Trump administration issues first cybersecurity executive order: What you need to know

On 6 June, the U.S. Trump administration issued its first cybersecurity-focused executive order and a Fact Sheet summarizing associated key policies and directives.

According to Sustaining Select Efforts to Strengthen the Nation's Cybersecurity and Amending Executive Order 13694 and Executive Order 14144, the Trump Administration intends to focus cybersecurity efforts on defending digital infrastructure, combatting foreign cyber threats, reducing fraud and abuse, promoting private sector innovation of artificial intelligence and effectively securing services and capabilities within the digital domain.

In recognition of the increased sophistication and proliferation of cyber threats, the executive order calls for federal agencies to revamp incident response protocols, conduct routine cybersecurity drills and enhance transparency around cyber incidents affecting federal operations. In addition, it directs federal agencies to revise their cybersecurity frameworks with a focus on prioritizing zero-trust architectures and deploying advanced threat-detection systems.

Overview of the executive order's directives

The executive order contains several new and revised directives impacting multiple federal agencies and departments, including: the Cybersecurity and Infrastructure Security Agency, Department of Defense, Department of Energy, Department of Homeland Security, National Institute of Standards and Technology, National Security Agency, National Science Foundation, Office of the National Cyber Director, Office of the Director of National Intelligence, Office of Management and Budget and Office of Science and Technology Policy.

The chart below provides an overview of the cybersecurity executive order's key directives and their corresponding deadlines.