The National Security Agency has issued a cybersecurity information sheet outlining recommendations for maturing data security and enforcing access to data in transit and at rest.
The CIS Advancing Zero Trust Maturity Throughout the Data Pillar seeks to ensure that only people with authorization can have data access and tackles how the capabilities could integrate into a comprehensive framework for zero trust, NSA said Tuesday.
“Assuming that breaches will occur, implementing the pillars of the Zero Trust Framework is how we combat that activity,” said Dave Luber, director of cybersecurity at NSA.
“Data pillar capabilities verify all access to data — one of the key foundational elements for building improved cybersecurity — thereby reducing the impact of breaches and enabling earlier detection of even advanced malicious cyber actor activities,” added Luber.
The NSA guidance lists seven data pillar capabilities and aligns them to zero trust maturity levels: preparation, basic, intermediate and advanced phases.
The capabilities are data catalog risk alignment; enterprise data governance; data labeling and tagging; data monitoring and sensing; data encryption and rights management; data loss prevention; and data access control.
The data monitoring and sensing capability, for instance, highlights the role of security information and event management tools in helping data owners collect and analyze security data from information systems through a single interface.
Join the Potomac Officers Club’s 2024 Cyber Summit on June 6 and hear cyber experts, government and industry leaders discuss the latest trends and the dynamic role of cyber in the public sector. Register here.
