![\"Franklin`s](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/04\/Trust-No-One.jpg\")
<\/figure>\n\n\n\nIf you\u2019ve worked in the IT industry long enough, you probably know one thing to be true when it comes to project management: expect the unexpected. Anomalies are inevitable and, unfortunately, reality doesn\u2019t always meet ideals. <\/p>\n\n\n\n
Despite the publicity, only 23% of small and medium-sized enterprises (SMEs)<\/a> have fully adopted Zero Trust security programs to date. SMEs often cite budgetary constraints, labor shortages, integration difficulties, and lack of knowledge as reasons for not adopting Zero Trust (ZT). <\/p>\n\n\n\n
When Reality Fails to Meet Expectations with Zero Trust<\/h2>\n\n\n\n![\"Woman](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/05\/woman-at-macbook-with-hands-on-head.jpg\")
<\/figure><\/div>\n\n\nThe concept of \u201cZero Trust\u201d is deceptively simple. It means that any devices, users, and applications attempting to access an IT resource of any kind must first receive validation. The mantra \u201ctrust nothing, verify everything\u201d is ubiquitous with the security framework. <\/p>\n\n\n\n
So instead of granting implicit trust<\/em> upon the initial entry to a protected network, organizations evaluate an opinion of trustworthiness based on context, and at every access transaction.<\/p>\n\n\n\n
\n- Is this a recognized user identity, location, and device? <\/li>\n\n\n\n
- Can the user verify their identity in more than one way? <\/li>\n\n\n\n
- Does this user really need access to these specific files, applications, and endpoints to do their job? <\/li>\n<\/ul>\n\n\n\n
Questions like these are answered via policy checks as end users seek network access. Though simple in philosophy, transitioning from a traditional, on-prem security program to a comprehensive ZT model doesn\u2019t happen overnight. <\/p>\n\n\n\n
In fact, Forrester found<\/a> the process takes an average of 1 to 3 years<\/strong> from start to finish. With that said, a little strategic planning can make for a much smoother ride. Below are the six most common roadblocks we see customers encounter while switching to Zero Trust: <\/p>\n\n\n\n
1. Leaving Legacy Technology Behind<\/h3>\n\n\n\nWhile it\u2019s easy to implement ZTA for a startup, more established organizations must deal with the existing infrastructures they already have in place. And most of them are severely outdated! <\/p>\n\n\n\n
Admins must take precautions when modifying existing infrastructures with new ZTA tools. Those who rush the process have been known to slow down or even break crucial systems. In addition, completely overhauling a legacy system is expensive if it has yet to deliver ROI. <\/p>\n\n\n\n
We recommend developing a roadmap to gradually launch Zero Trust security elements over time. This way, you can leverage your existing infrastructure to optimize costs. And, you will significantly reduce the likelihood of experiencing major \u201coopsies.\u201d <\/p>\n\n\n\n
Check out Forrester Research: A Practical Guide to a Zero Trust Implementation<\/a>. <\/p>\n\n\n\n
2. Limited Resources<\/h3>\n\n\n\nLike any significant departmental endeavor, Zero Trust campaigns require resources in terms of labor, time, and finances. One often overlooked expense is the configuration and continued maintenance of unfamiliar elements. <\/p>\n\n\n\n
Does someone on your team know how to set up authentication protocols like LDAP\/RADIUS, create user policies, and apply network microsegmentation? Better yet, does anyone in-house have the extra time to roll up their sleeves and become your organization\u2019s ZT champion?<\/p>\n\n\n\n
![\"Coding,](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/04\/Desk.jpg\")
<\/figure>\n\n\n\nIf not, plan to outsource technical professional services<\/a> to bridge the gap. In addition, budget for continued infrastructure management and support. Running into unfamiliar territory after launching ZTA is one of the primary reasons organizations fail to achieve long-term results. <\/p>\n\n\n\n
\n \n ![\"JumpCloud\"](\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/02\/image-1-1-aspect-ratio-160-110-1.png\")
\n <\/div>\n \n \n The IT Manager\u2019s Guide to Data Compliance Hygiene <\/p>\n
\n How to ace your audit <\/p>\n <\/div>\n
\n Get the Guide <\/a>\n <\/div>\n<\/div>\n\n\n\n\n3. Unexpected Licensing Costs <\/h3>\n\n\n\n
Like it or not, the world is quickly moving toward software-as-a-service (SaaS)<\/a>, platform-as-a-service (PaaS), and infrastructure-as-a-service (IaaS). <\/p>\n\n\n\n
4. Lackluster User Adoption<\/h3>\n\n\n\n
Lackluster user adoption sinks Zero Trust programs faster than a highly dense object thrown into a large body of water. According to McKinsey<\/a>, 70% of change initiatives in organizations fail due to employee resistance. <\/p>\n\n\n\n
Common causes of poor user adoption for Zero Trust include:<\/strong><\/p>\n\n\n\n
\n- Misconceptions about Zero Trust<\/li>\n\n\n\n
- Unclear communication<\/li>\n\n\n\n
- Lack of familiarity with Zero Trust architecture<\/li>\n\n\n\n
- Ineffective and inefficient training <\/li>\n<\/ul>\n\n\n\n
Form a task force to identify potential bottlenecks that might cause employees to cut corners or not be able to follow instructions. In addition, incorporate training sessions into the onboarding process to ensure everyone knows how to manage specific tools. <\/p>\n\n\n\n
5. Lack of Leadership Support<\/h3>\n\n\n\nAnother significant impediment to smooth sailing is leadership who doesn\u2019t understand the significance of setting up ZTA. <\/p>\n\n\n\n
Smooth adoption and long-term success are dependent on senior management \u201cbuy in.\u201d And that is often contingent on how well IT admins have connected the dots between the following points of reference:<\/p>\n\n\n\n
\n- What does Zero Trust mean? No, like, actually. <\/em><\/li>\n\n\n\n
- What technologies, tools, and resources do we need?<\/li>\n\n\n\n
- Where are the vulnerabilities in our existing infrastructure? <\/li>\n\n\n\n
- What is the average cost of a data breach? <\/li>\n\n\n\n
- How much could stolen data potentially cost us? <\/li>\n\n\n\n
- How common are data breaches?<\/li>\n<\/ul>\n\n\n\n
![\"Low](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/04\/Hands.jpg\")
<\/figure>\n\n\n\nRemember: leadership doesn\u2019t need to understand the nitty-gritty of the technology behind Zero Trust. However, they must grasp the severity of failing to secure organizational networks in a world of increasingly sophisticated hackers. This is where a comprehensive proposal<\/a> can work its magic. <\/p>\n\n\n\n
6. Tool Incompatibilities <\/h3>\n\n\n\nFinally, some organizations rush into purchasing ZTA solutions, only to realize they are incompatible with existing infrastructures. Legacy technology systems are often incompatible with Zero Trust-based solutions and unable to meet Zero Trust requirements.<\/p>\n\n\n\n
Sometimes, you can easily solve this challenge by upgrading your infrastructure. You don\u2019t have to throw everything out. Consider partnering with a vendor flexible enough to customize their solutions to your exact requirements.<\/p>\n\n\n\n
![\"JumpCloud](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/04\/JC-Admin-Portal.png\")
JumpCloud Directory Platform Admin Portal<\/em><\/figcaption><\/figure>\n\n\n\nAlternatively, you may switch to using tools that match the existing infrastructure. For example, the JumpCloud Directory offers a convenient consolidation platform for managing Zero Trust policies across Mac, Windows, and Linux devices.<\/p>\n\n\n\n
Watch this tutorial<\/a> on how to implement Zero Trust on different devices using JumpCloud.<\/p>\n\n\n\n
Streamline Zero Trust with JumpCloud<\/h2>\n\n\n\nBased on recently publicized initiatives, and the popularity of remote work, expect the public discourse around Zero Trust security to continue. <\/p>\n\n\n\n
However, as discussed in this article, unanticipated roadblocks often result in a mismatch between original intentions and long-term realities. It\u2019s essential to remember that Zero Trust doesn\u2019t represent any singular technology; it\u2019s a multi-faceted framework involving cybersecurity best practices, identity and access management tools, end-user policy customization, and more. <\/p>\n\n\n\n
Develop a solid action plan with the support of industry experts to ensure your team approaches implementation in the safest, most effective, and most affordable manner.<\/p>\n\n\n\n
Want an action plan for getting started? <\/strong><\/p>\n\n\n\n
Check out the Ultimate Guide to Implementing Zero Trust in the Real World<\/a><\/p>\n\n\n\n
Exploring Zero Trust for compliance purposes? <\/strong><\/p>\n\n\n\n
Visit our IT Compliance Quickstart Guide.<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"
<\/figure><\/div>\n\n\nThe concept of \u201cZero Trust\u201d is deceptively simple. It means that any devices, users, and applications attempting to access an IT resource of any kind must first receive validation. The mantra \u201ctrust nothing, verify everything\u201d is ubiquitous with the security framework. <\/p>\n\n\n\n
So instead of granting implicit trust<\/em> upon the initial entry to a protected network, organizations evaluate an opinion of trustworthiness based on context, and at every access transaction.<\/p>\n\n\n\n
- \n
- Is this a recognized user identity, location, and device? <\/li>\n\n\n\n
- Can the user verify their identity in more than one way? <\/li>\n\n\n\n
- Does this user really need access to these specific files, applications, and endpoints to do their job? <\/li>\n<\/ul>\n\n\n\n
Questions like these are answered via policy checks as end users seek network access. Though simple in philosophy, transitioning from a traditional, on-prem security program to a comprehensive ZT model doesn\u2019t happen overnight. <\/p>\n\n\n\n
In fact, Forrester found<\/a> the process takes an average of 1 to 3 years<\/strong> from start to finish. With that said, a little strategic planning can make for a much smoother ride. Below are the six most common roadblocks we see customers encounter while switching to Zero Trust: <\/p>\n\n\n\n
1. Leaving Legacy Technology Behind<\/h3>\n\n\n\n
While it\u2019s easy to implement ZTA for a startup, more established organizations must deal with the existing infrastructures they already have in place. And most of them are severely outdated! <\/p>\n\n\n\n
Admins must take precautions when modifying existing infrastructures with new ZTA tools. Those who rush the process have been known to slow down or even break crucial systems. In addition, completely overhauling a legacy system is expensive if it has yet to deliver ROI. <\/p>\n\n\n\n
We recommend developing a roadmap to gradually launch Zero Trust security elements over time. This way, you can leverage your existing infrastructure to optimize costs. And, you will significantly reduce the likelihood of experiencing major \u201coopsies.\u201d <\/p>\n\n\n\n
Check out Forrester Research: A Practical Guide to a Zero Trust Implementation<\/a>. <\/p>\n\n\n\n
2. Limited Resources<\/h3>\n\n\n\n
Like any significant departmental endeavor, Zero Trust campaigns require resources in terms of labor, time, and finances. One often overlooked expense is the configuration and continued maintenance of unfamiliar elements. <\/p>\n\n\n\n
Does someone on your team know how to set up authentication protocols like LDAP\/RADIUS, create user policies, and apply network microsegmentation? Better yet, does anyone in-house have the extra time to roll up their sleeves and become your organization\u2019s ZT champion?<\/p>\n\n\n\n
<\/figure>\n\n\n\nIf not, plan to outsource technical professional services<\/a> to bridge the gap. In addition, budget for continued infrastructure management and support. Running into unfamiliar territory after launching ZTA is one of the primary reasons organizations fail to achieve long-term results. <\/p>\n\n\n\n
\n\n\n <\/div>\n \n\n The IT Manager\u2019s Guide to Data Compliance Hygiene <\/p>\n
\n How to ace your audit <\/p>\n <\/div>\n
\n Get the Guide <\/a>\n <\/div>\n<\/div>\n\n\n\n\n3. Unexpected Licensing Costs <\/h3>\n\n\n\n
Like it or not, the world is quickly moving toward software-as-a-service (SaaS)<\/a>, platform-as-a-service (PaaS), and infrastructure-as-a-service (IaaS). <\/p>\n\n\n\n
4. Lackluster User Adoption<\/h3>\n\n\n\n
Lackluster user adoption sinks Zero Trust programs faster than a highly dense object thrown into a large body of water. According to McKinsey<\/a>, 70% of change initiatives in organizations fail due to employee resistance. <\/p>\n\n\n\n
Common causes of poor user adoption for Zero Trust include:<\/strong><\/p>\n\n\n\n
- \n
- Misconceptions about Zero Trust<\/li>\n\n\n\n
- Unclear communication<\/li>\n\n\n\n
- Lack of familiarity with Zero Trust architecture<\/li>\n\n\n\n
- Ineffective and inefficient training <\/li>\n<\/ul>\n\n\n\n
Form a task force to identify potential bottlenecks that might cause employees to cut corners or not be able to follow instructions. In addition, incorporate training sessions into the onboarding process to ensure everyone knows how to manage specific tools. <\/p>\n\n\n\n
5. Lack of Leadership Support<\/h3>\n\n\n\n
Another significant impediment to smooth sailing is leadership who doesn\u2019t understand the significance of setting up ZTA. <\/p>\n\n\n\n
Smooth adoption and long-term success are dependent on senior management \u201cbuy in.\u201d And that is often contingent on how well IT admins have connected the dots between the following points of reference:<\/p>\n\n\n\n
- \n
- What does Zero Trust mean? No, like, actually. <\/em><\/li>\n\n\n\n
- What technologies, tools, and resources do we need?<\/li>\n\n\n\n
- Where are the vulnerabilities in our existing infrastructure? <\/li>\n\n\n\n
- What is the average cost of a data breach? <\/li>\n\n\n\n
- How much could stolen data potentially cost us? <\/li>\n\n\n\n
- How common are data breaches?<\/li>\n<\/ul>\n\n\n\n<\/figure>\n\n\n\n
Remember: leadership doesn\u2019t need to understand the nitty-gritty of the technology behind Zero Trust. However, they must grasp the severity of failing to secure organizational networks in a world of increasingly sophisticated hackers. This is where a comprehensive proposal<\/a> can work its magic. <\/p>\n\n\n\n
6. Tool Incompatibilities <\/h3>\n\n\n\n
Finally, some organizations rush into purchasing ZTA solutions, only to realize they are incompatible with existing infrastructures. Legacy technology systems are often incompatible with Zero Trust-based solutions and unable to meet Zero Trust requirements.<\/p>\n\n\n\n
Sometimes, you can easily solve this challenge by upgrading your infrastructure. You don\u2019t have to throw everything out. Consider partnering with a vendor flexible enough to customize their solutions to your exact requirements.<\/p>\n\n\n\n
JumpCloud Directory Platform Admin Portal<\/em><\/figcaption><\/figure>\n\n\n\n Alternatively, you may switch to using tools that match the existing infrastructure. For example, the JumpCloud Directory offers a convenient consolidation platform for managing Zero Trust policies across Mac, Windows, and Linux devices.<\/p>\n\n\n\n
Watch this tutorial<\/a> on how to implement Zero Trust on different devices using JumpCloud.<\/p>\n\n\n\n
Streamline Zero Trust with JumpCloud<\/h2>\n\n\n\n
Based on recently publicized initiatives, and the popularity of remote work, expect the public discourse around Zero Trust security to continue. <\/p>\n\n\n\n
However, as discussed in this article, unanticipated roadblocks often result in a mismatch between original intentions and long-term realities. It\u2019s essential to remember that Zero Trust doesn\u2019t represent any singular technology; it\u2019s a multi-faceted framework involving cybersecurity best practices, identity and access management tools, end-user policy customization, and more. <\/p>\n\n\n\n
Develop a solid action plan with the support of industry experts to ensure your team approaches implementation in the safest, most effective, and most affordable manner.<\/p>\n\n\n\n
Want an action plan for getting started? <\/strong><\/p>\n\n\n\n
Check out the Ultimate Guide to Implementing Zero Trust in the Real World<\/a><\/p>\n\n\n\n
Exploring Zero Trust for compliance purposes? <\/strong><\/p>\n\n\n\n
Visit our IT Compliance Quickstart Guide.<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"