Centrify, a leading provider of Zero Trust Security through the power of Next-Gen Access, announced results of a commissioned study conducted by Forrester Consulting on behalf of Centrify, which finds that organizations powering Zero Trust Security with Next-Gen Access solutions reported twice the confidence to accelerate new business models and customer experiences.
The study of 311 IT decision-makers in North America and the UK finds that 67 percent of all enterprise resources are exposed to access-related risk, and that a Zero Trust Security approach is the best strategy to control access to enterprise resources. The study revealed that Next-Gen Access is the engine that powers Zero Trust Security, stating that, “NGA technologies enable the layers necessary for a successful Zero Trust strategy.” Organizations using Next-Gen Access solutions – including Identity-as-a-Service (IDaaS), Enterprise Mobility Management (EMM), and Privileged Access Management (PAM) – also reported topline benefits including being 66 percent more confident in adopting mobile work models, and 44 percent more confident in securing DevOps environments. Those same respondents reported bottom line benefits of mitigating overall risk by 37 percent and reducing security costs by 31 percent. According to Forrester, 58 percent of global enterprises have experienced a breach in the past 12 months.
According to the study, “Security leaders are urgently scrambling to defend every entry point, but traditional approaches to security, based on keeping out the ‘bad guys,’ while letting in the good guys, have proven ineffective.” In response, many security leaders are turning to Zero Trust approaches that remove trust from the equation completely, shunning the traditional “trust but verify” approach and replacing it with a “never trust, always verify” mandate. “The dissolving network perimeter is causing a complete rethink in how we approach security, taking into account a new enterprise reality defined by the cloud, mobility, and increasing demands for agility,” said Tom Kemp, CEO of Centrify.
To enforce user access, a Zero Trust strategy requires that an organization’s security must have the capability to: • Verify the identity of every user through a combination of identity governance, single sign-on, and multifactor authentication (MFA) to eliminate the risk of credential compromise.
• Validate every device with mobile device management to enforce secure policy, with local administrator privilege management to eliminate local admin compromise, and with device identity management to ensure that only trusted devices are allowed to access resources.
• Limit access and privilege using privileged access management to ensure a user has just enough access and only the necessary privileges to perform their job during any given time.
• Continually learn and adapt using behavior-based analytics and privileged access auditing/monitoring to automatically improve and personalize access policies.
Centrify’s Next-Gen Access delivers a unified, industry-recognized solution that uniquely converges IDaaS, EMM and PAM to address these four pillars of Zero Trust Security. This seamless integration secures access across applications, endpoints and infrastructure for all users, without sacrificing best-of-breed features. About This Study: Forrester Consulting conducted an online survey of 311 IT decision-makers in North America and the UK belonging to organizations with 1,500 or more employees to evaluate identity and access management practices. Survey participants were required to have authority over identity and access management decisions in their organization.