0800 038 7222 sales@bom.co.uk

Zero Trust Network Access (ZTNA)

Contact
ZTNA (SVG)

The traditional security perimeter is evaporating as cloud, remote working and edge computing trends accelerate

As the threat environment intensifies in parallel, traditional network security controls are continually the source of major security breaches and are therefore being rendered deficient. The “connect first, authenticate second” approach can no longer defend digital assets from malicious actors. Zero Trust access is based on the fundamental principle that no user, human or machine should be automatically granted access to anything.

It is the ultimate extension of the “principle of least privilege” approach to security.

Contact

Standard for secure enterprise access control

Zero Trust Network Access (ZTNA) offers a solution and has become the standard for secure enterprise access control. With ZTNA, a user is denied access to networks and digital assets by default. Then, they are only permitted access after their identity (user + devise + context) is extensively authenticated.

Dynamic policies and entitlements are then granted to the identity, provisioning limited access to authorised resources. These surgical entitlements are conditional and based on context and risk tolerance defined by the enterprise.

Zero Trust Policy Decision Point (PDP)

Authenticating the user’s identity and access authorisation is a multidimensional process. ZTNA start by verifying the identity of the user/device to determine the right entitlements. Access is only granted to approved resources based on the context the user presents when they are connecting.

In this way, the Controller is acting as a Zero Trust Policy Decision Point (PDP) and the Gateway as a Policy Enforcement Point (PEP). It is infinitely more secure than using an IP address and username/password combination because the theft of basic credentials, IP spoofing and brute force attacks have made these traditional authentication methods vulnerable. ZTNA is a more dynamic solution which takes into account contextual factors.

Improved secure access. Monitor privileges. Modernise network security.

After the user has been given access, ZTNA continues to monitor to determine if access privileges should be adjusted or revoked entirely. It continues to evaluate the user and device in context, including the users role, device security posture, location, time and date and a range of other conditional requirements. This makes it possible to immediately interrupt suspicious behaviour before it causes harm.

In addition to improved secure access, another critical aspect of ZTNA is its ability to cloak the entire infrastructure and minimise the attack surface. This means that all resources secured with ZTNA are 100% invisible to malicious actors and only visible to authenticated and authorised trusted users, providing yet another layer of security.

The ZTNA model was originally known as the Software-Defined Perimeter (SDP) and the names are used interchangeably. By using these security architectures, enterprise organisations can modernise network security.

Zero Trust Network Access capabilities:

A

Strengthen and simplify access controls

A

Remove policy management complexity for admins

A

Unleash operations with integrations and automation

A

Reduce the attack surface

A

Improve the end-user experience

LOGO (SVG)

Focussed on business systems integration and world leading vendor alignment, we have deployed many solutions over a prolonged and successful history

Keeping up with continual IT change and expanding a range of technologies, we have become the leading, preferred and often sole IT partner for many South West & Wales businesses.

Technology Investing

We have weathered the commercial storms of recession and made significant personnel investment across all areas of our business. We are proud to continue to strengthen and grow.

Extensive portfolio of products and services

Offering an extensive portfolio of products and services, developed many solutions to suit any type of business.

Service Transitions

Supporting businesses with the transition from Microsoft 2003 server, Exchange 2003 and Windows XP to the newer versions of Microsoft 2008/2012 server.

Best Pricing

Our procurement team have an extensive range of supplier relationships, ensuring the best pricing is gained to offer the most comprehensive solutions.

How can BOM IT Solutions help?

Many organisations only review their cyber security capabilities when a breach has already occurred. Importantly, the cost of a breach can often run into the hundreds of thousands-far outweighing the cost of proactively assessing your level of cyber security.

0800 038 7222

Call for a consultation.

sales@bom.co.uk

Email BOM IT Solutions.

Contact BOM IT Solutions

About BOM IT Solutions

BOM IT Solutions provide IT infrastructure services and products suitable to any business size.

BOM Group Ltd (Established 1958), Company registration number: 00615993 (England & Wales).

Registered Office: Clue House, Petherton Road, Hengrove, Bristol, BS14 9BZ

Cyber Essentials (Logo)
Cyber Essentials Plus (Logo)
bsi ISO / IEC 27001 Certified (Logo)
© Copyright 2023 BOM Group LTD
VAT no. 282723688 | Company Reg. 00615993
Clue House Petherton Road Hengrove Bristol BS14 9BZ
Call: 0800 038 7222 | Email: sales@bom.co.uk | Privacy Policy | Terms | BOM Aviva Pension | Website Developed by Publicity Matters