An official website of the United States government
Here's how you know
A .gov website belongs to an official government organization in the United States.
A lock (lock ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

News | Oct. 1, 2021

Cybersecurity Speaker Series: Embracing a Zero Trust Mindset

NSA released the second episode in the Cybersecurity Collaboration Center Speaker Series, exploring the concept of Zero Trust, and outlining first steps organizations can take. The Cybersecurity Speaker Series highlights experts at NSA, sharing their insights, lessons learned, and contributions of their work in cybersecurity.  

In today’s video, NSA’s Zero Trust Strategic Lead, Randy Resnick, sat down with Cybersecurity Technical Fellow, Josiah Dykstra, to discuss why NSA recommends the Department of Defense (DOD), National Security Systems (NSS), and the Defense Industrial Base (DIB) adopt Zero Trust.

The Zero Trust cybersecurity model assumes that a breach is inevitable or has likely already occurred; the model constantly limits access to only what is needed and continuously looks for anomalous or malicious activity. In February 2021, NSA previously released a Cybersecurity Information Sheet on the topic, titled “Embracing a Zero Trust Mindset”.  

“[Zero Trust] appears to be a really strong cybersecurity model going forward to address the advanced persistent threats that we face today,” said Resnick in the second episode of the Cybersecurity Collaboration Center Speaker series, “It’s about securing your data, understanding your users, understanding your devices, understanding your data flows, laying down the right policies and procedures within the network, and integrating them all together.”

To hear more about Zero Trust from NSA’s Zero Trust Strategic Lead, watch the full video here

As part of NSA’s mission to secure the DoD, NSS, and DIB, NSA regularly releases cybersecurity guidance. To read NSA’s guidance on Zero Trust and beyond, visit NSA’s library of cybersecurity advisories and technical guidance.