U.S. Public Sector Moves Toward Zero Trust Security

Federal mandates accelerate adoption of identity-first cybersecurity across hybrid environments, ISG Provider Lens® report says

U.S. public sector organizations are strengthening cybersecurity as federal requirements mandate deeper integration of security into IT environments for mission assurance and operational resilience, according to a new research report published today by Information Services Group (ISG) (Nasdaq: III), a global AI-centered technology research and advisory firm.

The 2026 ISG Provider Lens® Cybersecurity — Services and Solutions report for the U.S. Public Sector finds that cybersecurity priorities are increasingly centered on mission continuity and agencies are shifting from perimeter-based to identity-centric, zero trust architectures. Recent federal orders and guidelines are redefining security procurement, architecture and operational priorities to help ensure agencies maintain secure operations across classified and unclassified systems.

“Zero trust has become a strategic objective for government agencies and will be widely implemented over the next 24 months,” said Nathan Frey, ISG partner and Public Sector lead. “Mission success increasingly depends on integrating identity, continuous validation and hybrid security into day-to-day operations while maintaining uninterrupted delivery of public services.”