SANS Stay Sharp Training Live Online: Quickly sharpen your skills with 1-3 day blue team & cloud courses. Save 25% thru 11/11.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Sorry, the slides for this webcast are not available for download.

SANS Zero Trust Solutions Forum 2020

  • Friday, August 28, 2020 at 10:30 AM EDT (2020-08-28 14:30:00 UTC)
  • Ismael Valenzuela


  • Akamai Technologies
  • Cyberinc
  • Cyolo Security Ltd

You can now attend the webcast using your mobile device!



Join the Slack Workspace HERE and download the agenda HERE.

Traditional methods of cyber defense, like perimeter-based network security, have always emphasized the need of keeping adversaries out of our networks, building a fortress that would stop attackers while allowing secure access to legitimate users. In such a model, trust is typically binary: either the user is authenticated (trusted) or not. Once access is granted to a user, that level of trust is hardly re-evaluated, and when it is, it is usually as a result of an incident, when it is often too late.

Although modern client-side attacks have made evident that the old perimeter security model based on moats and castles is clearly insufficient, this architecture is still the most commonly deployed today. With this in mind, back in 2011, Forrester published a report on a new model called Zero Trust, a data-centric approach that promotes a new way to think about cyber threats, one that assumes that the adversary is already on the network, that you have been already compromised.

While this model has been known for some time, it seems that Zero Trust has only gained major popularity recently. The increasing use of cloud and the adoption of BYOD (Bring Your Own Device) policies are contributing to the strong appeal that zero-trust architectures have for both commercial and government organizations. Furthermore, the release of the Draft Publication on Zero Trust by NIST in late 2019 guarantees that this will be one of the most discussed topics by the infosec community in 2020.

But is Zero Trust just a new marketing buzzword, a simple iteration over the well-known least privilege mindset, or a truly innovative strategy? Is Zero Trust truly attainable? If so, how do you get started and what are some of the tools and technologies that are available to implement it?

To answer these questions, join SANS instructor Ismael Valenzuela, co-author of Security 530: Defensible Security Architecture and Engineering, as he chairs a one-day forum of vendors and security professionals that will share their experience and provide specific advice on how to implement Zero Trust strategies.

Relevant Security Operations Topics:

  • Data-Centric security architectures
  • Zero Trust strategies and components
  • Zero Trust Use Cases
  • Experiences adopting a Zero Trust architecture
  • Micro-perimeter
  • Adaptative Trust
  • Asset Management
  • Password Management
  • Secure Remote Access
  • IAM solutions
  • Continuous Monitoring
  • Cloud Access Security Brokers (CASB)

Earn four CPE hours for attending this virtual event.

Speaker Bio

Ismael Valenzuela

SANS Certified Instructor Ismael Valenzuela (@aboutsecurity) is coauthor of the CyberDefense and Blue Team Operations course, SANS SEC530: Defensible Security Architecture and Engineering, and holds many professional certifications, including the highly regarded GIAC Security Expert (GSE #132).

Since he founded one of the first IT Security consultancies in Spain, Ismael Valenzuela has participated as a security professional in numerous projects across the globe over the past 19 years. Prior to his current role as Senior Principal Engineer at McAfee, where he leads research on threat hunting using machine-learning and expert-system driven investigations, Ismael led the delivery of SOC, IR & Forensics services for the Foundstone Services team within Intel globally. Previously, Ismael worked as Global IT Security Manager for iSOFT Group Ltd, one of the world's largest providers of healthcare IT solutions, managing their security operations in more than 40 countries.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.