How to Achieve Zero Trust in the CloudDr. Tim Nedyalkov, Bank TISO, on Securing Workforce, Workload and Workspace
For his zero trust journey in the cloud, Dr. Tim Nedyalkov, technology information security officer at a large bank in Australia, concentrated on three things: workforce, workload and workspace.
See Also: A CISO's Guide to Communicating Risk
"When we talk about workforce, we want to make sure that we establish the trust of our users and devices to determine their application access and the context of usage," Nedyalkov says. "When we talk about workloads, no matter whether they are on the cloud or on-premises, or something in between, we need to ensure we minimize the attack surface while enforcing the least privilege access to and from workloads and applications." And for workplace, he says, "We need to make sure we establish least privilege access to all users and devices."
In a video interview with Information Security Media Group, Nedyalkov also discusses:
- The challenges of a zero trust framework in the cloud;
- Where to begin a zero trust journey in the cloud;
- Tools that can help establish a zero trust framework.
Nedyalkov is a technology information security officer at a large bank in Australia. Most recently, he established the cybersecurity practice for the $24 billion Riyadh Metro transport network, one of the world's largest public transport infrastructure projects. He has over 18 years of experience in information technology and cybersecurity across Europe, the U.S., Australia and the Middle East.