Zero Trust
- Home
- Zero Trust
Zero Trust
A project in support of the corporate Digital Workplace strategy. Allows workplace devices to be used anywhere, both on prem and mobile. Devices are treated the same regardless of location.
Date
August, 2023
Client
Insurance Co
Category
Digital Workplace
Location
UK
Overview Project
Creation of a seperate VRF on the corporate MPLS network to isolate Digital Workplace devices. Devices use F5 Access to automatically connect into the F5 Big IP Per App VPN Solution in order to access on-prem applications. Cloud applications such as M365 accessed over the Internet.
By treating all devices as untrusted and isolating them by default this prevents lateral spreading of cyber threats.
Workplace devices simply need access to WIFI in order to utilise corporate resources. The process of VPN connections is hidden from the users to create a seemless user experience.
In a Zero Trust network end user devices are by default unable to see each other. They also do not have direct access to on-prem resources and must be authorised and authenticated at both device and user levels before being allowed in to the corporate network.
MS Conditional Access can also plays a part here, ensuring that devices are fully compliant before being allowed to access resources.
Our Solutions
- F5 Big IP / Per App VPN / F5 Access
- TPM chips on laptops. Used to identify devices
- Dedicated MPLS VRF / Conditional Access