Zero Trust

 View Only

Working Group Organization
CSA Support

• ZT Inquiries - [email protected]

• Erik Johnson - [email protected]

• John Yeoh - [email protected]

Research Working Group Co-chairs

• Jerry Chapman

• Jason Garbis

• Chris Steffen


The CSA Zero Trust Working Group has the following nine work streams:
 1.  Zero Trust as a Philosophy & Guiding Principles
 2.  Zero Trust Organizational Strategy & Governance
 3.  Pillar: Identity
 4.  Pillar: Device
 5.  Pillar: Network/Environment
 6.  Pillar: Applications & Workload
 7.  Pillar: Data
 8.  Automation, orchestration, visibility & analytics
 9.  Zero Trust Architecture, Implementation & Maturity Model

Expressions of interest in working group and specific workstream participation can be registered here or by sending an email to [email protected].


Recent Blogs

Latest Discussion Posts

  • Passcode: ZTimplement101! Our senior subject matter expert advisor and the founder of Zero Trust has graciously offered ...

    3 people like this.
  • Passcode: DataPillar7! Our senior subject matter expert advisor and the founder of Zero Trust ...

    2 people like this.
  • Thanks to Rajesh Murthy for sharing this list of standards that we may want to explore for our work with Zero Trust device and critical infrastructure security : UL2900 series ISO 30141 series and IEEE 2413 provide a good reference ...

  • This NIST Multi-Cloud conference yesterday had several excellent sessions and the full recording is available on the conference web page at: p All the agenda ...

    1 person likes this.
  • Profile Picture

    Happy Towel Day! ------------------------------ Alex Sharpe Principal Sharpe42 [email protected] Co-Chair Philosophy ...

Latest Shared Files


  • CSA Webinar - CISA's Zero Trust Maturity Model V2: Expert Analysis and Implications

    CISA recently released version 2 of their Zero Trust Maturity Model. There is a lot of interest across the public and private sectors to understand the differences and motivations behind V2. To assess the new version of the document, CSA is hosting a webinar panel of CISA and industry experts at 1PM ET on 5/31 to provide a summary and analysis of the changes and a discussion about the potential implications for both public and private sector implementers of Zero Trust. 

  • CISA Zero Trust Maturity Model 2.0 published

    The Cybersecurity and Infrastructure Security Agency has published the second version of its Zero Trust Maturity Model:

    “So just to get everyone prepared in the next week or so we should have the second version of the Maturity Model. It’s not on the website yet today as we’d expected, but it should be next week,” said CISA Senior Cybersecurity Architect 
    Sean Connelly. Connelly was speaking at during the 2023 ATARC Zero Trust Summit in Washington on Thursday.

    The latest version of the guidance is expected to update key definitions and metrics for the governmentwide adoption of zero-trust security architectures.

  • New Zero Trust Training: Key Features & Technologies of Software-Defined Perimeter

    The Cloud Security Alliance is excited to release Key Features & Technologies of Software-Defined Perimeter, the third course in our online Zero Trust Training (ZTT) program. This new course will provide learners with an in-depth look at the key features and technologies of SDP for securing today's and tomorrow's IT infrastructureswhether they are on-premises, in the cloud, a hybrid of the two, or a case with multiple cloud service providers.

    Learners will be introduced to the principles of Least Privilege and Need to Know, policy-based authorization and access controls, and the similarities and differences between SDP and SDN.

    This course is a great fit for users in any of the following roles:

    • C-Suite (CEO, CTO, CISO, CIO)
    • Managers and Decision Makers
    • Cybersecurity Analysts
    • Security Engineers and Architects
    • Enterprise Architects
    • Security Administrators
    • Compliance Managers
    • Systems Engineers
    • Developers

    The ZTT program covers eight areas of Zero Trust knowledge and will be rolled out in a series of six courses available on CSA’s Knowledge Center. To learn more about CSA’s Zero Trust Training program, download the ZTT overview and get started

    Special offer for CSA Members!

    Through December 31, CSA corporate members receive 50% off the ZTT bundle on the Knowledge Center, which includes six online ZTT courses and one exam token. Fill out this form to claim 50% off the ZTT bundle or learn how you can create a custom ZTT package for your team that meets the unique needs of your organization.

Current Members
1053 Members
community Admin
community Leadership
community Admin
community Leadership
community Leadership