Hail to the Chief (Information Security Officer)

The White House has announced the appointment of the first Federal CISO (chief information security officer).

Brigadier General (retired) Gregory J. Touhill – the man who led the response to the 2015 OPM breach that affected 22.1 million people – is currently the deputy assistant secretary for cybersecurity and communications in the Department of Homeland Security’s Office of Cybersecurity and Communications.

Touhill will “lead a strong team within OMB [the Office of Management and Budget] who have been at the forefront of driving policy and implementation of leading cyber practices across federal agencies, and is the team that conducts periodic cyberstat reviews with federal agencies to insure that implementation plans are effective and achieve the desired outcomes.”

Greg Schneider, the director of cybersecurity policy on the National Security Council staff at the White House, will be the acting deputy CISO.

As the White House announcement concludes: “Strong cybersecurity depends on robust policies, secure networks and systems and, importantly, a cadre of highly skilled cybersecurity talent” – in other words, people, processes, and technology, the information security trinity that underpins the international standard, ISO 27001.