So according to like, everybody; everybody LOVES Zero Trust. According to Forrester, the number of organizations implementing a Zero Trust security model has doubled in the past two years. This is of course necessary for a lot of reasons. Distributed computing models, THE EDDDDDDGEEEEEEEE, Remote Work, etc. However, it seems that even in places where Zero trust is deployed (somewhere between 30 and 50 percent of IT shops, depending on who’s survey you choose to believe), it’s not being deployed thoroughly, or reliably.
This week, Gartner put out their own report that stated this in frankly bleak terms. According to them, only about 1% of organizations currently have a mature program that meets the definition of zero trust. Ouch.
Basically what they’re saying is people are embracing the term Zero Trust, and the idea of Zero Trust, but aren’t actually deploying it. It’s kind of like if you have The Club for your car- you know, the big orange thing that locks the steering wheel in place? It’s like if you have that, but you don’t actually lock it- in fact, it’s not even on the steering wheel. It’s sitting on the passenger’s seat. Next to your wallet. And the windows are open.
That’s Zero Trust software in your organization.
I can’t believe I’m saying this out loud, but I agree with Gartner here. Zero Trust is extremely hard to implement properly, and most importantly, to maintain. Gartner’s prediction is a little bit optimistic though? They think that by 2026, the 1% of companies with a mature Zero Trust will rocket up to 10%. Let’s hope they underestimated.