2025-06-21 – 20:35-21:20 (Africa/Abidjan), Track 1 (UC Conf. Rm. A) (2nd Floor)
In today's interconnected business world, communication between systems is crucial but also a vector for adversaries. This project evaluates the effectiveness of micro-segmentation in mitigating network breaches within a Zero-Trust model. By comparing segmented and non-segmented environments, the study quantifies the impact of breaches based on attack path depth and total impact score, providing insights for IT decision-making and control selection
Aim is to evaluate the effectiveness of micro-segmentation in mitigating the impact of network breaches within a Zero-Trust model. It quantifies the impact based on attack path depth and total impact score, comparing segmented and non-segmented environments.
Emphasizes the importance of treating every connection and object as untrusted unless explicitly verified.
Micro-Segmentation: Used as a technological enabler to implement Zero-Trust, isolating network segments to prevent lateral movement of threats.
Methodology: The study uses a Breach and Attack Simulation (BAS) tool to measure the effectiveness of micro-segmentation. The environment is tested in both segmented and non-segmented phases.
The effectiveness is evaluated based on the number of compromised systems and the complexity of the attack path. The impact score is calculated to provide a quantitative measure of the mitigation.
The study provides insights for IT departments in making informed decisions about control selection during risk assessment. It highlights the importance of micro-segmentation in reducing the impact of network breaches and supports the Return on Security Investment (ROSI) calculations
Alex Malashev brings over 20 years of experience in IT, with expertise spanning system and cloud engineering, security, and management roles. A graduate of American Military University with a Master of Science in Information Assurance (MSIA) and a perfect 4.0 GPA, Alex has also earned an impressive array of certifications, including CCP, CISSP, VCP-NV, CCSP, CCNA, PMP, CRISC, PenTest+, and CISM. His extensive career has primarily focused on supporting federal contracts for the Department of Energy (DoE), Department of Justice (DoJ), and Department of Defense (DoD). Currently, Alex serves as the Sr. Manager of Security Services at Philips, where he leads compliance efforts for federal contracts, combining technical proficiency with strong leadership and management skills