
\| \| \| --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- \| \| NIST Touts 19 Ways to Build ‘Off the Shelf’ Zero Trust Architecture in New Guidance \| \| Source: Cyber News \| \| The National Institute of Standards and Technology (NIST) released a finalized guidance on adopting a Zero Trust architecture (ZTA) on the enterprise level, providing 19 real-world scenarios, using off-the-shelf commercial technologies, solutions map for cybersecurity frameworks and ZTA best practices. Led by the National Cybersecurity Center of Excellence (NCCoE), the guidance was developed with inputs from two dozen industry collaborators and several major tech companies. NIST emphasized that ZTA helps segment networks and enforce least-privileged access, reducing the attack surface and limiting lateral movement by attackers in case of a breach. \| \| Read Full Story \|

| |
| --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| NIST Touts 19 Ways to Build ‘Off the Shelf’ Zero Trust Architecture in New Guidance |
| Source: Cyber News |
| The National Institute of Standards and Technology (NIST) released a finalized guidance on adopting a Zero Trust architecture (ZTA) on the enterprise level, providing 19 real-world scenarios, using off-the-shelf commercial technologies, solutions map for cybersecurity frameworks and ZTA best practices. Led by the National Cybersecurity Center of Excellence (NCCoE), the guidance was developed with inputs from two dozen industry collaborators and several major tech companies. NIST emphasized that ZTA helps segment networks and enforce least-privileged access, reducing the attack surface and limiting lateral movement by attackers in case of a breach. |
| Read Full Story

Zero Trust for OT

From: Lisa Reginaldi Lisa.Reginaldi@gartner.com
Sent: Monday, December 1, 2025 6:17 PM
To: DL EITL SRM Global DLEITLSRMGlobal@gartner.com
Subject: ICYMI: DoW ZT for OT

Team,

I received this from one of my Gartner Consulting colleagues:

To All of us that support the Department of War…..

In case you missed it.

Over the holiday weekend Randy Resnick posted an update on Linked-In reference the Department of War’s (DoW) efforts to implement “ZT for OT systems”, including the just-released DoW Executive Summary document “Zero Trust for Operational Technology” which includes definitions/outcomes of intended activities and a “Fan” chart specific for OT systems. See attached and Link).

Zero Trust for Operational Technology Activities and Outcomes

dodcio.defense.gov

Extract of Linked-In

(32) Post | Feed | LinkedIn

”It’s been another very busy year for the ZT PfMO, with many cybersecurity ZT initiatives and engagements throughout the year between our amazing PfMO staff and other important mission elements within the Pentagon and across all DoW Components. One of these initiatives which I and my team have spoken about passionately has been our commitment to deliver DoW cybersecurity guidance on how to implement ZT for OT systems. True to our word, I am extremely pleased to announce that we have now published this guidance, and it is publicly available within the DoW CIO website at our “Library” link.

Incorporated inside this new guidance is our ZT for OT “Fan Chart”, containing a total of 105 ZT for OT Activities to achieve Advanced Level ZT for OT. The same concepts of Target and Advanced level ZT for OT apply just as we presented these requirement milestones first introduced within our ZT for IT guidance and Fan Chart. As you can imagine, a near non-stop collaboration between our ZT PfMO and with OT leaders in Industry and Academia have guided us in our quest to produce the most informed cybersecurity ZT guidance for OT which would be of immediate use, especially given the cyber threats we see every day. This document has been coordinated across all DoW Components too, with the ZT PfMO addressing 100’s of technical comments.

….. Next up will be our updated ZT Strategy 2.0 for the DoW, anticipated for public release ~ March 2026. Of course, the mandated implementation of ZT for IT within the DoWIN continues, with an unchanged deadline to achieve Target level ZT for IT before the end of FY27. Randy Resnick.”

Quartz 4

Explorer

Zero Trust

Zero Trust for OT

Graph View