Software Defined Perimeter

  • 1.  Next Zero Trust Maturity Model working session - Thursday June 2 at 8am ET

    Posted Jun 01, 2022 10:21:00 AM

    Our next working session for the Zero Trust Maturity Model is tomorrow -  Thursday, June 2 at 8am ET - which is 13:00 UTC / 8pm China Standard Time

    Meeting Link:
    https://cloudsecurityalliance.zoom.us/j/85967122309?pwd=YU1rS2xkVTNscC8waVh4Z3hxVTRUZz09

    Topic: Examination of the National Security Telecommunications Advisory Committee (NSTAC)  Draft Report to the President: Zero Trust and Trusted Identity Management
    Link: 
    https://www.cisa.gov/sites/default/files/publications/Final%20Draft%20NSTAC%20Report%20to%20the%20President%20on%20Zero%20Trust%20and%20Trusted%20Identity%20Management.pdf


    Details:


    Join Zoom Meeting

    https://cloudsecurityalliance.zoom.us/j/85967122309?pwd=YU1rS2xkVTNscC8waVh4Z3hxVTRUZz09

     

    Meeting ID: 859 6712 2309

    Passcode: 927749

    One tap mobile

    +12532158782,,85967122309# US (Tacoma)

    +17207072699,,85967122309# US (Denver)

     

    Dial by your location

    +1 253 215 8782 US (Tacoma)

    +1 720 707 2699 US (Denver)

    +1 346 248 7799 US (Houston)

    +1 646 558 8656 US (New York)

    +1 301 715 8592 US (Washington DC)

    +1 312 626 6799 US (Chicago)

    Meeting ID: 859 6712 2309



    ------------------------------
    Jason Garbis, CISSP
    Co-Chair, SDP Zero Trust Working Group
    CPO, Appgate
    ------------------------------


  • 2.  RE: Next Zero Trust Maturity Model working session - Thursday June 2 at 8am ET

    Posted Jun 01, 2022 01:22:00 PM
    thank you





  • 3.  RE: Next Zero Trust Maturity Model working session - Thursday June 2 at 8am ET

    Posted Jun 02, 2022 08:17:00 AM
    Holiday in the UK so hope to catch up with the group next time.





  • 4.  RE: Next Zero Trust Maturity Model working session - Thursday June 2 at 8am ET

    Posted Jun 02, 2022 05:14:00 PM

    Finally, I get the message about a meeting just hours before it starts because I signed up for these digests.  I'm able to clear my calendar to attend.

    I'm waiting on the call now and it's 10 minutes after the meeting is supposed to start.  No one else is on the call.

    Is this meeting cancelled and no notice sent out?

    'Questions I would have like to ask:
    1. Why is it that I don't get messages directly even though I signed up to this working group?
    2. Is this group only for US people?




    ------------------------------
    Sai Honig
    ------------------------------



  • 5.  RE: Next Zero Trust Maturity Model working session - Thursday June 2 at 8am ET

    Posted Jun 05, 2022 10:04:00 AM
    Hello Sai - I'm sorry to hear that you were on the wrong meeting link. We did have a working session - I will be posting the recording link and notes here on Circle shortly,

    The group is definitely open to all people globally - in fact we have regular participants form AsiaPac as well as Europe - which is the reason that we alternate meeting times between 8am ET and 8pm ET.

    Our next meeting will be Thursday June 30 at 8am ET.
    I will post the Zoom link here to Circle 2 days before the meeting - sadly, this is necessary in order to avoid Zoom-bombing.

    regards
    Jason

    ------------------------------
    Jason Garbis, CISSP
    Co-Chair, SDP Zero Trust Working Group
    CPO, Appgate
    ------------------------------



  • 6.  RE: Next Zero Trust Maturity Model working session - Thursday June 2 at 8am ET

    Posted Jun 05, 2022 12:48:00 PM
    Hi Sai,

    This is open to everyone. Happy to see u .You are a rock star. I was the only one who is based in NZ. I tried my best to bring more NZ based friends coming but nobody is keen to join the live meeting.

    The most contribution group members are from US and China. So the meeting time is setting suitable for their time zone .

    Please bring more NZ based people in.��

    Hi Jason,

    Thanks for your hard work to do the recording. My job was super busy . I couldn't join into the meeting like previously.

    I am wondering if the Zero Trust framework can stop zero day vulnerability and malware attacks, such as follina and confluence zero day. Follina  can be Word vulnerabilities and zero click. So far, follina and search-ma are new and popular zero days. Microsoft has not patched follina and search-ms zero day. They can be developed to other  vulnerabilities and exploited in malware.


    All in all, how does zero trust stop zero day attacks? There are some zero days attacks  in the wild and using & developed by real hacking groups. SOC and vendors do not know their existence.


    Thanks,
    Abby