Jeff Greene’s Journey at CISA: Navigating Challenges and Building Cybersecurity Partnerships

Jeff Greene’s tenure as the Executive Assistant Director for Cybersecurity at the Cybersecurity and Infrastructure Security Agency (CISA) began with an unexpected twist. On his first day back in June, Greene faced an unfortunate accident at home, tripping down the stairs and breaking his left arm. Arriving at work with his nondominant arm in a sling and sporting a few bumps and bruises, Greene’s initial experience was far from what he had envisioned.

A Humbling Start

Greene humorously reflected on his first few hours in the role, admitting, “I remember about 30 minutes of it.” Despite the challenges of one-handed typing and relying on his adult children for transportation, he persevered, showcasing resilience and determination. “I guess it’s a little payback,” he quipped, acknowledging the many rides he had given them throughout their lives.

This unfortunate incident, while a setback, served to humanize Greene in the eyes of his new team. It aligned well with the culture of inclusivity and openness that his predecessor, Eric Goldstein, had worked to establish. Greene recognized that fostering a supportive environment was crucial, especially as he navigated the complexities of CISA’s Cybersecurity Division.

Embracing a Culture of Inquiry

One of Greene’s primary goals is to cultivate a culture where asking questions is encouraged and valued. He firmly believes that “the odds are if you don’t ask the question, you’re going to look dumber than if you did.” This mindset is pivotal in a field as dynamic and critical as cybersecurity, where understanding the rationale behind actions can lead to better decision-making.

Greene emphasizes the importance of questioning the status quo. He encourages his team to challenge him, stating, “If I say, I want to go left even though you want to go right, people should ask me why.” By promoting this culture of inquiry, Greene aims to build stronger relationships across CISA, the Department of Homeland Security (DHS), and beyond.

Strengthening Partnerships through JCDC

Recognizing the importance of collaboration, Greene has focused on enhancing partnerships, particularly through the Joint Cyber Defense Collaborative (JCDC). Established in August 2021, JCDC aims to unite various stakeholders, including civilian agencies, the Defense Department, major cloud providers, and private sector companies, to improve planning, threat analysis, and defensive operations.

Three years into its inception, JCDC has grown to include over 340 partners and facilitates the sharing of cyber threat intelligence across more than 40 channels. Greene believes that the collaborative platform is instrumental in establishing long-term partnerships and enhancing the overall cybersecurity posture of both government and private sectors.

A New Era of Information Sharing

Greene’s experiences in the private sector have shaped his approach to information sharing. He recalls a time when private sector representatives were briefed on emerging threats but found the information “not actionable” due to restrictions on sharing. This experience highlighted the need for clearer communication and actionable insights.

Today, CISA’s partnership with JCDC has institutionalized the process of sharing critical information, allowing for timely and actionable responses to cyber threats. Greene noted that the agency’s ability to share warnings with approximately 800 entities in the first quarter of fiscal 2024 ahead of ransomware attacks exemplifies this progress.

Addressing Evolving Cyber Threats

As cyber threats continue to evolve, Greene emphasizes the importance of preparing for long-term challenges, such as those posed by organizations like China’s Volt Typhoon. He warns against viewing such threats as temporary issues, advocating for a sustained effort to address vulnerabilities and enhance defenses.

Greene’s strategy involves not only technical countermeasures but also public awareness initiatives. He aims to ensure that both individual citizens and companies understand their roles in cybersecurity and the actions they can take to protect themselves.

Conclusion: A Vision for the Future

Greene’s leadership at CISA reflects a commitment to fostering a culture of inquiry, strengthening partnerships, and addressing evolving cyber threats. By emphasizing collaboration and open communication, he aims to build a more resilient cybersecurity framework that benefits both the public and private sectors.

As CISA continues to navigate the complexities of cybersecurity, Greene’s vision for a proactive and inclusive approach will be crucial in safeguarding the nation’s critical infrastructure against emerging threats. His journey, marked by resilience and a dedication to collaboration, serves as an inspiring example for those in the field of cybersecurity.

For more insights and updates on cybersecurity initiatives, visit Federal News Network’s Cyber Leaders Exchange 2024 event page.