Given the current landscape, information security professionals at all levels of government – federal, state, and local – need to understand how threat vectors are shifting in the cloud in order to make the necessary updates to their security programs and strategy.
The concept of a Zero Trust-based approach is gaining credence in the federal IT community, the CIO Council has asked the National Institute of Standards and Technology (NIST) National Cybersecurity Center of Excellence (NCCOE) to publish guidance to help federal agencies implement Zero Trust.
As federal, state, and local agencies expand operations across on-premises and diverse cloud platforms, a broader set of vulnerabilities and threat vectors have emerged. Agencies need the right mix of technology, process, and skilled workforce to effectively address existing and future cloud security threats. Beyond technology, as the CSTR notes, it is time to recalibrate culture and adopt security best practices at the human level. This is true no matter what level of government or what mission an agency is delivering.
Read more at: Homeland Security Today