A Return To Cybersecurity Duties

Kristi Noem is ready to shake up the nation’s cyber defense agency. In her Senate confirmation hearing on January 17, 2025, the South Dakota Governor outlined a bold vision for the Cybersecurity and Infrastructure Security Agency. She vowed to strip away its controversial ventures into political disinformation and election interference, refocusing it on its technical cybersecurity roots. But as the Biden administration’s last-minute executive order expands CISA’s mission, the question looms: Will Noem’s changes strengthen America’s defenses—or expose critical vulnerabilities during this transition?

CISA’s Mission: A Technical Cybersecurity Powerhouse

CISA was created in 2018 during President Trump’s first term to tackle escalating cyber threats to critical U.S. infrastructure. Its original mission was clear: act as a technical hub to secure power grids, water supplies, and other vital systems, while providing expertise to federal, state, and private partners.

CISA quickly became indispensable, excelling in highly technical areas such as:

• Malware Analysis: Neutralizing viruses, ransomware, and trojans.
• SQL Injection Mitigation: Protecting databases from malicious code designed to steal sensitive data.
• Vulnerability Scanning: Identifying weaknesses across critical infrastructure.
• Incident Response: Deploying expert teams to recover from cyberattacks.
• Network Forensics: Tracing and attributing digital threats.

Over the last four years, CISA has also tackled emerging challenges with notable success:

• Ransomware Mitigation: Leading initiatives like the Ransomware Vulnerability Warning Pilot, identifying thousands of vulnerabilities.
• Federal Cybersecurity Standards: Enhancing defenses after the devastating SolarWinds attack under Executive Order 14028.
• AI Safeguards: Developing protocols to secure artificial intelligence integration in critical systems under Executive Order 14110.
• National Cybersecurity Strategy: Partnering with the private sector to counter persistent threats.

But as CISA’s role expanded to include disinformation and election interference, its focus began to blur.

Noem’s Plan: Back To Basics

Noem’s vision for CISA is simple: return to core competencies and avoid politically charged controversies. She proposes a streamlined focus on:

• Defending Critical Infrastructure: Securing essential systems like power grids, water networks, and transportation.
• Providing Technical Expertise: Acting as a cybersecurity consultant for federal agencies and private companies.
• Coordinating Cyber Policy: Disseminating actionable threat intelligence and best practices to stakeholders.

“Determining what is or isn’t election interference is not CISA’s mission, nor is it their expertise,” Noem said during her hearing. She has argued that functions like combating disinformation should be handled by agencies such as the Federal Bureau of Investigation and Central Intelligence Agency, which are better equipped for such roles.

Her plan also aligns with broader government efficiency initiatives under the Department of Governmental Efficiency, better known as DOGE, led by Elon Musk and Vivek Ramaswamy. In this climate, eliminating non-core functions like misinformation oversight could streamline CISA while shielding it from potential budget cuts.

However, critics warn that this reset could create dangerous gaps. Hybrid threats like state-sponsored propaganda and extremist recruitment by groups such as ISIS and Al-Qaeda demand a coordinated response. Removing CISA from this equation, they argue, may weaken the nation’s ability to counter these digital threats.

Biden’s Last-Minute EO Move: A Test For Trump And Noem

Adding to the tension is President Biden’s recent executive order, issued just days before his term ended. This order broadens CISA’s responsibilities to include combating misinformation and assessing risks associated with emerging technologies.

How Noem and the incoming Trump administration handle this executive order remains to be seen. Will they modify it to align with Noem’s vision, scrap it altogether, or find a middle ground? The decision could significantly impact CISA’s role in shaping the nation’s cybersecurity strategy moving forward.

Terrorist Threats Loom: Will The US Be Ready?

The urgency of this debate is underscored by FBI Director Christopher Wray’s recent warning about the rapid radicalization of terrorists, both foreign and domestic. These actors are exploiting digital platforms to recruit, incite violence, and plan attacks, as evidenced by the New Year’s attack in New Orleans.

While Noem argues that such threats are best addressed by intelligence and law enforcement agencies, some worry that removing CISA from disinformation oversight could leave critical gaps in the nation’s defenses. The question is whether a leaner, more technically focused CISA will be able to collaborate effectively with the FBI, CIA, and other agencies to counter these evolving threats.

A New Chapter For CISA

Kristi Noem’s leadership at the Department of Homeland Security is poised to reshape CISA. With the rumored appointment of Sean Plankey as CISA’s next director, the agency is expected to reflect Trump-era priorities of technical focus and streamlined operations.

But Noem faces significant challenges. Balancing her vision with the expanded responsibilities outlined in Biden’s executive order will require careful navigation. Furthermore, the rising threat of hybrid warfare—where cyberattacks merge with propaganda and extremist activity—demands a nuanced strategy that ensures no gaps are left in the federal response.

CISA’s transformation under Noem’s guidance will shape the nation’s cybersecurity strategy for years to come. Whether her plan strengthens America’s defenses or leaves vulnerabilities for adversaries to exploit remains to be seen. One thing is certain: the stakes have never been higher in the increasingly digital battlefield of national security.