Bipartisan calls to put in place a national cybersecurity director in the White House are gaining steam on Capitol Hill two years after a similar position was eliminated.
The support comes after months of increasing cyberattacks against everything from hospitals to research groups to federal agencies during the COVID-19 pandemic, and as lawmakers look to bolster federal cybersecurity as more Americans move online.
In the latest high-profile incident, several prominent Twitter accounts, including those of former Vice President Joe BidenJoe BidenTexas announces election audit in four counties after Trump demand Pennsylvania AG sues to block GOP subpoenas in election probe House passes sweeping defense policy bill MORE and former President ObamaBarack Hussein ObamaTop nuclear policy appointee removed from Pentagon post: report Prosecutors face legal challenges over obstruction charge in Capitol riot cases Biden makes early gains eroding Trump's environmental legacy MORE, were compromised Wednesday in what appeared to be a bitcoin scam.
The push also comes ahead of the elections in November as the country continues to deal with the fallout from Russian meddling in 2016, which included hacking emails from Democratic nominee Hillary ClintonHillary Diane Rodham ClintonHeller won't say if Biden won election Whitmer trailing GOP challenger by 6 points in Michigan governor race: poll GOP political operatives indicted over illegal campaign contribution from Russian national in 2016 MORE's campaign.
“A national cyber director would better protect the country in cyberspace, and we must make sure we are prepared for and can respond effectively to cybersecurity incidents of national consequence,” Rep. Jim LangevinJames (Jim) R. LangevinBipartisan House group introduces legislation to set term limit for key cyber leader House panel approves B boost for defense budget Democratic lawmakers urge DHS to let Afghans stay in US MORE (D-R.I.) told The Hill on Wednesday.
Langevin is among a group of bipartisan House members who introduced legislation last month to create a Senate-confirmed position of national cybersecurity director at the White House. The director would serve as the president’s advisor on cybersecurity and other emerging technology issues, and the official would work to coordinate cybersecurity issues between agencies.
The position of White House cybersecurity coordinator, previously held by Rob Joyce, was cut in 2018 by former national security adviser John BoltonJohn BoltonOvernight Defense & National Security — Milley becomes lightning rod Joint Chiefs Chairman Milley becomes lightning rod on right Ex-Trump adviser Bolton defends Milley: 'His patriotism is unquestioned' MORE in an effort to decrease bureaucracy after the position was first created under Obama.
The decision led to bipartisan pushback on Capitol Hill, with members of Congress expressing extreme concern over the lack of a central figure to coordinate federal cybersecurity priorities.
The push to reestablish the position comes as cybersecurity concerns have intensified. The 2019 Worldwide Threat Assessment compiled by former Director of National Intelligence Daniel Coats listed cybersecurity as the top global threat, noting that every U.S. foreign adversary would likely seek to undermine American policies through cyberattacks and influence operations.
Congress is considering reinstating the position with greater authority to ensure federal coordination in responding to a similarly disruptive nationwide cyberattack.
The House Oversight and Reform Committee held a hearing to evaluate the necessity of carving out a position of national cybersecurity director at the White House, with committee Chairwoman Carolyn MaloneyCarolyn MaloneyHouse Oversight demands answers on CBP's treatment of Haitian migrants House panel to examine states' abortion restrictions, hear from three congresswomen who've had abortions Overnight Defense & National Security: US-Australian sub deal causes rift with France MORE (D-N.Y.) throwing her support behind the proposed bill.
“A challenge as complex and pervasive as cybersecurity requires that our government be strategic, organized and ready,” Maloney said during the hearing. “Democrats and Republicans agree we need a national cyber director to ensure we are fully prepared for, and coordinated in, our response to cyberattacks as our nation fights this silent war.”
The legislation was introduced after the position of a national cyber director was proposed in a report from the Cyberspace Solarium Commission published in March. The commission was established by Congress and is made up of members of Congress, federal officials and industry leaders, who are charged with submitting recommendations to defend the U.S. in cyberspace.
Langevin and Rep. Mike GallagherMichael (Mike) John GallagherHillicon Valley — Presented by Xerox — Tech groups take aim at Texas Republican lawmakers raise security, privacy concerns over Huawei cloud services Overnight Defense & National Security — Presented by AM General — Afghan evacuation still frustrates MORE (R-Wis.) are members of the Cyberspace Solarium Commission, with Gallagher serving as co-chair alongside Sen. Angus KingAngus KingRep. Tim Ryan becomes latest COVID-19 breakthrough case in Congress Senate backers of new voting rights bill push for swift passage Stacey Abrams backs Senate Democrats' voting rights compromise MORE (I-Maine).
Gallagher, who is a co-sponsor of the legislation to create a cyber director position, testified to the Oversight committee on Wednesday that the position would likely necessitate at least 75 new staffers and a budget of between $10 million and $15 million, which Gallagher noted was “consistent” with other Senate-confirmed offices in the executive branch.
Committee ranking member James ComerJames (Jamie) R. ComerOvernight Defense & National Security: US-Australian sub deal causes rift with France Oversight Republicans seek testimony from Afghanistan watchdog Republican requesting data, notes, emails in intelligence report on COVID-19 origins MORE (Ky.) and other committee Republicans expressed support for the idea of the position, but were cautious about potentially creating more bureaucracy at the federal level.
“We cannot afford to introduce inefficiencies or bureaucratic hurdles to the government’s ability to respond to a national cybersecurity incident in real time,” Comer said. “I want to ensure that we are not fostering redundant efforts across the cybersecurity sector.”
But Gallagher and former Rep. Mike RogersMichael (Mike) Dennis RogersHouse passes sweeping defense policy bill After messy Afghanistan withdrawal, questions remain Congress should control its appetite for legacy programs when increasing defense budget MORE (R-Mich.), who served as House Intelligence Committee chairman, testified Wednesday that the need for a central figure at the White House to coordinate cybersecurity issues was of more importance.
“We in Congress must sufficiently enable the federal government to create a sufficient cybersecurity plan,” Gallagher said. “When we fight, we will fight with all elements as one single, concentrated effort.”
Rogers said he had initially been opposed to the idea, but was forced to “eat crow” as he came around to supporting the measure, pointing to the need to coordinate cyber operations between the various agencies such as the Department of Homeland Security and the National Security Agency.
“There is not one person, no organization set over top of it that says ‘I am going to be either the cavalry to help you in your deficiencies or I’m going to help you find out what’s wrong and how we fix it in a short order,’ ” Rogers said. “Nothing is steering that, so yes, we’re going to need help or the fact is we are going to have incidents.”
Langevin told The Hill that he would seek to attach the bill as an amendment to the annual National Defense Authorization Act (NDAA), which the House is set to debate next week.
While the bill has not been proposed in the Senate, Senate Homeland Security Committee Chairman Ron JohnsonRonald (Ron) Harold JohnsonLiberal group launches campaign urging Republicans to support Biden's agenda Domestic extremists return to the Capitol GOP senator: Buying Treasury bonds 'foolish' amid standoff over debt ceiling, taxes MORE (R-Wis.) has expressed support for the idea. Langevin noted that more support may emerge from a Senate Armed Services Committee hearing on the Cyberspace Solarium Commission set to take place in upcoming weeks.
But the legislation may face pushback from the White House. Langevin said that while he and other sponsors were “reaching out” to the Trump administration for feedback, there had been no response.
The bill does have support from Michael Daniel, who served as White House cybersecurity coordinator for five years during the Obama administration.
“The government’s capabilities must catch up to and keep pace with society’s growing digital dependence,” Daniel, who currently serves as president and CEO of the Cyber Threat Alliance, testified to the committee Tuesday. “We do not have the luxury of waiting another 10 or 15 years for the issue to mature.”
The private sector has also voiced support establishing the role within the White House.
The U.S. Chamber of Commerce sent a letter to Congress on Tuesday describing the position as a way to “send a signal to the public, including U.S. allies, that the White House prioritizes cybersecurity in the attention of the National Security Council and the president.”
“Congress’ leadership is crucial as the business community collaborates with policymakers to strengthen the cybersecurity of American businesses and governmental bodies against malicious actors,” the Chamber wrote.
Amit Yoran, chairman and CEO of software group Tenable, told The Hill on Wednesday that cybersecurity was “one of the most important issues of our time,” expressing concern that there was no central coordinating official.
“This is a national security issue, but it’s also an economic security issue, and it’s a social issue, and it’s a privacy issue,” Yoran said. “Not having a focal point at the White House ... is nonsensical to me.”