Jason,
Thank you and the rest of the team for all the hard work on contributing our comments to such a vital effort. Ideally, the US Federal Government will address our consolidated response like they overwhelmingly did for the final version of NIST SP800-207.
Regards,
Shamun
------------------------------
Shamun Mahmud
Standards Officer, Sr. Research Analyst
Cloud Security Alliance
WA
------------------------------
Original Message:
Sent: Sep 26, 2021 03:44:23 PM
From: Jason Garbis
Subject: Feedback on Federal Zero Trust documents
Hello all – just a reminder that we are at the tail end of consolidating our comments on the two remaining US Federal documents on Zero Trust:
The SDP and Zero Trust Working Group has assembled our feedback on the OMB's Zero Trust Maturity Model here:
https://docs.google.com/document/d/1uvO217TmV5xy8kp8em9l0gSSvGFmh5dmupXaTxH72m8/edit
Feel free to add your comments to the tabular response.
Likewise, our commentary on the CISA/FedRAMP Cloud Security Technical Reference Architecture is here:
https://docs.google.com/document/d/1o7UvWlA-YfhwOg454r9JMO0CUunur3deAra5-QMHfUU/edit
This one is a bit more removed from Zero Trust, compared to the first document.
Please add your suggestions to the tables in the document . We have one more working session on Weds Sept 29, before the Oct 1 deadline for submitting commentary.
------------------------------
Jason Garbis, CISSP
Co-Chair, SDP Zero Trust Working Group
CPO, Appgate
------------------------------