Federal System Owner in the Age of Continuous Authorization
From the Summer 2026 Issue

The Federal System Owner in the Age of Continuous Authorization

Author(s):

Bobbie Stempfley, Vice President, Dell Technologies, Former CIO Defense Information Systems Agency, Dell Technologies

Dr. Ray A. Letteer, DSc, Former Director, Operations Risk Assessment, Office of the DoD Chief Information Officer Former CISO/Authorizing Official (AO), United States Marine Corps

Henry J. Sienkiewicz, Adjunct Faculty, Former CIO, DISA, Georgetown and George Washington Universities

Introduction: When Ownership No Longer Means Control Federal system ownership is undergoing a quiet but consequential transformation (National Institute of Standards and Technology [NIST], 2018; Office of Management and Budget [OMB], 2016). For decades, system … Read more

From the Spring 2026 Issue

Stewards of Mission Risk: The Evolving Role of the Authorizing Officials (AO)

Author(s):

Bobbie Stempfley, Vice President, Dell Technologies, Former CIO Defense Information Systems Agency, Dell Technologies

Dr. Ray A. Letteer, DSc, Former Director, Operations Risk Assessment, Office of the DoD Chief Information Officer Former CISO/Authorizing Official (AO), United States Marine Corps

Henry J. Sienkiewicz, Adjunct Faculty, Former CIO, DISA, Georgetown and George Washington Universities

Introduction In a harsh misrepresentation, organizational Authorizing Officials (AO) are often thought of as an obstacle or simply a bureaucratic signature – a roadblock to progress. Reality intrudes. Reality should intrude. The reality is that … Read more

From the Winter 2026 Issue

The ATO Bottleneck: Rethinking Responsibility and Enabling Automation

Author(s):

Dr. Ray A. Letteer, DSc, Former Director, Operations Risk Assessment, Office of the DoD Chief Information Officer Former CISO/Authorizing Official (AO), United States Marine Corps

Henry J. Sienkiewicz, Adjunct Faculty, Former CIO, DISA, Georgetown and George Washington Universities

The pace of the Authorization to Operate (ATO) process has long been a source of frustration and lost productivity. Technology can only make a difference if it is deployed. Yet, the pace is rarely the … Read more

From the Winter 2026 Issue

Governing Complexity in the Age of AI: Operationalizing the Unified Linkage Model (ULM)

Author(s):

Henry J. Sienkiewicz, Adjunct Faculty, Former CIO, DISA, Georgetown and George Washington Universities

Executive Summary Artificial intelligence (AI) has outgrown the control models once used to govern it. Checklists and perimeters cannot manage the systemic risks emerging from interconnected AI ecosystems. The Unified Linkage Model (ULM) provides a … Read more

From the Fall 2025 Issue

Establishing Trustworthiness: An Adaptive Governance Approach

Author(s):

Henry J. Sienkiewicz, Adjunct Faculty, Former CIO, DISA, Georgetown and George Washington Universities

INTRODUCTION Modern cyber ecosystems increasingly resemble rhizomatic structures – non-hierarchical, lateral networks of interconnected nodes. With no clear center or periphery, this distributed topology promises resilience and agility. Rhizomatic structures complicate traditional notions of trust … Read more

From the Fall 2025 Issue

Rhizomatic Threats in Practice: Applied Cybersecurity Modeling for Emergent Threat Landscapes

Author(s):

Henry J. Sienkiewicz, Adjunct Faculty, Former CIO, DISA, Georgetown and George Washington Universities

Introduction The rise of decentralized digital infrastructures and flexible adversary ecosystems has destabilized traditional cybersecurity assumptions. Threat actors today often operate not within rigid hierarchies but through fluid, self-organizing networks resembling rhizomes—a concept introduced by … Read more

Enhancing Financial Industry Cybersecurity
From the Summer 2025 Issue

Enhancing Financial Industry Cybersecurity Through the Integration of Quality Assurance

Author(s):

Alexandra Kochie, Control Manager, J.P. Morgan Chase

Henry J. Sienkiewicz, Adjunct Faculty, Former CIO, DISA, Georgetown and George Washington Universities

American bank robber Willie Sutton was reportedly asked why he robbed banks and answered, “Because that is where the money is.”  The financial industry remains a prime target. Today, cybercriminals or bad actors target vulnerabilities … Read more

From Detection to Direction
From the Summer 2025 Issue

From Detection to Direction: Security Operations Centers (SOCs) as Strategic Assets in Global Risk Management

Author(s):

Alessandro Azzaro, Independent Writer,

Henry J. Sienkiewicz, Adjunct Faculty, Former CIO, DISA, Georgetown and George Washington Universities

Once a reactive help desk, the Security Operations Center (SOC) has evolved from dealing with trouble tickets, server logs, and alerts to the nerve center of enterprise resilience. What began as isolated cybersecurity monitoring has … Read more