“This is what the Office of Management and Budget’s draft zero trust strategy, released on Sept. 7, is trying to change by bringing this cybersecurity approach together across government. The strategy is one of several ongoing deadlines detailed in the May executive order from President Joe Biden…”
“OMB broke down the strategy across the five pillars: identity, devices, network, applications and data.
Each of these areas have detailed goals and, in some cases, specific deadlines, including reaching a basic zero trust maturity level by the end of fiscal 2024.
‘Departments and agencies will have 30 days from the publication of this memorandum to designate and identify a zero trust architecture implementation lead for their organization. OMB will rely on these designated leads for government-wide coordination and for engagement on planning and implementation efforts within each organization,’ the draft strategy stated…”
“’We’re definitely working closely with our resource management colleagues within OMB to make sure they understand what we mean by the zero trust strategic priorities, and the types of investments we’re expecting to see from agencies,’ [Chris DeRusha, the federal chief information security officer] said. ‘In the plan, we’ve asked for 60 day implementation and resource plans back from agencies, which we plan to be heavily involved in ensure are the right investment choices. We’re moving fast and having some of those conversations now because the budget processes is definitely moving forward in earnest for 2023.’…” Read the full article here.
Source: OMB preparing agencies for three-year sprint to a new cyber standard – By Jason Miller, September 9, 2021. Federal News Network.