Zero Trust is a cybersecurity model that offers protection for CMS systems, employees and beneficiaries through continuous validation at every stage of a digital interaction. 

As CMS continues to modernize its systems and practices, the agency is implementing Zero Trust and its strong authentication methods, network segmentation, threat prevention, and “least access” policies to benefit everyone. 

So what does this mean for you? And how will Zero Trust impact your day-to-day experience at CMS? This brief explanation offers a good baseline for all CMS employees and contractors who are looking for additional information about Zero Trust. The page also offers an FAQ section, which has questions that were submitted by actual CMS employees and answers directly from the Zero Trust team. 

For a quick explanation of the concept of Zero Trust Architecture, check out the video!

The ISPG website (CyberGeek) will continue to feature updates about the latest Zero Trust activities and policies. If you have questions for the Zero Trust team, you can use this form to submit your query.