We are going to begin comment adjudication on the Draft Zero Trust Maturity Model soon. There is no official timeline for release, but we anticipate this will occur by the end of the calendar year.
CISA recently released the Cloud Use Case for public comment. The Cloud Use Case provides guidance on applying network and multi-boundary security for agencies that operate in cloud environments.
It also provides common security guidance for cloud operations while also highlighting unique considerations for Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), Software-as-a-Service (SaaS), and Email-as-a-Service (EaaS) deployments.
For information on the Federal Zero Trust Strategy, please see: https://zerotrust.cyber.gov/.
Please feel free to reach out if you have other questions.