How Will U.S. Cybersecurity Evolve Under Trump?

As the Trump administration steps into office, cybersecurity companies are closely watching every move. Each transition, speech, and policy announcement is being analyzed to uncover the administration’s plans for American cybersecurity.

The Trump team has already signaled its intent to roll back regulations it sees as barriers to innovation and market growth. Additionally, the "America First" policy is expected to take a tougher stance against foreign cyber threats, particularly from nations like China, with stricter sanctions and policies.

To understand the potential impact, we turned to cybersecurity experts who shared their thoughts on the future of regulations, national security, and the role of AI in cybersecurity.

Key Insights:

The administration is likely to intensify its focus on foreign cyber threats.

Countermeasures against state-sponsored cyberattacks from nations like China, Russia, and Iran could be prioritized.

Experts expect deregulation efforts to impact existing policies, including those involving AI and cybersecurity.

Agencies like CISA may play a crucial role in defense but require greater coordination across federal organizations.

Vulnerability disclosure programs could gain more attention, especially in addressing AI-related vulnerabilities.

A Strong Stance Against Foreign Threats

HackerOne, a U.S.-based company known for its ethical hacker community and federal partnerships, provided valuable insights. Ilona Cohen, the company’s Chief Legal and Policy Officer, shared her perspective:

“The previous Trump administration made cybersecurity threats from foreign actors a key focus, particularly targeting nations like Russia, China, and Iran. If this continues, we can expect even stronger efforts to counter foreign cyber aggression, possibly using both offensive and defensive strategies.”

Cohen also mentioned the likelihood of rolling back certain regulations, including AI policies introduced during Biden’s term. This could affect recent executive orders that sought to lease federal sites for hosting AI data centers.

“We anticipate the Trump administration to pause and review pending regulations from day one,” she said, acknowledging the political complexities of such moves.

Deregulation: A Double-Edged Sword

When it comes to deregulation, the question isn’t just about what will change, but also about what might remain untouched. Richard Caralli, Senior Cybersecurity Advisor at Axio, weighed in:

“This administration is likely to prioritize business interests, signaling a pro-business approach to deregulation aimed at boosting profits and economic growth.”

However, Caralli warned that deregulating critical infrastructure sectors could weaken cybersecurity efforts. Without incentives for improving incident response and disclosure, vulnerabilities may be left exposed.

Dr. Leila Powell, Head of Data at Panaseer, added:

“Organizations will increasingly feel the pressure to measure and demonstrate their security posture. This shift will reshape the role of Chief Information Security Officers (CISOs) as leaders face mounting regulatory and economic challenges.”

Maxime Lamothe-Brassard, Founder and CEO at LimaCharlie, described the evolving cybersecurity landscape:

“We’re seeing a transition from a ‘Wild West’ of unrestricted systems to more controlled and secure environments. It’s an inevitable move toward scalable cybersecurity practices.”

Will CISA Take the Lead?

Created during Trump’s first term, the Cybersecurity and Infrastructure Security Agency (CISA) has played a key role in managing risks to critical infrastructure. But what’s next for the agency?

Cohen from HackerOne suggested that CISA should focus more on cyber defense while scaling back disinformation-related initiatives.

Philip Lieberman, CEO of Analog Informatics, expressed concern over the lack of a unified national cybersecurity policy.

“There has never been a truly cohesive cybersecurity strategy. Each administration has added bits and pieces, like CISA, but we lack a clear direction,” Lieberman explained.

He emphasized the need for new directives for federal agencies and suggested that cybersecurity must become a priority in the national budget. Incentives for businesses investing in cybersecurity could also drive meaningful progress.

The Role of Ethical Hackers

In a landscape filled with cyber threats, ethical hackers may play a critical role in safeguarding systems. Tim Mackey, Head of Software Supply Chain Risk Strategy at Black Duck, highlighted the value of Coordinated Vulnerability Disclosure (CVD) programs:

“Bug bounties, hackathons, and penetration testing are essential components of a robust CVD program. These practices are invaluable in identifying vulnerabilities across both traditional and AI-driven systems.”

Cohen echoed this sentiment, stating that vulnerability disclosure practices have gained bipartisan support and are likely to expand under Trump’s administration.

“These tools will increasingly be applied to AI systems, ensuring their security aligns with national interests,” she said.

The Bottom Line

As Philip Lieberman put it, “President Trump is a disruptor, driven by his America First vision.” Yet, the challenge of creating a cohesive national cybersecurity policy remains daunting.

The path ahead is filled with uncertainty, but one thing is clear: the decisions made by this administration will shape the future of cybersecurity in America. Whether through deregulation, stronger countermeasures, or enhanced vulnerability programs, the nation’s security will depend on bold, thoughtful leadership.