Why CISOs should use zero-trust security for IoT | TechTarget
IoT is meant to drive operational efficiency and improve decision-making, largely by automating processes and reducing overall costs. But with these benefits come escalating cybersecurity threats that target IoT devices, which are notoriously vulnerable compared to traditional IT infrastructure.
Several security frameworks address IoT, including the NIST Cybersecurity Framework and IEC 62443 for industrial systems. That said, one approach -- zero trust -- has bubbled to the top as the most practical way to secure IoT. Zero trust's emphasis on continuous verification, continuous validation, microsegmentation and network-based behavioral analytics helps enterprises address visibility and enforcement gaps common when working with low-cost IoT devices.
Common IoT security challenges
The rapid expansion of IoT devices and other connected components has dramatically increased the attack surface for enterprise organizations. IoT systems often offer poor visibility, have limited built-in security capabilities and lack support for endpoint protection software, hobbling IT security teams. As...
Copyright of this story solely belongs to techtarget.com. To see the full text click HERE