David Pekoske, the Administrator of the Transportation Security Administration (TSA), was removed from his position by the Trump administration. Pekoske, who had been appointed by former President Donald Trump in 2017 and had his tenure renewed by President Joe Biden in 2022, sent a farewell memo to TSA staff, explaining that he had been advised by Trump’s transition team that his time at the helm would end at noon on Monday.
In his message to staff, David Pekoske praised the commitment of TSA employees, noting the tremendous responsibility they carry to ensure safe travel and the delivery of goods across the United States. “People place their trust in you no matter what your job is in TSA, so they can travel, and the goods they rely on can reach them via our transportation systems,” he wrote. “It’s an incredible responsibility that each of you has been entrusted with, and you carry it out in a manner that is an example of the best of America.”
While Pekoske’s departure was confirmed by the Department of Homeland Security on Tuesday, the agency did not disclose who would replace him. The Cyber Express requests for comment directed to the White House went unanswered.
Notably, David Pekoske’s farewell memo did not mention the reason behind his sudden removal, leaving many to speculate about the circumstances.
David Pekoske’s Leadership and Cybersecurity Achievements
Pekoske’s time at the TSA was marked by significant efforts to address cybersecurity in the critical infrastructure sectors under his jurisdiction. His tenure included the implementation of cybersecurity directives for the airline, pipeline, and rail industries, a move that was seen as vital for protecting U.S. transportation and energy systems against growing digital threats.
Under Pekoske’s leadership, the TSA played an essential role in improving cybersecurity measures in response to growing concerns about cyberattacks from adversarial nations like China and Russia. One of Pekoske’s key initiatives was the introduction of cybersecurity rules that focused on fundamental yet critical tasks for organizations in these sectors, such as reporting cyber incidents, establishing cybersecurity coordinators, and developing incident response plans. These regulations were designed to bring sectors up to minimum cybersecurity standards and to help mitigate the risks posed by cybercriminals.
Following the devastating ransomware attack on Colonial Pipeline in 2021, the Biden administration pushed for more robust cybersecurity measures. Pekoske became a central figure in these efforts, contributing to some of the most impactful cybersecurity initiatives of the administration. By October 2024, nearly 100% of critical pipelines and 68% of railways were meeting the minimum cybersecurity standards, a testament to the success of the regulations he championed. In the aviation sector, the percentage of organizations meeting basic cybersecurity standards jumped from 0% to 57% under his watch.
Pekoske was also vocal about the evolving cyber threats and the urgency of coordinated action. At the DEF CON security conference in 2023, he emphasized TSA’s role in quickly responding to emerging threats and issuing emergency directives. He noted that the intelligence gathered from security officials regarding cyber threats was consistently growing more concerning, particularly from nations like China and Russia.
“You don’t issue emergency amendments to a security plan unless you feel like you are in an emergency situation,” Pekoske said at the time. “The intelligence we’re getting is consistent. It’s getting consistently more concerning over time.”
Cybersecurity Landscape and the Role of TSA
The TSA’s increasing focus on cybersecurity reflects the growing importance of digital security across all industries, especially in sectors critical to national infrastructure. Pekoske’s tenure marked a shift in the TSA’s role, with the agency expanding its cybersecurity scope to address emerging threats in an interconnected world. As digital attacks become more sophisticated, agencies like the TSA are required to adapt quickly and implement measures that protect both physical and digital assets.
In the context of the broader U.S. cybersecurity efforts, Pekoske’s work with TSA was part of an ongoing national conversation about how to better safeguard U.S. infrastructure. Under the Biden administration, significant strides were made to bolster defenses against foreign cyberattacks, particularly from China. Pekoske’s efforts were in line with these priorities, helping create a safer environment for critical industries such as transportation, energy, and aviation.
However, his departure, coming amidst rising cyber threats, has left some questioning what the future holds for TSA’s cybersecurity efforts. While the White House has yet to comment on his replacement, the timing of his removal has raised eyebrows, particularly given the critical cybersecurity challenges facing the U.S.
Cybersecurity Concerns Under the Biden Administration
Pekoske’s exit follows closely on the heels of the resignation of Anne Neuberger, a key figure in the Biden administration’s efforts to combat cyber threats, particularly those originating from China. Neuberger’s resignation, announced on January 17, 2025, sparked discussions about the direction of the U.S. government’s cybersecurity policies. Neuberger’s leadership was instrumental in addressing cyberattacks targeting U.S. infrastructure, including power grids, communication systems, and other critical sectors.
Her departure came at a time when the U.S. was facing an escalation of cybercrime, particularly attacks linked to Chinese state-sponsored actors. Under Neuberger’s guidance, the Biden administration had made significant strides in addressing these threats, with a focus on securing vulnerable infrastructure and strengthening the nation’s overall cybersecurity posture.
The combined exits of Pekoske and Neuberger highlight the ongoing challenges the U.S. faces in combating cyber threats, which have become a central concern for national security. As these shifts occur, cybersecurity professionals are left to wonder what the future holds for the country’s efforts to protect its digital and physical infrastructure from increasing cyberattacks.
Related