The Department of Defense (DoD) has replaced outgoing CIO Dana Deasy with deputy CIO John Sherman, who will head up the DoD's cloud strategy until a long-term replacement is in place.
Sherman, who has served as the DoD's deputy CIO since June 2020, steps into the role Deasy left as America welcomed the Biden administration. Before that, Sherman was the intelligence community CIO, where he began in 2017 coordinating IT modernization across 17 agencies.
From 2014 to 2017, he was the Deputy Director of the CIA's Open Source Enterprise (OSE). In his role, Sherman enhanced the CIA's open-source intelligence (OSINT) initiative.
He’s also served at the National Geospatial-Intelligence Agency (NGA) and was the Deputy National Intelligence Officer for Military Issues on the National Intelligence Council.
Sherman will be the acting head until president Biden nominates an official long-term replacement. One of his biggest tasks will be assessing and mitigating the effects of the massive SolarWinds hack, which targeted the DoD and other agencies.
He’ll also pursue a digital modernization strategy his predecessor introduced for the DoD, focusing on cloud computing. Announced in 2019, the DoD cloud strategy envisions a multi-cloud, multi-vendor system that combines a general-purpose cloud infrastructure with multiple task-specific “fit-for-purpose” clouds.
The general-purpose cloud, known as the Joint Enterprise Defense Infrastructure (JEDI), will be accessible to the entire DoD and support the distribution of unclassified, secret, and top-secret documents. The JEDI contract sparked a vicious battle between tech companies. Oracle lost its appeal against the Pentagon's decision to award the project to Microsoft in October 2019. Amazon also unsuccessfully challenged the decision.
The DoD's cloud strategy has been in the works for several years following a 2017 memorandum from the Deputy Secretary of Defense that called for accelerated cloud adoption across the agency.
Sherman is no stranger to cloud-based modernization, having focused on enhancing cloud computing in his CIO role for the intelligence community. While there, he also bolstered its cyber security capabilities and improved interoperability between its 17 agencies.
His other responsibilities in his new role include advising the Secretary of Defense on non-intelligence space systems and critical programs for satellite communications, navigation, and timing programs, along with radio spectrum and other telecommunications issues.
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
UK cyber experts on red alert after Salt Typhoon attacks on US telcosAnalysis The UK could be next in a spate of state-sponsored attacks on telecoms infrastructure
-
Healthcare data breaches are out of control – here's how the US plans to beef up security standardsNews Changes to HIPAA security rules will require organizations to implement MFA, network segmentation, and more
-
The US could be set to ban TP-Link routersNews US authorities could be lining up the largest equipment proscription since the 2019 ban on Huawei networking infrastructure
-
US government IT contractor could face death penalty over espionage chargesNews The IT pro faces two espionage charges, each of which could lead to a death sentence or life imprisonment, prosecutors said
-
US identifies and places $10 million bounty on LockBit, Hive ransomware kingpinNews Mikhail Pavlovich Matveev was linked to specific ransomware attacks, including a 2021 raid on the DC police department
-
Breach at US Transportation Department exposes 240,000 employee recordsNews An investigation is underway into the breach, which affected former and current employee data
-
IRS mistakenly publishes 112,000 taxpayer records for the second timeNews A contractor is thought to be responsible for the error, with the agency reportedly reviewing its relationship with Accenture
-
US begins seizure of 48 DDoS-for-hire services following global investigationNews Six people have been arrested who allegedly oversaw computer attacks launched using booters
