What happened
A proposal to create a U.S. Cyber Force as a new military branch was narrowly defeated during closed-door Senate Armed Services Committee work on the fiscal 2027 national defense authorization bill.
The amendment, introduced by Sen. Kirsten Gillibrand, would have established a digital-focused military service. It was defeated by a 14-13 vote. Nine Democrats and four Republicans supported the amendment. The full defense policy bill later advanced through committee in an 18-9 vote.
The main argument against moving forward was that lawmakers should wait for the results of a National Academy of Sciences, Engineering, and Medicine study on the feasibility of creating a Cyber Force. That review is expected to conclude later this year.
The close vote reflects continuing bipartisan frustration over the existing military services’ ability to provide U.S. Cyber Command with personnel ready to operate against foreign adversaries online, including China and Russia.
Sen. Mike Rounds, who chairs the Senate Armed Services cyber subcommittee, said lawmakers have been reviewing the idea but are not sure this is the right time, citing the pending study and the changing nature of cybersecurity, including the role of artificial intelligence.
An independent commission recently published a report describing how the United States could establish a seventh military branch focused on cyber. The report estimated that a new Cyber Force could cost up to $11 billion and include around 33,000 troops, including 20,000 active-duty members.
Gillibrand’s amendment had not been released publicly, but it was widely believed to mirror the commission’s recommendations, including placing the Cyber Force under the Army in a structure similar to the Space Force’s relationship with the Air Force.
While the Cyber Force proposal was not included, the Senate defense bill does include a major reorganization of the Defense Department’s cyber offices. The bill would create a new Under Secretary of Defense for Cyber, Information, and Networks. The role would also serve as the Pentagon’s Chief Information Officer and principal cyber adviser to the Secretary of Defense.
The provision, which would take effect in two years, is intended to reduce friction between the Pentagon CIO and the assistant secretary of defense for cyber policy. The disagreement has centered on what counts as cyber operations and which office should oversee those activities.
Who is affected
U.S. Cyber Command, the military services, Defense Department cyber offices, and policymakers working on cyber force structure are directly affected by the decision.
The proposal’s defeat means the U.S. military will not immediately move toward creating a standalone Cyber Force through the Senate defense policy roadmap. Existing military services will continue to carry responsibility for providing personnel to U.S. Cyber Command while lawmakers wait for the feasibility study.
Defense Department cyber leadership may still be affected by the bill’s proposed reorganization. The creation of an Under Secretary of Defense for Cyber, Information, and Networks could change how cyber, information technology, networks, policy, compliance, and operational oversight are aligned inside the Pentagon.
Why CISOs should care
The debate over a Cyber Force reflects the same talent, structure, and accountability problems many organizations face in cybersecurity. Lawmakers are questioning whether existing institutions are organized well enough to recruit, train, and deploy cyber personnel against advanced threats.
For CISOs, the Pentagon’s planned cyber reorganization is also relevant. The bill would combine cyber, information, and network oversight under a Senate-confirmed role that also serves as the Pentagon CIO and principal cyber adviser. That model reflects a broader push to reduce friction between cybersecurity policy, infrastructure ownership, and operational responsibility.
The article also shows how artificial intelligence is influencing cyber force planning. Lawmakers cited highly capable AI models and the need to align policy and compliance mechanisms for protecting networks. Security leaders should expect AI to keep shaping cyber workforce, governance, and command-and-control discussions.
3 practical actions
- Review whether cyber responsibilities are split across too many offices: The Senate bill aims to reduce friction between the Pentagon CIO and the assistant secretary of defense for cyber policy. CISOs should assess whether security, IT, compliance, and cyber operations responsibilities are clearly assigned or slowed by overlapping ownership.
- Align cyber workforce planning with real operational needs: The Cyber Force debate reflects frustration over whether existing military services can provide Cyber Command with ready personnel. Organizations should review whether their cyber teams have the skills, staffing, and training needed for current threats, not just formal headcount targets.
- Prepare governance models for AI-driven cyber operations: Lawmakers cited the changing nature of cybersecurity and the role of artificial intelligence in cyber and networking. CISOs should ensure AI use in security operations, network defense, compliance, and cyber decision-making has clear ownership and oversight.
John Kevin Hao is a news and feature writer covering cybersecurity, technology, and business targeted for professional audiences.