Zero-trust security practices make it harder for malicious users to move laterally across a system once they have gained access behind the firewall, report says.