8CIOReview | | JUNE 2022The latest Executive Order on improving US cybersecurity, followed by guidance from the federal Office of Management and Budget (OMB) on implementing Zero Trust Architecture (ZTA) has kicked marketing machines into high gear, giving us "Now with 100% MORE Zero Trust!!" labels on every product in sight. As security practitioners, it is well past time to separate hype from reality and figure out how to operationalize the concept. Helpfully, NIST has released guidance in the form of a framework (SP 800-207) for designing and implementing ZTA. One of the challenges for any business, however, is where to start. This challenge, for most organizations, is not going to be addressed simply by purchasing new tools or platforms. Our overarching objective remains data security, but data-centric security is not the right approach. We need to start by taking a hard look at identity governance and administration.Joshua BrownBy Joshua Brown, VP and Global CISO, H&R Block Inc. (NYSE:HRB)DATA SECURITY STARTS WITH IDENTITYIN MY OPINION
< Page 7 | Page 9 >