Services Industries Cloud Cybersecurity Digital EngineeringNXT HOLMES Geographies

Service Offerings

Data, Analytics & AI
Applications
Digital Operations and Platforms
Consulting
Infrastructure Services

Client Themes

As a Service
Big Data
Blockchain
Cyber Security & Enterprise Risk
DevOps
Enterprise Ops Transformation
Industry 4.0
Open Source
Product Lifecycle Management
Software Defined Everything

Service Offerings

Data, Analytics & AI
Applications
Digital Operations and Platforms
Consulting
Infrastructure Services

Client Themes

As a Service
Big Data
Blockchain
Cyber Security & Enterprise Risk
DevOps
Enterprise Ops Transformation
Industry 4.0
Open Source
Product Lifecycle Management
Software Defined Everything
Aerospace & Defense
Automotive
Banking
Capital Markets
Communications
Consumer Electronics
Consumer Packaged Goods
Education
Engineering, Construction & Operations
Healthcare
Insurance
Medical Devices
Natural Resources
New Age Markets
New Age & Media
Network & Edge Providers
Oil & Gas
Pharmaceutical & Life Sciences
Platforms & Software Products
Industrial & Process Manufacturing
Professional Services
Public Sector
Retail
Semiconductors
Travel & Transportation
Utilities
Aerospace & Defense
Automotive
Banking
Capital Markets
Communications
Consumer Electronics
Consumer Packaged Goods
Education
Engineering, Construction & Operations
Healthcare
Insurance
Medical Devices
Natural Resources
New Age Markets
New Age & Media
Network & Edge Providers
Oil & Gas
Pharmaceutical & Life Sciences
Platforms & Software Products
Industrial & Process Manufacturing
Professional Services
Public Sector
Retail
Semiconductors
Travel & Transportation
Utilities
Case Study
Latest Thinking
Solutions
Segments
Offerings
videos
Form
Case Study
Latest Thinking
Solutions
Segments
Offerings
videos
Form
Case study
Latest Thinking
Offerings
Solutions
Form
videos
Case study
Latest Thinking
Offerings
Solutions
Form
videos
Case Study
Latest Thinking
Our Partners
News
Events
Join our Team
Get in Touch
Digital
Digital
Case Study
Latest Thinking
Our Partners
News
Events
Join our Team
Get in Touch
Digital
Digital
Latest Thinking
Case Study
Offerings
Segments
Solutions
videos
Form
Latest Thinking
Case Study
Offerings
Segments
Solutions
videos
Form
HOLMES™ and Automation Ecosystem
Latest Thinking
Case study
Solutions
Awards, Recognitions & Media
What makes us Different
What?
Why?
How?
Form
videos
Business
IT
Automation Advisory
Representative Applied AI use cases of HOLMES with ecosystem
Business resilience with Wipro HOLMES™ solutions for pandemic assistance
State of Automation Report 2020
HOLMES™ and Automation Ecosystem
Latest Thinking
Case study
Solutions
Awards, Recognitions & Media
What makes us Different
What?
Why?
How?
Form
videos
Business
IT
Automation Advisory
Representative Applied AI use cases of HOLMES with ecosystem
Business resilience with Wipro HOLMES™ solutions for pandemic assistance
State of Automation Report 2020

Our Global Presence

Our Showcase Pages Continental Europe View office locations Benelux Nordic France DACH (English  |  Deutsch)
Our Showcase Pages India & Middle East View office locations India Middle East
Our Showcase Pages India View office locations India English
Our Showcase Pages Asia - Pacific View office locations Asean Korea China Australia Japan (English    Japanese) Taiwan
Our Showcase Pages Africa View office locations Africa
Our Showcase Pages United Kingdom & Ireland View office locations United Kingdom & Ireland
Our Showcase Pages Canada View office locations Canada
Our Showcase Pages United States View office locations United States
Our Showcase Pages Latin America View office locations Brazil (English    Portuguese) Latam > Mexico (English    Spanish)

Our Global Presence

geographies-map.png

Our Showcase Pages

Asean- English
China- English
India- English
Middle East- English
Korea- English
Australia- English
Japan- English
Japan- Japanese
Benelux- English
DACH- English
DACH- Deutsch
France- English
German- English
Nordic Region- English
United Kingdom & Ireland- English
Brazil- English
Brazil- Portuguese
LATAM- English
Mexico- English
Mexico- Spanish
Africa- English
United States- English
Canada- English
< Cybersecurity

Take Control of Your Security

fav-article
Services
Industries
Cloud
Cybersecurity
Digital
EngineeringNXT
HOLMES
Geographies
Contact Us
About Wipro
Careers
Locations
Leadership
Investors
Innovation
News & Events
Blogs
Analyst Speak
Products & Platforms
Partner Ecosystem
Sustainability

September | 2020

Zero trust doesn’t happen with a single solution, tool, or product. You need to leverage a methodology based on enterprise needs using different security tools and functionalities, while integrating elements of cybersecurity controls

With diminishing enterprise boundaries and users accessing corporate resources remotely, the number of cyber threats is rising rapidly. Approximately 34% of breaches occur due to insider threat actors.

Today’s complex infrastructure cannot rely on traditional security architecture as it does not have a single defined perimeter due to remote access from users, use of cloud services, and emergence of edge computing. That is why most of the breaches occur due to lack of control mechanisms or visibility, with unhindered lateral movement of malware in the network.

Enterprises are adopting zero trust security through different initiatives to enhance their security posture. Several leading vendors offer products or services, which can secure, restrict, or control access, based on the zero trust model. But, are these solutions empowering enterprises with a holistic approach to security?

Confusions around zero trust

After the inception of the concept of zero trust security, multiple vendors came up with solutions and methodologies using their integrated product suites, offering zero trust security. Their approach is mostly around the product suites, and what they offer, and does not provide a holistic view to improve security posture, or cater to the enterprise requirements.

Most of the times, these products do not focus on an integrated approach or co-existence of ecosystem security controls, neither orchestration of data to influence or control access for a user.

This often creates confusion for people responsible for the security wellbeing of the enterprise, while strategizing zero trust security and choosing the correct set of tools.

Zero trust is an approach that cannot be achieved using a single solution, tool, or product. It is rather a methodology, usually designed based on enterprise needs, and always contextualized and fine-tuned based on the business priorities of an enterprise. 

Zero trust is all about access to data

Zero Trust, first coined by Forrester more than a decade ago, has gained more acceptance now. 

The zero trust extended ecosystem talks about data, network, people, workloads, and devices, along with analytics and automation, to provide visibility and access based on trust-but-verify approach. These five core elements contribute toward the build of a zero trust model and should be used to measure the maturity of an enterprise’s ability to secure its environment.

The zero trust security model allows establishing gateways or interception points in the network or data flow path, to gain complete visibility and thereby enforcing controls. The ultimate goal is protection of data or sensitive information while providing access to users, based on the need in that particular context. Figure 1 shows indicative zero trust security use cases across various elements of zero trust.

Take Control of Your Security

Figure 1:  Five elements of zero trust security and use cases

A holistic approach to zero trust security

Wipro provides a holistic approach to zero trust security, leveraging a framework and a working model, which uses different security tools and functionalities while integrating elements of cybersecurity controls. This helps enterprises adopt zero trust security seamlessly, using specific security toolsets driven by processes to control the level of access to organizational resources. Enterprises need to prioritize elements and security controls to be part of a zero trust solution in heterogeneous environments.

Figure 2 depicts a universal working model of zero trust security, which can be adopted by the enterprise, while multiple security products with zero trust capabilities can contribute as building blocks of the overall solution. Zero trust security allows access based on context, and always monitors and improves security posture.

Take Control of Your Security

Figure 2: Universal working model of zero trust security

The zero trust capabilities should be enhanced with feeds coming from other entities in the environment to further control the level of access. This can be achieved using products that are capable of integration to external feeds or leverage external orchestrators.

True maturity relies on building an interconnected system, where any anomaly in the system can trigger a change in the level of access.

Take Control of Your Security

Figure 3: Data flow of zero trust security architecture

Wipro’s zero trust working model helps enterprises achieve zero trust security, which blends with any vendor tools or zero trust engines or customized tools. The working model follows the National Institute of Standards and Technology  approach but expands further to an adaptable architecture. 

Wipro’s consulting approach

Our assessment helps the enterprise to identify the prioritized elements and areas to focus, while building the use cases on infrastructure, data and identity, which can be deployed in the organization, with possible products to be added or features to be enhanced. Existing tools or products take precedence while aligning products across different elements. This is followed with establishing a possible relationship with different zero trust elements and integration mechanism, while providing detailed maturity report of zero-trust.

Take Control of Your Security

Figure 4: Wipro's consulting approach and possible outcomes

Zero trust security maturity starts from basic, developing, advanced, optimized to highly resilient, which includes the presence of security controls, processes used, governance methods, integration with external tools to influence or restrict the level of controls, and unified management from the cloud. Figure 5 shows how all of these are used to derive maturity scores across the five elements of zero trust.

Take Control of Your Security

Figure 5: A sample maturity with five elements

There are solutions that offer the capability to orchestrate various feeds or information to allow access or restrict or deny, while a few others offer point solutions to cater to specific zero trust needs. Wipro provides a contextual view of security tools along with the features relevant for the enterprise, using a heat map. This helps to identify products that can be leveraged to adopt zero trust security.

Benefits of Wipro’s zero trust framework

  • Effective approach to zero trust security using different elements of cybersecurity controls, and leveraging framework, and process of continuous risk assessment
  • Use feeds from infrastructure elements, organizational policies, and static data to process and analyze for decision making on access requirements
  • Methods to enforce zero trust security policies based on context to allow access to the applications or enterprise resources
  • A working model of zero trust which can accommodate multi-vendor tools for monitoring or protection or enforcing policies
  • Consulting approach to identify the focus areas to enable zero trust, multiple toolsets with possible relationship and maturity model
  • Define a phased approach to adopt zero trust leveraging existing and new security tools

To know more about how Wipro’s zero trust working model will help you achieve security maturity, connect with us at cybersecurity.services@wipro.com

About the author

Angshuman Chattopadhyay
Consulting & Solutions Lead for Infrastructure Security within Cybersecurity and Risk Services at Wipro

Angshuman Chattopadhyay is the Consulting & Solutions Lead for Infrastructure Security within Cybersecurity and Risk Services at Wipro. He brings extensive experience with over 19 years in IT and Cybersecurity across a wide range of global roles.

Angshuman can be reached at angshuman.chattopadhyay1@wipro.com

Related Articles

Image not found
How a top telco launched its business in the US market on Cloud

Wipro delivered best in class AWS cloud based security solution comprising of native and third party security controls to meet customer’s business needs..

Image not found
Application Onboarding Streamlined

Wipro enables compliance to regulatory bodies through 150% faster onboarding of critical applications and removal of open business sensitive risks for a leading banking organization

© 2021 Wipro Limited
Privacy Statement Disclaimer RSS Feed
© 2021 Wipro Limited
X