Why Cybersecurity Leaders Need to Know the CISA Zero Trust Maturity Model

In episode 68 of the Cybersecurity Minute, Rob Wood discusses the benefits of the CISA zero trust maturity model.

This episode is sponsored by Acceleration Economy’s Digital CIO Summit, taking place April 4-6. Register for the free event here. Tune in to the event to hear from CIO practitioners discuss their modernization and growth strategies.

Highlights

00:22 — According to Rob, there are real benefits to the CISA zero trust maturity model, which he recently wrote regarding, as opposed to a blanket standard.

00:42 — In the past, Rob worked with another maturity model, the Building Security In Maturity Model (BSIMM), which he thought was awesome because “you can start it . . . grow it . . . improve upon it . . . expand the coverage of it.”

01:11 — That concept applies and scales nicely to zero trust, as well as application security. Zero trust is a big, multifaceted, complicated domain. The potential to incorporate all of it into a maturity model is one thing Rob finds exciting regarding CISA’s release.

01:57 — As a security leader or security team looking to implement a maturity model inside your organization, remember to start small and set a plan to make actionable, measurable steps forward.

02:18 — Over time, you’ll be able to look back and measure where you were and see your progress. Maturity models are useful from a reporting and communication standpoint, as well as from a planning standpoint.


Want more cybersecurity insights? Subscribe to the Cybersecurity as a Business Enabler channel:

Acceleration Economy Cybersecurity

Leave a Replay