[TheRecord] CIA selects new CISO with deep private sector experience

The CIA announced Thursday it had selected a new chief information security officer, the latest in a series of senior personnel hires the clandestine agency has made as it reorients its focus on technology and innovation.

Joseph “Rich” Baich is taking the CISO job, the agency said in a statement. He will be responsible for “leading the strategy and implementation of the agency’s cybersecurity capabilities throughout CIA’s information technology ecosystem,” it added.

Baich most recently worked at the American Insurance Group (AIG) as its global chief information security officer. He previously served as CISO of Well Fargo and a principal at Deloitte. His resume also includes government experience: He was once assigned as the special assistant to the deputy director for the National Infrastructure Protection Center at the FBI, according to the CIA.

In a LinkedIn post Thursday, Baich also cited his experience as a U.S. Navy cryptologist and information warfare officer.

“To continue to compete in a digitally empowered world, we will innovate, deter, defend, and enable the diverse and integrated cyber workforce at the CIA to ensure mission success,” Baich wrote.

William MacMillan previously held the CISO job.

“This is a huge win for America and for the incredibly talented, dedicated, and professional women and men at CIA’s Office of Cyber Security,” MacMillan said in reply to Baich’s post.

The appointment comes just weeks after CIA Director William Burns, who has prioritized innovation in an effort to keep pace with China’s technological advancements, announced the agency had hired its first chief technology officer.

The CIA said Baich will “partner closely” with its new CIO, La’Naia J. Jones.

The Record first reported that Jones, who served in various cybersecurity-related roles at the National Security Agency and the Office of the Director of National Intelligence, joined the spy agency in February.

The post CIA selects new CISO with deep private sector experience appeared first on The Record by Recorded Future.

Source: Read More (The Record by Recorded Future)

You might be interested in …

[BleepingComputer] The Week in Ransomware – June 18th 2021 – Law enforcement strikes back

Compared to the last few weeks, it has been a relatively quiet week with no ransomware attacks causing widespread disruption. […] Source: Read More (BleepingComputer)

Read More

[SecurityWeek] High-Severity DoS Vulnerability Patched in BIND DNS Software

All posts, Security Week

The Internet Systems Consortium (ISC) this week publicly announced the availability of patches for a high-severity denial-of-service (DoS) vulnerability affecting its BIND DNS software. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[ZDNet] Hackers are disguising their malicious JavaScript code with a hard-to-beat trick

All posts, ZDNet

Akamai might have found a better way to detect malicious obfuscated JavaScript code. Source: Read More (Latest topics for ZDNet in Security)

Read More