Highlights:

  • Zero Trust Access facilitates zero trust adoption and the evolving needs of organizations in protecting their applications, infrastructure, and data.
  • The service modernizes security programs and enables enterprises to run with agility.

Deloitte announced the launch of a new managed service called Zero Trust Access to assist enterprises in adopting zero trust more expediently. The new service offers a way to protect communications between users on any device and corporate applications through the cloud, no matter where they are.

The Zero Trust approach commits to eliminating implicit trust inside an Information Technology (IT) ecosystem and replacing it with a risk-based approach to gain access to corporate resources spanning identities, workloads, data, networks, and devices. Given that historical methods of security architecture are inadequate to protect the pervasive nature of modern companies, this movement is gaining traction.

Integration of new expertise and technology

Part of the newly expanded Zero Trust by Deloitte, Zero Trust Access facilitates zero trust adoption and the evolving needs of organizations in protecting their applications, infrastructure, and data. The Zero Trust Access managed service links users to applications through a seamless cloud-native solution that is naturally scalable, robust, agile, and secure. This service is the result of the integration of newly acquired expertise and technology with current Deloitte services. In addition, the managed service is available standalone, integrated with other Deloitte solutions, or as part of a larger solution that leverages technology from the alliance network of Deloitte.

With unique data security making use of device-level secure microcontainer technology, Zero Trust Security helps safeguard infrastructure. Dynamic access control to corporate assets also helps enterprises safeguard critical enterprise data and impose the least privilege. The managed service can replace remote access solutions like Desktop as a Service (DaaS) and Virtual Desktop Infrastructure (VDI). The solutions demand substantial infrastructure capital expenditures, high operational expenses, and technological management overhead.

Zero Trust Access includes features such as ephemeral connectivity based on secure Peer-to-Peer (P2P) communication, conditional access, continuous authorization, as well as robust data protection for data-at-rest, in-use, and in-transit are consistently applied to each session, regardless of the type or location of the applications being accessed (e.g., legacy hosted applications, software as a service (SaaS), thick-client, web-based applications). Zero Trust Access enables enterprises to utilize outcome-based solutions that increase business agility, boost user productivity, and minimize the cost and complexity of security operations.

Experts’ Take

“Zero Trust Access was built as a turnkey managed service, helping ourselves and our clients accelerate the adoption of this transformative security framework. Our goal was to create a cost-effective solution that can be delivered standalone or complementary to a broader ecosystem and ultimately help decrease the burden on IT and security teams who likely need to manage multiple heterogeneous solutions to achieve similar outcomes,” said Andrew Rafla, Deloitte Risk and amp; Financial Advisory’s zero-trust offering leader and principal, Deloitte and amp; Touche LLP.

 “We’re launching Zero Trust Access as the first in many adoption-enabling services and solutions to come so that our clients are better able to modernize their security programs, enable agile operations and confidently advance with emerging technologies and transformative risk management principles that can build more resilient security practices,” said Deborah Golden, Deloitte Risk and amp; Financial Advisory Cyber and Strategic Risk leader and principal, Deloitte and amp; Touche LLP.