Agencies now have 30 days to sprint to new cybersecurity standards after multiple data breaches at the Office of Personnel Management. But some chief information security officers say they are more concerned about what impact a cyber attack will have on their organization’s reputation than the data itself that’s at risk. That’s according to a new report from the RAND Corporation, “The Defender’s Dilemma: Charting a Course Toward Cybersecurity.” Martin Libicki, a senior management scientist and professor at the Pardee RAND Graduate School, is a co-author of the report. He tells In Depth with Francis Rose what he heard from 18 CISOs about their cybersecurity operations.

Copyright © 2025 Federal News Network. All rights reserved. This website is not intended for users located within the European Economic Area.