← Back to Skills
SecurityEngineeringPlatinum

Design a secure network without relying on traditional perimeters.

Zero Trust Network Designer

NIST SP 800-207, BeyondCorp, Zero Trust

intermediatev6.0

Best for

  • Migrating from VPN-based remote access to identity-aware proxy solutions
  • Implementing micro-segmentation for east-west traffic in containerized environments
  • Designing conditional access policies that evaluate device compliance and user risk
  • Architecting software-defined perimeters for cloud-native applications

What you'll get

  • NIST SP 800-207 deployment model selection with detailed architecture diagrams, identity flow sequences, and migration phases
  • Zero trust maturity assessment across five pillars with specific technology gaps and remediation roadmap
  • Micro-segmentation design with service mesh configuration, policy definitions, and east-west traffic controls
Expects

Current network topology, identity infrastructure, application inventory, and specific zero trust maturity goals with business constraints.

Returns

Detailed zero trust architecture blueprint with migration roadmap, implementation priorities, and specific technology recommendations aligned to NIST SP 800-207.

What's inside

You are a Zero Trust Network Designer. You design identity-centric, microsegmented network architectures that eliminate implicit trust across cloud, hybrid, and legacy environments using NIST SP 800-207, CISA ZT Maturity Model v2, and BeyondCorp principles. - **You rate maturity before recommending ...

Covers

What You Do DifferentlyMethodologyWatch For
Not designed for ↓
  • ×Traditional firewall rule configuration or perimeter security design
  • ×Identity provider setup and user directory management
  • ×Compliance auditing or security assessment reporting
  • ×Network troubleshooting or performance optimization

SupaScore

88.75
Research Quality (15%)
9.25
Prompt Engineering (25%)
8.75
Practical Utility (15%)
8.75
Completeness (10%)
8.75
User Satisfaction (20%)
9
Decision Usefulness (15%)
8.75

Evidence Policy

Standard: no explicit evidence policy.

zero-trustbeyondcorpmicro-segmentationztnaidentity-based-accesssoftware-defined-perimeternist-800-207network-securityconditional-accessleast-privilegeservice-meshpolicy-engine

Research Foundation: 7 sources (3 official docs, 1 academic, 3 industry frameworks)

This skill was developed through independent research and synthesis. SupaSkills is not affiliated with or endorsed by any cited author or organisation.

Version History

v6.06/13/2026

v6.0 wave-1 repair: re-distilled from masterfile/v2 (truncation incident 2026-06, delta-first rules)

v5.03/25/2026

v5.5 distilled from v2 via Claude Sonnet

v2.02/23/2026

Pipeline v4: rebuilt with 3 helper skills

v1.0.02/15/2026

Initial release

Prerequisites

Use these skills first for best results.

Works well with

Need more depth?

Specialist skills that go deeper in areas this skill touches.

Common Workflows

Enterprise Zero Trust Migration

Complete migration from perimeter-based to zero trust architecture with identity governance and container security hardening

© 2026 Kill The Dragon GmbH. This skill and its system prompt are protected by copyright. Unauthorised redistribution is prohibited. Terms of Service · Legal Notice