Jun 04 2024
Security

Agencies Find Zero Trust, Cyber Resilience Go Hand in Hand

Those maturing their security architectures find they bounce back faster from cyber incidents.
Gary McIntyre
by

Gary McIntyre is the managing director of cyber defense at CDW, focused on customer cybersecurity operations and defenses. He is a seasoned information security professional with over 20 years of experience focusing on the development and operation of large-scale information security programs.

Agencies’ cybersecurity budgets continue to increase to help them better prevent evolving threats to sensitive data and systems.

Investing in stronger security measures and cyber hygiene training for employees makes sense, but mistakes — such as clicking on a suspicious link — are inevitable, and when they occur, attackers can breach federal systems.

This is the reason the Cybersecurity and Infrastructure Security Agency, which recently experienced a breach of its own, is emphasizing cyber resilience techniques for mitigating cyberthreats and responding to and recovering from cyber incidents.

A zero-trust security architecture can limit the potential impact of such incidents by continuously verifying trust and is fundamental to ensuring cyber resilience. These architectures don’t come cheap, though, so IT leaders must understand the concept of minimum viability and focus investments in zero-trust strategies essential to their agencies’ missions.

Click the banner below to begin developing a comprehensive cyber resilience strategy.

x-cyberresillience2-static-2024-na-desktop x-cyberresillience2-static-2024-na-mobile

 

Understanding Minimum Viability

In considering how to improve their cyber resilience, agency leadership should conduct careful business continuity and disaster recovery planning that identifies and prioritizes key processes that must be maintained for the agency’s continuing operation. The result of this assessment is the minimum viable organization, a concept that describes how long the agency can operate without specific processes and identifies options that may be available to fulfill these needs.

Agencies looking to understand their minimum viability should start with the mission. The size and mission of agencies can vary significantly, and their approaches to cyber resilience will reflect that.

Some systems are very different, such as weapons systems in the military that are not used by other agencies, but other essential systems such as payroll are present across the government. Agencies that have achieved a high level of cyber resilience will be able to bring these systems back online quickly and trust their data.

Agencies must focus their investments in cyber resilience on the steps that enable them to maintain minimum viability. Getting these critical functions back on track is essential to enabling rapid recovery from a cybersecurity incident.

TOC Sidebar

Related Content:

Discover how NTSB is improving its security posture with microsegmentation.

Detect and remove threatening web shells.

Make sense of the many network visibility tools available.

Learn how to boost cyber resilience against Kerberoasting.

Take CISA's steps for securing systems after a breach.

 

3 Ways That Zero Trust Supports Cyber Resilience

The progress that agencies make toward zero trust also improves their cyber resilience. Zero trust supports resilience in three important ways:

  • Limiting the blast radius: Zero trust makes it more difficult for an attacker to gain a foothold in an agency’s IT environment. When an attack succeeds, zero trust limits the damage the cyberattacker can do before the attack is discovered, which helps speed recovery.
  • Promoting visibility: Zero trust requires agencies to have mature capabilities for identity and access management by using tools such as multifactor authentication. This improves the visibility that IT teams have into the environment, making clear who is accessing specific data and systems. These visibility improvements help IT teams to detect issues earlier, diagnose problems more quickly and provide a clearer picture of how to solve them.
  • Improving trust: During a cybersecurity incident, agencies lose trust in the integrity of their data and systems, and getting that trust back is necessary for a full recovery. Zero trust enables IT professionals to take a granular approach to trust so that they can quickly confirm which parts of the environment are still trustworthy.

Zero trust and cyber resilience have become important priorities for agencies. IT leaders should consider the relationship of these concepts to optimize the impact of their investments in both.

wragg/Getty Images

More On

Related Articles

Close

Learn from Your Peers

What can you glean about security from other IT pros? Check out new CDW research and insight from our experts.
Click to See the Report