Federal and public sector IT leaders are adopting Zero Trust or least-privilege security strategies and deploying micro-segmentation as a foundational component in order to keep up with FISMA, NIST, DHS, and OMB mandates to identify their high value assets (HVA), map their dependencies, and take steps to reduce the attack surface via segmention.
Government mandates and guidelines such as DHS Binding Operational Directive 16-01 and OMB Memorandum M-17-09 require government IT leaders to identify their HVAs so that they can better understand their risk and vulnerability, and then take steps to reduce their attack surface. To effectively secure HVAs, agencies need to be aware of and have a plan for addressing the following challenges:
To effectively secure HVAs, government IT leaders are shifting their mindset from detection and prevention to containment and remediation – also known as cyber resiliency. The focus is on limiting the ability of bad actors to take advantage of compromised hosts as entry points to traversing the internal network and reaching HVAs. Adopting a Zero Trust security architecture and using micro-segmentation as a foundational component is quickly becoming good hygiene.
The Illumio Adaptive Security Platform® (ASP) offers federal and public sector agencies the following benefits:
Illumio ASP delivers micro-segmentation as a foundation of Zero Trust security:
Illumio ASP enables federal and public sector agencies to use existing infrastructure investments to meet compliance regimens instead of re-architecting environments and introducing more networking infrastructure. By programming the layer 3/layer 4 stateful firewalls native to each host OS, you can eliminate cost and management overhead.
Illumio ASP optimizes policies and programs rules for the following enforcement points: