Nextgov: How the Federal CISO Views Zero Trust

“Amid a swarm of industry offerings that employ the cybersecurity buzzword, Federal Chief Information Security Officer Chris DeRusha described the essential components of what he considers zero trust.

“I really believe it’s rooted in three core principles: verifying every user, validating every device, and then within that, limiting access intelligently,” he said. “This is obviously a shift away from the prior trust model that assumed if a user is behind a firewall, then you know they can be trusted. Obviously, this isn’t bearing out anymore.”

DeRusha headlined the Billington Cybersecurity Defense Summit Thursday where current and former federal officials stressed that the term “zero trust” refers to a plan of action or policy, not something any one product can claim they provide and advocated smart budgeting…”

“’Government’s been working towards this framework of zero trust for a while,’ DeRusha said. ‘In earnest, in the past few years, agencies are building out really strong foundations around identity and credential access management. We’re also moving closer and closer to doing continuous monitoring [and] dynamic management.’…”

“One individual who may perform a key role advising the administration on cybersecurity spending in consultation with Congress is Chris Inglis, President Joe Biden’s nominee to be the first national cyber director. Speaking at the conference, Inglis mentioned a joint collaborative environment proposed by the Cyberspace Solarium Commission in identifying his most immediate priority, saying it would act as a foundation for disparate entities, including those in the private sector, to work together…” Read the full article here.

Source: How the Federal CISO Views Zero Trust – By Mariam Baksh, April 22, 2021. Nextgov.

0
Tags:

This topic contains 0 replies, has 1 voice, and was last updated by  Jackie Gilbert 7 months, 2 weeks ago.

  • Author
    Posts
  • #125404

    Replies viewable by members only

    0

You must be logged in to reply to this topic.

CONTACT US

Questions?. Send us an email and we'll get back to you, asap.

Sending

©2021 MileMarker10, LLC all rights reserved | Community and Member Guidelines | Privacy Policy | About G2Xchange FedCiv

Opportunities. Starting Points.

About our Data

The Vault is a listing of expiring contracts, task orders, etc. within a certain set of parameters, to include:

  • Have an initial total estimated contract value of $10 million or above
  • Federal Civilian Only – DHS, Transportation, Justice, Labor, Interior, Commerce, Energy, State, and Treasury Actions
  • NAICS codes include: 511210, 518210, 519130, 519190, 541511,
    541512, 
    541513, 541519, 541611, 541618,
    541690, 541720, 541990
  • Were modified within the last 12 calendar months
  • The data represented is based on information provided by the government

Who has access? Please note that ALL G2Xchange FedCiv Members will receive access to all basic and much of the advanced data. G2Xchange FedCiv Corporate Members will receive access to ALL Vault content (basic and advanced).

Feedback/Suggestions? Contact us at Vault@G2Xchange.com and let us know what you think. 

G2Xchange FedCiv

Log in with your credentials for G2Xchange FedCiv

Forgot your details?