Federal Zero Trust Archives

All FISMA & NIST RMF FedRAMP CMMC Federal AI Governance GovCon Compliance Federal Cybersecurity Federal Zero Trust Federal GRC Engineering AI Governance GRC Engineering Cybersecurity Cloud Security HIPAA SOC 2

Federal Zero Trust

Microsegmentation for Federal Zero Trust: The Six-Phase Roadmap CISA Part One Already Supports

May 14, 2026 | 11 min read

The Cybersecurity and Infrastructure Security Agency released the first half of its microsegmentation guidance on July 29, 2025: Microsegmentation in Zero Trust, Part One. Part One covers the concepts, the challenges, and the benefits. It...

Read the Guide

Federal Zero Trust

Zero Trust Identity Pillar: Implementing Phishing-Resistant MFA for Federal Systems

May 2, 2026 | 15 min read

Most federal agencies have multi-factor authentication (MFA) deployed. Their security teams know the numbers, the policy deadlines, and the vendor deployments. They check the box on MFA and move to the next item on the...

Read the Guide

Federal Zero Trust

CISA Zero Trust Maturity Model: The Federal Implementation Roadmap

May 2, 2026 | 18 min read

When Congress passed the Federal Information Security Management Act in 2002, most agencies treated it as a paperwork exercise. Policy documents were written. Controls were documented. Certification and accreditation packages were assembled. Then the Office...

Read the Guide

Federal Zero Trust

Zero Trust Maturity Self-Assessment: Scoring Your Agency Against CISA’s Model

April 28, 2026 | 15 min read

The Office of Management and Budget Memorandum M-22-09 deadlines closed at the end of fiscal year 2024. The work after the deadline is harder than the work before it. Inspectors General, Government Accountability Office reviewers,...

Read the Guide

The Authority Brief

One compliance analysis per week from Josef Kamara, CPA, CISSP, CISA. Federal and private compliance, written for practitioners.