Homeland Security Secretary Kristi Noem announced the termination of two dozen employees in the Federal Emergency Management Agency’s (FEMA) IT department on Friday after a cybersecurity review uncovered significant lapses in security protocols.
According to DHS, no sensitive data was extracted from agency networks and no citizens were directly impacted. However, investigators determined that FEMA systems contained vulnerabilities that could have allowed access to DHS networks.
Those terminated include FEMA Chief Information Officer Charles Armstrong, Chief Information Security Officer Gregory Edwards, and 22 additional IT employees.
The vulnerabilities were identified during a review of FEMA’s operations and IT systems ordered by Secretary Noem. The Department of Homeland Security’s Office of the Chief Information Officer (OCIO) reported that the review found severe deficiencies, including the absence of multi-factor authentication across the agency, continued use of prohibited legacy protocols, unresolved critical vulnerabilities, and limited operational visibility.
FEMA reportedly spent nearly $500 million on IT and cybersecurity measures in Fiscal Year 2025. DHS officials stated that despite this investment, the review determined that critical security standards were not met.
The findings prompted immediate action by DHS leadership, who said the vulnerabilities posed a risk to the agency, the Department, and national security more broadly.
The original announcement can be found here.
