One Identity has released global survey findings that unpack the current state of Zero Trust awareness and adoption across the enterprise. As Zero Trust awareness continues to rise on the heels of the U.S. White House’s “Executive Order on Improving the Nation’s Cybersecurity” that was released in May, and a year plagued by one disastrous cybersecurity incident after another, new findings from One Identity reveal that only 1 in 5 security stakeholders are confident in their organisations’ understanding of Zero Trust.
According to the Dimensional Research-conducted survey of 1,009 IT security professionals, Zero Trust is a main security priority for most organisations, but comprehensive understanding and adoption of the Forrester-founded framework remains inconsistent. While 75% of organisations recognise Zero Trust as being critically or very important to bolstering overall cybersecurity posture, only 14% report that they have fully implemented a solution. Another 39% of organisations have begun to address this important need, and an additional 22% noted that they plan to implement Zero Trust over the course of the next year.
Among key barriers to widespread Zero Trust success is a lack of clarity on how adoption can be achieved. 61% of security professionals are focusing their implementation on reconfiguring access policies, while 54% believe it begins with identifying how sensitive data moves throughout the network. While 51% are implementing new technology to achieve Zero Trust.
In total, a substantial 32% of security teams lack a comprehensive understanding of how Zero Trust should be implemented within their organisation. Other key barriers to Zero Trust adoption include competing priorities (31% are too busy with other daily priorities), and beliefs that Zero Trust can hinder business productivity (for example, 31% erroneously believe that Zero Trust security models impact employee productivity).
“Organisations recognise that the traditional perimeter is no longer enough and that they will be best served by prioritising identity security and taking steps to ensure bad actors are limited once they gain access,” said Bhagwat Swaroop, president and general manager, One Identity. “Zero Trust is fast becoming an enterprise imperative because it eliminates vulnerable permissions and excessive access by delivering a continuum of different rights across the organisation to ultimately limit attack surfaces if they are breached.”