Pentagon CISO Accused Of Leaking Classified Intel

Katie Arrington, Chief Information Security Officer (CISO) for the Pentagon’s  Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD)  is being investigated by the Department of Defense. 

The top Pentagon official, who has been overseeing its new cyber security initiative, has been placed on indefinite leave following allegations that she disclosed classified information from a military intelligence agency without authorisation.

Arrington, a former South Carolina congressional candidate who went on to work for the Pentagon, was first placed on leave in May 2021. The US government has given no details of the allegations against her 

The National Security Agency, which is part of the Defense Department, gathers some of the nation’s most sensitive signals and eaves-dropping intelligence from foreign adversaries, mostly via satellite. "If this preliminary decision becomes final, you will not be eligible for access to classified information" or "assignments to duties that have been designated national security sensitive," a memo sent to Arrington from the OUSD said, according to Bloomberg.

Arrington's role included dealing with the cyber security requirements for the 300,000 companies that do business with the Pentagon.

According to her biography on the OUSD website, Arrington is the "central hub and integrator" in her post which requires her to "align acquisition and sustainment cyber strategy." It said she was also key to "efforts to enhance cyber security within the Defense Industrial Base." 

Her biography describes her as a mother of three and a grandmother of four who had "an extensive career as a legislator and senior cyber executive in private industry."  This included over 15 years of cyber experience from her positions at Booz Allen Hamilton and Dispersive Networks.

Former US Air Force officer and cyber security specialist has John Gartska taken up Arrington's post in an acting role.

Bloomberg:      Newsweek:       The Hill:      Nation:        CountOn2:     Post&Courier

You Might Also Read: 

Cyber Spying For A Future War:

 

« History, Robotics, Artificial Intelligence & Bio-Technology
Technical Debt Is A Serious Threat To Innovation »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Vertical Structure

Vertical Structure

Vertical Structure services include Security & Penetration Testing, Information Assurance, Bespoke Training Programs and Secure Hosting.

WhiteHat Security

WhiteHat Security

WhiteHat’s products enable customers to “Hack Yourself First” so that they gain a greater understanding of the actual risk to their business.

Kaseya

Kaseya

Kaseya is a premier provider of unified IT management and security software for managed service providers (MSPs) and small to medium-sized businesses (SMBS).

Potomac Institute for Policy Studies

Potomac Institute for Policy Studies

Potomac Institute undertakes research on key science, technology, and national security issues facing society, Study areas include cybersecurity.

CryptoCodex

CryptoCodex

Cryptocodex has developed Counter-Fight, the most advanced, yet simple to implement, counterfeit detection system.

OEDIV SecuSys

OEDIV SecuSys

OEDIV SecuSys (formerly iSM Secu-Sys) develops high-quality IT software solutions, setting standards as a technology leader in the area of identity and access management.

LeadingIT

LeadingIT

Leading IT provides IT support, cloud computing, email support, cybersecurity, networking and firewall services to Chicagoland businesses.

OptimEyes.ai

OptimEyes.ai

OptimEyes.ai is a unique AI-powered, on-demand SaaS solution for cyber-security, data privacy and compliance risk modeling.

Bit Sentinel

Bit Sentinel

Bit Sentinel is an information security company. We help companies like yours discover, prioritize, and effectively remediate potential cybersecurity risks.

Sekur Private Data

Sekur Private Data

Sekur Private Data Ltd. is a Cybersecurity and Internet privacy provider of Swiss hosted solutions for secure communications and secure data management.

ANSSI Burkina Faso

ANSSI Burkina Faso

ANSSI is responsible for managing the security of information systems and cyberspace in Burkina Faso.

iomart Group

iomart Group

iomart is a cloud computing and IT managed services business providing secure hybrid cloud, network connectivity, data management, and digital workplace capability.

Cool Waters Cyber

Cool Waters Cyber

Cool Waters Cyber manage cyber security governance, risk and compliance.

Acumen

Acumen

Acumen's cyber security engineers protect your critical systems, in critical moments. We are here when you need us most.

C/side (cside)

C/side (cside)

At c/side, we're creating the ultimate delivery, performance and detection mechanism for browser-side fetched 3rd party Javascript.

Quantum Bridge

Quantum Bridge

Our unbreakable key distribution technology ensures the highest level of protection for your critical infrastructure and sensitive data in an evolving digital landscape.