Adopting Zero Trust with Bloomberg: Implemented
Adopting Zero Trust25 Touko 2023

Adopting Zero Trust with Bloomberg: Implemented

Season two, episode nine: Featuring Bloomberg’s Head of Information Security Architecture and the Information Security Program, Phil Vachon.

Catch this episode on YouTube, Apple, Spotify, Amazon, or Google. You can read the show notes here.

What does implementing a Zero Trust strategy actually look like in an organization? Nearly a year into our podcast’s journey covering how practitioners view, define, and apply zero trust, it’s time to look under the hood at how a notable organization put its strategy into motion. This week we chat with Bloomberg’s Head of Information Security Architecture and the Information Security Program, Phil Vachon, about how they transformed their security organization with Zero Trust.

Most interestingly though, while many organizations are just now exploring how they will start their zero trust journey, Bloomberg was ahead of the curve even before covid thrust the concept into the limelight.

“I will always say it is continuing to be a journey. It's not a destination,” said Vachon.

Key TakeawaysZero Trust Principles
  • Zero trust is not a new concept but has been repackaged and branded as a solid ideology.
  • Zero trust involves three principles: trust but verify, assume compromise, and strong posture.
Zero Trust Journey
  • Zero trust is a continuing journey, not a destination.
  • Zero trust requires a good mindset about how to implement controls and how to reason about security architecture.
  • Zero trust is not just about securing the corporate IT estate but also about securing the data center estate and the communications between components.
Challenges in Implementing Zero Trust
  • Balancing security with usability is a challenge that must be addressed to enable a high-collaboration, low-friction workflow.
  • Bloomberg leverages many SaaS services for collaboration, but they also have their own core services that are still on-premises. They focus heavily on their offerings on-premises and have a big drink-your-own champagne culture around them.

Hosted on Acast. See acast.com/privacy for more information.

Jaksot(58)

Adopting Zero Trust with J. R. Cunningham: The Moat Has Dried Up

Adopting Zero Trust with J. R. Cunningham: The Moat Has Dried Up

This week we chat with J. R. Cunningham, Chief Security Officer at Nuspire, and we dig into Zero Trust as a journey. Nuspire is a managed security service provider that provides support ranging from m...

20 Loka 202248min

Adopting Zero Trust With Maureen Rosado: Selling Zero Trust

Adopting Zero Trust With Maureen Rosado: Selling Zero Trust

This week we chat with Maureen Rosado, a Zero Trust Strategist for BT, who has an outstanding history of business development for enterprise companies like IBM and Microsoft. This week we break away f...

6 Loka 202249min

Adopting Zero Trust with Christine Owen: Searching For the Finish Line

Adopting Zero Trust with Christine Owen: Searching For the Finish Line

This week we chat with Christine Owen, Director at Guidehouse, and we dig into Zero Trust as an approach to harden your identity and access management strategy, her dislike of passwords, and phishing-...

22 Syys 202259min

Adopting Zero Trust with Lexmark’s Bryan Willett: Culture of Security

Adopting Zero Trust with Lexmark’s Bryan Willett: Culture of Security

This week we chat with Bryan Willett, Lexmark’s CISO, who has built a legacy over the past 25 years working for the global company. Starting from his early days as a firmware developer, transitioning ...

8 Syys 202249min

Adopting Zero Trust with Dom Glavach: Staffing Up

Adopting Zero Trust with Dom Glavach: Staffing Up

This week we chat with Dom Glavach, Chief Security Officer (CSO) of CyberSN (Cyber Security Network) and a security consultant, and we dig into Zero Trust as a journey, the delta between buzzwords and...

25 Elo 202241min

Adopting Zero Trust With Nicolas Chaillan: From Policy to DHS

Adopting Zero Trust With Nicolas Chaillan: From Policy to DHS

Nicolas Chaillan is an Entrepreneur who became a US citizen about six years ago, and immediately joined the DHS where he became the chief architect and special advisor for cyber, leading him to become...

11 Elo 202244min

Adopting Zero Trust with Ryan Alford: IoT Secured

Adopting Zero Trust with Ryan Alford: IoT Secured

This week we chat with Ryan Alford, Founder and CEO of Engineering Design Group (EDG), and we dig into how Zero Trust impacts the future of hardware, software, IoT, and access (both human and machine)...

27 Heinä 202247min

Adopting Zero Trust With Andrew Abel: Translating Zero Trust Into Business Concepts

Adopting Zero Trust With Andrew Abel: Translating Zero Trust Into Business Concepts

This week we chat with Andrew Abel, our defacto Zero Trust expert who is currently the EUC Cyber Security Strategy and Architecture Lead for an energy company out of Brisbane Australia.Andrew has been...

14 Heinä 202242min