With the migration to zero trust security architectures is in full swing in the Federal government, top agency technology executives shared their experience with effective strategies and technologies they have implemented thus far during an April 25 webinar organized by Federal News Network. […]

One of the Federal government’s top cybersecurity officials said today that the Biden administration is requesting roughly $12 billion in fiscal year (FY) 2024 funding in connection with efforts to roll out zero trust security across the entire government, and voiced concern about the fate of the security push if Congress acts to roll back government funding levels to FY2022 levels. […]

The key to combating adversaries in cyberspace and building out more cyber-resilient infrastructures is creating stronger partnerships for those efforts between government and industry, a top Defense Department (DoD) official said on April 24 during the Carahsoft Public Sector Day event at the RSA Conference in San Francisco. […]

Cybersecurity services provider Palo Alto Networks said this week that it received Department of Defense (DoD) Impact Level 5 (IL5) Provisional Authorization for its Prisma Access cloud-delivered security offering to protect DoD agencies and help enforce zero trust security strategies. […]

The Cybersecurity and Infrastructure Security Agency (CISA) will unveil its secure-by-design guiding principles tomorrow, CISA Director Jen Easterly said during the Crowdstrike Government Summit in Washington, D.C., this week. […]

The Cybersecurity and Infrastructure Security Agency (CISA) today published an updated, second version of its Zero Trust Maturity Model that is guiding Federal agencies and other organizations along the path to adopting zero trust security architectures. […]

The Department of Defense (DoD) is continuing to make headway on adoption of cloud computing and the implementation of a zero trust computing environment, top DoD officials told lawmakers at a March 29 Senate hearing. […]

Good communication plays an outsized role in how highly federated government agencies – those with numerous component parts – will be able to implement different approaches to zero trust security rather than pursue one-size-fits-all policies, Federal government officials said today at ATARC’s Zero Trust Summit event in Washington. […]

Nearly two years after the White House released its cybersecurity executive order (EO) that homed in on zero trust, Federal agencies are well on their way to completing their zero trust maturity journeys and are using the president’s guidance as an opportunity to modernize their systems. […]

The Cybersecurity and Infrastructure Security Agency (CISA) is considering turning its current Trusted Internet Connections (TIC) program office into an office that supports Federal agencies as they pursue requirements from CISA and the Office of Management and Budget (OMB) to migrate to zero trust security architectures. […]

The General Services Administration (GSA) was an early adopter of zero trust security architecture, and Chief Information Officer (CIO) David Shive said this week that the next step for the agency is to focus on application-level security. […]

The challenge of implementing zero trust is explaining the benefits to the end users, Federal and industry cybersecurity experts said today at the Zscaler Public Sector Summit in Washington, D.C.  […]

If you’ve been wondering how much the Federal government is investing in its sweeping effort to migrate to zero trust security architectures, the answer to that question may be coming this week. […]

The Department of Justice (DoJ) chief information officer (CIO) said today that the agency’s component offices have provided “overwhelming” feedback to ZScaler’s zero trust network access (ZTNA).  […]

Thomas Santucci, director of the Data Center & Cloud Optimization Initiative program management office at the General Services Administration (GSA), is pointing Federal agencies to sources of expertise including CIO Council guidance and FedRAMP (Federal Risk and Authorization Management Program) as they navigate through requirements for the migration to zero trust security architectures. […]

The Department of Defense (DoD) released an updated version of its Cybersecurity Reference Architecture (CSRA) – the fifth iteration of this document – laying out new objectives closely aligned to the broader DoD zero trust strategy. […]

The Department of Education (DOE) is close to completing the first phase of its three-part plan to migrate to zero trust security architectures, an agency official said this week. […]

The Defense Information Systems Agency (DISA) has officially completed work to prototype its Thunderdome zero trust security project, and has rolled out the system to about 1,600 users so far, with more on the way, a senior DISA official said today. […]

When the coronavirus pandemic emerged, the U.S. Air Force Research Laboratory (AFRL) was well-postured to take on the challenge of hybrid work. But the agency still has more work to do to meet that continued operational challenge, according to an agency official. […]

Successfully implementing a zero trust architecture can oftentimes be a challenge for organizations, especially when there is a lack of buy-in at the executive level. To help clear that kind of hurdle, Federal officials say the secret sauce is developing a zero trust business case. […]

As the Federal government continues to execute on fundamental shifts in network security strategies like the move to zero trust architectures, agency tech leaders are emphasizing the need to push back against the status quo of established technology thinking. […]

Federal health-sector cybersecurity leaders from components across the Department of Health and Human Services (HHS) said that when it comes to implementing zero trust security mandates – such as Office of Management and Budget (OMB) memo M-22-09 – agencies can’t treat the task as just “checking another box.” […]

From ensuring the nation’s voting infrastructure was secure in preparation for election season to developing strategies and goals to support critical infrastructure owners and operators, boosting the nation’s cyber posture was among many Federal agencies’ top priorities for 2022.  […]

From announcing a multi-cloud effort to provide enterprise cloud capabilities for the Department of Defense (DoD) at all three security classifications, to implementing ambitious cyber-related goals to improve its security posture, it’s clear the DoD has certainly had a very busy year on the year on the tech front. […]

“You can’t secure what you can’t see” is a common refrain in cybersecurity circles. It’s echoed in multiple Federal IT mandates, including the zero trust strategy and the event logging memo from the Office of Management and Budget. Gaining comprehensive visibility across agency networks, devices, applications, and identities is no mean feat in today’s diverse and ever-changing IT environments. […]

A new report from cloud security provider Zscaler titled The State of Zero Trust Transformation 2023 report finds that more than 90 percent of IT leaders surveyed are implementing zero trust architecture I connection with their cloud migration strategy over the next 12 months. […]

Federal agencies have until September 30, 2023, to report at least 80 percent of their IT systems through the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program, according to an OMB Federal Information Security Modernization Act (FISMA) guidance issued on Dec. 2. […]

A senior Defense Department (DoD) technology official this week explained how a robust cloud environment is an essential element to ensuring the successful implementation of the Pentagon’s software modernization strategy. […]