Angelica Phaneuf, Chief Information Security Officer at the Army Software Factory, explained some of the steps that her organization has been taking to meet the needs of zero trust security mandates at an August 2 event entitled Securing Identity in a Zero Trust Environment and hosted by Federal News Network.
Phaneuf explained that baking in zero trust security doesn’t just mean talking to a specific vendor or implementing a certain strategy. Rather, she said, it means changing architectures on a foundational basis.
“It’s not just a single vendor or solution that you implement, and you put into your product,” she said. “It’s really something that is [part of] the fundamentals of how you’re developing,” she said.
Phaneuf also talked about the challenge of implementing zero trust security across different software applications.
“I’d say one of the biggest challenges we have is how do we leverage this across a lot of applications in different systems, [and] how they integrate it,” she said.
“If you’ve ever used a military system, if you’ve ever worked in and around the military, you’ll know that not a lot of things talk to each other,” Phaneuf explained. “Everything’s really disconnected from each other, and zero trust is really meant to connect.”