What is Zero Trust?
Simply put, Zero Trust is a cybersecurity strategy built on the belief that you should Never Trust and Always Verify. But how do you secure infrastructure, applications and services, and data that, as part of your cloud strategy, are connected broadly and accessible by anyone, at any time, from any location on your network and off? Zero Trust makes it simple to improve your security posture.
Manageable Steps to Achieve Zero Trust Mainframe Security
The first design principle of Zero Trust is focusing on business objectives, and then identifying the crucial assets that enable these objectives. Those assets are then treated as a Protect Surface, shielding them with greater efficiency and effectiveness than trying to protect or shrink the entire attack surface.
When a Mainframe is part of your hybrid cloud infrastructure, your most crucial assets are typically the client, transactional, and institutional data residing on your Mainframe.
Mainframes have an excellent, well-deserved reputation for high security. Yet Mainframes are not automatically secure to a Zero Trust standard. It’s important to treat them like your Cloud, on-prem or other servers; all Zero Trust principles and processes apply equally to the Mainframe in the context of cybersecurity.
Broadcom’s Mainframe security software solution is in line with the guiding principles of Zero Trust. Starting with ACF2, the first Mainframe ESM, and built on the Principle of Least Privilege, Broadcom lets you start where you are and add strategic security layers incrementally for immediate and ongoing risk reduction. For example, add Multi-factor Authentication (MFA) quickly, without the disruption of a complete security redesign to improve access control.
The evolution of the Protect Surface concept is a solid foundation for an incremental approach toward a Zero Trust model, covering crucial assets in a Protect Surface as prioritized by the organization.