Hear from Chris DeRusha of Office of Management and Budget at Cybersecurity Summit. 

Zero Trust is not just another buzzword in a never-ending list of tech trends. The principles of zero trust eliminates the binary trust/don't trust approach applied to users and assets in yesterday's on-premises, perimeter-centric environments.

This panel discussed some of the budgetary, contracting and policy challenges  facing federal CISOs in the implementation of modernized identity management tools and practices.

This session will discuss why securing hybrid clouds is challenging, what the points of vulnerability are and how shared responsibility between the agency and the cloud providers is key. It will also offer some lessons learned to guide agencies in their efforts.

Security as a Service solutions are becoming increasingly popular methods to outsource cybersecurity services while scaling security, reducing costs and easing the pressure on in-house security teams. This panel explored how agencies are incorporating Security as a Service solutions and using zero trust as a roadmap to understand what can be outsourced within specific organizations.

As Security, Compliance, Identity and Management continue to be paramount (or focal points) in the way our Federal Government innovates and moves to the cloud, Microsoft is committed to supporting and empowering agencies digital transformation efforts by delivering best of breed security across all devices, platforms and endpoints.  It is critical that agencies are enabled to rapidly assess and improve their security posture and with the advancement in vulnerability management to endpoint data loss prevention and partnerships within the growing third party ecosystem Microsoft’s commitment is shown through their investments across the platform.  During this session, attendees learned about where Microsoft is headed, where it’s investments are being made and how all these pieces work together to ensure a secure and seamless cloud journey for federal agencies.

Efforts to apply recent cybersecurity policy demands across federal networks is complicated by the rise of telework and the proliferation of devices and cloud-based applications. In this discussion, two experts looked at how to prioritize and manage efforts to minimize the attack surface.

In this session, Daniel Bardenstein and Chris Usserman discussed the steps CISA is taking to strengthen its own threat detection toolkit, automation's implications for the security workforce, and newer solutions that government should be considering for future use.

Federal agencies are no strangers to mandates and new IT security requirements; Zero Trust is no exception. One common thread from executives and security leaders is "how can I make this new technology all do something for my organization and my teams?" Attendees tuned in to hear how agencies embarking on a zero trust journey can use Security Orchestration Automation and Response (SOAR) to achieve the promised outcomes of Zero Trust.