White House Vows Unified Cyber Defense to Counter Chinese Aggression

The Trump administration is implementing a whole-of-nation cybersecurity approach to secure America’s critical infrastructure and counter growing threats from global adversaries like China.

“Our way of life, our day to day, depends on an open and secure cyberspace,” White House National Cyber Director Sean Cairncross said during the Billington Cybersecurity Summit in Washington, D.C. Tuesday. “This includes everything from freedom of thought and expression to individual privacy and access to services, applications and market products, much of what we rely on is underpinned by an assumption that cyberspace is protected, but unfortunately, that assumption isn’t safe.”

Cairncross framed cybersecurity as a strategic imperative that transcends traditional boundaries and needs to evolve to adapt to new threats. He called for a paradigm shift from a reactive, tactical defense to a proactive, integrated offensive posture.

“This domain is unlike any other. It’s one of constant, persistent contact,” he said. “We will create an enduring advantage [against adversaries], and we will act relentlessly to deliver meaningful outcomes for this shared purpose.”

Cairncross acknowledged the fragmented nature of America’s cyber defense apparatus, noting that for decades, the U.S. lacked a centralized point of coordination. He cited Cybersecurity and Infrastructure Security Agency as a coordinator of cyber defenses and pledged the White House’s help to unify federal, state, local and tribal efforts, while also deepening collaboration with industry.

“Washington, D.C. doesn’t have all the answers,” he said. “[Private sector partners’] capabilities, technologies, experience and insights satisfy critical but different parts of the equation. They often outpace governments. That’s a feature, not a bug.”

Countering Chinese Cyber Aggression

Cairncross singled out China as the most aggressive and capable adversary in cyberspace, referencing recent campaigns as examples of “audacity” and strategic intent. He added that the U.S. needs to move decisively to counter China’s attacks on American systems.

“Volt and Salt Typhoon are the most egregious examples of China’s audacity. The United States cannot expect this behavior to change,” Cairncross said.

He emphasized that China’s cyber operations are part of a broader strategy to challenge U.S. dominance, undermine democratic institutions, reshape global norms in favor of authoritarian control and shift the global balance of power.

“China’s actions in cyberspace are meant to harm us,” he said. “The United States cannot expect this behavior to change if we’re ambiguous about it. We have to act, and we have to send a message: this behavior is unacceptable, and it comes with a cost.”

He stressed the importance of working in lockstep with global allies who share democratic values, privacy protections and a commitment to liberty. “We’re clear-eyed about the risks and opportunities,” Cairncross said. “I’m committed to marshaling a unified, whole-nation approach.”

Defending Critical Infrastructure

Cairncross highlighted the vulnerability of America’s privately-owned and operated critical infrastructure.

“American companies shouldn’t be expected to stand alone against nation-state actors and other foreign aggressors,” he said. “These aren’t just large companies we’re talking about. They’re your friends and neighbors — business owners living in towns and cities across the country.”

He announced plans to work closely with governors and local leaders to protect vital systems such as rural hospitals, water utilities, and supply chains. He added that the federal government can leverage its advantages to help smaller organizations and governments.

“We must stop expecting small-town hospitals and local water systems to stand alone against the full weight of the Chinese state [and its cyber actors],” he said. “That’s not just unfair — it’s unsustainable.”

Policy Priorities and Legislative Action

Cairncross outlined key steps to move cybersecurity forward. He cited an urgent need to reauthorize the Cybersecurity Information Sharing Act 2015 law, which provides critical liability protections and has been instrumental in galvanizing public-private collaboration. He added that the White House is working with lawmakers on cyber policy.

“This law galvanized our collaboration a decade ago, and the White House understands the advantages and liability protections this legislation provides,” he said. “I’m actively working on Capitol Hill to ensure that they remain intact.”

Cairncross also stressed that the government must “get its own house in order” through rapid modernization of federal systems and preparation. He also urged industry to adopt standards like “security and privacy by design,” while calling on regulators to streamline compliance burdens so government can focus on “meaningful actions” rather than compliance checklists.

“Our cyber adversaries are not slowing down, and we must set the policy and commit the resources necessary to optimize our defense and resilience to stay ahead,” he said.

Cairncross said that the U.S. needs a forward-looking cybersecurity vision that keeps up with evolving technology, noting that advancements in AI and quantum computing represent a “golden age of tremendous and disruptive change.” He stated that if these technologies are aligned with security incentives, they have the potential to “accelerate our ability” to safeguard American systems. Inertia is not an option, he added.

“For too long, our adversaries have operated in this environment with near impunity,” he said. “Our action or inaction today holds tremendous implications for our future.”