DM to continue the discussion. Thank you!