This is the third session of three to be hosted by AFCEA NOVA will address the development of a zero- trust architecture environment which is fundamental to protecting an organization’s information enterprise and critical data. 

Much has been written on the topic of Zero Trust, including NIST Special Publication 800-207, DISA & NSA Department of Defense (DoD) Zero Trust Reference Architecture, and the CISA Zero Trust Maturity Model, but there still seemed to be some confusion on how to implement and measure a successful Zero Trust deployment.

Back in October of 2022, the Zero Trust PfMO released the DoD Zero Trust Strategy, which provided agencies guidelines for both activities and outcomes, which they deemed necessary to reach both Target and Advanced levels of Zero Trust implementation. The Target level is defined as “the minimum set of ZT capability outcomes and activities necessary to secure and protect the Department's DAAS to manage risks from currently known threats. It is the level set by the DoD ZT PfMO to which all of DoD must minimally achieve.”

This presentation takes a practical look at how to go about implementing these target activities in a DoD environment.