The tenets of zero trust are well defined in NIST SP 800-207, but have many architects truly taken them on-board? Are we exhibiting a familiarity bias: over-trusting certain mechanisms and failing to properly ascertain their trustability, as we are required to? Are we ignoring others, which provide useful evidence of trustability? Are we looking too much at the actual network we are trying to protect, and disregarding unmanaged devices, IoT/OT/ICS, BYOD? Is EDR, as is mandated by EO M-22-01, the right approach, or an initial step on the road? How do we expect our adversaries to behave, and how do we counter that threat in the way we architect our zero trust environments?
Ian Farquhar has worked in IT Security for over 25 years and has built his career with large organizations such RSA/EMC, Cisco, Sun MicroSystems, Silicon Graphics/ Cray Research and Macquarie University.
Ian is the worldwide security subject matter expert at Gigamon and leads the worldwide security team of specialist sales engineers. He and his team work closely to evaluate and engage with customers whose security needs require a deep level of expertise. He is a key contributor to guiding the development of next-generation security solutions and capabilities, working closely with the teams from product management and engineering.
Ian has had experience designing, deploying and evaluating network security architectures in government agencies, enterprises and service providers worldwide.
Ian is based in Sydney, Australia and has a B.Sc. degree in Computer Science from Macquarie University.