Skip to main content

Published: 5/26/2023

Zero Trust: what you need to know

by Zero Trust

A brief explainer to help you understand the new Zero Trust framework and how it's being implemented at CMS

Zero Trust is a cybersecurity model that offers protection for CMS systems, employees and beneficiaries through continuous validation at every stage of a digital interaction

As CMS continues to modernize its systems and practices, the agency is implementing Zero Trust and its strong authentication methods, network segmentation, threat prevention, and “least access” policies to benefit everyone. 

So what does this mean for you? And how will Zero Trust impact your day-to-day experience at CMS? This brief explanation offers a good baseline for all CMS employees and contractors who are looking for additional information about Zero Trust. The page also offers an FAQ section, which has questions that were submitted by actual CMS employees and answers directly from the Zero Trust team. 

For a quick explanation of the concept of Zero Trust Architecture, check out the video!

The ISPG website (CyberGeek) will continue to feature updates about the latest Zero Trust activities and policies. If you have questions for the Zero Trust team, you can use this form to submit your query. 

About the publisher:

The Zero Trust Team works to help CMS implement the Executive Order that requires continuous verification of system users to promote stronger security. We introduce new tools and streamline processes to support the transition to Zero Trust throughout the enterprise.