Zero Trust – Why Does It Matter, And What Is Data Protection’s Role?

Zero Trust – Why Does It Matter, And What Is Data Protection’s Role?

In the world of highly innovative attackers and the growing incidence of insider threats, the perimeter-based security approaches that IT has long relied upon are no longer sufficient. As a result, the topic of Zero Trust, which is defined by the National Institute of Standards and Technology as an architecture that “assumes there is no implicit trust granted to assets or user accounts based solely on their physical or network location or based on asset ownership”, has been getting headlines and executive-level attention.

Not simply a buzzword, Zero Trust was emphasized as a guiding principle of both federal sector and private sector IT systems in the Biden-Harris National Cybersecurity Strategy, which was released last month. Increasingly, Zero Trust principles will guide how IT infrastructures and networks are architected – including data protection implementations.

The Role of Data Protection in a Zero Trust Framework

Backup systems are increasingly the subject of cyberattacks because attackers know that companies will be less incentivized to pay ransoms if they can recover their data and applications. This is part of the reason why protecting critical data assets is a core component of a Zero Trust Framework. Specifically, the ability to recover the organization’s most critical data assets as quickly as possible is paramount to mitigating the effects of attacks.

From a Zero Trust perspective, backup and recovery tools are having capabilities built in to inhibit malicious access and to detect that an attack has occurred. Role-based access control (RBAC), multi-factor authentication (MFA), two-person concurrence for data deletion, and air gapping/data vaulting are just a few Zero Trust-related technologies that are established or are becoming table stakes for an effective data protection strategy.

The Role of Data Protection in a Zero Trust Approach and the Challenges Ahead

Although organizations are realizing that Zero Trust principles should guide IT architecture, there is not an overnight fix. It will take time for organizations to both understand the importance of Zero Trust and to embrace it, and there are potential issues standing in the way. First, it is not easy to integrate new technologies into the data protection ecosystem and data protection plays an outsized role. To complicate matters further, data protection has a very long tail of adoption.

Another challenge is that, historically, administrators have been extensively trained on specific solutions. Additionally, in many cases, data that has been backed up with a particular solution cannot be recovered by a different solution. Moreover, when looking at Zero Trust specifically, it is important that new technologies or processes do not inhibit the need for the right data getting to the right users in a timely manner; it can’t impede or slow down business processes by getting in the way.

Data protection by itself is not the end-all-be-all, for Zero Trust or for cyber resiliency, and attackers will continue to innovate. But understanding the role data protection plays in the process as a whole will help, and strides are being made, which is encouraging.

Disclosure: The Futurum Group is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.

Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of The Futurum Group as a whole.

Other insights from The Futurum Group:

The National Cybersecurity Strategy Proposed by the Biden-Harris Administration Portends Greater Scrutiny for IT Operations

World Backup Day: Taking Stock of Data Protection Best Practices

Fujitsu Enterprise Postgres: Delivering the Security Assurances Key to Protecting Data in Era of Mounting Cybersecurity Attacks

Related Insights
SaaS ERP Is Reshaping Data Access, But Can It Deliver on the Promise of Real-Time Insight?
July 11, 2026

SaaS ERP Is Reshaping Data Access, But Can It Deliver on the Promise of Real-Time Insight?

IT Convergence's SaaS ERP strategy capitalizes on enterprise modernization trends, with 84.5% of channel partners expecting AI-driven growth and the Channel Ecosystems market forecast to reach $41.8B by 2029....
Can Anthropic's GRAM 'Off Switch' Make Dual-Use AI Safer Without Killing Utility?
July 10, 2026

Can Anthropic’s GRAM ‘Off Switch’ Make Dual-Use AI Safer Without Killing Utility?

Anthropic and AE Studio introduced GRAM, enabling selective removal of sensitive AI capabilities without retraining, potentially addressing privacy and security concerns for organizations adopting generative AI....
Is Migrating from Synapse to Databricks the Shortcut to Unified AI-Ready Data?
July 10, 2026

Is Migrating from Synapse to Databricks the Shortcut to Unified AI-Ready Data?

Organizations are consolidating data infrastructure around unified platforms, with 73.6% planning to increase spending—signaling a shift toward AI-ready, simplified architectures that eliminate costly silos....
Exprivia Bets Big on Banking Security: Can Partnership Drive Real Innovation?
July 10, 2026

Exprivia Bets Big on Banking Security: Can Partnership Drive Real Innovation?

Exprivia announced partnership with ABI's WeSec summit as Main Partner, aligning with surging demand for cybersecurity and AI solutions across Italian banking. The move positions the company to capitalize on...
Can Biohub’s Open AI Models and Imaging Tools Redefine Biomedical Discovery?
July 10, 2026

Can Biohub’s Open AI Models and Imaging Tools Redefine Biomedical Discovery?

Biohub's AI integration in protein modeling and genomics marks a biomedical shift, yet adoption barriers—hallucination risk, data privacy, and unclear ROI—hinder clinical deployment....
AWS Looks to Collapse the Search-Analytics Divide: How Its New OpenSearch Engine Fuels Agentic AI
July 9, 2026

AWS Looks to Collapse the Search-Analytics Divide: How Its New OpenSearch Engine Fuels Agentic AI

Brad Shimmin, VP at Futurum, explores how AWS is re-architecting Amazon OpenSearch Service. By fusing search and analytics and integrating native MCP support, AWS aims to slash log storage costs...

Book a Demo

Welcome

The vision behind everything in Futurum’s Custom Research practice is this: research should show you what is happening, what comes next, and what to do about it. It should be personal to each audience, easy for people to grasp, and structured so LLMs can reason over it accurately. And it should be fast and turnkey; you want answers now, not another project to carry for quarters.

Whether you are defining business, channel, or go-to-market strategy; evaluating vendors or justifying ROI; or commissioning research to fill an emerging market need, we have your back, with a program that answers your questions with the objectivity and credibility to drive real decisions.

To do it, we bring unmatched data to bear: Futurum research, surveys, and market projections; validated market feeds; ETR’s 15 years of insight from 10,000 technology decision-makers; G2’s buyer and user data; and what our analysts hear every day. Add leading primary collection, from AI-moderated voice interviews to surveys and analyst-led interviews, all turnkey, and every project comes out credible, nuanced, and actionable.

And we don’t just drop the results in your lap. For internal work, we provide analyst-led sessions, interactive dashboards, and a range of formats. For market-facing work, Futurum delivers turnkey activation and amplification that actually gets seen, by people and by LLMs, through our media and share of voice. This is research that moves decisions and markets.

We will meet you wherever you are, from a fast-turn brief to a multi-year program, and shape the work to your goals, timeline, and budget. The right program for your moment.

If any of this is useful, I would love to talk.

Benjamin Brown, VP Custom Research, Futurum Research

Benjamin Brown

VP, Custom Research · The Futurum Group

Newsletter Sign-up Form

Get important insights straight to your inbox, receive first looks at eBooks, exclusive event invitations, custom content, and more. We promise not to spam you or sell your name to anyone. You can always unsubscribe at any time.

All fields are required






Thank you, we received your request, a member of our team will be in contact with you.