Deloitte is introducing a new managed service called Zero Trust Access. It offers a cloud-native method for securing communications between users, on any device, and enterprise applications, wherever they may be located, in order to assist organizations in adopting zero trust more quickly and effectively.
The Zero Trust idea commits to replacing implicit trust with a risk-based approach to accessing corporate resources spanning identities, workloads, data, networks, and devices inside an information technology (IT) ecosystem. Given that old security architecture approaches are no longer enough to secure the pervasive nature of the modern company, this concept is gaining traction.
Zero Trust Access, part of Deloitte’s recently expanded Zero Trust offering, helps organizations embrace zero trust while also meeting their changing needs for data, infrastructure, and application security. The Zero Trust Access managed cybersecurity service links users to applications through a cloud-native solution. Following the integration of recently acquired talent and technology into existing Deloitte services, Deloitte claims it to be intrinsically scalable, robust, flexible, and secure. Additionally, the managed cybersecurity service can be used independently, in conjunction with other Deloitte services, or as a component of a larger solution that makes use of technologies from Deloitte’s network of alliances.
“As perimeter-based approaches are no longer suitable to secure the modern enterprise, many organizations are working to enhance protection for their IT ecosystems via zero trust,” said Andrew Rafla, Deloitte Risk & Financial Advisory’s zero trust offering leader and principal, Deloitte & Touche. “Zero Trust Access was built as a turnkey managed service helping ourselves and our clients accelerate adoption of this transformative security framework. Our goal was to create a cost-effective solution that can be delivered standalone or complementary to a broader ecosystem and ultimately help decrease the burden on IT and security teams who likely need to manage multiple heterogenous solutions to achieve similar outcomes.”
DaaS, VDI, VPN, SaaS
que data protection offered by Deloitte’s Zero Trust Access solution, which makes use of device-level secure microcontainer technology, would help safeguard infrastructure while also enabling businesses to apply least privilege policies and safeguard sensitive enterprise data.
The managed cybersecurity service can take the role of remote access options including desktop as a service (DaaS), virtual desktop infrastructure (VDI), and virtual private network (VPN), all of which often demand hefty infrastructure investments, high running expenses, and overhead for technology administration.
No matter the type or location of the applications being accessed (e.g., legacy hosted applications, Software-as-a-Service (SaaS), thick-client, web-based applications), Zero Trust Access includes features like ephemeral connectivity built upon secure peer-to-peer (P2P) communication, conditional access and continuous authorization, as well as robust data protection for data at-rest, in-use, and in-transit. Organizations can benefit from outcome-based solutions that would help increase business agility, boost user productivity, and lower the cost and complexity of cybersecurity operations by using Zero Trust Access.
“Beginning zero trust adoption isn’t simple, fast or easy for most organizations,” said Deborah Golden, Deloitte Risk & Financial Advisory Cyber and Strategic Risk leader and principal, Deloitte & Touche. “We’re launching Zero Trust Access as the first in many adoption-enabling services and solutions to come, so that our clients are better able to modernize their security programs, enable agile operations and confidently advance with emerging technologies and transformative risk management principles that can build more resilient security practices.”
