A White House cybersecurity official reaffirmed identity security — phishing-resistant MFA, zero trust architecture, privileged access controls — as the federal government’s primary defense layer against AI-enabled threats, reinforcing existing mandates under OMB M-22-09 and the National Cybersecurity Strategy. For federal agencies and organizations in federal supply chains, this signals a continued enforcement focus on identity program maturity, not a new policy requirement.