Risky Bulletin Sponsored: Making Zero Trust work with non-critical, crappy applications
Jul 6, 2025
In a conversation with Patrick Gray, Adam Pointon, CEO of Knocknoc and former CISO, sheds light on the neglected state of internal enterprise networks. He highlights the need for better segmentation as many networks remain flat. Adam introduces Knocknoc's simple identity-aware proxy aimed at securing non-critical applications. He challenges the Zero Trust framework, arguing that protecting 'crappy apps' is essential. The discussion covers innovative strategies for securing outdated applications and the need for new security solutions in an evolving landscape.
AI Snips
Chapters
Transcript
Episode notes
Flat Internal Networks Are Risky
- Internal enterprise networks have become dangerously flat with minimal segmentation.
- Focus has shifted to cloud security, leaving internal environments vulnerable and soft.
Forgotten Servers Become Risks
- Some critical servers sit isolated from the internet for years, missing updates.
- These forgotten devices become maintenance nightmares with unknown purposes.
No VLANs in Some Networks
- A client had no VLANs, complicating basic network segmentation efforts.
- Attempts to suggest VLAN use were met with surprise they even existed as a concept.