I support clients across varied sectors, and I've had opportunities to do some very exciting work during my tenure so far, but the most exciting project has been implementing zero trust security using the Zscaler Private Access (ZPA) technology for a major consumer goods organisation.
We initially set it up in “open VPN” mode which means all users have access to all internal applications via ZPA. We are now working with the customer to move to a zero trust model with ZPA wherein only authorized users will have access to the applications on the specific port numbers. This provides an additional layer of security at the ZPA level along with the security checks enforced by the actual applications themselves. It’s quite interesting in the sense that we have tried to use aspects of machine learning alongside manual analysis of data to build robust zero trust policies on ZPA.