Nucleus Security Appoints Former CISA CIO Amid New Federal Cybersecurity Mandates

Nucleus Security has appointed Robert Costello, former CIO of CISA, as Strategic Advisor for Public Sector and Critical Infrastructure. This move comes as federal agencies face new compliance demands under CISA's Binding Operational Directive 26-04, which mandates a shift from severity-based patching to risk-based remediation with deadlines as short as three days. Costello's role will focus on helping agencies unify fragmented vulnerability data and prioritize remediation efforts. The directive is linked to the increasing risk of AI-accelerated cyber exploits, necessitating rapid and defensible decision-making in vulnerability management. Nucleus aims to enhance its platform to support federal agencies in operationalizing these new requirements. Costello's extensive experience in government positions him to guide Nucleus in addressing these challenges effectively.

Key Points: • Robert Costello joins Nucleus Security as Strategic Advisor for federal cybersecurity strategy. • CISA's Binding Operational Directive 26-04 requires rapid risk-based remediation within three days. • Nucleus aims to help federal agencies unify vulnerability data and document remediation decisions.