Increasing capacity to safeguard identity data
DEPARTMENT OF STATE (DOS): Safer identity management for engaging foreign partners
Challenge: DOS relies on maintaining trust for diplomatic interactions with foreign governments and partners. DOS leadership and IT system users face significant challenges with the current environment of multiple, unsynchronized Identity, Credential, and Access Management (ICAM) systems. User management occurs at the system level which has led to disjointed identity management efforts across the State enterprise. Many of the systems do not use phishing-resistant multifactor authentication, which helps prevent unauthorized use by adding an additional layer of user authentication. From an enterprise perspective, this decentralized environment creates a significant vulnerability that advanced, persistent threat actors seek to exploit.
Approach: With TMF support, DOS will use zero trust architecture to:
- Create a consolidated identity trust that manages identity and access in one place
- Automate onboarding and off-boarding workflows
This investment will:
- Provide agency users with a consistent credential management experience
- Strengthen DOS’ ability to uphold information security standards
- Ensure compliance with federal mandates for ICAM
- Investment start: 05/2024
- Project status: Active
- Transfer status: 100%
- Repayment status: 40%
- Schedule delay: No
- Cost overruns: No
- ARP funding: Yes
- Commercial product: Yes
- Total TMF investment amount: $13,100,000
- TMF spend to date (obligated): $13,100,000