Pentagon CISO Accused Of Leaking Classified Intel

Uploaded on 2021-07-05 in INTELLIGENCE--USA, GOVERNMENT-Defence, FREE TO VIEW

Katie Arrington, Chief Information Security Officer (CISO) for the Pentagon’s  Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD)  is being investigated by the Department of Defense. 

The top Pentagon official, who has been overseeing its new cyber security initiative, has been placed on indefinite leave following allegations that she disclosed classified information from a military intelligence agency without authorisation.

Arrington, a former South Carolina congressional candidate who went on to work for the Pentagon, was first placed on leave in May 2021. The US government has given no details of the allegations against her 

The National Security Agency, which is part of the Defense Department, gathers some of the nation’s most sensitive signals and eaves-dropping intelligence from foreign adversaries, mostly via satellite. "If this preliminary decision becomes final, you will not be eligible for access to classified information" or "assignments to duties that have been designated national security sensitive," a memo sent to Arrington from the OUSD said, according to Bloomberg.

Arrington's role included dealing with the cyber security requirements for the 300,000 companies that do business with the Pentagon.

According to her biography on the OUSD website, Arrington is the "central hub and integrator" in her post which requires her to "align acquisition and sustainment cyber strategy." It said she was also key to "efforts to enhance cyber security within the Defense Industrial Base." 

Her biography describes her as a mother of three and a grandmother of four who had "an extensive career as a legislator and senior cyber executive in private industry."  This included over 15 years of cyber experience from her positions at Booz Allen Hamilton and Dispersive Networks.

Former US Air Force officer and cyber security specialist has John Gartska taken up Arrington's post in an acting role.

Bloomberg:      Newsweek:       The Hill:      Nation:        CountOn2:     Post&Courier

You Might Also Read: 

Cyber Spying For A Future War:

 

« History, Robotics, Artificial Intelligence & Bio-Technology
Technical Debt Is A Serious Threat To Innovation »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

BSI Group

BSI Group

BSI is the business standards company that equips businesses with the necessary solutions to turn standards of best practice into habits of excellence

Juniper Networks

Juniper Networks

Juniper Networks is the industry leader in network innovation. We provide network infrastructure and network security solutions.

Latvian Information & Communications Technology Association (LIKTA)

Latvian Information & Communications Technology Association (LIKTA)

LIKTA brings together leading Latvian companies, organizations and professionals in the field of Information & Communications Technology

Centre for the Protection of National Infrastructure (CPNI)

Centre for the Protection of National Infrastructure (CPNI)

CPNI works with the National Cyber Security Centre (NCSC), Cabinet Office and lead Government departments and agencies to drive forward the UK's cyber security programme to counter cyber threats.

Recorded Future

Recorded Future

Recorded Future arms security teams with threat intelligence powered by patented machine learning to lower risk.

Riscure

Riscure

Riscure is a global test lab and tools leader for device security. Core expertise in side channel analysis, fault injection and embedded device software.

Abnormal Security

Abnormal Security

Abnormal is an API-based email security platform providing protection against the entire spectrum of targeted email attacks.

Cyber Range Solutions (CRS)

Cyber Range Solutions (CRS)

CRS provides cyber security training and improve security team performance by providing a hyper realistic, virtual training environment.

MedSec

MedSec

MedSec is the only company of its type focused solely on cybersecurity for hospitals and medical device manufacturers, offering both a cybersecurity software solution and consulting services.

Gravitee

Gravitee

Gravitee helps organizations manage and secure their entire API lifecycle with solutions for API design, management, security, productization, real-time observability, and more.

Binalyze

Binalyze

Binalyze is the world's fastest and most comprehensive enterprise forensics solution. Our software helps you to collaborate and complete incident response investigations quickly.

ConductorOne

ConductorOne

ConductorOne is building the identity security platform for the modern workforce.

Wired Assurance

Wired Assurance

Wired Assurance is a testing and assurance company, specialized in software applications and blockchain smart contracts.

Silobreaker

Silobreaker

Silobreaker is a SaaS platform that enables threat intelligence teams to produce high-quality and relevant intelligence at a faster pace.

AppSentinels

AppSentinels

Appsentinels are a group of security and technology experts with a mission to fix gaps in application security.

Axoflow

Axoflow

Axoflow helps organizations to consolidate their existing solutions for logs, metrics, and traces, and evolve them into a cloud native observability infrastructure.