Ride the Lightning

Cybersecurity and Future of Law Practice Blog
by Sharon D. Nelson Esq., President of Sensei Enterprises, Inc.

NSA Releases Guidance for the Zero Trust Security Model

March 1, 2021

On February 25, the National Security Agency released Embracing a Zero Trust Security Model, which provides information about, and recommendations for, implementing Zero Trust within networks. The Zero Trust security model is a coordinated system management strategy that assumes breaches are inevitable or have already occurred.

The Cybersecurity and Infrastructure Security Agency (CISA) has encouraged administrators and organizations to review the NSA guidance.

The best news is that the document is only seven pages long – if you’ve been confused by Zero Trust, this document will be really useful to you – and there’s a nifty graphic which might make some of the puzzle pieces fall into place for you.

Read the whole document, but one of the key takeaways is to treat every user, device, application/workload, and data flow as untrusted.

Every time we lecture about Zero Trust, lawyers seem befuddled, especially because it is generally a small part of a larger cybersecurity webinar. Looks like it is time to do a webinar that focuses on Zero Trust and how it works. Good timing on the release of the NSA guidance!

Sharon D. Nelson, Esq., PresidentSensei Enterprises, Inc.
3975 University Drive, Suite 225|Fairfax, VA 22030
Email:  Phone: 703-359-0700
Digital Forensics/Cybersecurity/Information Technology
https://senseient.com
https://twitter.com/sharonnelsonesq
https://www.linkedin.com/in/sharondnelson
https://amazon.com/author/sharonnelson