Artificial Intelligence & Machine Learning , Critical Infrastructure Security , Digital Identity

Essential Components of a 'Zero Trust' Architecture

CISO Erdal Ozkaya Describes the Steps to Take
Dr.Erdal Ozkaya, regional CISO&MD, Standard Chartered Bank in the UAE

The key components of an effective “zero trust” architecture include multifactor authentication, network segmentation, and a defense-in-depth approach, says Dr. Erdal Ozkaya, regional CISO and managing director at Standard Chartered Bank in the United Arab Emirates.

See Also: The State of Organizations' Security Posture as of Q1 2018

"In a ‘zero trust' model, identity and micro-segmentation play a key role in enhancing existing network security by shrinking the trusted network to each server's IP address to enable … authorization of the users," Ozkaya says.

In this video interview with Information Security Media Group, Ozkaya emphasizes the importance of having the right security cloud partner who can apply multiple layers of authentication and access control mechanisms. He also offers insights on:

  • How an identity-centric approach works in a 'zero trust' environment;
  • Improving access control mechanisms;
  • Building a business case for a 'zero trust' approach.

As regional CISO at Standard Chartered Bank, Ozkaya oversees all assurance activities related to the availability, integrity, and confidentiality of customer, business partner, employee and business information in compliance with the organization's information security policies. He has co-authored several cybersecurity books as well as security certification courses and exams for different vendors. He is the recipient of several awards including, Global Future Security Leader, Super Hero CISO (2020) Cyber Security Professional of the year MEA, Hall of Fame by CISO Magazine, Cybersecurity Influencer of the year (2019), Microsoft Circle of Excellence Platinum Club (2017), NATO Center of Excellence (2016).


About the Author

Geetha Nandikotkur

Geetha Nandikotkur

Vice President - Conferences, Asia, Middle East and Africa, ISMG

Nandikotkur is an award-winning journalist with over 20 years of experience in newspapers, audiovisual media, magazines and research. She has an understanding of technology and business journalism and has moderated several roundtables and conferences, in addition to leading mentoring programs for the IT community. Prior to joining ISMG, Nandikotkur worked for 9.9 Media as a group editor for CIO & Leader, IT Next and CSO Forum.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.asia, you agree to our use of cookies.