/
Army CIO Issues Interim Cybersecurity Guidance for Small UAS Operations
Published on
Army CIO Leonel Garciga. Leonel Garciga issued an interim cybersecurity guidance for small unmanned aircraft systems.

U.S. Army Chief Information Officer Leonel Garciga has issued interim cybersecurity guidance governing the operation and network connectivity of small unmanned aircraft systems, or sUAS, across the service.

Army CIO Issues Interim Cybersecurity Guidance for Small UAS Operations

The Potomac Officers Club’s 2026 Army Summit on June 18 will highlight how the Army’s transformation efforts are reshaping modernization and contracting priorities, providing industry leaders with insight into the service’s path toward its 2030 goals. Save your seat now!

What Is the Purpose of the Cybersecurity Guidance?

According to the memo issued Feb. 5, the policy establishes interim requirements for operating small UAS, defined as Group 1 and Group 2 systems weighing 55 pounds or less. The guidance is intended to establish new protocols for rapid procurement and fielding of drones while protecting the Department of War Information Network, or DoWIN, from cybersecurity threats.

What Are the Key Cybersecurity Rules?

Under the guidance, O-6 level commanders authorized to procure, test or train with sUAS must follow Army cybersecurity requirements governing network connectivity. Small UAS may not connect to DoWIN without both an authorization to operate and authority to connect. Systems operating in closed-loop or standalone configurations that do not interface with Army networks are exempt from formal authorization, provided other requirements are met.

Platforms on the Defense Innovation Unit and Defense Contract Management Agency Blue UAS Select list receive type-based authorization but still require approval to connect, while all other systems must complete the assess-and-authorize process through the Enterprise Mission Assurance Support Service, or eMASS.

What Systems & Organizations Are Covered by the Guidance?

The Army CIO, acting on behalf of the secretary of the Army, is responsible for setting policy, allocating resources and providing oversight for the Army Cybersecurity Program in accordance with Army Regulation, or AR, 25-2, titled Information Management: Army Cybersecurity, including issuing policy memoranda as needed to clarify or expand existing guidance. The policy applies across all headquarters, Department of the Army elements, Army commands, Army service component commands, direct reporting units and reserve components, regardless of duty status, but excludes small UAS used for intelligence gathering.

/
GAO Recommends Budget Certification Authority for Pentagon R&E Office
Published on
GAO logo. A GAO report says OUSD(R&E) needs stronger authority to oversee tech investments.

The Government Accountability Office is urging Congress to consider giving the Pentagon’s research and engineering office formal budget certification authority, arguing the change is needed to strengthen oversight of the Department of War’s technology investments and improve alignment across the military departments.

In a report published Thursday, GAO said the Office of the Under Secretary of Defense for Research and Engineering is generally executing its statutory roles—such as issuing the 2023 National Defense Science and Technology Strategy—but faces limitations in managing service-led science and technology efforts and in ensuring those investments align with DOW-wide priorities.

Why Does GAO Want Congress to Expand OUSD(R&E)’s Authority?

According to the watchdog, OUSD(R&E) is constrained in its ability to influence military department research, development, test and evaluation budgets. Officials noted that they often receive only top-line data and are given insufficient time to review detailed department submissions during the annual budget cycle

GAO framed the authority as a mechanism to require earlier and more complete budget submissions for review and to improve visibility into whether service budgets support DOW-wide technology priorities.

However, GAO said the Departments of the Army, Air Force and Navy disagreed with the idea. In its written comments, the DOW raised concerns that the added certification step could delay budget approval, reduce autonomy and increase workload.

What Issues Did GAO Flag in DOW’s Technology Planning and Road Maps?

GAO said the services’ science and technology strategies vary in how current they are and how closely they align with DOW’s S&T strategy, creating a risk that the military departments pursue technologies that do not match DOW’s vision.

The report also said OUSD(R&E) has not issued guidance for developing critical technology area roadmaps. GAO highlighted that without such oversight, road maps provide inconsistent details on infrastructure and the industrial base, undermining their utility for leaders tasked with guiding national investments.

GAO noted that OUSD(R&E) relies heavily on information from the military departments; however, officials estimated the office’s data collection efforts capture only about 70 percent to 80 percent of ongoing technology development projects, limiting oversight and coordination.

What Does GAO Want DOW to Do Next?

GAO made three recommendations to DOW, including directing each military department to develop S&T strategies that align with the National Defense S&T Strategy to the maximum extent practicable, issuing guidance for critical technology area roadmaps and providing guidance on the level of investment needed in each critical technology area to support road map alignment. DOW agreed with those recommendations.

The report comes as DOW’s fiscal year 2026 budget request includes nearly $180 billion for technology management and enhancement.

/
NIST Releases Concept Paper on AI Agent Identity, Authorization Controls
Published on
Artificial intelligence. NIST is soliciting feedback on the application of identity standards for AI agents.

The National Institute of Standards and Technology’s National Cybersecurity Center of Excellence is seeking public input on a new concept paper focused on how identity standards and access control practices should apply to software and artificial intelligence agents.

NIST’s National Cybersecurity Center of Excellence said Thursday the concept paper, titled “Accelerating the Adoption of Software and Artificial Intelligence Agent Identity and Authorization,” outlines a potential NCCoE project aimed at demonstrating how organizations can securely identify and authorize AI agents used to automate tasks across systems and data environments. Public comments will be accepted through April 2.

NIST Releases Concept Paper on AI Agent Identity, Authorization Controls

The Potomac Officers Club’s 2026 Artificial Intelligence Summit on March 18 convenes government and industry practitioners to explore how AI, machine learning and automation are reshaping federal operations. Discussions will focus on real-world implementation, mission-driven use cases and the challenges of deploying AI at scale across complex, security-focused environments. Register now.

Why Is NIST Looking at Identity and Authorization for AI Agents?

NIST said AI agents can autonomously perform tasks using data, algorithms and access to enterprise tools, creating opportunities for improved productivity and decision-making. However, the agency warned that expanding agent access to datasets and applications introduces risks that require stronger identification and authorization controls.

The concept paper emphasizes that organizations will need to apply identity standards and best practices to mitigate threats tied to AI agents operating with broad system privileges.

What Would the NCCoE Project Cover?

NIST said the potential project would focus on applying existing identity and access management standards to agentic architectures that use tools and context dynamically to take actions.

The agency noted the effort would not address all AI system architectures. The concept paper states that retrieval-augmented generation and large-language-model-only implementations are out of scope.

NIST said it is seeking input on use cases, technical challenges and existing standards that could guide secure agent identity and access management. Other areas of interest include AI agent auditing, non-repudiation and controls to mitigate prompt injection attacks.

What Standards Could Shape AI Agent Identity Controls?

The concept paper highlights multiple existing standards and frameworks that could inform the project, including OAuth, OpenID Connect, System for Cross-domain Identity Management, Secure Production Identity Framework for Everyone and SPIFFE Runtime Environment, and Next Generation Access Control.

NIST cited existing guidance, such as Special Publication 800-207, Zero Trust Architecture, and SP 800-63-4, Digital Identity Guidelines, as potential reference points.

/
HASC Chair Pushes $450B in Defense Funding, Cites DIB Expansion in FY27 NDAA
Published on
Rep. Mike Rogers. The HASC chairman said he is seeking $450 billion in defense funding through a reconciliation bill.

House Armed Services Committee Chairman Mike Rogers, R-Ala., said he is seeking $450 billion in defense funding through an upcoming reconciliation bill and preparing to use the fiscal year 2027 National Defense Authorization Act to expand the defense industrial base, Breaking Defense reported Wednesday.

In an exclusive interview with the publication, Rogers said he is coordinating with Senate Armed Services Committee Chairman Roger Wicker, R-Miss., to secure the funding and has already informed congressional leadership of the plan.

Why Is the $450B in Reconciliation Funding Important to the FY27 Defense Plan?

According to Rogers, the $450 billion figure is required to close the gap between a projected White House defense budget request and President Donald Trump’s FY27 defense spending target of $1.5 trillion.

The HASC chair acknowledged that passing such a measure could be challenging amid narrow Republican margins and a limited legislative window, with Democrats projected to regain control of the House in the upcoming midterm elections.

Despite those challenges, he said the funding increase is necessary to support the Golden Dome missile defense initiative, the Sentinel intercontinental ballistic missile program, the F-47 sixth-generation fighter aircraft and other major defense modernization programs.

How Is HASC Addressing the Defense Industrial Base Expansion in FY27 NDAA?

Rogers said HASC has begun work on the FY27 NDAA and is engaging commercial companies to identify barriers and incentives related to expanding the defense industrial base.

“That’s our question to these folks, and we’ve already started bringing them in and asking them, ‘What can we do to incentivize you to get into the defense production?’” the lawmaker told Breaking Defense. “Taking the traditionals and non-traditionals, what can we do to incentivize you to grow? [For] the primes, what can we do to incentivize you to expand?”

/
Los Alamos National Lab Launches Center for Quantum Computing
Published on
Quantum computing. LANL established the Center for Quantum Computing to consolidate quantum research capabilities.

The Department of Energy’s Los Alamos National Laboratory has established a new center that aims to unify and expand its quantum research capabilities across national security, quantum computer science, quantum algorithms and workforce development. 

Los Alamos National Lab Launches Center for Quantum Computing

As federal research organizations continue to advance cutting-edge computing capabilities, government and industry leaders are closely watching how innovation is reshaping the public sector. The Potomac Officers Club’s 2026 Digital Transformation Summit offers a forum to explore how agencies are navigating technological change and modernization across missions. Book your spot at this April 22 event!

What Initiatives Will the LANL Quantum Computing Center Support?

LANL said Tuesday the Center for Quantum Computing will support a range of state, federal and defense-focused initiatives and bring together up to three dozen quantum researchers from across the lab.

The center is expected to support LANL researchers who are engaged in several programs, such as the Defense Advanced Research Projects Agency’s Quantum Benchmarking Initiative, DOE’s Quantum Science Center and the National Nuclear Security Administration’s Advanced Simulation and Computing program, including its Beyond Moore’s Law project.

Headquartered in downtown Los Alamos, New Mexico, the facility will also host a 10-week fellowship program, called the Quantum Computing Summer School, designed to provide undergraduate and graduate students with instruction in core quantum computing concepts and hands-on experience using commercial quantum computers. The program enrolls up to 25 students each year.

What Did the LANL Leadership Say About the New Center?

Mark Chadwick, associate laboratory director for simulation, computing and theory, said the center will combine LANL’s quantum computing capabilities in support of DOE, the Department of War and New Mexico state initiatives. 

“This development highlights our commitment to supporting the next generation of U.S. scientific and technological innovation in quantum computing, especially as the technology can support key Los Alamos missions,” Chadwick added.

Carleton Coffrin, the lab’s quantum science coordinator, emphasized the collaborative benefits of the new center.

“I am thrilled to see these quantum computing teams coming together under one roof,” said Coffrin. “Each team is arguably world-leading in their specific domain expertise. An environment that fosters further collaboration and united effort will no doubt help our quantum computing teams achieve amazing things.”

What Other Quantum Initiatives Is DOE Advancing?

LANL’s quantum efforts are part of a broader DOE push to advance quantum information science across the U.S. research ecosystem. In November, DOE announced $625 million in funding to renew its five National Quantum Information Science Research Centers.

In December, the department’s Oak Ridge National Laboratory announced a memorandum of understanding with Purdue University to expand their research partnership in areas such as quantum computing, artificial intelligence and cyber-physical security of critical infrastructure and systems.

//
GAO Report Identifies 95 Cyber, IT Open Recommendations for State Dept CIO
Published on
Government Accountability Office logo. GAO issued a new report on Department of State recommendations

The Government Accountability Office has called on the Department of State’s chief information officer to address 95 open recommendations related to cybersecurity and IT acquisition and management.

In a report published Wednesday, the congressional watchdog said implementing the recommendations will enable the State Department to deter threats, improve programs, save taxpayer dollars and ensure compliance with relevant regulations.

GAO Report Identifies 95 Cyber, IT Open Recommendations for State Dept CIO

Explore the advanced technologies that agencies are using to modernize processes at the Potomac Officers Club’s 2026 Digital Transformation Summit on April 22. At the event, you will hear directly from government and industry leaders about ongoing initiatives and future strategies to harness cutting-edge tools to support mission execution. Get your tickets today.

What Are GAO’s Key Recommendations for the State Department?

GAO identified two priority recommendations that require immediate action.

The first priority recommendation calls for a department-wide risk portfolio to eliminate gaps in its understanding of cyberthreats and ensure that it can protect its systems.

The second priority recommendation is about validating that all IT systems are authorized to operate within the department.

GAO also urged the State CIO to implement technical security controls such as comprehensive event logging, complete annual reviews of its IT portfolio, develop strategies to attract and retain IT talent and consistently track software license usage.

Which Agencies Have Received CIO Recommendations From GAO?

GAO previously called on other agency chief information officers to address cybersecurity and IT management deficiencies. In a 2025 report, the watchdog urged the Treasury Department’s CIO to resolve 21 open recommendations tied to multifactor authentication implementation, event logging requirements, mobile device inventory management and other issues. GAO also recommended that Treasury ensure its artificial intelligence applications comply with Executive Order 13960.

GAO issued a similar guidance to the Small Business Administration, calling on the agency’s CIO to address 20 open recommendations designated as high risk. The recommendations for SBA include actions to strengthen privacy workforce management, improve project risk mitigation and resolve cybersecurity and IT control deficiencies.

/
Coast Guard’s 18th HC-130J Nears Delivery
Published on
US Coast Guard logo. The Coast Guard is completing final delivery activities for its 18th HC-130J aircraft.

The U.S. Coast Guard is finalizing delivery activities for its 18th mission-ready HC-130J long-range surveillance aircraft, marking continued progress in expanding and modernizing its fixed-wing aviation fleet.

The aircraft, designated CGNR 2018, is undergoing final delivery steps at L3Harris’ integrated mission systems facility in Waco, Texas, the Coast Guard said Wednesday. 

Upon acceptance, the aircraft will support the Coast Guard’s planned transition of Air Station Sacramento, California, from C-27J aircraft to the HC-130J platform later this year—the first expansion of HC-130J operations beyond the service’s current hubs in Elizabeth City, North Carolina; Kodiak, Alaska; and Barbers Point, Hawaii.

The Coast Guard plans to decommission all C-27J aircraft by the end of fiscal year 2028 following the cancellation of the HC-27J missionization program.

What Capabilities Are Integrated Into the HC-130J?

L3Harris is responsible for missionizing the baseline C-130J aircraft by integrating the Minotaur Mission System Suite along with Coast Guard-specific radar, sensors and communications systems.

The aircraft also incorporates enhancements delivered under Block Upgrade 8.1, including improved approach and landing systems, expanded diagnostics and civil GPS capability. The HC-130J can reportedly operate as an on-scene command and control platform or a surveillance asset, enabling crews to detect, classify and identify objects and share information.

How Is the Program Being Funded and Scaled?

The Coast Guard received $1.14 billion under the One Big Beautiful Bill Act to support procurement and acquisition of fixed-wing aircraft, including HC-130Js. With those funds, the service has appropriations for a total of 25 HC-130J aircraft, a simulator, initial spare parts and site activation for two more air stations.

An additional C-130J aircraft unit is under production at Lockheed Martin’s facility in Marietta, Georgia, with six more expected to be procured under a future contract. All will undergo Minotaur integration following delivery.

/
DOW Seeks Containerized Systems for Mass UAS Storage, Deployment
Published on
DOW seal. The Department of War issued a solicitation for the Containerized Autonomous Drone Delivery System, or CADDS.

The Department of War has released an area of interest solicitation for the Containerized Autonomous Drone Delivery System, or CADDS, initiative, according to the Defense Innovation Unit.

What Capabilities Is DOW Seeking?

The department is seeking transportable, containerized systems capable of storing, launching, recovering and refitting multi-agent unmanned aerial systems with minimal human interaction. These systems should enable persistent coverage or massed effects, while reducing crew requirements, increasing operator-to-robot ratios, and enabling rapid setup and relocation.

Preferred designs would automate core UAS functions, support both homogeneous and heterogeneous fleets and operate from land or maritime platforms using flexible power sources. Proposals should align with Modular Open Systems Approach principles, including compatibility with government-directed command architectures and resilient command and control in contested environments, and be demonstrable within 90 days of award.

What Challenge Is the DOW Addressing?

Current UAS deployment methods rely heavily on human operators, limiting speed and scale and increasing risk. This one-to-one operator-to-aircraft approach restricts the military’s ability to deploy large numbers of systems quickly during both kinetic and non-kinetic operations.

Award & Contract Structure

The effort will be executed through the DIU’s Commercial Solutions Opening using prototype other transaction agreements and is open to both U.S. and international vendors. Successful prototypes may transition directly to follow-on production agreements or contracts without additional competition, potentially enabling larger-scale adoption across the DOW.

//
White House, CISA Preview Cyber Strategy, CIRCIA Update & AI Security Initiatives
Published on
White House. White House and CISA officials outlined forthcoming cybersecurity policy initiatives.

Trump administration officials outlined a series of forthcoming cybersecurity policy initiatives, including a new national cyber strategy, updates to federal incident reporting rules and the development of an artificial intelligence security collaboration framework, Federal News Network reported Wednesday.

White House, CISA Preview Cyber Strategy, CIRCIA Update & AI Security Initiatives

Register now for the Potomac Officers Club’s 2026 Cyber Summit on May 21 to engage with top government and industry cyber leaders on zero trust, data security and the evolving threat landscape.

What Is Included In the New National Cyber Strategy?

During the Information Technology Industry Council’s Intersect Summit on Tuesday, White House National Cyber Director Sean Cairncross said the administration plans to release a new national cybersecurity strategy structured around six pillars.

According to Cairncross, the six pillars of the forthcoming strategy are:

  • Shaping adversary behavior
  • Regulatory environment and industry collaboration
  • Securing and modernizing the federal government
  • Securing critical infrastructure
  • Maintaining dominance in emerging technologies
  • Mitigating the cyber skills and workforce gap

What Is Changing With Cyber Incident Reporting?

The Cybersecurity and Infrastructure Security Agency is expected to release an update on the Cyber Incident Reporting for Critical Infrastructure Act, or CIRCIA. Nick Andersen, executive assistant director for cybersecurity at CISA, said CIRCIA, passed in 2022, requires critical infrastructure entities to report cyber incidents within 72 hours, but final regulations have not yet taken effect. Industry groups have raised concerns about the scope of the CIRCIA rule proposed in 2024, which the administration delayed until May 2026.

What New AI Security Efforts Are Underway?

The Department of Homeland Security plans to establish an AI Information Sharing and Analysis Center, or AI-ISAC, to coordinate AI-related threat intelligence across critical infrastructure sectors. In parallel, the Office of the National Cyber Director is developing an AI security policy framework intended to embed security into AI systems without slowing innovation.

Will DHS Launch a New CIPAC Successor?

There are plans to establish a replacement for the Critical Infrastructure Partnership Advisory Council, which DHS disbanded last year. The successor, tentatively called the Alliance of National Councils for Homeland Operational Resilience, or ANCHOR, is aimed at addressing gaps in the former council’s scope and structure.

/
House Bill Directs DOW to Create Defense Technology Hub Network
Published on
US Capitol. Bipartisan House lawmakers introduced legislation directing DOW to establish regional defense technology hubs.

A bipartisan group of House lawmakers has introduced legislation directing the Department of War to establish a nationwide network of regional defense technology hubs to accelerate emerging capabilities and strengthen the defense industrial base, the office of Rep. Wesley Bell, D-Mo., said Tuesday.

Bell introduced the Defense Technology Hubs Act of 2026 along with Deborah Ross, D-N.C., Richard Hudson, R-N.C., and Mark Messmer, R-Ind. 

What Would the Defense Technology Hubs Act Require DOW to Do?

The bill would require the DOW to establish the Defense Technology Hubs Program to designate and support regional hubs focused on emerging defense technologies. These hubs are designed to bridge the gap between development and operational use by fostering collaboration among universities, industry, nonprofits and local governments, while simultaneously driving workforce development and technology transition.

“At a time when our global adversaries are investing heavily in next-generation technologies, America must not just compete, but lead, in research, development, and innovation. That means building innovation capacity in regions across the country,” said Bell, a member of the House Armed Services Committee and the Defense Modernization Caucus.

The Defense Technology Hubs Act of 2026 has been endorsed by Greater St. Louis, a regional economic development organization.

How Does the House Bill Relate to Earlier Senate Action?

The House legislation follows the 2025 Senate introduction of a separate Defense Technology Hubs Act, which authorizes funding over several fiscal years to construct tech hubs in 10 regions across the United States.

That earlier proposal emphasized avoiding duplication of existing programs, setting eligibility standards for designated hubs and preventing participation by foreign entities. The House bill reflects similar goals focused on accelerating technology development and reinforcing the domestic defense innovation base.

1 25 26 27 28 29 2,703