What is the OMB Zero Trust strategy for?

Third-party risk management , Access management , Governance and risk management

John Kindervag, creator of Zero Trust, talks about the new federal strategy

Anna Delaney (annamadeline) •
February 15, 2022


John Kindervag, creator of Zero Trust and senior vice president of cybersecurity strategy, ON2IT

“Sound Off” is a new video series that explores a topic, in depth, with leaders in information security and privacy.

See also: Live Webinar | How to stop the four horsemen of the data loss apocalypse

On this week’s “Sound Off” program, we ask John Kindervag, the founder of Zero Trust, his reaction to the recently released federal strategy by the Office of Management and Budget to move the U.S. government toward a Mature Zero Trust.


Kindervag sees OMB’s decision as positive. “I think the significance is that they came out and called it strategy and understood the strategic resonance of Zero Trust. Too many people can’t see the strategic value of it,” he says.


But it includes a word of warning. “People have to understand that Zero Trust is not something binary, that you suddenly flip a switch and your whole environment is a Zero Trust environment. You have to do it in small pieces,” he says. He advises organizations to “start with a single protective surface” in order to “reduce the attack surface to something very small and easily known”.


In this episode of “Sound Off”, Kindervag explains:


  • The importance of the OMB strategy;

  • What to do and obstacles to avoid;

  • What he portends for the second decade of Zero Trust.


Kindervag is Senior Vice President of Cybersecurity Strategy and a member of the ON2IT Group at ON2IT Cybersecurity. Previously, he was Technical Field Manager at Palo Alto Networks. Previously, while working at Forrester Research, where he was vice president and principal analyst for the security and risk team, he created the Zero Trust model. He has also been a security consultant, penetration tester and security architect.

Comments are closed.