{"id":192128,"date":"2026-03-02T14:00:00","date_gmt":"2026-03-02T19:00:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/02\/agencies-aim-to-harness-ai-for-cyber-defense\/"},"modified":"2026-03-02T14:15:11","modified_gmt":"2026-03-02T19:15:11","slug":"agencies-aim-to-harness-ai-for-cyber-defense","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/02\/agencies-aim-to-harness-ai-for-cyber-defense\/","title":{"rendered":"Agencies aim to harness AI for cyber defense"},"content":{"rendered":"

Agencies aim to harness AI for cyber defense<\/a><\/p>\n

https:\/\/federalnewsnetwork.com\/federal-insights\/2026\/03\/agencies-aim-to-harness-ai-for-cyber-defense\/<\/a><\/p>\n

Publish Date: 2026-03-02 14:00:00<\/a><\/p>\n

Source Domain: federalnewsnetwork.com<\/a><\/p>\n

Author: <\/a><\/p>\n

Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n

The Trump administration\u2019s national cyber strategy is likely to put a premium on using artificial intelligence to better secure federal networks.
\nNational Cyber Director Sean Cairncross and other officials from his office have emphasized how AI is a key facet of the forthcoming strategy, including an emphasis on how agencies secure AI use cases and how federal cyber defenders can use AI to improve information security practices across government.
\nThe AI issue has become another major challenge for chief information officers and chief information security officers. The Government Accountability Office already lists \u201csecuring federal systems and data\u201d as one of four major cybersecurity challenges facing the government. Over the years, GAO has documented how agencies have struggled to address weaknesses in their cybersecurity programs and improve their response to critical cyber incidents.
\nBrandon Wales, the former deputy director at the Cybersecurity and Infrastructure Security Agency, said AI is now deepening those challenges in many respects. \u00a0Wales is now vice president for cybersecurity strategy at SentinelOne.
\n\u201cAI has just been layered on top of all this as an accelerant, making all of it harder,\u201d Wales said on Federal News Network. \u201cMore demands on CIOs and CISOs to bring in AI tools. At the same time, securing those tools and securing against AI enabled attacks is making that job harder. So all of that sits on the backs of CIOs and CISOs across the government, and it is an immense challenge.\u201d
\nBut Wales said agencies do have resources, such as CISA\u2019s cyber services and the Technology Modernization Fund, to help them modernize legacy systems and update their approach to cybersecurity.
\n\u201cThey need to figure out a strategy for how they\u2019re going to modernize their environments, how they\u2019re going to get to more modern tools, because those are the ones that are going to unlock both the security and productivity benefits they want,\u201d Wales said.
\nWith a persistent gap of cyber talent, Wales said AI technologies will help cybersecurity teams \u201caccomplish more,\u201d in his view.
\n\u201cWe really think that the marriage of technology and automation with human creativity and human ingenuity is a real game changer for the cybersecurity of the future,\u201d Wales said.
\nEvent logging
\nFederal agencies and industry are actively exploring how AI can improve their cybersecurity practices. Wales discussed the possibility for AI to improve analysis of network activity and potential cyber threats.
\nOver the last several years, agencies have been working to improve their ability to investigate and remediate cybersecurity incidents through log management.. The Office of Management and Budget directed agencies to adopt more stringent security logging requirements in the aftermath of the SolarWinds hack.
\nhttps:\/\/www.whitehouse.gov\/wp-content\/uploads\/2021\/08\/M-21-31-Improving-the-Federal-Governments-Investigative-and-Remediation-Capabilities-Related-to-Cybersecurity-Incidents.pdf
\n\u201cComing out of SolarWinds, one of the things we really saw was that the inconsistent logging of security information was one of the reasons why agencies were kind of slow to detect potential challenges, both from SolarWinds and from other incidents,\u201d Wales said. \u201cIt hampers your ability to do good forensics, understand where the adversary is, take action. And this is not just a problem in government. This is a problem that affects everyone.\u201d
\nIn the years since the 2021 OMB directive, agencies have made strides in their event logging. But Wales said it is a good time to re-examine those requirements to ensure agencies are getting the best value.
\n\u201cMy understanding is OMB wants to kind of re-examine that, and I think that\u2019s very healthy,\u201d Wales said. \u201cYou want to continue to make sure that you are storing the right information, because that comes at a cost. Anytime you\u2019re having to store large amounts of logs, the funding that that requires potentially impacts your ability to put that money elsewhere that could have potentially more security benefits.\u201d
\nWales said AI could help cybersecurity analysts \u201cget more out of your security information.\u201d
\n\u201cThis is going to be an ongoing conversation in the cybersecurity community,\u201d he added.
\nCISA\u2019s role
\nWales\u2019 old agency, CISA, will also play a key role in how agencies adopt AI for security purposes. CISA\u2019s Continuous Diagnostics and Mitigation program provides agencies with a uniform set of security tools.
\n\u201cBefore CDM, that didn\u2019t really exist,\u201d Wales said. \u201cYou\u2019d have a lot more inconsistency in what federal agencies deployed, less ability to further integrate that information up and and it was just inconsistent security practices. That\u2019s really changed in the in the 15 years since the CDM program has been in place.\u201d
\nWales said CISA will \u201chave to adapt the CDM program to make sure it\u2019s continuing to provide the right level of security tooling.\u201d
\nCISA also provides cybersecurity guidance to federal agencies, as well as state and local governments and critical infrastructure.
\n\u201cThis is their job to look at what\u2019s challenging cybersecurity professionals today and figure out, how do we provide them better information to do their jobs, to get the kind of security outcomes we all want,\u201d \u00a0Wales said.
\nCISA also provides technical support to federal agencies through programs like the \u201cPersistent Access Capability,\u201d which allows CISA to hunt for potential intruders across federal networks.
\n\u201cCISA has visibility into some of the telemetry coming off of those so that they can actually correlate information that they\u2019re seeing at the boundary of federal agencies from network traffic, that they\u2019re looking at the intelligence picture and coupling that together with what\u2019s happening on agency networks,\u201d Wales said. \u201cFusing all that information to help identify where there is an incident and where there are potential threats, and ow do you mitigate them very quickly. CISA has an important role, and I think it\u2019s only going to get stronger in the years.\u201d
\n Copyright
\n \u00a9\u00a02026 Federal News Network. All rights reserved. This website is not intended for users located within the European Economic Area.<\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

Agencies aim to harness AI for cyber defense https:\/\/federalnewsnetwork.com\/federal-insights\/2026\/03\/agencies-aim-to-harness-ai-for-cyber-defense\/ Publish Date: 2026-03-02 14:00:00 Source Domain:…<\/p>\n","protected":false},"author":1,"featured_media":192129,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/federalnewsnetwork.com\/wp-content\/uploads\/2026\/02\/SentinelOne-Vwp-ss.png","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,20,24],"class_list":["post-192128","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-artificial-intelligence","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/192128"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=192128"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/192128\/revisions"}],"predecessor-version":[{"id":192130,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/192128\/revisions\/192130"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/192129"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=192128"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=192128"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=192128"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}