Skip to Main Content Subscribe

Zero Trust Relies on Teamwork, Federal Cyber Leaders Say

Share

Health and civilian agencies highlighted communication and collaboration when implementing zero trust strategies.

7m read
Written by:
Zero Trust Relies on Teamwork, Federal Cyber Leaders Say
Photo Credit: PeopleImages.com - Yuri A/Shutterstock

As federal agencies implement their zero trust strategies, federal cyber leaders say they must rely on each other to identify best use cases and methods.

Security leaders at NASA, the Department of Energy (DOE), and the Department of Health and Human Services (HHS) said communication across all sectors is essential to achieve successful implementation of zero trust.

There has been a recent moment of realization for agencies to work across service lines, said NASA Enterprise Cybersecurity Architect Mark Stanley during the 2023 ATARC Zero Trust Summit Thursday.

Since the Biden administrationโ€™s January 2022 zero trust memo outlining metrics for agencies to hit by the end of fiscal year 2024, NASA tech leaders dedicated resources to eliminate communication barriers once they realized communication was their biggest challenge to implementing zero trust.

โ€œSo that we can achieve what zero trust is trying to help us do, which is better understand our networks, better defend our networks, to share information, safely and securely,โ€ Stanley said. โ€œThose are huge for NASA.โ€

Jodi Kouts, the senior advisor for policy at DOE, said her agency is also making communication a priority.

At DOE, software supply chain security helps to enable zero trust implementation and ultimately protect credentials and user identities. Following the high-profile SolarWinds and Log4Shell cyber incidents, the Consumer Financial Protection Bureau (CFPB) and the Department of Education also made zero trust a top priority.

โ€œOne of the things that we realized is that we have to increase our collaboration. We have to communicate, we have to share some common guidance and common goals,โ€ Kouts said. โ€œAnd itโ€™s very important for us to leverage those lessons, learn, adopt, to the extent possible, sometimes technologies across the enterprise in order to ensure that we have that interoperability.โ€

HHS leaders noted zero trust is a necessity to execute the mission. Recently, the department noticed benefits from zero trust around fraud prevention and creating more robust user profiles.

โ€œIโ€™m all about the secure execution of the mission. Cybersecurity doesnโ€™t exist for its own purposes, itโ€™s to facilitate the organization in advancing the ball through deliberate services for the American people, or whatever those missionaries are,โ€ said Conrad Bovell, branch chief of cybersecurity advisory and strategy at HHSโ€™s Office of Information Security.

Cross-platform communication will prevent federal sectors from experiencing repeated challenges, Bovell added.

โ€œThe joy, the new experience, when you recognize that thereโ€™s a specific area that is causing you to have considerable amount of pain because budgeting, technology, resources that you have or are not there, and youโ€™re trying to figure out what in the world am I going to be able to do โ€” because I donโ€™t want to just have conversation with 18 vendors on their products, their individual products, and then all of a sudden youโ€™re sitting in the discussions; now weโ€™re introduced to an organization that is mature in that particular territory, and theyโ€™re explaining to you the challenges that they have,โ€ Bovell said.

Woman typing at computer

Stay in the know

Subscribe now to receive our curated newsletters

Subscribe
Related Content
Woman typing at computer

Stay in the Know

Subscribe now to receive our newsletters.

Subscribe