“CISA’s draft ‘Zero Trust Maturity Model,’ released publicly this week, isn’t entirely new. Sean Connelly, program manager of Trusted Internet Connections at CISA, said CISA sent the document to agencies in June, shortly after President Joe Biden’s May executive order on cybersecurity directed agencies to come up with zero trust implementation strategies.
‘Agencies were just asking for some quick relief, some quick orientation on how to build out zero trust,’ Connelly said during a Sept. 8 event produced by NextGov. ‘There’s a number of maturity models out there, both on the vendor side, and again on the [Defense Department] side. But we built ours more on the civilian side.’…”
“The draft notes how zero trust adoption will ‘require engagement and cooperation of senior leadership, IT staff, and users across the Federal Government to effectively achieve design objectives and improve cybersecurity posture.’ It says the same also applies to the cloud adoption mandated by Biden’s executive order.
‘This modernization of the Federal Government’s cybersecurity will require agencies to transition stove-piped and siloed IT services and staff to coordinated and collaborative components of a zero trust strategy,’ the document states…” Read the full article here.
Source: CISA tells agencies they don’t have to go it alone on zero trust – By Justin Doubleday, September 10, 2021. Federal News Network.