More than two-thirds of European organizations have started developing a Zero Trust strategy, up from about a quarter in 2020, according to Forrester.
The analyst house, which first coined the term more than a decade ago, said another 15% plan to adopt Zero Trust technology.
the new report, Zero Trust Goes Mainstream in EuropeForrester also argued that public sector organizations are taking the lead in the region.
“82% of European security decision makers in government or public sector organizations believe their enterprise architecture is invested in their organization and supports Zero Trust, compared to 82% of 72% were security decision makers in their organizations,” says the report. I got it.
“Recent geopolitical events have increased interest in improving the cybersecurity of critical infrastructure. Regulations such as NIS2 aim to standardize cybersecurity methodologies across EU Member States. , the Zero Trust philosophy is critical to ensuring effective integration and cross-functionality.”
Many of those accelerating Zero Trust initiatives seem driven to do so by past experience. All companies implementing or improving Zero Trust solutions have been compromised at least once in the past 12 months, impacting key business processes or facing cyber insurance penalties, the report said. says.
German organizations seem to be most committed to this end. 79% said it was a priority compared to 68% in the UK and 66% in France.
However, there are still obstacles to advancing the Zero Trust plan across Europe. Forrester Senior Analyst Tope Olufon pointed out that regulatory challenges are key. Specifically, implementing user behavior analytics and privileged session monitoring is problematic given local privacy laws and strong worker representation.
“Because Zero Trust is data-driven, it naturally raises questions about privacy. Initiatives such as identity and access management include additional considerations to avoid violations of employee rights and regulatory violations. will be available,” said Orfon.
“When it comes to data, collection is only part of the complexity. It also introduces new considerations about where data is transmitted and stored. As time goes on, security leaders must consider how to handle the data needed to enforce Zero Trust.”
