Purpose
Regulations, standards, and frameworks are complex. Doing a deep dive into one of those standards, Zero Trust will allow you to learn how to read a standard thoroughly and what elements of the standard are essential, as well as how to locate those elements within the written standard. You will also evaluate the effectiveness of a standard, providing supporting examples.
Assignment Instructions
Use the materials from your reading, particularly the material specific to CISA’s Zero Trust Model and NIST 80-207 Zero Trust Architecture. In addition, research the Internet to provide the required responses.
Provide an in-depth explanation of the following about the Zero Trust model and framework:
- Explain the events that led to the development of the Zero Trust Model.
- Explain the goals that the model seeks to achieve.
- Provide an overview of the IT and Cybersecurity departments’ role in achieving Zero Trust.
- Explain how audits and assessments help achieve or measure compliance.
- What is required to comply with NIST 800-207?
- What challenges exist when moving to the Zero Trust Model?
- Assess the value of the Zero Trust Model as organizations move to cloud-based assets, remote workers, and Bring Your Own Device (BYOD) environments.
- Conclusion
Assignment Requirements
- 4–5 pages of content (exclusive of cover sheet and references page), using Times New Roman font style, 12 point, double-spaced, using correct APA formatting, and include a cover sheet, table of contents, abstract, and reference page(s)
- At least 1 credible source cited and referenced
- No more than 1 table or figure
- No spelling errors
- No grammar errors
- No APA errors