Zero Trust (ZT) is a strategic approach to Cybersecurity. What is lacking in ZT is a holistic approach that addresses other departments and associated processes such as risk management, compliance, and finance. The aim of this paper is to elaborate on how a collaborative process via Group Support System sessions were applied to validate the ZT Framework. Next to that we describe the design and engineering of a ZT artifact (dashboard) that addresses the problems at hand, according to Design Science Research (DSR). The last part of this paper outlines the empirical validation with GSS through practitioner-oriented research to better implement ZT strategies. It elaborates on how this validation was conducted during the pandemic in 2020 with 73 security practitioners. The final result is a widely supported and validated framework with a strategic and more holistic approach to better understand the required capabilities to successfully operationalize a ZT security strategy.
FULL PAPER
