Cloud Security , Events , Governance & Risk Management
How Zero Trust Is Redefining Enterprise Security
UBS's Former Director Frankie Shuai on Implementation Success and ChallengesThe shift to remote work and digital banking has fundamentally changed how organizations approach security, moving away from traditional perimeter-based models toward continuous verification systems. This transformation has made zero trust architecture crucial for protecting enterprise assets.
See Also: Securing the Cloud, One Identity at a Time
The model's transformation from concept to practical implementation has been particularly evident in financial services, where data protection and access control have become critical considerations in multi-cloud environments, according to Frankie Shuai, former head of cyber and technology risk for Singapore and ANZ at UBS.
"When your data is sitting in your own data center, you can focus on your boundaries, make sure you have a solid parameter so that the data sitting on the data center may not be needed to be encrypted," he said. "But when the data moves outside to the public cloud, or more than one public cloud service provider, you have to make sure the data is protected … if anything goes wrong, the regulator will come to you, not a service provider."
"The mindset has changed because you cannot simply trust everything - you need to verify first. And this verification is not just one time. It's continuous," Shuai said.
In this video interview with Information Security Media Group at the GovWare Conference and Exhibition 2024, Shuai also discussed:
- The five pillars of zero trust and their role in modern security architecture;
- How microsegmentation strengthens network security in cloud environments;
- The importance of proper data classification and encryption in public cloud deployment.
With nearly 20 years of experience in cybersecurity and technology risk management, Shuai currently oversees regional information security efforts, focusing on integrating cybersecurity strategies with business objectives.