Cynthia Brumfield is a veteran communications and technology analyst who is currently focused on cybersecurity. She runs a cybersecurity news destination site, Metacurity.com, consults with companies through her firm DCT-Associates, and is the author of the book published by Wiley, Cybersecurity Risk Management: Mastering the Fundamentals Using the NIST Cybersecurity Framework.
Cynthia holds a Master of Planning Degree from the University of Virginia and a Bachelor’s degree from The George Washington University. She has won multiple AZBEE awards for her work on CSO, including two in 2025.
Trump’s 2026 budget would slash cyber spending by over $1 billion from 2024 levels, a move that could weaken federal defenses, shrink the cyber talent pipeline, and strip state and local governments of vital grant funding.
A new Trump executive order revises Biden’s last cyber EO to eliminate significant sections on digital IDs and secure software attestations, among other changes, but keeps much of Biden’s cyber protections in place.
Following their Senate confirmations, Sean Cairncross and Sean Plankey — Trump’s nominees for national cyber director and CISA director — will face shared challenges but different prospects in coping with unprecedented reductions in
CISOs should fortify help desk and employee defenses, enhance intrusion detection and tracking capabilities, and recognize that paying ransoms is not a viable strategy.
The SEC’s lawsuit against SolarWinds’ CISO highlights the legal liabilities CISOs can face when communicating. Here are four ways CISOs can avoid the pitfalls.
CISA’s high-profile proselytizing of its Secure by Design program will likely end, but some experts think the idea still has momentum in the private sector, while others have become disillusioned altogether.
After DHS did not renew its funding contract for reasons unspecified, MITRE’s 25-year-old Common Vulnerabilities and Exposures (CVE) program was slated for an abrupt shutdown on April 16, which would have left security flaw tracking in limbo. C
US President Donald Trump issued an executive order revoking the security clearance of Krebs and cybersecurity giant SentinelOne as retribution for the former CISA director’s defense of the 2020 election. The move holds significant implications