The National Institute of Standards and Technology (NIST) Zero Trust Framework fills that need. It assumes all users, endpoints and workloads are inherently untrustworthy, whenever and wherever they access enterprise resources or applications. A simplified zero trust approach can check off many boxes if employed properly. It needs to be frictionless, both for end users such as physicians and other care providers and for IT professionals. Taking advantage of cloud-native security controls to monitor all relevant attack vectors helps speed detection and response.”]
Source: https://www.darkreading.com/crowdstrike/simplifying-zero-trust-security-in-healthcare-organizations