{"id":228829,"date":"2026-06-09T12:51:00","date_gmt":"2026-06-09T16:51:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/09\/new-cisa-directive-would-reshape-how-agencies-prioritize-cyber-risk-official-says\/"},"modified":"2026-06-09T14:35:36","modified_gmt":"2026-06-09T18:35:36","slug":"new-cisa-directive-would-reshape-how-agencies-prioritize-cyber-risk-official-says","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/09\/new-cisa-directive-would-reshape-how-agencies-prioritize-cyber-risk-official-says\/","title":{"rendered":"New CISA directive would reshape how agencies prioritize cyber risk, official says"},"content":{"rendered":"<p><a href=\"https:\/\/www.nextgov.com\/cybersecurity\/2026\/06\/new-cisa-directive-would-reshape-how-agencies-prioritize-cyber-risk-official-says\/414056\/\">New CISA directive would reshape how agencies prioritize cyber risk, official says<\/a><\/p>\n<p><a href=\"https:\/\/www.nextgov.com\/cybersecurity\/2026\/06\/new-cisa-directive-would-reshape-how-agencies-prioritize-cyber-risk-official-says\/414056\/\">https:\/\/www.nextgov.com\/cybersecurity\/2026\/06\/new-cisa-directive-would-reshape-how-agencies-prioritize-cyber-risk-official-says\/414056\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-09 12:51:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.nextgov.com\">www.nextgov.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points.<br \/>\nThe Cybersecurity and Infrastructure Security Agency plans to release a binding directive on Wednesday that tasks the federal government with rethinking how it manages risks to its networks and prioritizing cyber vulnerabilities that demand the most urgency, agency acting director Nick Andersen said.The goal is to push agencies to focus less on the sheer number of known cyber vulnerabilities and more on the risks those flaws pose if they\u2019re exploited by hackers, said Andersen, who added that the cyber community needs to \u201cbe okay with saying there are some systems that are less important than others.\u201d\u201cIf we try to say that everything is equally as important, then absolutely nothing\u2019s going to be important,\u201d he told an audience of industry professionals at a Tuesday event held by cybersecurity firm Axonious.\u201cIt\u2019s going to be really hard for us, if one day we have to have those hard conversations with people about how we knew better and how we didn\u2019t prioritize risk appropriately, how we didn\u2019t make the hard choices,\u201d he added.The remarks are an acknowledgment that agencies cannot protect every system equally through patch mandates, and must instead focus their often limited resources on the vulnerabilities and networks whose compromise could cause the greatest damage.Federal agencies are a constant target for hackers. For years, adversaries have compromised government systems for access to emails, employee records and other sensitive data.Government agencies also oversee industry sectors such as energy, healthcare, telecommunications and water, meaning their cyber staff must also weigh how disruptions could ripple across critical services.On the sidelines of the event, Andersen told reporters that artificial intelligence-backed cyber threats are one factor informing discussions around the directive, but he said CISA\u2019s work on the AI ecosystem still predates the release of powerful systems such as Anthropic\u2019s Mythos.The administration\u2019s approach to AI has shifted in recent months as officials confront a new class of cyber-focused models that can rapidly identify vulnerabilities across computer networks, becoming a major driver of discussions over how advanced AI systems could reshape both defensive and offensive cyber operations.President Donald Trump recently signed an AI security executive order that encourages developers to submit powerful new models to a 30-day government review before public release. On Friday, he signed a memorandum aimed at speeding up government use of advanced AI across the military and intelligence community.\u201cIs the [directive] a recognition that we\u2019re in a different dynamic environment with a shorter timeline to weaponization and exploitation? Yeah, that\u2019s certainly a part of it,\u201d Andersen said. \u201cBut well before these last couple of months, this is a conversation that we were having about this ever-shrinking window we have for addressing vulnerabilities today.\u201d\u00a0\u201cIt\u2019s too exceedingly easy for malicious cyber actors to be able to exploit [vulnerabilities] as soon as they\u2019re published and be able to take advantage of the fact that a lot of people are just not as well-resourced as we would like, and they\u2019re not as able to quickly have a continuous patch cycle to be able to address some of these devices,\u201d he added.<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>New CISA directive would reshape how agencies prioritize cyber risk, official says https:\/\/www.nextgov.com\/cybersecurity\/2026\/06\/new-cisa-directive-would-reshape-how-agencies-prioritize-cyber-risk-official-says\/414056\/ Publish Date:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":228830,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cdn.nextgov.com\/media\/img\/cd\/2026\/06\/09\/060926andersenNG\/open-graph.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,20,24,31],"class_list":["post-228829","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-artificial-intelligence","tag-cybersecurity","tag-exploit"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/228829"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=228829"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/228829\/revisions"}],"predecessor-version":[{"id":228831,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/228829\/revisions\/228831"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/228830"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=228829"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=228829"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=228829"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}