Microsoft’s Zero Trust Architecture (ZTA) provides a comprehensive vision for securing access across identities, devices, applications, and data. While conceptually powerful, practical implementation across complex, federated environments like higher education can be daunting. With M365 A5 licensing already in place across most CAUDIT members, the question is no longer about tooling—it’s about execution.
Join Adrian Kitto, CISO at Detexian and strategic advisor to institutions like James Cook University, as he shares a pragmatic approach to building a Zero Trust uplift roadmap tailored for the education sector. In this session, Adrian will share:
• The Microsoft ZTA pillars, with emphasis on Identities, Devices & Applications, and Data.
• The typical 450 controls universities face—and why focusing on 15–17 critical controls delivered with a focused roadmap over 3 years is more achievable and impactful.
• Key projects such as modern Conditional Access implementation, guest user governance, hybrid join/device management, external sharing policies, and SaaS data backup.
• A staged implementation plan that balances uplift velocity, operational capacity, and compliance goals.
This session will deliver clarity, realism, and structure to teams aiming to turn Microsoft’s ideal ZTA model into tangible progress—no “big bang” required!
Recording is available for CAUDIT Members.
