Zero Trust (ZT) is prone to misconceptions. IT and business leaders often think that ZT is too hard, too expensive, and requires them to restructure everything they’ve built or deploy next-generation firewalls everywhere. Because “trust everything” is easier to grasp than the Zero Trust principle of “Never trust, always verify,” ZT myths abound. Security and risk (S&R) leaders should read this report to understand the concerns of their stakeholders and learn how to bust these myths so they can successfully fulfill their Zero Trust aspirations.