What it Looks like When Cybersecurity Leadership Fails

A great example of how uninformed leaders (in this case of cybersecurity) who does not understand the assignment and leaks sensitive data via an AI chat tool.

Even though the US Cybersecurity and Infrastructure Security Agency has a policy that forbids ChatGPT, because of the risks of data exposure, the new head of that agency lobbied for an exception and then accidentally leaked sensitive information when using the tool.
The obvious lead-by-example rules apply. If you are the head of an organization that creates and enforces security policy, you should understand why the polices exist and then follow them!

Incompetence can be embarrassing, but more importantly is now how everyone will question the leadership of the top cybersecurity agency that is tasked with protecting America’s critical infrastructures!

We must do better. It starts with having competent leadership.

https://arstechnica.com/tech-policy/2026/01/us-cyber-defense-chief-accidentally-uploaded-secret-government-info-to-chatgpt/