In 2017, the President established the American Technology Council (ATC) to promote the secure and efficient use of IT across the federal government. In 2018, the Federal CIO Council Services, Strategy, and Infrastructure Committee asked ACT-IAC to undertake a project related to zero trust (ZT) and potential federal agency adoption. This report is the product of that project, published in 2019.
Most people don’t realize that security frameworks have plenty of controls in common. Businesses spend a needless amount of time and money duplicating security process in order to comply with each framework. In the attached document from Tugboat Logic, you’ll see where different security frameworks overlap. That way, you can build a sophisticated compliance program for less by collecting evidence once, and applying it to many frameworks.