Zero Trust

 View Only
Back to discussions
Expand all | Collapse all

Recap: June 12 Workstream 9 working session (Architecture, Implementation, Maturity Model)

  • 1.  Recap: June 12 Workstream 9 working session (Architecture, Implementation, Maturity Model)

    Posted 16 days ago

    Hello all - thanks for a productive working session, on June 12, for workstream 9 - Architecture, Implementation, Maturity Model

    We made some good progress in our planning and thinking around the whitepaper for Step 3: Build a Zero Trust Architecture

    Next steps 

    Jason will draft the whitepaper goals to discuss in the next meeting.

    The group will also review the CCZTA training materials and provide feedback on how they can be incorporated or referenced in the white paper.

    Thanks all - our next working session is on Wednesday, June 26 at 11am.

    Recording link:

    https://fathom.video/calls/106865097?tab=summary

    AI - generated Summary Below

    Summary
    Zero Trust guidance document in public peer review @ 0:26
    Erik Johnson announced that the Zero Trust guidance document for critical infrastructure is now in public peer review. He will share the link in the chat and promote it on the working group call next week.


    Review of previous Zero Trust white papers @ 3:15
    The group reviewed the status of the first two white papers in the series - the "Defining the Protection Surface" paper which is published, and the "Mapping Transaction Flows" paper which is in internal review before going to leadership.


    Approach for the Zero Trust Architecture white paper @ 5:44
    The group discussed how to approach the third white paper on Zero Trust Architecture, including:

    Balancing summarizing existing resources vs. providing new insights

    Deciding how much detail to go into on specific architecture patterns vs. keeping it high-level

    Ensuring alignment and continuity with the previous white papers

    Considering the target audience and their level of Zero Trust knowledge

    Review of CCZTA training content @ 36:11
    The group agreed to dedicate the next working session in 2 weeks to reviewing the CCZTA training content, to understand how it aligns with or differs from the planned white paper.


    Next steps @ 42:17
    Jason will draft goals and an outline for the white paper to discuss in the next meeting. The group will also review the CCZTA training materials and provide feedback on how they can be incorporated or referenced in the white paper.



    ------------------------------
    Jason Garbis, CISSP
    Co-Chair, Zero Trust Working Group
    Principal, Numberline Security
    Author: Zero Trust Security: An Enterprise Guide
    ------------------------------



    ------------------------------
    Jason Garbis, CISSP
    Co-Chair, Zero Trust Working Group
    Principal, Numberline Security
    Author: Zero Trust Security: An Enterprise Guide
    ------------------------------