“’Part of the zero trust architecture is presuming that you’ve been breached. So it’s no longer perimeter facing, it’s making sure that we’re verifying identity and access, internal and all the time,’ Scott Davis, U.S. Customs and Border Protection acting chief information security officer, said on Federal Monthly Insights — Cybersecurity Awareness Month: Secure Identity and Access Management. ‘So it’s continuous monitoring of those things. But we do work with [the Cybersecurity and Infrastructure Security Agency] — they’ve given us, whether it’s directives or reporting, and then alerts on risks and threats that are coming down.’
The goal of CBP’s identity and access management program has to be the protection of information systems. The agency is dealing with external federal contractors, other agencies and private individuals through applications such as trusted traveler programs…”
“Multi-factor authentication is a hallmark of zero-trust architecture, the buzziest concept in cybersecurity at the moment. Davis said it allows CBP to compartmentalize things including users’ access files, structures and more.
Public-facing applications such as the TSA PreCheck, Global Entry trusted traveler programs are also part of CBP’s ID and access management plan. Identity proofing is required for users of those programs; they must have certain other credentials…” Read the full article here.
Source: Customs and Border Protection uses large toolbox for identity and access management – By Amelia Brust, October 12, 2021. Federal News Network.