When attackers can consistently crack or compromise the credentials of legitimate users to gain access to your network, it is less and less feasible to trust a user based solely on that initial authentication. For this episode of the Inner Circle podcast, I am joined by Den Jones, director of enterprise security for Adobe, to talk about Project ZEN — Adobe’s implementation of zero trust.
ZEN is an acronym for “Zero-Trust Enterprise Network”. Adobe wanted to improve its security posture and take action to try and ensure proactive cybersecurity for Adobe employees and their data. Jones and Adobe have determined that the most effective way to do that is to adopt a zero trust mentality.
The core concept is that nothing is inherently trusted. Rather than authenticating a user at initial login and assuming that all actions from that point forward are authorized and benign, Project ZEN (or zero trust in general) constantly monitors and verifies each action and interaction to ensure it still meets with established policies and does not seem inherently suspicious or malicious.
To learn more about zero trust and Adobe Project ZEN, listen to this episode of the Inner Circle podcast. You can also check out this blog post from Adobe that provides more detail. Feel free to comment below to share your thoughts on zero trust security and this episode of the Inner Circle.