In February 2020, Zero Trust isn’t just a buzzword—it’s a real strategy SMBs can adopt today. The concept is simple: never trust, always verify. Every user, device, app, and request must prove itself. This mindset helps reduce risk in a world where perimeter-based defenses no longer work.
Zero Trust assumes no implicit trust—inside or outside your network. You continuously verify identity, posture, and behavior. It’s not a product you buy. It’s a framework you implement over time with the tools and practices you already have or can adopt.
SMBs face the same threats as enterprises—ransomware, phishing, credential theft—but often with fewer resources. Zero Trust gives SMBs a clear playbook to secure users, devices, and access, even without a large security team. And it scales as you grow.
Zero Trust doesn’t mean expensive tech. Many SMBs start with what they have—M365, G Suite, cloud firewalls, MDM, SSO, and endpoint detection. The shift comes from configuring them intentionally to reduce implicit trust and log activity clearly.
You don’t go Zero Trust overnight. Instead, identify your biggest risks and start there. Secure identities first, then endpoints, then access. In 2020, treat Zero Trust as a continuous maturity path that aligns with your business risk tolerance and budget.
Eduardo Wnorowski is a Technologist and Director at Virtus Group Ltd.
With over 25 years of experience in IT and consulting, he brings deep expertise in networking, security, infrastructure, and transformation.
Eduardo helps New Zealand businesses navigate change with clarity, security, and trust.
🔗 Connect on LinkedIn