CISA to Skip RSA Conference Amidst Easterly Appointment Controversy
Table of Contents
A growing rift between current and former cybersecurity officials has led to a notable absence at teh upcoming RSA Conference in march: the Cybersecurity and Infrastructure Security Agency (CISA) will not be attending, an agency spokesperson confirmed to The Register. The decision comes as former CISA Director Jen Easterly recently assumed the role of chief executive at RSAC, sparking speculation of a purposeful snub from Trump-aligned cybersecurity leaders.
“Since the beginning of this management, CISA has made significant progress in returning to our statutory, core mission and focusing on President Trump’s policies for maximum security for all Americans,†the CISA spokesperson, Marci McCarthy, stated. “CISA has reviewed and determined that we will not participate in the RSA Conference as we regularly review all stakeholder engagements, to ensure maximum impact and good stewardship of taxpayer dollars.†McCarthy declined to comment on whether Easterly’s appointment factored into the agency’s decision.
The situation underscores a broader pattern of political tension within the cybersecurity landscape. easterly, who led CISA under the Biden administration, previously found herself a target of criticism from former President Trump, alongside CISA’s inaugural director, Chris Krebs. Both officials faced public rebukes following the 2020 election.
The controversy surrounding easterly extends beyond the political arena. A planned return to academia at the US Military Academy at West Point was abruptly canceled following criticism from far-right conspiracy theorist Laura Loomer on X (formerly Twitter). Loomer’s post prompted Army Secretary Dan Driscoll to rescind the offer for Easterly to serve as a Robert F. McDermott Distinguished Chair in West Point’s Department of Social Sciences, despite her 1990 graduation from the academy and prior teaching experience in economics and national security.
Easterly’s Move to RSAC Fuels Boycott Rumors
Last week’s announcement of Easterly’s appointment as CEO of RSAC promptly ignited rumors of a boycott by Trump-era cybersecurity officials. The RSA Conference is widely considered the industry’s “largest and most influential conference,†and a coordinated absence would represent a significant statement.
Reports from NextGov indicate that officials within the White House Office of the National Cyber Director, the National Security Council, and CISA itself engaged in discussions about canceling their appearances at the San Francisco conference. Attempts by The Register to obtain comment from the Office of the National Cyber Director and the national Security Council were unsuccessful.
Historically, federal cyber officials have played prominent roles at RSAC, with both Easterly and Krebs delivering keynote addresses, participating in panel discussions, and engaging with the press. In 2024,Easterly spearheaded an effort that resulted in nearly 70 tech providers signing a “Secure by Design†pledge,demonstrating the agency’s commitment to proactive cybersecurity measures.
Shifting Government Engagement at RSAC
though, government participation at RSAC began to shift last year. The national Security Agency unexpectedly canceled its popular “State of the Hack†panel, and CISA declined all requests for press interviews and roundtable discussions. This marked a departure from previous years of robust engagement.
Adding another layer of complexity, Homeland Security boss Kristi Noem made a last-minute appearance on the 2025 keynote stage, asserting that CISA had “gone off the rails†and vowing to restore the agency to its original mission. Though,reports suggest Noem’s focus has as shifted to concerns regarding ICE’s activities in major American cities.
the CISA’s decision to forgo the RSA Conference in March signals a deepening divide within the cybersecurity community and raises questions about the future of collaboration between government and industry. The absence of key federal officials at this pivotal event will undoubtedly be felt by attendees and coudl reshape the conversation around national cybersecurity strategy.
