✅ Zero Trust Readiness Checklist

Use this checklist to assess your organisation’s readiness to implement a Zero Trust security model:

• 🔐 All user accounts are protected by Multi-Factor Authentication (MFA)
• 🧑‍💻 Device compliance policies are enforced across all endpoints
• 🚫 Least privilege access is configured for all roles and services
• 🔍 Audit logging is enabled for all authentication and access events
• 🌐 Conditional access policies are in place (e.g., device health, location)
• 📶 VPN is not the only layer of access control
• 📄 All sensitive assets are identified and segmented
• 📊 Visibility tools (e.g., RMM, SIEM) are deployed for endpoint and network insights
• 🛡️ Security policies apply equally across cloud, on-prem, and hybrid environments
• 📅 Regular security posture reviews are conducted