Evaluating the Effectiveness of Zero Trust Architecture in Modern Enterprises. Moderating Role of Organisational Maturity

Abstract

The study evaluated the performance of Zero Trust Architecture (ZTA) in modern enterprises, particularly focusing on organisational maturity as a moderator. As cyber threats evolve and perimeter security proves insufficient, organisations increasingly implement ZTA to protect their digital assets. However, the effective implementation of ZTA depends on the organisational maturity that decides its integration and scalability. The study employed a quantitative method based on survey research and collected data from 380 experts involved in cybersecurity decision-making among UK companies. The data was analysed and tested for the relationships between organisational maturity, ZTA, and enterprise performance using Partial Least Squares Structural Equation Modelling (PLS-SEM). The findings revealed that ZTA (β = 0.388, p = 0.000) significantly and positively influenced enterprise performance, particularly in improving cybersecurity. Furthermore, organisational maturity (β = 0.123, p = 0.022) is a significant moderating factor, enhancing the positive relationship between adoption of ZTA and improved performance. Mature companies have shown improved implementation of ZTA, reflecting that organisational maturity is a significant driver to ensure optimal effectiveness. This research contributes to the literature by bridging the gap between technical aspects of ZTA and organisational maturity's strategic value. It provides practical business implications by concluding that organisational maturity is necessary for maximum utilisation of the benefits of ZTA. The findings also present valuable insights to decision-makers and cybersecurity experts who wish to maximise using ZTA and strengthen their cybersecurity position.