Defense

Air Force develops maturity model for zero trust across the department

The maturity model is aimed at helping the entire Air Force understand and implement zero-trust principles and technical aspects, like proper data tagging.

By Jackson Barnett

March 26, 2021

Lauren Knausenberger speaks June 13, 2018 at the Forcepoint Cybersecurity Leadership Forum produced by CyberScoop and FedScoop. (FedScoop)

The Air Force is developing a maturity model to help broaden its implementation of zero-trust principles in the foundation of its network architecture, its top IT official said Thursday.

The Air Force has found success with initial zero trust projects, like Platform One, the service’s DevSecOps initiative where the network architecture is built with no “trust” or wide access is given to any user, whether familiar to a network or not. Now, the Air Force is trying to move beyond individual projects to implementing zero-trust principles at the enterprise level, Lauren Knausenberger, Air Force CIO, said Thursday during a Dcode event.

“The vision is for the future to be completely zero trust…where we are able to collaborate seamlessly with all of our allies,” she said.

The maturity model will help network administrators and IT professionals across the Air Force bring their architectures in line with zero trust. The model highlights critical elements of the process like ensuring proper data tagging and access management. The Air Force is also working on an enterprise identity, credentialing and access management (ICAM) certification to be able to more securely recognize users.

“We have these little pockets of zero trust, but we are also doing some basics right now,” Knausenberger said.

The maturity model will serve as part of the Air Force’s “road map” to zero trust. It’s unclear how long the journey will take, but tech leaders in the department have been talking about zero trust for months, especially during the pandemic.

“We have a road map there,” Knausenberger said, adding “that we have to do a better job of funding the road map.”

Knausenberger also made some news about Platform One, which is building a secure environment for companies to use once they have received Small Business Innovative Research contracts to work with the Air Force. This will allow contractors to work on more sensitive projects without having to invest in their own government-approved, secure systems.

Air Force develops maturity model for zero trust across the department

More Like This

MPEs gain momentum for sharing information with allied partners

State Department officials say they’re trying to set the tone globally on AI usage, as lawmakers question if it’s enough

How Google Cloud AI and Assured Workloads can enhance public sector security, compliance and service delivery at scale

Top Stories

CMS’s financial office is using LLM pilot to combat loss of institutional knowledge

Top public sector takeaways from Google Cloud Next 2024

With 2023 tax season in the rearview, IRS commissioner eyes expansion of AI capabilities

Commerce requests information about AI, open data assets, data dissemination

Commerce adds five members to AI Safety Institute leadership

Kiran Ahuja to step down as OPM director

ICE pursuing privacy approvals related to controversial phone location data

DOJ ‘not aware of any’ identity theft, fraud following consultant’s data breach

More Scoops

CISA establishing new office focused on zero trust

GSA seeks help to ‘get across the finish line’ modernizing cybersecurity, adopting zero trust

Completing move to zero trust among Customs and Border Protection’s new IT goals

CISA directs agencies to disconnect ‘networked management devices’ from the internet

CISA publishes update to Zero Trust Maturity Model

CISA Zero Trust Maturity Model 2.0 expected in coming days

With shift to increased remote work and zero trust, NIH eyes cloud solution for identity

Latest Podcasts

Air Force develops maturity model for zero trust across the department

Darryl Peek on Elastic’s role in enhancing public sector search and data analytics with AI and Google collaboration

Danny Werfel on How Automation has Enhanced his Agency’s Operations.

ManTech leaders discuss innovation and security with Google technologies

Tech

Defense

Cyber

Acquisition