Zero Trust

 View Only

Zero Trust Advancement Center
CSA Zero Trust Resource Hub
CSA Zero Trust Advancement Center Announcement
CSA Zero Trust Calendar
Latest Publications and Recordings

Zero Trust Working Group Charter 2022 - Final V1

CISO Perspectives and Progress in Deploying Zero Trust

+ Released: June 3, 2022

Integrating SDP and DNS: Enhanced Zero Trust Policy Enforcement

+ Released: April 12, 2022

Software-Defined Perimeter (SDP) Specification v2.0

+ Released: May 10, 2022

Software-Defined Perimeter (SDP) and Zero Trust

+ Released: May 27, 2020

Software-Defined Perimeter as a DDoS Prevention Mechanism

+ Released: October 27, 2019

(SDP): Awareness and Adoption Infographic

+ Released: July 1, 2019

SDP Architecture Guide v2

+ Released: May 7, 2019

Software Defined Perimeter Glossary

+ Released: June 12, 2018

 

Working Group Organization
CSA Support

• ZT Inquiries - [email protected]

• Erik Johnson - [email protected]

• John Yeoh - [email protected]

Research Working Group Co-chairs

• Jerry Chapman

• Jason Garbis

• Chris Steffen

Structure

The CSA Zero Trust Working Group has the following nine work streams:
 1.  Zero Trust as a Philosophy & Guiding Principles
 2.  Zero Trust Organizational Strategy & Governance
 3.  Pillar: Identity
 4.  Pillar: Device
 5.  Pillar: Network/Environment
 6.  Pillar: Applications & Workload
 7.  Pillar: Data
 8.  Automation, orchestration, visibility & analytics
 9.  Zero Trust Architecture, Implementation & Maturity Model

Expressions of interest in working group and specific workstream participation can be registered here or by sending an email to [email protected].


#ZeroTrust
View CSA's Privacy Policy.

Recent Blogs


Latest Discussion Posts

  • Profile Picture

    Zero Trust Implementation and Guiding Principles Briefing ...

    By: Erik Johnson , 5 months ago

    https://cloudsecurityalliance.zoom.us/rec/share/3Pak1nHIU0_SV6sUxmY7JzWBACbmNUs15KWrrLqisHw9duigYsULf8exs_6A0q9X.9dF6ha1bhkSFroF2 Passcode: ZTimplement101! Our senior subject matter expert advisor and the founder of Zero Trust has graciously offered ...

    3 people like this.
  • Profile Picture

    ZT Data Protection and Privacy Briefing by John Kindervag ...

    By: Erik Johnson , 5 months ago

    https://cloudsecurityalliance.zoom.us/rec/share/ykDarTQpSaqGllMRINOiVvjGrwlWaDaP7Gnp7j-0rxEmfkVdNXKYUxUalIKQKFQQ.9XnIvDQ8o9o9GhNV?startTime=1671039231000 Passcode: DataPillar7! Our senior subject matter expert advisor and the founder of Zero Trust ...

    2 people like this.
  • Profile Picture

    Device and OT/IoT Security Standards

    By: Erik Johnson , 13 hours ago

    Thanks to Rajesh Murthy for sharing this list of standards that we may want to explore for our work with Zero Trust device and critical infrastructure security : UL2900 series ISO 30141 series and IEEE 2413 provide a good reference ...

  • Profile Picture

    NIST 5/25 Multi-Cloud (and Zero Trust) Conference

    By: Erik Johnson , 4 days ago

    This NIST Multi-Cloud conference yesterday had several excellent sessions and the full recording is available on the conference web page at: https://www.nist.gov/news-events/events/2023/05/4th-multi-cloud-conference-and-worksho p All the agenda ...

    1 person likes this.
  • Profile Picture

    Happy Towel Day!

    By: Alex Sharpe , 5 days ago

    https://www.linkedin.com/posts/alex-sharpe-3rd_charity-environmental-cybersecurity-activity-7067495325183135744-XZD7?utm_source=share&utm_medium=member_desktop ------------------------------ Alex Sharpe Principal Sharpe42 [email protected] Co-Chair Philosophy ...

Latest Shared Files

Announcements

  • CSA Webinar - CISA's Zero Trust Maturity Model V2: Expert Analysis and Implications

    By: Erik Johnson Erik Johnson , 17 hours ago

    CISA recently released version 2 of their Zero Trust Maturity Model. There is a lot of interest across the public and private sectors to understand the differences and motivations behind V2. To assess the new version of the document, CSA is hosting a webinar panel of CISA and industry experts at 1PM ET on 5/31 to provide a summary and analysis of the changes and a discussion about the potential implications for both public and private sector implementers of Zero Trust. 

  • CISA Zero Trust Maturity Model 2.0 published

    By: Erik Johnson Erik Johnson , 2 months ago

    The Cybersecurity and Infrastructure Security Agency has published the second version of its Zero Trust Maturity Model: https://www.cisa.gov/sites/default/files/2023-04/zero_trust_maturity_model_v2_508.pdf

    --------------------------
    “So just to get everyone prepared in the next week or so we should have the second version of the Maturity Model. It’s not on the website yet today as we’d expected, but it should be next week,” said CISA Senior Cybersecurity Architect     Sean Connelly. Connelly was speaking at during the 2023 ATARC Zero Trust Summit in Washington on Thursday.

    The latest version of the guidance is expected to update key definitions and metrics for the governmentwide adoption of zero-trust security architectures.
    https://fedscoop.com/cisa-zero-trust-maturity-model-2-0-expected-in-coming-days/

  • New Zero Trust Training: Key Features & Technologies of Software-Defined Perimeter

    By: Erik Johnson Erik Johnson , 6 months ago

    The Cloud Security Alliance is excited to release Key Features & Technologies of Software-Defined Perimeter, the third course in our online Zero Trust Training (ZTT) program. This new course will provide learners with an in-depth look at the key features and technologies of SDP for securing today's and tomorrow's IT infrastructureswhether they are on-premises, in the cloud, a hybrid of the two, or a case with multiple cloud service providers.

    Learners will be introduced to the principles of Least Privilege and Need to Know, policy-based authorization and access controls, and the similarities and differences between SDP and SDN.

    This course is a great fit for users in any of the following roles:

    • C-Suite (CEO, CTO, CISO, CIO)
    • Managers and Decision Makers
    • Cybersecurity Analysts
    • Security Engineers and Architects
    • Enterprise Architects
    • Security Administrators
    • Compliance Managers
    • Systems Engineers
    • Developers

    The ZTT program covers eight areas of Zero Trust knowledge and will be rolled out in a series of six courses available on CSA’s Knowledge Center. To learn more about CSA’s Zero Trust Training program, download the ZTT overview and get started

    Special offer for CSA Members!

    Through December 31, CSA corporate members receive 50% off the ZTT bundle on the Knowledge Center, which includes six online ZTT courses and one exam token. Fill out this form to claim 50% off the ZTT bundle or learn how you can create a custom ZTT package for your team that meets the unique needs of your organization.

Upcoming Events

Current Members
1053 Members
Erik Johnson
community Admin
community Leadership
Emily Everett
community Admin
Jerry Chapman
community Leadership
Christopher Steffen
community Leadership
Nandkishor 10/08/1990
Bryce A
Niranjini A
Egal A. E
Shaheen Abdul Jabbar
Andrew Abel
Mohamed Abubakkar Siddiqu
Ravi Adapa
Samuel Addington
Abdulhamid Adebayo
Gaurav Aggarwal
Gaurav AGGARWAL
Benjamin Agner
Ayo Agunbiade
Ayo Agunbiade
Haya Ahmed
Abdelkrim AHMED BACHA
Sam Aiello
Sam Aiello
Ifeoma Ajemba