Leadership Shake-Up at CISA: Gottumukkala Steps Down, Andersen Named Acting Director

The Cybersecurity and Infrastructure Security Agency (CISA) is undergoing a leadership transition as Madhu Gottumukkala departs his role as acting director. Nick Andersen, currently the agency’s executive director for cybersecurity, has been appointed interim leader.

The change comes amid mounting scrutiny of CISA’s performance during the first year of President Donald Trump’s administration, with bipartisan criticism aimed at agency management and direction.

Leadership Change Follows Mounting Criticism

Gottumukkala had been serving as acting head of CISA while the nomination of Sean Plankey for the permanent director role remains stalled. His departure follows reports highlighting internal dissatisfaction and concerns over the agency’s strategic focus and operational effectiveness.

A senior official from the Department of Homeland Security (DHS), CISA’s parent department, defended Gottumukkala’s tenure, saying he worked to refocus the agency on its statutory cybersecurity mission and streamline operations.

Gottumukkala previously served as chief information officer under then-South Dakota Gov. Kristi Noem, who now leads DHS. Before stepping into the acting director position, he was CISA’s deputy director. He is expected to remain at DHS in a new capacity as director of strategic implementation.

Andersen Takes the Helm

Nick Andersen, who now assumes the role of acting director, has built a career spanning more than two decades in federal IT and cybersecurity roles. His background includes positions within the U.S. Coast Guard, Navy and Department of Energy.

Industry and cybersecurity professionals have generally offered more favorable reviews of Andersen’s leadership style and operational approach compared to his predecessor. Observers say his appointment may help stabilize the agency at a time when cyber threats against critical infrastructure continue to escalate.

The leadership reshuffle coincides with another reported change inside CISA: Robert Costello is stepping down as chief information officer, marking a broader transition within the agency’s executive ranks.

Broader Questions About CISA’s Direction

CISA plays a central role in defending U.S. critical infrastructure from cyberattacks, coordinating with private industry and state governments on threat intelligence and incident response. However, some officials and analysts have argued that recent budget cuts and internal restructuring have gone beyond eliminating duplication and risk undermining core capabilities.

Others contend that reforms were necessary to sharpen the agency’s focus and reduce bureaucratic inefficiencies.

As Andersen steps into the interim role, attention will likely turn to how he navigates ongoing operational challenges, congressional oversight and the pending confirmation of a permanent director.

With cybersecurity threats growing in scale and sophistication, CISA’s leadership stability remains critical to national security and infrastructure protection efforts.