Anne Arundel Community College Zero Trust Network Access Paper

The assigned topic for this semester is:
Task #1 – Determine the best methods for implementing Zero Trust Network Access (ZTNA) for external to Paychex user endpoint devices

Assumption: Paychex has 100+ internal web-based applications that are not directly accessible from the Internet
Assumption: Paychex has a standard network perimeter with dual-firewalled DMZs Assumption: Paychex has role-based access controls implemented on the internal applications Goal: Define industry standard best practice solutions and architectures for allowing external devices to access internal resources following the Zero Trust Maturity Model. Can include paid or opensource solutions

Goal: Be sure to address micro-segmentation of resources, identity governance, and policy-based

access controls
Task #2 – Determine the best methods for implementing ZTNA between Paychex internal (non-Internet- facing) servers and endpoints

Assumption: Paychex has 100+ internal web-based applications that are not directly accessible from the Internet
Assumption: Paychex has a flat internal network with data, web, and application servers, and user endpoints/workstations residing in the same network segments

Assumption: Paychex has role-based access controls implemented on the internal applications Goal: Define industry standard best practice solutions and architectures for allowing communication between internal devices and resources following the Zero Trust Maturity Model. Can include paid or opensource solutions

Goal: Be sure to address micro-segmentation of resources, identity governance, and policy-based access controls

This is the topic given to us by Paychex.