6. Moving to a zero-trust-by-default model
Pavlo Tkhir, CTO at Euristiq, says his main project for 2026 is the implementation of zero trust architecture for all the software development firm’s internal and client development. “We’ve long worked with companies for whom security is critical, but in 2026, market and regulatory demands will be so high that moving to a complete ‘zero-trust-by-default’ model will become a strategic imperative.”
For Tkhir, the project isn’t just about strengthening the company’s own security. “It will also allow us to build even more secure platforms for our clients, from high-load enterprise systems to AI-powered solutions where data integrity is critical,” he says. “We’re implementing zero-trust across infrastructure, development, CI/CD, and internal tools — this creates a unified security standard that will then be transferred to client architectures.”
The initiative wasn’t born out of a specific incident, but from close observation, Tkhir says. “We saw that threat models are changing faster than ever.” He notes that attacks are increasingly occurring not on the perimeter, but internally: through library vulnerabilities, APIs, weak authentication mechanisms, or erroneous permissions. “This is what inspired us to completely rethink our approach.”
