Working Group
Zero Trust
This group is working to raise awareness of best practices for operating secure Zero Trust architectures.
View Current ProjectsCISO Perspectives and Progress in Deploying Zero Trust
This working group aims to develop Zero Trust standards to achieve consistency for cloud, hybrid and mobile endpoint environments. The topic of group discourse include Zero Trust benefits, architecture, automation and maturity models, publication reviews, and relevant industry forums and events.
During our meetings, we typically discuss changes in the industry and collaborate on projects the group is currently working on. This group will have the following nine workstreams:
- Zero Trust as a Philosophy & Guiding Principles
- Zero Trust Organizational Strategy & Governance
- Pillar: Identity
- Pillar: Device
- Pillar: Network/Environment
- Pillar: Applications & Workload
- Pillar: Data
- Automation, Orchestration, Visibility & Analytics
- Zero Trust Architecture, Implementation, and Maturity Model
Drafts & Important Docs
Working Group Leadership

Daniele Catteddu
Chief Technology Officer, CSA
Daniele Catteddu is an information security and risk management practitioner, technologies expert and privacy evangelist with over 15 of experience. He worked in several senior roles both in the private and public sector. He is member of various national and international security expert groups and committees on cyber-security and privacy, keynote speaker at several conferences and author of numerous studies and papers on risk management, ...

Erik Johnson
Cloud Security Specialist & Senior Research Analyst
Worked for the Federal Reserve for many years and volunteered with the CSA with a focus on CCM/CAIQ V4, specifically the STA domain, and developing a comprehensive framework and guidance for defining and managing the cloud shared security responsibility model (SSRM).
I recently retired from the Federal Reserve and am now consulting with the CSA as a Senior Research Analyst with a focus on Zero Trust and Financial Services.
Linke...

John Yeoh
Global Vice President of Research, CSA
With over 15 years of experience in research and technology, John excels at executive-level leadership, relationship management, and strategy development. He is a published author, technologist, and researcher with areas of expertise in cybersecurity, cloud computing, information security, and next generation technology (IoT, Big Data, SecaaS, Quantum). John specializes in risk management, third party assessment, GRC, data protection, incid...
Working Group Co-Chairs

Jerry Chapman
Chief Identity Officer at Fischer Identity
With over 25 years of industry experience, Jerry has successfully guided numerous clients in the design and implementation of their enterprise IAM strategies, in ways that align with both security and business objectives. His job roles have spanned enterprise architecture, solution engineering, and software architecture and development. Jerry is a co-author of “Zero Trus...

Jason Garbis
Founder and Principal at Numberline Security
Jason Garbis is Founder and Principal at Numberline Security, a consulting firm helping enterprises prepare for, define, and execute on effective Zero Trust security strategies. Jason has authored several books, including Zero Trust Security: An Enterprise Guide, is co-chair of the Zero Trust Working Group at the Cloud Security Alliance, and is a frequent speaker at industry conferences. Jason holds a CISSP certification, has a BS in Comput...

Chris Steffen
VP of Research at Enterprise Management Associates
Chris is the director of information security/risk and compliance management for a technology industry analyst and consulting firm. He is an industry thought leader and has presented at numerous industry conferences and has been interviewed by multiple media sources. He holds over a dozen technical certifications, including CISSP and CISA.
Publications in Review | Open Until |
---|---|
HSM-as-a-Service Use Cases, Considerations, and Best Practices | Dec 09, 2023 |
Who can join?
Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.
What is the time commitment?
The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.
Virtual Meetings
Attend our next meeting. You can just listen in to decide if this group is a good for you or you can choose to actively participate. During these calls we discuss current projects, and well as share ideas for new projects. This is a good way to meet the other members of the group. You can view all research meetings here.
Nov
29
ZT9 - ZT Architecture, Implementation & Maturity Model Workgroup
New invitation for ZT9. Recurs @11AM ET every 2 weeks and replaces the alternating 8AM/8PM ET ZT9 calls.
Workstream shared folder (CSA Google Drive): https://drive.google.com/drive/folders/1I2TAr9w1SPZALvN0J0YWZAz3UJRxDy45?usp=sharing
Workstream Google Subgroup :
https://groups.google.com/a/groups.cloudsecurityalliance.org/g/zt9-architecture-maturity-model
ZT Circle sub-community: Zero Trust Architecture, Implementation & Maturity Model
CSA Zero Trust Circle Community
──────────
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83671427988?pwd=NURLWG9zaFNWVjlxcCtPbFl3K25jdz09
Meeting ID: 836 7142 7988
Passcode: 723528
One tap mobile
+13017158592,,83671427988# US (Washington DC)
+13052241968,,83671427988# US
Dial by your location
+1 301 715 8592 US (Washington DC)
+1 305 224 1968 US
+1 309 205 3325 US
+1 312 626 6799 US (Chicago)
+1 646 558 8656 US (New York)
+1 646 931 3860 US
+1 564 217 2000 US
+1 669 444 9171 US
+1 689 278 1000 US
+1 719 359 4580 US
+1 720 707 2699 US (Denver)
+1 253 205 0468 US
+1 253 215 8782 US (Tacoma)
+1 346 248 7799 US (Houston)
+1 360 209 5623 US
+1 386 347 5053 US
+1 507 473 4847 US
Meeting ID: 836 7142 7988
Find your local number: https://cloudsecurityalliance.zoom.us/u/kdBiafXaCN
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83671427988
──────────
Nov
29
CSA ZT6 - Pillar: Applications & Workload Workgroup Meeting
CSA ZT6 - Pillar: Applications & Workload Biweekly Meeting
Team Subgroup (email & meeting distribution):
[email protected]
https://groups.google.com/a/groups.cloudsecurityalliance.org/g/zt6-applications-workload
Workstream shared folder (CSA Google Drive): https://drive.google.com/drive/folders/1SP7R4JvOOceiGqaLaM_5cnyw7BDHJoE3?usp=sharing
ZT Circle sub-community: Pillar: Applications & Workload
https://cloudsecurityalliance.zoom.us/j/86028243888?pwd=UGZjYkhKRHpQLzU5WWxCZ2p3ZjJzdz09
Meeting ID: 860 2824 3888
Passcode: 108561
---
One tap mobile
+13017158592,,86028243888# US (Washington DC)
+13052241968,,86028243888# US
---
Dial by your location
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
Meeting ID: 860 2824 3888
Find your local number: https://cloudsecurityalliance.zoom.us/u/kdMufuieFL
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/86028243888
Nov
30
CCMv4 Workshop Sessions
Scope & Objectives:
- Provide guidance to new members participating in the exercise,
- Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs,
- Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
- Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
- Share the "know-how" for the proper interpretation and compariso...
Nov
30
CCM Zero Trust Assessment Focus Group
ZT SMEs Assessment of CCM controls
- ZTCCM Assessment - ZT Research WG folder
- CCMv4.0 - ZT Assessment & Mapping spreadsheet
- CCM-ZTA Mapping Methodology
The ZT assessment will involve two passes through the CCM controls:
1. A quick pass to determine control relevance to ZT including a high level assessment of its maturity level, i.e. whether its Directly Relevant and Aligned, Partially Relevant / Aligned, Not Relevant"
- Directly Relevant and Aligned corresponds to the higher ZT maturity levels (Advanced/Aligned)
- Partially Relevant/Aligned corresponds to the lower ZT maturity levels (Traditional/Initial)
2. Perform a gap assessment and draft recommended enhancements to CCM Guidelines and Controls for alignment with higher ZT maturity levels, including references as appropriate, formulated as a ZT CCM addendum.
- ZT Leadership recommendation is to select one domain and do a thorough job of the assessment and addendum development to show what the end product will look like.
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83321408938?pwd=81smMkA4uaA4ilipDj0CndKBDbT0VM.1
Meeting ID: 833 2140 8938
Passcode: 963186
---
One tap mobile
+13092053325,,83321408938# US
+13126266799,,83321408938# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
Meeting ID: 833 2140 8938
Find your local number: https://cloudsecurityalliance.zoom.us/u/kb2vzPzfOg
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83321408938
──────────
Nov
30
Zero Trust workstream 5: Network/Environment bi-weekly working session
*************************************************************************
Hi All - Scheduling this bi-weekly meeting for us to meet, discuss and work on the planned deliverables. Please feel to forward to others as needed.
Links to watch for:
Project charter: https://docs.google.com/document/d/1OH1en7CN_BzqOBxM3xm7BfAdohlSEda2/edit?usp=drive_link&ouid=104855905675955615891&rtpof=true&sd=true
Deliverables: https://drive.google.com/drive/folders/1a6UM8MLTkvIdHTI3eWrg6tmX1YPHsRpD?usp=drive_link
References: https://drive.google.com/drive/folders/1qZiIqRO8P6rc7n7c-m8RB4nkduPIbS3s?usp=drive_link
Meeting Recordings: https://drive.google.com/drive/folders/15i2-wsfJncNOfUZURFlo_bhYshuVOaHc?usp=drive_link
*******************************************************************************************************************************************************************************************
Join Zoom Meeting: https://Dell.zoom.us/j/94018967518?pwd=R2xYZ0MxWFRRZEZEYVpMUmVTU3VPdz09
Vinotth Ramalingam is inviting you to a scheduled Zoom meeting.
Join from a browser: https://Dell.zoom.us/wc/join/94018967518
Passcode: 287063
Join by Phone:
US +13462487799,,94018967518#
US +16694449171,,94018967518#
US +16699006833,,94018967518#
US +17193594580,,94018967518#
US +12532050468,,94018967518#
US +12532158782,,94018967518#
US +16465588656,,94018967518#
US +16469313860,,94018967518#
US +16892781000,,94018967518#
US +13017158592,,94018967518#
US +13052241968,,94018967518#
US +13092053325,,94018967518#
US +13126266799,,94018967518#
US +13602095623,,94018967518#
US +13863475053,,94018967518#
US +15074734847,,94018967518#
US +15642172000,,94018967518#
India +912271279525,,94018967518#
India +918071279440,,94018967518#
India +912248798004,,94018967518#
India +912248798012,,94018967518#
United Kingdom +441314601196,,94018967518#
United Kingdom +442034815237,,94018967518#
United Kingdom +442034815240,,94018967518#
United Kingdom +442039017895,,94018967518#
United Kingdom +442080806591,,94018967518#
United Kingdom +442080806592,,94018967518#
United Kingdom +443300885830,,94018967518#
Canada +12042727920,,94018967518#
Canada +14388097799,,94018967518#
Canada +15873281099,,94018967518#
Canada +16473744685,,94018967518#
Canada +16475580588,,94018967518#
Canada +17789072071,,94018967518#
Canada +17806660144,,94018967518#
Meeting ID: 940 1896 7518
Find your local number: https://Dell.zoom.us/u/aMeatMtL3
SIP: [email protected]<mailto:[email protected]>
Dec
1
Going from Zero to Zero Trust with SDN Microsegmentation
Speaker Bio: Nick Hnatiw is the Chief Technology Officer at SIdeChannel, Inc. with more than 15 years of experience creating technologies spanning network security to artificial intelligence and robotics. He builds technology with a focus on usability and simplicity without sacrificing flexibility. Nick also enjoys staying active and the arts.
──────────
The CSA is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/82902721772?pwd=KOnXLLaTQ7olfT4bqb6CIprSVdpc35.1
Meeting ID: 829 0272 1772
Passcode: 836991
---
One tap mobile
+16465588656,,82902721772# US (New York)
+16469313860,,82902721772# US
---
Dial by your location
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
Meeting ID: 829 0272 1772
Find your local number: https://cloudsecurityalliance.zoom.us/u/kZFqPr8Wq
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/82902721772
──────────
Dec
1
CSA ZT1+2 Workgroup PM Meeting
ZT1: Zero Trust as a Philosophy & Guiding Principles
ZT2: Zero Trust Organizational Strategy & Governance
Shared WG files folder: | https://drive.google.com/drive/folders/1PQ1511yVpYTP0dFiUE2niLIJt9B28bqz?usp=sharing |
Circle Sub-Communities | 1. Zero Trust as a Philosophy & Guiding Principles 2. Zero Trust Organizational Strategy & Governance |
The CSA is inviting you to a scheduled Zoom meeting. Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/82680644724?pwd=zg1vEIyoexFmEf11bHAaKGJ2wd5Vt7.1
Meeting ID: 826 8064 4724
Passcode: 407229
---
One tap mobile
+13017158592,,82680644724# US (Washington DC)
+13052241968,,82680644724# US
---
Dial by your location
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
Meeting ID: 826 8064 4724
Find your local number: https://cloudsecurityalliance.zoom.us/u/kcPLTtnynb
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/82680644724
Dec
4
CSA ZT1+2 Workgroup AM Meeting
ZT1: Zero Trust as a Philosophy & Guiding Principles
ZT2: Zero Trust Organizational Strategy & Governance
Shared WG files folder: | https://drive.google.com/drive/folders/1PQ1511yVpYTP0dFiUE2niLIJt9B28bqz?usp=sharing |
Circle Sub-Communities | 1. Zero Trust as a Philosophy & Guiding Principles 2. Zero Trust Organizational Strategy & Governance |
The CSA is inviting you to a scheduled Zoom meeting. Join Zoom Meeting:
https://cloudsecurityalliance.zoom.us/j/85852943048?pwd=EUJbFIJiA8J1GBakiKguc64pLW9vX8.1
Meeting ID: 858 5294 3048 Passcode: 609823
---
One tap mobile
+16465588656,,85852943048# US (New York)
+16469313860,,85852943048# US
---
Dial by your location
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
Meeting ID: 858 5294 3048
Find your local number: https://cloudsecurityalliance.zoom.us/u/keyPB0FJYc
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/85852943048
Dec
6
Zero Trust Workstream ZT8 - Visibility & Analytics and Automation & Orchestration Biweekly
- ZT8 is transitioning to a biweekly cadence wit hour-long meetings.
Workstream References:
Workstream Google group (email & meeting distribution): [email protected]
https://groups.google.com/a/groups.cloudsecurityalliance.org/g/zt8-automation-analytics
Workstream shared folder (CSA Google Drive): https://drive.google.com/drive/folders/1EjkbKZGTyF_Vo7qTUWz98NaotBV9I-Yd?usp=sharing
ZT Circle sub-community: Automation,orchestration, visibility & analytics
The CSA is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/89196440515?pwd=QjAwUE8zNUppVy9ycmhtaXZyRUtBdz09
Meeting ID: 891 9644 0515
Passcode: 793121
---
One tap mobile
+16469313860,,89196440515# US
+13017158592,,89196440515# US (Washington DC)
---
Dial by your location
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
Meeting ID: 891 9644 0515
Find your local number: https://cloudsecurityalliance.zoom.us/u/khxTXedlG
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/89196440515
Dec
7
CCMv4 Workshop Sessions
Scope & Objectives:
- Provide guidance to new members participating in the exercise,
- Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs,
- Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
- Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
- Share the "know-how" for the proper interpretation and compariso...
Dec
7
CCM Zero Trust Assessment Focus Group
ZT SMEs Assessment of CCM controls
- ZTCCM Assessment - ZT Research WG folder
- CCMv4.0 - ZT Assessment & Mapping spreadsheet
- CCM-ZTA Mapping Methodology
The ZT assessment will involve two passes through the CCM controls:
1. A quick pass to determine control relevance to ZT including a high level assessment of its maturity level, i.e. whether its Directly Relevant and Aligned, Partially Relevant / Aligned, Not Relevant"
- Directly Relevant and Aligned corresponds to the higher ZT maturity levels (Advanced/Aligned)
- Partially Relevant/Aligned corresponds to the lower ZT maturity levels (Traditional/Initial)
2. Perform a gap assessment and draft recommended enhancements to CCM Guidelines and Controls for alignment with higher ZT maturity levels, including references as appropriate, formulated as a ZT CCM addendum.
- ZT Leadership recommendation is to select one domain and do a thorough job of the assessment and addendum development to show what the end product will look like.
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83321408938?pwd=81smMkA4uaA4ilipDj0CndKBDbT0VM.1
Meeting ID: 833 2140 8938
Passcode: 963186
---
One tap mobile
+13092053325,,83321408938# US
+13126266799,,83321408938# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
Meeting ID: 833 2140 8938
Find your local number: https://cloudsecurityalliance.zoom.us/u/kb2vzPzfOg
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83321408938
──────────
Dec
8
ZT Identity Pillar WorkGroup Meeting
Topic: ZT Identity Pillar Mini Charter Discussion
Time: This is a recurring meeting Meet anytime
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/89441086648?pwd=VmVzc1ZTekxpbDJSN2tLaG4xRElNdz09
Meeting ID: 894 4108 6648
Passcode: 803010
One tap mobile
+12532050468,,89441086648# US
+12532158782,,89441086648# US (Tacoma)
Dial by your location
+1 253 205 0468 US
+1 253 215 8782 US (Tacoma)
+1 346 248 7799 US (Houston)
+1 669 444 9171 US
+1 719 359 4580 US
+1 720 707 2699 US (Denver)
+1 689 278 1000 US
+1 301 715 8592 US (Washington DC)
+1 305 224 1968 US
+1 309 205 3325 US
+1 312 626 6799 US (Chicago)
+1 360 209 5623 US
+1 386 347 5053 US
+1 507 473 4847 US
+1 564 217 2000 US
+1 646 558 8656 US (New York)
+1 646 931 3860 US
Meeting ID: 894 4108 6648
Find your local number: https://cloudsecurityalliance.zoom.us/u/kdP39LmljQ
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/89441086648
Dec
11
CSA ZT Data Workgroup
Dec
12
ZT Research Leadership Meeting
Planning, management and coordination of ZT Workstream and full Workgroup meetings and activities, including:
- Define, develop and review ZT workgroup deliverables, integration & collaboration points, roles &responsibilities
- Collaboration and review process
- Leverage ZT Workgroup Collaboration Facilities in executing workgroup meetings and activities
See the ZT Workstream Collaboration Links document - Workstream workgroup meeting scheduling, logistics, execution and status reporting.
- Execute the CSA Research lifecycle: https://cloudsecurityalliance.org/research/lifecycle/
- Collaborative partnerships & integration management
- Other ZT workstreams
- Other related CSA Research working groups: IAM, IoT, Key Management, Data Security/DLP, etc.
- Organizations: CISA/NSTAC, IEEE, DoD/DAU, NIST/NCCoE, SSE Forum, etc.
Overall CSA Zero Trust Working Group Google group
Working Group Charter - Zero Trust Working Group Charter 2022 - Final V1
File sharing, workstream membership groups, Circle collaboration
ZT Circle: https://circle.cloudsecurityalliance.org/community-home1?CommunityKey=76100168-bb90-4ba9-ae5f-31c9264d05c1
ZT WG Page: ZeroTrust Working Group | CSA - Cloud Security Alliance
ZTAC Resource Hub: https://cloudsecurityalliance.org/zt/resources/
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/87275787358?pwd=cFU4VDRwT3VRdWtNUFh4eGM0MTB0dz09
Meeting ID: 872 7578 7358
Passcode: 458248
---
One tap mobile
+13092053325,,87275787358# US
+13126266799,,87275787358# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
Meeting ID: 872 7578 7358
Find your local number: https://cloudsecurityalliance.zoom.us/u/kEIRVNkDu
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/87275787358
──────────
Dec
13
ZT9 - ZT Architecture, Implementation & Maturity Model Workgroup
New invitation for ZT9. Recurs @11AM ET every 2 weeks and replaces the alternating 8AM/8PM ET ZT9 calls.
Workstream shared folder (CSA Google Drive): https://drive.google.com/drive/folders/1I2TAr9w1SPZALvN0J0YWZAz3UJRxDy45?usp=sharing
Workstream Google Subgroup :
https://groups.google.com/a/groups.cloudsecurityalliance.org/g/zt9-architecture-maturity-model
ZT Circle sub-community: Zero Trust Architecture, Implementation & Maturity Model
CSA Zero Trust Circle Community
──────────
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83671427988?pwd=NURLWG9zaFNWVjlxcCtPbFl3K25jdz09
Meeting ID: 836 7142 7988
Passcode: 723528
One tap mobile
+13017158592,,83671427988# US (Washington DC)
+13052241968,,83671427988# US
Dial by your location
+1 301 715 8592 US (Washington DC)
+1 305 224 1968 US
+1 309 205 3325 US
+1 312 626 6799 US (Chicago)
+1 646 558 8656 US (New York)
+1 646 931 3860 US
+1 564 217 2000 US
+1 669 444 9171 US
+1 689 278 1000 US
+1 719 359 4580 US
+1 720 707 2699 US (Denver)
+1 253 205 0468 US
+1 253 215 8782 US (Tacoma)
+1 346 248 7799 US (Houston)
+1 360 209 5623 US
+1 386 347 5053 US
+1 507 473 4847 US
Meeting ID: 836 7142 7988
Find your local number: https://cloudsecurityalliance.zoom.us/u/kdBiafXaCN
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83671427988
──────────
Dec
13
CSA ZT6 - Pillar: Applications & Workload Workgroup Meeting
CSA ZT6 - Pillar: Applications & Workload Biweekly Meeting
Team Subgroup (email & meeting distribution):
[email protected]
https://groups.google.com/a/groups.cloudsecurityalliance.org/g/zt6-applications-workload
Workstream shared folder (CSA Google Drive): https://drive.google.com/drive/folders/1SP7R4JvOOceiGqaLaM_5cnyw7BDHJoE3?usp=sharing
ZT Circle sub-community: Pillar: Applications & Workload
https://cloudsecurityalliance.zoom.us/j/86028243888?pwd=UGZjYkhKRHpQLzU5WWxCZ2p3ZjJzdz09
Meeting ID: 860 2824 3888
Passcode: 108561
---
One tap mobile
+13017158592,,86028243888# US (Washington DC)
+13052241968,,86028243888# US
---
Dial by your location
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
Meeting ID: 860 2824 3888
Find your local number: https://cloudsecurityalliance.zoom.us/u/kdMufuieFL
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/86028243888
Dec
14
CCMv4 Workshop Sessions
Scope & Objectives:
- Provide guidance to new members participating in the exercise,
- Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs,
- Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
- Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
- Share the "know-how" for the proper interpretation and compariso...
Dec
14
CCM Zero Trust Assessment Focus Group
ZT SMEs Assessment of CCM controls
- ZTCCM Assessment - ZT Research WG folder
- CCMv4.0 - ZT Assessment & Mapping spreadsheet
- CCM-ZTA Mapping Methodology
The ZT assessment will involve two passes through the CCM controls:
1. A quick pass to determine control relevance to ZT including a high level assessment of its maturity level, i.e. whether its Directly Relevant and Aligned, Partially Relevant / Aligned, Not Relevant"
- Directly Relevant and Aligned corresponds to the higher ZT maturity levels (Advanced/Aligned)
- Partially Relevant/Aligned corresponds to the lower ZT maturity levels (Traditional/Initial)
2. Perform a gap assessment and draft recommended enhancements to CCM Guidelines and Controls for alignment with higher ZT maturity levels, including references as appropriate, formulated as a ZT CCM addendum.
- ZT Leadership recommendation is to select one domain and do a thorough job of the assessment and addendum development to show what the end product will look like.
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83321408938?pwd=81smMkA4uaA4ilipDj0CndKBDbT0VM.1
Meeting ID: 833 2140 8938
Passcode: 963186
---
One tap mobile
+13092053325,,83321408938# US
+13126266799,,83321408938# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
Meeting ID: 833 2140 8938
Find your local number: https://cloudsecurityalliance.zoom.us/u/kb2vzPzfOg
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83321408938
──────────
Dec
14
Zero Trust workstream 5: Network/Environment bi-weekly working session
*************************************************************************
Hi All - Scheduling this bi-weekly meeting for us to meet, discuss and work on the planned deliverables. Please feel to forward to others as needed.
Links to watch for:
Project charter: https://docs.google.com/document/d/1OH1en7CN_BzqOBxM3xm7BfAdohlSEda2/edit?usp=drive_link&ouid=104855905675955615891&rtpof=true&sd=true
Deliverables: https://drive.google.com/drive/folders/1a6UM8MLTkvIdHTI3eWrg6tmX1YPHsRpD?usp=drive_link
References: https://drive.google.com/drive/folders/1qZiIqRO8P6rc7n7c-m8RB4nkduPIbS3s?usp=drive_link
Meeting Recordings: https://drive.google.com/drive/folders/15i2-wsfJncNOfUZURFlo_bhYshuVOaHc?usp=drive_link
*******************************************************************************************************************************************************************************************
Join Zoom Meeting: https://Dell.zoom.us/j/94018967518?pwd=R2xYZ0MxWFRRZEZEYVpMUmVTU3VPdz09
Vinotth Ramalingam is inviting you to a scheduled Zoom meeting.
Join from a browser: https://Dell.zoom.us/wc/join/94018967518
Passcode: 287063
Join by Phone:
US +13462487799,,94018967518#
US +16694449171,,94018967518#
US +16699006833,,94018967518#
US +17193594580,,94018967518#
US +12532050468,,94018967518#
US +12532158782,,94018967518#
US +16465588656,,94018967518#
US +16469313860,,94018967518#
US +16892781000,,94018967518#
US +13017158592,,94018967518#
US +13052241968,,94018967518#
US +13092053325,,94018967518#
US +13126266799,,94018967518#
US +13602095623,,94018967518#
US +13863475053,,94018967518#
US +15074734847,,94018967518#
US +15642172000,,94018967518#
India +912271279525,,94018967518#
India +918071279440,,94018967518#
India +912248798004,,94018967518#
India +912248798012,,94018967518#
United Kingdom +441314601196,,94018967518#
United Kingdom +442034815237,,94018967518#
United Kingdom +442034815240,,94018967518#
United Kingdom +442039017895,,94018967518#
United Kingdom +442080806591,,94018967518#
United Kingdom +442080806592,,94018967518#
United Kingdom +443300885830,,94018967518#
Canada +12042727920,,94018967518#
Canada +14388097799,,94018967518#
Canada +15873281099,,94018967518#
Canada +16473744685,,94018967518#
Canada +16475580588,,94018967518#
Canada +17789072071,,94018967518#
Canada +17806660144,,94018967518#
Meeting ID: 940 1896 7518
Find your local number: https://Dell.zoom.us/u/aMeatMtL3
SIP: [email protected]<mailto:[email protected]>
Dec
15
CSA ZT1+2 Workgroup PM Meeting
ZT1: Zero Trust as a Philosophy & Guiding Principles
ZT2: Zero Trust Organizational Strategy & Governance
Shared WG files folder: | https://drive.google.com/drive/folders/1PQ1511yVpYTP0dFiUE2niLIJt9B28bqz?usp=sharing |
Circle Sub-Communities | 1. Zero Trust as a Philosophy & Guiding Principles 2. Zero Trust Organizational Strategy & Governance |
The CSA is inviting you to a scheduled Zoom meeting. Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/82680644724?pwd=zg1vEIyoexFmEf11bHAaKGJ2wd5Vt7.1
Meeting ID: 826 8064 4724
Passcode: 407229
---
One tap mobile
+13017158592,,82680644724# US (Washington DC)
+13052241968,,82680644724# US
---
Dial by your location
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
Meeting ID: 826 8064 4724
Find your local number: https://cloudsecurityalliance.zoom.us/u/kcPLTtnynb
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/82680644724
Dec
18
CSA ZT1+2 Workgroup AM Meeting
ZT1: Zero Trust as a Philosophy & Guiding Principles
ZT2: Zero Trust Organizational Strategy & Governance
Shared WG files folder: | https://drive.google.com/drive/folders/1PQ1511yVpYTP0dFiUE2niLIJt9B28bqz?usp=sharing |
Circle Sub-Communities | 1. Zero Trust as a Philosophy & Guiding Principles 2. Zero Trust Organizational Strategy & Governance |
The CSA is inviting you to a scheduled Zoom meeting. Join Zoom Meeting:
https://cloudsecurityalliance.zoom.us/j/85852943048?pwd=EUJbFIJiA8J1GBakiKguc64pLW9vX8.1
Meeting ID: 858 5294 3048 Passcode: 609823
---
One tap mobile
+16465588656,,85852943048# US (New York)
+16469313860,,85852943048# US
---
Dial by your location
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
Meeting ID: 858 5294 3048
Find your local number: https://cloudsecurityalliance.zoom.us/u/keyPB0FJYc
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/85852943048
Dec
19
CSA Zero Trust Research - Full Working Group Meeting
Time: 03:00 PM Eastern Time (US and Canada) every month on the 3rd Tuesday of the month.
Meeting will be recorded. The recording and presentation will be made available for folks who missed the live event.
CSA Zero Trust Calendar
CSA ZT Circle - Subscribe to the CSA Zero Trust Circle Community and sign up for regular (daily/weekly) email updates (make sure your email address is added to your Circle profile) to stay informed and engage in online discussions with other workgroup leads, members and CSA staff. Workstream leads are encouraged to check and engage with the online community regularly, starting with creating an initial introductory post/thread for your workstream where status, plans and upcoming meeting info can be posted and new volunteers can engage and express interest in joining.
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/86766412034?pwd=L0MzdkVJQ3Q1SGZGakFsZi92RnJkZz09
Meeting ID: 867 6641 2034
Passcode: 377607
One tap mobile
+16465588656,,86766412034# US (New York)
+16469313860,,86766412034# US
Dial by your location
+1 646 558 8656 US (New York)
+1 646 931 3860 US
+1 301 715 8592 US (Washington DC)
+1 305 224 1968 US
+1 309 205 3325 US
+1 312 626 6799 US (Chicago)
+1 564 217 2000 US
+1 669 444 9171 US
+1 689 278 1000 US
+1 719 359 4580 US
+1 720 707 2699 US (Denver)
+1 253 205 0468 US
+1 253 215 8782 US (Tacoma)
+1 346 248 7799 US (Houston)
+1 360 209 5623 US
+1 386 347 5053 US
+1 507 473 4847 US
Meeting ID: 867 6641 2034
Find your local number: https://cloudsecurityalliance.zoom.us/u/kcF7ggdPtX
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/86766412034
Dec
20
Zero Trust Workstream ZT8 - Visibility & Analytics and Automation & Orchestration Biweekly
- ZT8 is transitioning to a biweekly cadence wit hour-long meetings.
Workstream References:
Workstream Google group (email & meeting distribution): [email protected]
https://groups.google.com/a/groups.cloudsecurityalliance.org/g/zt8-automation-analytics
Workstream shared folder (CSA Google Drive): https://drive.google.com/drive/folders/1EjkbKZGTyF_Vo7qTUWz98NaotBV9I-Yd?usp=sharing
ZT Circle sub-community: Automation,orchestration, visibility & analytics
The CSA is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/89196440515?pwd=QjAwUE8zNUppVy9ycmhtaXZyRUtBdz09
Meeting ID: 891 9644 0515
Passcode: 793121
---
One tap mobile
+16469313860,,89196440515# US
+13017158592,,89196440515# US (Washington DC)
---
Dial by your location
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
Meeting ID: 891 9644 0515
Find your local number: https://cloudsecurityalliance.zoom.us/u/khxTXedlG
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/89196440515
Dec
21
CCMv4 Workshop Sessions
Scope & Objectives:
- Provide guidance to new members participating in the exercise,
- Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs,
- Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
- Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
- Share the "know-how" for the proper interpretation and compariso...
Dec
21
CCM Zero Trust Assessment Focus Group
ZT SMEs Assessment of CCM controls
- ZTCCM Assessment - ZT Research WG folder
- CCMv4.0 - ZT Assessment & Mapping spreadsheet
- CCM-ZTA Mapping Methodology
The ZT assessment will involve two passes through the CCM controls:
1. A quick pass to determine control relevance to ZT including a high level assessment of its maturity level, i.e. whether its Directly Relevant and Aligned, Partially Relevant / Aligned, Not Relevant"
- Directly Relevant and Aligned corresponds to the higher ZT maturity levels (Advanced/Aligned)
- Partially Relevant/Aligned corresponds to the lower ZT maturity levels (Traditional/Initial)
2. Perform a gap assessment and draft recommended enhancements to CCM Guidelines and Controls for alignment with higher ZT maturity levels, including references as appropriate, formulated as a ZT CCM addendum.
- ZT Leadership recommendation is to select one domain and do a thorough job of the assessment and addendum development to show what the end product will look like.
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83321408938?pwd=81smMkA4uaA4ilipDj0CndKBDbT0VM.1
Meeting ID: 833 2140 8938
Passcode: 963186
---
One tap mobile
+13092053325,,83321408938# US
+13126266799,,83321408938# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
Meeting ID: 833 2140 8938
Find your local number: https://cloudsecurityalliance.zoom.us/u/kb2vzPzfOg
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83321408938
──────────
Dec
22
ZT Identity Pillar WorkGroup Meeting
Topic: ZT Identity Pillar Mini Charter Discussion
Time: This is a recurring meeting Meet anytime
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/89441086648?pwd=VmVzc1ZTekxpbDJSN2tLaG4xRElNdz09
Meeting ID: 894 4108 6648
Passcode: 803010
One tap mobile
+12532050468,,89441086648# US
+12532158782,,89441086648# US (Tacoma)
Dial by your location
+1 253 205 0468 US
+1 253 215 8782 US (Tacoma)
+1 346 248 7799 US (Houston)
+1 669 444 9171 US
+1 719 359 4580 US
+1 720 707 2699 US (Denver)
+1 689 278 1000 US
+1 301 715 8592 US (Washington DC)
+1 305 224 1968 US
+1 309 205 3325 US
+1 312 626 6799 US (Chicago)
+1 360 209 5623 US
+1 386 347 5053 US
+1 507 473 4847 US
+1 564 217 2000 US
+1 646 558 8656 US (New York)
+1 646 931 3860 US
Meeting ID: 894 4108 6648
Find your local number: https://cloudsecurityalliance.zoom.us/u/kdP39LmljQ
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/89441086648
Dec
25
CSA ZT Data Workgroup
Dec
28
CCMv4 Workshop Sessions
Scope & Objectives:
- Provide guidance to new members participating in the exercise,
- Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs,
- Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
- Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
- Share the "know-how" for the proper interpretation and compariso...
Dec
28
CCM Zero Trust Assessment Focus Group
ZT SMEs Assessment of CCM controls
- ZTCCM Assessment - ZT Research WG folder
- CCMv4.0 - ZT Assessment & Mapping spreadsheet
- CCM-ZTA Mapping Methodology
The ZT assessment will involve two passes through the CCM controls:
1. A quick pass to determine control relevance to ZT including a high level assessment of its maturity level, i.e. whether its Directly Relevant and Aligned, Partially Relevant / Aligned, Not Relevant"
- Directly Relevant and Aligned corresponds to the higher ZT maturity levels (Advanced/Aligned)
- Partially Relevant/Aligned corresponds to the lower ZT maturity levels (Traditional/Initial)
2. Perform a gap assessment and draft recommended enhancements to CCM Guidelines and Controls for alignment with higher ZT maturity levels, including references as appropriate, formulated as a ZT CCM addendum.
- ZT Leadership recommendation is to select one domain and do a thorough job of the assessment and addendum development to show what the end product will look like.
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83321408938?pwd=81smMkA4uaA4ilipDj0CndKBDbT0VM.1
Meeting ID: 833 2140 8938
Passcode: 963186
---
One tap mobile
+13092053325,,83321408938# US
+13126266799,,83321408938# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
Meeting ID: 833 2140 8938
Find your local number: https://cloudsecurityalliance.zoom.us/u/kb2vzPzfOg
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83321408938
──────────
Dec
28
Zero Trust workstream 5: Network/Environment bi-weekly working session
*************************************************************************
Hi All - Scheduling this bi-weekly meeting for us to meet, discuss and work on the planned deliverables. Please feel to forward to others as needed.
Links to watch for:
Project charter: https://docs.google.com/document/d/1OH1en7CN_BzqOBxM3xm7BfAdohlSEda2/edit?usp=drive_link&ouid=104855905675955615891&rtpof=true&sd=true
Deliverables: https://drive.google.com/drive/folders/1a6UM8MLTkvIdHTI3eWrg6tmX1YPHsRpD?usp=drive_link
References: https://drive.google.com/drive/folders/1qZiIqRO8P6rc7n7c-m8RB4nkduPIbS3s?usp=drive_link
Meeting Recordings: https://drive.google.com/drive/folders/15i2-wsfJncNOfUZURFlo_bhYshuVOaHc?usp=drive_link
*******************************************************************************************************************************************************************************************
Join Zoom Meeting: https://Dell.zoom.us/j/94018967518?pwd=R2xYZ0MxWFRRZEZEYVpMUmVTU3VPdz09
Vinotth Ramalingam is inviting you to a scheduled Zoom meeting.
Join from a browser: https://Dell.zoom.us/wc/join/94018967518
Passcode: 287063
Join by Phone:
US +13462487799,,94018967518#
US +16694449171,,94018967518#
US +16699006833,,94018967518#
US +17193594580,,94018967518#
US +12532050468,,94018967518#
US +12532158782,,94018967518#
US +16465588656,,94018967518#
US +16469313860,,94018967518#
US +16892781000,,94018967518#
US +13017158592,,94018967518#
US +13052241968,,94018967518#
US +13092053325,,94018967518#
US +13126266799,,94018967518#
US +13602095623,,94018967518#
US +13863475053,,94018967518#
US +15074734847,,94018967518#
US +15642172000,,94018967518#
India +912271279525,,94018967518#
India +918071279440,,94018967518#
India +912248798004,,94018967518#
India +912248798012,,94018967518#
United Kingdom +441314601196,,94018967518#
United Kingdom +442034815237,,94018967518#
United Kingdom +442034815240,,94018967518#
United Kingdom +442039017895,,94018967518#
United Kingdom +442080806591,,94018967518#
United Kingdom +442080806592,,94018967518#
United Kingdom +443300885830,,94018967518#
Canada +12042727920,,94018967518#
Canada +14388097799,,94018967518#
Canada +15873281099,,94018967518#
Canada +16473744685,,94018967518#
Canada +16475580588,,94018967518#
Canada +17789072071,,94018967518#
Canada +17806660144,,94018967518#
Meeting ID: 940 1896 7518
Find your local number: https://Dell.zoom.us/u/aMeatMtL3
SIP: [email protected]<mailto:[email protected]>
Jan
3
Zero Trust Workstream ZT8 - Visibility & Analytics and Automation & Orchestration Biweekly
- ZT8 is transitioning to a biweekly cadence wit hour-long meetings.
Workstream References:
Workstream Google group (email & meeting distribution): [email protected]
https://groups.google.com/a/groups.cloudsecurityalliance.org/g/zt8-automation-analytics
Workstream shared folder (CSA Google Drive): https://drive.google.com/drive/folders/1EjkbKZGTyF_Vo7qTUWz98NaotBV9I-Yd?usp=sharing
ZT Circle sub-community: Automation,orchestration, visibility & analytics
The CSA is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/89196440515?pwd=QjAwUE8zNUppVy9ycmhtaXZyRUtBdz09
Meeting ID: 891 9644 0515
Passcode: 793121
---
One tap mobile
+16469313860,,89196440515# US
+13017158592,,89196440515# US (Washington DC)
---
Dial by your location
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
Meeting ID: 891 9644 0515
Find your local number: https://cloudsecurityalliance.zoom.us/u/khxTXedlG
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/89196440515
Jan
4
CCMv4 Workshop Sessions
Scope & Objectives:
- Provide guidance to new members participating in the exercise,
- Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs,
- Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
- Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
- Share the "know-how" for the proper interpretation and compariso...
Jan
4
CCM Zero Trust Assessment Focus Group
ZT SMEs Assessment of CCM controls
- ZTCCM Assessment - ZT Research WG folder
- CCMv4.0 - ZT Assessment & Mapping spreadsheet
- CCM-ZTA Mapping Methodology
The ZT assessment will involve two passes through the CCM controls:
1. A quick pass to determine control relevance to ZT including a high level assessment of its maturity level, i.e. whether its Directly Relevant and Aligned, Partially Relevant / Aligned, Not Relevant"
- Directly Relevant and Aligned corresponds to the higher ZT maturity levels (Advanced/Aligned)
- Partially Relevant/Aligned corresponds to the lower ZT maturity levels (Traditional/Initial)
2. Perform a gap assessment and draft recommended enhancements to CCM Guidelines and Controls for alignment with higher ZT maturity levels, including references as appropriate, formulated as a ZT CCM addendum.
- ZT Leadership recommendation is to select one domain and do a thorough job of the assessment and addendum development to show what the end product will look like.
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83321408938?pwd=81smMkA4uaA4ilipDj0CndKBDbT0VM.1
Meeting ID: 833 2140 8938
Passcode: 963186
---
One tap mobile
+13092053325,,83321408938# US
+13126266799,,83321408938# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
Meeting ID: 833 2140 8938
Find your local number: https://cloudsecurityalliance.zoom.us/u/kb2vzPzfOg
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83321408938
──────────
Jan
5
ZT Identity Pillar WorkGroup Meeting
Topic: ZT Identity Pillar Mini Charter Discussion
Time: This is a recurring meeting Meet anytime
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/89441086648?pwd=VmVzc1ZTekxpbDJSN2tLaG4xRElNdz09
Meeting ID: 894 4108 6648
Passcode: 803010
One tap mobile
+12532050468,,89441086648# US
+12532158782,,89441086648# US (Tacoma)
Dial by your location
+1 253 205 0468 US
+1 253 215 8782 US (Tacoma)
+1 346 248 7799 US (Houston)
+1 669 444 9171 US
+1 719 359 4580 US
+1 720 707 2699 US (Denver)
+1 689 278 1000 US
+1 301 715 8592 US (Washington DC)
+1 305 224 1968 US
+1 309 205 3325 US
+1 312 626 6799 US (Chicago)
+1 360 209 5623 US
+1 386 347 5053 US
+1 507 473 4847 US
+1 564 217 2000 US
+1 646 558 8656 US (New York)
+1 646 931 3860 US
Meeting ID: 894 4108 6648
Find your local number: https://cloudsecurityalliance.zoom.us/u/kdP39LmljQ
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/89441086648
Jan
8
CSA ZT Data Workgroup
Jan
9
ZT Research Leadership Meeting
Planning, management and coordination of ZT Workstream and full Workgroup meetings and activities, including:
- Define, develop and review ZT workgroup deliverables, integration & collaboration points, roles &responsibilities
- Collaboration and review process
- Leverage ZT Workgroup Collaboration Facilities in executing workgroup meetings and activities
See the ZT Workstream Collaboration Links document - Workstream workgroup meeting scheduling, logistics, execution and status reporting.
- Execute the CSA Research lifecycle: https://cloudsecurityalliance.org/research/lifecycle/
- Collaborative partnerships & integration management
- Other ZT workstreams
- Other related CSA Research working groups: IAM, IoT, Key Management, Data Security/DLP, etc.
- Organizations: CISA/NSTAC, IEEE, DoD/DAU, NIST/NCCoE, SSE Forum, etc.
Overall CSA Zero Trust Working Group Google group
Working Group Charter - Zero Trust Working Group Charter 2022 - Final V1
File sharing, workstream membership groups, Circle collaboration
ZT Circle: https://circle.cloudsecurityalliance.org/community-home1?CommunityKey=76100168-bb90-4ba9-ae5f-31c9264d05c1
ZT WG Page: ZeroTrust Working Group | CSA - Cloud Security Alliance
ZTAC Resource Hub: https://cloudsecurityalliance.org/zt/resources/
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/87275787358?pwd=cFU4VDRwT3VRdWtNUFh4eGM0MTB0dz09
Meeting ID: 872 7578 7358
Passcode: 458248
---
One tap mobile
+13092053325,,87275787358# US
+13126266799,,87275787358# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
Meeting ID: 872 7578 7358
Find your local number: https://cloudsecurityalliance.zoom.us/u/kEIRVNkDu
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/87275787358
──────────
Jan
11
CCMv4 Workshop Sessions
Scope & Objectives:
- Provide guidance to new members participating in the exercise,
- Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs,
- Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
- Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
- Share the "know-how" for the proper interpretation and compariso...
Jan
11
CCM Zero Trust Assessment Focus Group
ZT SMEs Assessment of CCM controls
- ZTCCM Assessment - ZT Research WG folder
- CCMv4.0 - ZT Assessment & Mapping spreadsheet
- CCM-ZTA Mapping Methodology
The ZT assessment will involve two passes through the CCM controls:
1. A quick pass to determine control relevance to ZT including a high level assessment of its maturity level, i.e. whether its Directly Relevant and Aligned, Partially Relevant / Aligned, Not Relevant"
- Directly Relevant and Aligned corresponds to the higher ZT maturity levels (Advanced/Aligned)
- Partially Relevant/Aligned corresponds to the lower ZT maturity levels (Traditional/Initial)
2. Perform a gap assessment and draft recommended enhancements to CCM Guidelines and Controls for alignment with higher ZT maturity levels, including references as appropriate, formulated as a ZT CCM addendum.
- ZT Leadership recommendation is to select one domain and do a thorough job of the assessment and addendum development to show what the end product will look like.
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83321408938?pwd=81smMkA4uaA4ilipDj0CndKBDbT0VM.1
Meeting ID: 833 2140 8938
Passcode: 963186
---
One tap mobile
+13092053325,,83321408938# US
+13126266799,,83321408938# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
Meeting ID: 833 2140 8938
Find your local number: https://cloudsecurityalliance.zoom.us/u/kb2vzPzfOg
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83321408938
──────────
Jan
11
Zero Trust workstream 5: Network/Environment bi-weekly working session
*************************************************************************
Hi All - Scheduling this bi-weekly meeting for us to meet, discuss and work on the planned deliverables. Please feel to forward to others as needed.
Links to watch for:
Project charter: https://docs.google.com/document/d/1OH1en7CN_BzqOBxM3xm7BfAdohlSEda2/edit?usp=drive_link&ouid=104855905675955615891&rtpof=true&sd=true
Deliverables: https://drive.google.com/drive/folders/1a6UM8MLTkvIdHTI3eWrg6tmX1YPHsRpD?usp=drive_link
References: https://drive.google.com/drive/folders/1qZiIqRO8P6rc7n7c-m8RB4nkduPIbS3s?usp=drive_link
Meeting Recordings: https://drive.google.com/drive/folders/15i2-wsfJncNOfUZURFlo_bhYshuVOaHc?usp=drive_link
*******************************************************************************************************************************************************************************************
Join Zoom Meeting: https://Dell.zoom.us/j/94018967518?pwd=R2xYZ0MxWFRRZEZEYVpMUmVTU3VPdz09
Vinotth Ramalingam is inviting you to a scheduled Zoom meeting.
Join from a browser: https://Dell.zoom.us/wc/join/94018967518
Passcode: 287063
Join by Phone:
US +13462487799,,94018967518#
US +16694449171,,94018967518#
US +16699006833,,94018967518#
US +17193594580,,94018967518#
US +12532050468,,94018967518#
US +12532158782,,94018967518#
US +16465588656,,94018967518#
US +16469313860,,94018967518#
US +16892781000,,94018967518#
US +13017158592,,94018967518#
US +13052241968,,94018967518#
US +13092053325,,94018967518#
US +13126266799,,94018967518#
US +13602095623,,94018967518#
US +13863475053,,94018967518#
US +15074734847,,94018967518#
US +15642172000,,94018967518#
India +912271279525,,94018967518#
India +918071279440,,94018967518#
India +912248798004,,94018967518#
India +912248798012,,94018967518#
United Kingdom +441314601196,,94018967518#
United Kingdom +442034815237,,94018967518#
United Kingdom +442034815240,,94018967518#
United Kingdom +442039017895,,94018967518#
United Kingdom +442080806591,,94018967518#
United Kingdom +442080806592,,94018967518#
United Kingdom +443300885830,,94018967518#
Canada +12042727920,,94018967518#
Canada +14388097799,,94018967518#
Canada +15873281099,,94018967518#
Canada +16473744685,,94018967518#
Canada +16475580588,,94018967518#
Canada +17789072071,,94018967518#
Canada +17806660144,,94018967518#
Meeting ID: 940 1896 7518
Find your local number: https://Dell.zoom.us/u/aMeatMtL3
SIP: [email protected]<mailto:[email protected]>
Jan
18
CCMv4 Workshop Sessions
Scope & Objectives:
- Provide guidance to new members participating in the exercise,
- Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs,
- Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
- Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
- Share the "know-how" for the proper interpretation and compariso...
Jan
18
CCM Zero Trust Assessment Focus Group
ZT SMEs Assessment of CCM controls
- ZTCCM Assessment - ZT Research WG folder
- CCMv4.0 - ZT Assessment & Mapping spreadsheet
- CCM-ZTA Mapping Methodology
The ZT assessment will involve two passes through the CCM controls:
1. A quick pass to determine control relevance to ZT including a high level assessment of its maturity level, i.e. whether its Directly Relevant and Aligned, Partially Relevant / Aligned, Not Relevant"
- Directly Relevant and Aligned corresponds to the higher ZT maturity levels (Advanced/Aligned)
- Partially Relevant/Aligned corresponds to the lower ZT maturity levels (Traditional/Initial)
2. Perform a gap assessment and draft recommended enhancements to CCM Guidelines and Controls for alignment with higher ZT maturity levels, including references as appropriate, formulated as a ZT CCM addendum.
- ZT Leadership recommendation is to select one domain and do a thorough job of the assessment and addendum development to show what the end product will look like.
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83321408938?pwd=81smMkA4uaA4ilipDj0CndKBDbT0VM.1
Meeting ID: 833 2140 8938
Passcode: 963186
---
One tap mobile
+13092053325,,83321408938# US
+13126266799,,83321408938# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
Meeting ID: 833 2140 8938
Find your local number: https://cloudsecurityalliance.zoom.us/u/kb2vzPzfOg
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83321408938
──────────
Jan
19
ZT Identity Pillar WorkGroup Meeting
Topic: ZT Identity Pillar Mini Charter Discussion
Time: This is a recurring meeting Meet anytime
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/89441086648?pwd=VmVzc1ZTekxpbDJSN2tLaG4xRElNdz09
Meeting ID: 894 4108 6648
Passcode: 803010
One tap mobile
+12532050468,,89441086648# US
+12532158782,,89441086648# US (Tacoma)
Dial by your location
+1 253 205 0468 US
+1 253 215 8782 US (Tacoma)
+1 346 248 7799 US (Houston)
+1 669 444 9171 US
+1 719 359 4580 US
+1 720 707 2699 US (Denver)
+1 689 278 1000 US
+1 301 715 8592 US (Washington DC)
+1 305 224 1968 US
+1 309 205 3325 US
+1 312 626 6799 US (Chicago)
+1 360 209 5623 US
+1 386 347 5053 US
+1 507 473 4847 US
+1 564 217 2000 US
+1 646 558 8656 US (New York)
+1 646 931 3860 US
Meeting ID: 894 4108 6648
Find your local number: https://cloudsecurityalliance.zoom.us/u/kdP39LmljQ
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/89441086648
Jan
22
CSA ZT Data Workgroup
Jan
25
CCMv4 Workshop Sessions
Scope & Objectives:
- Provide guidance to new members participating in the exercise,
- Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs,
- Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
- Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
- Share the "know-how" for the proper interpretation and compariso...
Jan
25
CCM Zero Trust Assessment Focus Group
ZT SMEs Assessment of CCM controls
- ZTCCM Assessment - ZT Research WG folder
- CCMv4.0 - ZT Assessment & Mapping spreadsheet
- CCM-ZTA Mapping Methodology
The ZT assessment will involve two passes through the CCM controls:
1. A quick pass to determine control relevance to ZT including a high level assessment of its maturity level, i.e. whether its Directly Relevant and Aligned, Partially Relevant / Aligned, Not Relevant"
- Directly Relevant and Aligned corresponds to the higher ZT maturity levels (Advanced/Aligned)
- Partially Relevant/Aligned corresponds to the lower ZT maturity levels (Traditional/Initial)
2. Perform a gap assessment and draft recommended enhancements to CCM Guidelines and Controls for alignment with higher ZT maturity levels, including references as appropriate, formulated as a ZT CCM addendum.
- ZT Leadership recommendation is to select one domain and do a thorough job of the assessment and addendum development to show what the end product will look like.
──────────
Erik Johnson is inviting you to a scheduled Zoom meeting.
Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/83321408938?pwd=81smMkA4uaA4ilipDj0CndKBDbT0VM.1
Meeting ID: 833 2140 8938
Passcode: 963186
---
One tap mobile
+13092053325,,83321408938# US
+13126266799,,83321408938# US (Chicago)
---
Dial by your location
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 346 248 7799 US (Houston)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US
• +1 564 217 2000 US
• +1 669 444 9171 US
• +1 689 278 1000 US
• +1 719 359 4580 US
• +1 720 707 2699 US (Denver)
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
Meeting ID: 833 2140 8938
Find your local number: https://cloudsecurityalliance.zoom.us/u/kb2vzPzfOg
---
Join by Skype for Business
https://cloudsecurityalliance.zoom.us/skype/83321408938
──────────
Open Peer Reviews
Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.
Zero Trust Working Group Sponsors
Organizations show their commitment to building awareness and understanding of zero trust principles when they become a Zero Trust Champion for CSA. Sponsor organizations demonstrate thought leadership in providing relevant security solutions for the next generation of IT-cloud computing.