In a recent executive order, President Trump has rolled back key cybersecurity provisions established by the Biden administration, specifically targeting federal software acquisition rules and cybersecurity measures related to quantum computing and artificial intelligence. The order, issued on June 9, 2025, emphasizes a shift towards limiting cyber sanctions to foreign actors while removing stringent requirements imposed on software security practices. The directive amends previous cybersecurity orders from former presidents Joe Biden and Barack Obama, significantly altering the landscape of U.S. cybersecurity policy. Notably, it changes the language from “any person” to “any foreign person” regarding sanctions for malicious cyber activities, aiming to prevent potential political misuse. The order also sets deadlines for the Cybersecurity and Infrastructure Security Agency and the National Security Agency to enhance measures against emerging threats, particularly from quantum computing, which is expected to breach current digital systems. including the integration of artificial intelligence in vulnerability management processes.
Brett Leatherman, a seasoned FBI veteran with 22 years of experience, has been appointed as the assistant director to lead the FBI’s Cyber Division. This division is crucial to national security, focusing on investigating cybercrimes and counterintelligence efforts. In his announcement, Leatherman emphasized the division’s mission to make malicious cyber activity unsustainable by disrupting criminal and state-sponsored actors while supporting victims of cybercrime. He has played a significant role in high-profile investigations, notably targeting ransomware groups such as LockBit and addressing Chinese state-sponsored hacking operations. Leatherman takes over from Bryan Vorndran, who has led the Cyber Division since 2021, during a period of significant personnel changes within the FBI.
The Federal Communications Commission is currently operating with only two commissioners, raising concerns about its ability to govern effectively. The departure of key figures has left the commission without a quorum, which is essential for making significant regulatory decisions. With only two commissioners remaining, the FCC faces challenges in addressing critical issues such as broadband access and telecommunications policy. The agency typically requires a minimum of three members to conduct official business, and the ongoing vacancies could delay crucial initiatives. Currently, the commission is working to fill these positions to restore its full functionality.
Why do we care?
This is a signal to IT service providers: federal leadership on cybersecurity and digital infrastructure is weakening at a critical moment. While FBI operational capability remains solid under new leadership, policymaking is fracturing. MSPs will need to:
- Double down on client guidance—especially in interpreting overlapping or shifting cybersecurity compliance expectations.
- Proactively build their own standards of secure software vetting, rather than relying on government baselines.
- Watch for AI and quantum threat guidance at the technical agency level (e.g., NIST, NSA), as executive-level clarity diminishes.
Strategically, this moment is a reminder that service providers can’t passively follow policy—they must shape and enforce best practices independently to protect clients in an increasingly volatile threat landscape.
If you’re interested in learning more about Leatherman’s approach, he has been a guest on this show prior.