Looking to gain the speed, scale and time-to-market advantages that multicloud tech stacks provide their new digital-first business initiatives, making microsegmentation table stakes is essential for protecting future growth.
Copyright: venturebeat.com – “How AI Brings Greater Accuracy, Speed, and Scale to Microsegmentation”
Gartner predicts that through 2023, at least 99% of cloud security failures will be the user’s fault. Getting microsegmentation right in multicloud configurations can make or break any zero-trust initiative. Ninety percent of enterprises migrating to the cloud are adopting zero trust, but just 22% are confident their organization will capitalize on its many benefits and transform their business. Zscaler’s The State of Zero Trust Transformation 2023 Report says secure cloud transformation is impossible with legacy network security infrastructure such as firewalls and VPNs.
Defining microsegmentation
Microsegmentation divides network environments into smaller segments and enforces granular security policies to minimize lateral blast radius in case of a breach. Network microsegmentation aims to segregate and isolate defined segments in an enterprise network, reducing the number of attack surfaces to limit lateral movement.
It’s considered one of the main components of zero trust and is defined by NIST’s zero-trust framework. CISOs tell VentureBeat that microsegmentation is a challenge in large-scale, complex multicloud and hybrid cloud infrastructure configurations and they see the potential for AI and machine learning (ML) to improve their deployment and use significantly.
Gartner defines microsegmentation as “the ability to insert a security policy into the access layer between any two workloads in the same extended data center. These technologies enable the definition of fine-grained network zones down to individual assets and applications.”
Microsegmentation is core to zero trust
CISOs tell VentureBeat that the more hybrid and multicloud the environment, the more urgent — and complex — microsegmentation becomes. Many CISOs schedule the process in the latter stages of their zero-trust initiatives after they’ve achieved a few quick zero trust wins.
-SwissCognitive