Gap Analysis, Zero Trust, Non-Repudiation, AAA, & CIA

Create an action plan

Define the target state

Assess the current state

Identify risks

Patch outdated software

Conduct a vulnerability scan

Update the password policy

Remove all administrator accounts

Phishing attacks

Lack of Multi-Factor Authentication (MFA)

Increased network traffic

Insider threats

To identify potential internal threats

To ensure gaps do not reoccur

To prevent data breaches

To lower the cost of compliance

ISO/IEC 27001

COBIT

ITIL

NIST

It reduces the need for encryption

It ensures data is always available

It identifies vulnerabilities and compliance issues

It automatically patches security flaws

Vulnerability scanner

Firewall

Antivirus software

SIEM

Trust but verify

Implicit trust of internal networks

Never trust, always verify

Minimal encryption

Network security only

User identity only

All areas: users, devices, networks, applications, and data

Physical security only

Device

Application/Workload

User/Identity

Data