“With Federal employees accessing critical information, systems, and applications from anywhere, the mindset has shifted to never trust and always verify. Federal security experts explained that this shift put a focus on a new critical aspect of a zero trust architecture – identity management.
‘Identity sits at the heart of any zero trust implementation,’ Carole House, the Cybersecurity and Secure Digital Innovation director for the White House National Security Council, said during an ATARC virtual event on Feb. 1…”
“OMB memorandum 22-09 set forth a Federal zero trust architecture strategy requiring agencies to meet specific cybersecurity standards and objectives by the end of the fiscal year 2024 to reinforce the government’s defenses against increasingly sophisticated and persistent threat campaigns…”
“’As a consumer of commercial solutions, a challenge we might face is validating that those commercial solutions comply with zero trust standards,’ Jeffery Shilling, the acting CIO for the National Institutes of Health at the Department of Health and Human Services, said.
‘The question now is, as zero-trust becomes the norm across government will the administration formulate a standardized approach to selecting solutions that comply with zero trust principles,’ Shilling said…”
“’The challenge in building an identity-centric system is time. This is a shift that is going to take time to implement. But agencies must also remember that cybersecurity is a team sport and keeping constant communication on what works and doesn’t work will only make our framework stronger,’ House said…” Read the full article here.
Source: Identity Remains at the Heart of Zero Trust, Panelists Say – By Lisbeth Perez, February 2, 2022. MeriTalk.
