Zero Trust Readiness Assessment

How ready are youforZero Trust?

Answer 16 questions across 5 pillars. Get an instant readiness score and a prioritised remediation roadmap โ€” free, in your browser, in under 5 minutes.

Scroll to explore
๐Ÿ†”
Identity
โ€”
๐Ÿ–ฅ
Devices
โ€”
๐ŸŒ
Network
โ€”
๐Ÿ“ฆ
Workloads
โ€”
๐Ÿ“Š
Visibility
โ€”
Assessment Overview

Five pillars.
One score.

Each pillar maps to a core Zero Trust domain. Answer honestly โ€” partial credit is awarded for in-progress controls.

๐Ÿ†”
Identity
MFA, SSO, privileged access & governance
๐Ÿ–ฅ
Devices
MDM, EDR, and device-health enforcement
๐ŸŒ
Network
Segmentation, ZTNA & traffic inspection
๐Ÿ“ฆ
Workloads
Secrets, containers & API auth posture
๐Ÿ“Š
Visibility
Logging, SIEM, detection & response
Zero Trust Library

Resources & References

Frameworks, tools, implementation checklists, and essential reading to guide your Zero Trust journey.

NIST
SP 800-207 Zero Trust Architecture
Official

The foundational US federal standard defining Zero Trust principles, logical components, and deployment models. The definitive starting point for any ZTA programme.

ArchitecturePolicyUS Federal
Read the standard
CISA
Zero Trust Maturity Model v2.0
Official

Five-pillar maturity model (Identity, Devices, Networks, Applications, Data) with four maturity stages: Traditional โ†’ Initial โ†’ Advanced โ†’ Optimal. Maps directly to this assessment.

Maturity Model5 PillarsUS Gov
Read the model
DoD
Zero Trust Reference Architecture v2.0
Official

The US Department of Defense's comprehensive ZTA blueprint covering 7 pillars and 152 ZT activities. Highly detailed for defence-grade implementations.

7 PillarsDefenceActivities
Read the architecture
NCSC UK
Zero Trust Architecture Design Principles
Official

Eight design principles from the UK's National Cyber Security Centre. Practical, technology-agnostic guidance written for architects and security leads.

UK GovPrinciplesArchitecture
Read the principles
NIST
NCCoE ZTA Migration Project (SP 1800-35)
Practice Guide

Practical implementation guidance from NIST's National Cybersecurity Center of Excellence. Covers five ZTA approaches with real vendor integrations and test results.

ImplementationMigrationVendor-specific
Explore the project
Google / BeyondCorp
BeyondCorp Research Papers
Research

Google's pioneering work removing VPN reliance, shifting access controls to the device and user โ€” the real-world origin of modern Zero Trust. Six papers covering the full migration.

Case StudyDevice TrustAccess Proxy
Read the papers
Forrester
Zero Trust eXtended (ZTX) Ecosystem
Analyst

John Kindervag's original Zero Trust concept expanded by Forrester into a seven-pillar ecosystem framework. Originated the term "never trust, always verify."

Original ZT7 PillarsAnalyst
Read the report
ENISA
Zero Trust in 5G Networks
EU Standard

European Union Agency for Cybersecurity guidance on applying Zero Trust principles to 5G infrastructure and cloud-native network architectures.

EU5GTelco
Read the guidance