Zero Trust Architect

Design and implement Zero Trust architectures that assume breach and verify every request. Master identity, device trust, and network segmentation at enterprise scale.

📚 4 topic areas🔗 12 curated resources📝 10 quiz questions

What you'll cover

Zero Trust Principles

Understand the three core principles: verify explicitly, use least privilege, and assume breach.

🔗

NIST Zero Trust Architecture (SP 800-207)

The definitive NIST framework for Zero Trust

🔗

Microsoft Zero Trust Model

Microsoft's practical implementation guide

🔗

CISA Zero Trust Maturity Model

Five-pillar maturity model from US CISA

Identity as the New Perimeter

Build identity-centric security with Entra ID, MFA, conditional access, and Privileged Identity Management.

📄

Microsoft Entra ID PIM Guide

Complete guide to Privileged Identity Management in Entra ID

🔗

Conditional Access in Microsoft Entra

Policy-based access control for every sign-in

🔗

FIDO2/Passkey Authentication

Phishing-resistant authentication standard

Device Trust & Endpoint Security

Ensure only healthy, compliant devices can access resources using MDM, EDR, and compliance policies.

🔗

Microsoft Intune Overview

Cloud-based device management for Zero Trust

🔗

CIS Controls — Endpoint Security

CIS Controls focused on endpoint hardening and inventory

🔗

Endpoint Detection and Response (EDR) Explained

CrowdStrike overview of EDR capabilities

Network Segmentation & Microsegmentation

Move beyond VLANs to software-defined microsegmentation that limits lateral movement.

🔗

Azure Virtual WAN for Zero Trust

Hub-and-spoke networking for Zero Trust connectivity

🔗

Illumio Microsegmentation Guide

How microsegmentation reduces blast radius

📄

Kubernetes Security Best Practices

Network policies and pod-level segmentation in K8s

Knowledge Check

Path Summary

Level: Intermediate
Estimated time: 11 hours
Topics: 4
Resources: 12
Quiz questions: 10
Passing score: 70% (7/10)

Take the Quiz

Browse all paths

View all 10 paths →