Cyber

HHS IT leader says agency still working to implement zero trust for all applications

George Chambers says the department is still working to establish continuous monitoring for all applications.

August 24, 2022

Ben Cushing from Red Hat (left) and HHS IT leader George Chambers (middle) converse with The Daily Scoop podcast host Francis Rose at FedTalks on Aug. 24 2022. (Image credit: Pepe Gomez / Pixelme Studio).

The Department of Health and Human Services is still figuring out how to implement zero-trust security across its divisions’ many applications, according to the executive director for app and platform solutions.

Speaking at FedTalks presented by FedScoop on Wednesday, George Chambers said the department continues to work on making information on who’s accessing its network, using what equipment, from what location actionable across apps to enable continuous monitoring.

HHS spent the last 15 to 20 years building walls between its various infrastructures it must now dissolve, all while responding to a global pandemic. The department requires zero-trust technologies from multiple vendors to meet its needs.

“I don’t believe that any agency, especially as federated as we are at HHS, is going to create a scenario where we go, ‘Here is your standard, we’re going to choose this and everyone is going to apply,’” Chambers said.

Instead leadership must provide some standards for managing multiple technologies departmentwide. Requiring a single standard for, say, identity management would be “naive,” Chambers said.

Different missions require different platforms, so HHS is investing in low-code and no-code solutions. But that creates other complications Chambers is trying to address by simultaneously buying application programming interface and access management tools, as well as standing up multiple cloud environments.

“All of those things allow us to get the flexibility to hit the endgame but still allow vendors and everybody to operate in that ecosystem,” Chambers said. “And it’s challenging as heck.”

HHS IT leader says agency still working to implement zero trust for all applications

More Like This

Federal cyber officials search for funding solutions to keep up with growing demands

White House official: Next phase of zero trust will focus on operations

Why agencies need to focus on modernizing public interaction over infrastructure

Top Stories

SSA database to flag synthetic identity fraud has cost issues, GAO finds

Data, talent, funding among top barriers for federal agency AI implementation

Government websites aren’t created equal. GSA’s 10x program aims to change that

Announcing the 2024 FedScoop 50

House Republicans probe NIST on facial recognition for federal digital identity verification

White House’s final ‘Trust Regulation’ aims to bolster confidence in federal statistics

CISA official: AI tools ‘need to have a human in the loop’

Login.gov announces availability for facial recognition technology

More Scoops

HHS exploring program management office support for departmentwide zero trust implementation

With shift to increased remote work and zero trust, NIH eyes cloud solution for identity

HHS, health information networks expect rollout of trusted data exchange next year: Micky Tripathi

Agencies finding their zero-trust priorities vary, funding needs less so

How agencies are moving zero trust from aspiration to transformation

Federal CIO Council working group addressing zero trust funding challenges: CISA cyber official

Agency leaders face a steep and costly road ahead in implementing zero-trust security

Latest Podcasts

A look at next week’s hearing on unidentified anomalous phenomena

Login.gov launches facial recognition option; the White House issues final Trust Regulation

HHS is working on a new AI strategic plan; Budget woes for government’s science and technology efforts

Meet the winners of the 2024 FedScoop 50; And, how the DOE sees itself counteracting the AI industry’s ‘profit motive’

Tech

Defense

Cyber

FedScoop TV