DN

Cybersecurity Case Study

Zero Trust Research Programme

A research-led approach to turning Zero Trust from a slogan into measurable identity, device and network controls.

Zero TrustEntra IDConditional AccessDefenderNetwork Segmentation

Overview

This project explores how Zero Trust principles can be translated into achievable engineering work across identity, endpoint and network layers.

Challenge

Many organisations adopt Zero Trust language before they define control maturity, telemetry quality or the operational cost of enforcement.

Architecture

  • Identity became the first control plane: MFA, conditional access, privileged access and sign-in telemetry.
  • Device trust and endpoint visibility shaped access decisions.
  • Network controls were documented as compensating layers rather than the only boundary.

Implementation

  • Mapped Zero Trust principles to controls, owners and evidence.
  • Created a maturity view across identity, device, data, apps and network.
  • Developed implementation notes for staged enforcement and exception handling.

Technologies Used

Zero Trust, Entra ID, Conditional Access, Defender, Network Segmentation

Lessons Learned

  • Zero Trust maturity depends on telemetry as much as policy.
  • Exceptions need expiry, ownership and review.
  • The best roadmap links user experience, security risk and operational support.

Outcome

A practical Zero Trust roadmap that can guide technical writing, lab work and future advisory content on the site.