The post-quantum clock just started in earnest for both civilian and national-security systems. This pair of executive orders is different. I have seen many “whole-of-government” directives arrive with ambition and leave with a distant horizon. Here is why I am genuinely energized by EO 14412 and OMB M-26-15. 

The roadmap to follow is five phases. None are optional. The order matters and they apply on both tracks, civilian and NSS, even though the governance and the deadlines differ. 

Timothy Amerson is currently the Federal Chief Information Security Officer (CISO) at GuidePoint Security. While also serving as the the President of the Board of Directors for The KEY (Keep Elevating Yourself) Community Non-Profit. He brings more than 30+ years of distinguished service in federal cybersecurity leadership. Most recently, he served as the CISO and Associate Commissioner at the Social Security Administration (SSA), where he was recognized as a 2023, 2024 and 2025 Top 100 Information Security Professional; 2024 FedScoop Top 50 Federal Leader Nominee; 2025 CyberScoop Government Leaders, FedScoop Top 50 Federal Leader Nominee and Finalist US Forces in Business Lifetime Achievement Award.