Zero Trust Architecture (ZTA) Expert Group

October 25, 2022 - Expert Group Meeting Minutes and Action Points

  • 1.  October 25, 2022 - Expert Group Meeting Minutes and Action Points

    Posted Oct 27, 2022 09:30:00 AM

    Hello all,

    Thank you all for the thoughtful discussion Tuesday (10/25). The meeting minutes have been updated and can be found here.

    The recording for this meeting and future meetings can be found in the Library of the ZTT SME Circle group, along with the agendas/meeting minutes, and other relevant ZTT artifacts, such as the charter. The Circle group is invite-only, so if you do not have access to this group, please let us know ASAP and we can get that resolved. 

    All Modules for the ZT Training as well as the ZTT Glossary can be found here. All ZT/SDP External Resources

    Action Points (some continued from 10/13, and so on): 

    1. All assigned to review the ZT Planning Module -M5 by EOD October 31, 2022

      1. Please ensure all have provided feedback and suggested text by October 31, 2022

      2. 5.3.1 Understanding the Protect Surface

        1. Shruti please review Daniele's feedback & add suggested text regarding data classification by 10/31

      3. 5.5.3 Define the Attack Surface

        1. Shruti please review this section with Daniele's suggestions in mind by 10/31 

      4. 5.6 Document Transaction Flows 

        1. Mark S. please review this unit with Daniele's feedback on 5.6.1 by 10/31

      5. 5.7 Define the ZT Policies

        1. Prasad to tentatively edit this section with feedback in mind by 10/31

      6. 5.8 Developing a Target Architecture 

        1. Dr. Ron please review this section & make suggestions by 10/31 

    2. All assigned to review the ZT Implementation Outline - Module 6. 

      1. 6.1.1 Enhanced Identity Governance 

      2. Heinrich and Shruti to comment their thoughts regarding the NPE vs. Machine vs. Human and Identity/Entity discussion

      3. 6.1.2 Implementation Architecture 

        1. Aunudrei agreed to update section based on group's feedback from Thursday meeting by 10/27

      4. 6.2 Creating Technology Policies 

        1. 6.2.1 ZTA Supporting Components for Policies 

          1. Madhav assigned to review this section by 10/20 (Outstanding)

      5. 6.1.3 Example Implementation Architecture & Build Features 

        1. Ron K. agreed to update section based on group's feedback from Thursday meeting by 10/27

          1. Madhav has expressed interest in assisting Ron with this review  (outstanding)

      6. 6.3 Continuous Operation & Improvement 

        1. Michael H. assigned to review this unit by 10/20 (Outstanding)

      7. 6.4 ZT Implementation Project Risk Management 

        1. Alex S. assigned to review this unit by 10/27 (In Progress) 

        2. Alex and Leon have decided to work on this section's structure together

     
    Thank you all for your time and commitment to this training program,

    Chandler Curran 
    Training Project Administrator 
    Cloud Security Alliance 


    ------------------------------
    Chandler Curran
    Training Project Administrator
    Cloud Security Alliance
    ------------------------------