Pentagon CISO Accused Of Leaking Classified Intel

Katie Arrington, Chief Information Security Officer (CISO) for the Pentagon’s  Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD)  is being investigated by the Department of Defense. 

The top Pentagon official, who has been overseeing its new cyber security initiative, has been placed on indefinite leave following allegations that she disclosed classified information from a military intelligence agency without authorisation.

Arrington, a former South Carolina congressional candidate who went on to work for the Pentagon, was first placed on leave in May 2021. The US government has given no details of the allegations against her 

The National Security Agency, which is part of the Defense Department, gathers some of the nation’s most sensitive signals and eaves-dropping intelligence from foreign adversaries, mostly via satellite. "If this preliminary decision becomes final, you will not be eligible for access to classified information" or "assignments to duties that have been designated national security sensitive," a memo sent to Arrington from the OUSD said, according to Bloomberg.

Arrington's role included dealing with the cyber security requirements for the 300,000 companies that do business with the Pentagon.

According to her biography on the OUSD website, Arrington is the "central hub and integrator" in her post which requires her to "align acquisition and sustainment cyber strategy." It said she was also key to "efforts to enhance cyber security within the Defense Industrial Base." 

Her biography describes her as a mother of three and a grandmother of four who had "an extensive career as a legislator and senior cyber executive in private industry."  This included over 15 years of cyber experience from her positions at Booz Allen Hamilton and Dispersive Networks.

Former US Air Force officer and cyber security specialist has John Gartska taken up Arrington's post in an acting role.

Bloomberg:      Newsweek:       The Hill:      Nation:        CountOn2:     Post&Courier

You Might Also Read: 

Cyber Spying For A Future War:

 

« History, Robotics, Artificial Intelligence & Bio-Technology
Technical Debt Is A Serious Threat To Innovation »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

SealPath

SealPath

SealPath enables companies to protect and control their documents wherever they are: In their PC, in their corporate network, on a partner’s network, in the cloud.

Magic Software Enterprises

Magic Software Enterprises

Magic provide Mobile Device Management (MDM) for Secure Enterprise Mobility. Magic MDM overcomes the challenges of mobile device management security by protecting all of your devices, data and content

CERT-UA

CERT-UA

CERT-UA is the national Computer Emergency Response Team for Ukraine.

Nexusguard

Nexusguard

Nexusguard is at the forefront of the fight against malicious Internet attacks, protecting organizations worldwide from threats to their websites, services, and reputations.

CyberGhost

CyberGhost

CyberGhost is a Virtual Private Network services provider offering secure encrypted access to the internet.

Spire Solutions

Spire Solutions

Spire Solutions is the Middle East & Africa region’s leading cybersecurity solution provider and value-added distributor (VAD).

VIPRE Security Group

VIPRE Security Group

VIPRE Security Group is an award-winning global cybersecurity, privacy and data protection company.

National Cybersecurity Student Association (NCSA)

National Cybersecurity Student Association (NCSA)

The National Cybersecurity Student Association is a one-stop-shop to enhance the educational and professional development of cybersecurity students through activities, networking and collaboration.

German Israeli Partnership Accelerator (GIPA)

German Israeli Partnership Accelerator (GIPA)

GIPA is based on two pillars: it is an incubator aimed at young academics and a program to transfer cybersecurity expertise to corporate partners.

Absa Cybersecurity Academy

Absa Cybersecurity Academy

Absa Cybersecurity Academy is an initiative aimed at empowering marginalised South African youths to become certified cybersecurity specialists.

Traced

Traced

At Traced, our aim is to redefine mobile cyber security to provide the best possible protection to everyone against breaches of privacy and security.

Integrity

Integrity

Integrity is a PCI QSA and ISO 27001 certified company specialized in Information Security and IT Consulting.

Quad9 Foundation

Quad9 Foundation

Quad9 is a free security solution that uses DNS to protect your system against the most common cyber threats. It improves your system's performance, plus, it preserves and protects your privacy.

Onyxia Cyber

Onyxia Cyber

Onyxia's unique dynamic cybersecurity platform identifies gaps and prioritizes recommendations for proactive cybersecurity strategy, performance, remediation and management.

eGyanamTech (EGT)

eGyanamTech (EGT)

eGyanamTech provides robust security solutions tailored for Operational Technology (OT) and Supervisory Control and Data Acquisition (SCADA) systems used in critical infrastructure systems.

The Aerospace Corporation

The Aerospace Corporation

The Aerospace Corporation is playing a key role in advancing space cybersecurity through innovative prototypes that can quickly detect and mitigate cyber threats.