NSA advises on zero trust visibility, analytics

On May 30, the National Security Agency (NSA) released the Cybersecurity Information Sheet (CSI), “Advancing Zero Trust Maturity Throughout the Visibility and Analytics Pillar,” which details the infrastructure, tools, data, and techniques of this cornerstone pillar of the Zero Trust (ZT) framework. Organizations are urged to utilize the guidance in the report to systematically mitigate risks and rapidly identify, detect, and respond to emerging cyber threats.

This CSI explains how to integrate the Visibility and Analytics Pillar’s key capabilities within the ZT framework. The following actions are recommended: log all relevant activity, centralize security information and event management, regularly use security and risk analytics, develop user and entity behavior analytics, integrate threat intelligence, and automate dynamic policies.

“Visibility and analytics form the cornerstone of any ZT strategy, empowering organizations to harness infrastructure, tools, data, and techniques for proactively mitigating risks and for rapid identification, detection, and response to emerging cyber threats,“ said Dave Luber, NSA’s Director of Cybersecurity.

The capabilities described in this CSI are intended to continually mature cybersecurity protections, responses, and operations over time. Progression of capabilities in each of the ZT framework’s seven pillars should be seen as a cycle of continuous improvement based on evaluation and monitoring of threats.
Read the full report here.

Source: NSA

Stay in the know with breaking news from across the IC and IC contracting landscape by becoming a paid subscriber to IC News. Your support makes our work possible.