Zero Trust

The Cybersecurity and Infrastructure Security Agency will publish the second version of its Zero Trust Maturity Model in the coming days.

“So just to get everyone prepared in the next week or so we should have the second version of the Maturity Model. It’s not on the website yet today as we’d expected, but it should be next week,” said CISA Senior Cybersecurity Architect Sean Connelly. Connelly was speaking at during the 2023 ATARC Zero Trust Summit in Washington on Thursday.

The latest version of the guidance is expected to update key definitions and metrics for the governmentwide adoption of zero-trust security architectures.

The Cloud Security Alliance is excited to release Key Features & Technologies of Software-Defined Perimeter, the third course in our online Zero Trust Training (ZTT) program. This new course will provide learners with an in-depth look at the key features and technologies of SDP for securing today's and tomorrow's IT infrastructures—whether they are on-premises, in the cloud, a hybrid of the two, or a case with multiple cloud service providers.

Learners will be introduced to the principles of Least Privilege and Need to Know, policy-based authorization and access controls, and the similarities and differences between SDP and SDN.

This course is a great fit for users in any of the following roles:

• C-Suite (CEO, CTO, CISO, CIO)
• Managers and Decision Makers
• Cybersecurity Analysts
• Security Engineers and Architects
• Enterprise Architects
• Security Administrators
• Compliance Managers
• Systems Engineers
• Developers

The ZTT program covers eight areas of Zero Trust knowledge and will be rolled out in a series of six courses available on CSA’s Knowledge Center. To learn more about CSA’s Zero Trust Training program, download the ZTT overview and get started. 

Special offer for CSA Members!

Through December 31, CSA corporate members receive 50% off the ZTT bundle on the Knowledge Center, which includes six online ZTT courses and one exam token. Fill out this form to claim 50% off the ZTT bundle or learn how you can create a custom ZTT package for your team that meets the unique needs of your organization.

A Zoom meeting has been scheduled for 3PM ET Tuesday 12/20 and at the same time the third Tuesday of every month thereafter. Meetings will be recorded for subsequent viewing.

Full details and link to a downloadable ICS file are available at the link below.

The monthly Zeru Trust full working group meeting (spanning all 9 workstreams) was held today.  Deck and recording links follow.  New workgroup and workstream meetings will be scheduled and new invitations sent out shortly for the new year, generally keeping with established schedules and cadence as applicable.

Materials from the 12/20 meeting:
Deck: ZT Full WG Meeting 12-20-2022.pptx
Recording: https://cloudsecurityalliance.zoom.us/rec/share/oupdxT65a5VQr_YTeNGq3AVQggn0nOsJSGeonf8iTAV33VZVoemWBFIfScfiyZiP._5uGhmAaXEhQgqsK