In a recent development, a group of five Democratic lawmakers has called for an investigation into former Cybersecurity and Infrastructure Security Agency (CISA) Acting Director Madhu Gottumukkala amid serious allegations of his misconduct. These allegations revolve around his purported decision to circumvent established intelligence protocols and retaliate against career staff after he failed two polygraph tests related to access to sensitive intelligence programs. The lawmakers expressed their concerns, emphasizing the significant implications of Gottumukkala’s actions on national security and agency operations.

On March 13, 2026, a letter was dispatched to the inspectors general for both the intelligence community and the Department of Homeland Security (DHS). This communication highlighted the lawmakers’ demand for an independent investigation into a troubling sequence of events that have raised questions surrounding security clearance suspensions and potential violations of national security directives. Notably, the letter details an incident that transpired in July 2025, where Gottumukkala pursued access to Controlled Access Programs. These programs are classified at a high level and necessitate not only a clear need to know but also the successful completion of detailed counterintelligence scope polygraph examinations.

Leading this initiative, Representative James Walkinshaw from Virginia noted that Gottumukkala’s failure to pass two polygraph examinations might indicate a disregard for required escalation procedures. These procedures dictate that any failures must be reported to the Office of the Director of National Intelligence and prompt a formal review of an individual’s clearance status. Instead of following protocol, the letter alleges that Gottumukkala initiated an internal investigation concerning the guidance he received from agency staff regarding the polygraph requirements. This act raises eyebrows about the transparency and integrity of CISA’s internal processes.

As a consequence of Gottumukkala’s decisions, the fallout was felt across CISA. At least five career staff members and one contractor who were involved in administering and coordinating the polygraph examinations faced suspensions of their security clearances as of early August 2025. They were placed on administrative leave while the internal investigation unfolded, with many remaining sidelined as late as February 2026. This raised significant concerns among lawmakers regarding operational continuity and staffing levels within CISA’s Chief Security Officer function. The lawmakers explicitly pointed to the heightened risks facing the agency as analysts and former officials have expressed growing worries about the potential implications for agency oversight and operational effectiveness.

The letter from the lawmakers also posits the potential for actions taken against career staff to qualify as prohibited personnel practices, particularly if these actions were retaliatory. Such retaliation could involve punitive measures against employees for sharing accurate information related to security protocols or for disclosing polygraph results through appropriate channels. This underscores the pressing need for accountability and promotes a culture of transparency within CISA and other federal agencies.

The controversy surrounding Gottumukkala’s leadership marks a critical juncture for CISA, which has been undergoing intense scrutiny regarding its operational practices and leadership decisions. The agency is currently grappling with a turbulent environment characterized by workforce attrition and questions concerning its strategic direction, exacerbated by political and budgetary pressures. Some current and former officials have characterized CISA as an organization struggling to maintain stability, especially in the wake of leadership changes and the adverse effects of a partial government shutdown that affected much of its workforce.

Compounding these challenges is the ongoing shutdown of the DHS, which plays a crucial role in CISA’s operational capacity. This situation has placed additional strain on the agency as it attempts to navigate internal conflicts over technological integration and decision-making processes at senior levels. Recent reports indicate that Gottumukkala’s use of artificial intelligence tools in sensitive operational settings has alarmed cybersecurity officials, who caution that leveraging such technologies without established guidelines could introduce new vulnerabilities into essential government workflows.

Further compounding these issues are growing concerns raised by analysts about whether CISA has strayed from its core mission. Changes in policy and budget reductions initiated during the Trump administration have led to claims of a need to recalibrate the agency’s priorities as it seeks to restore essential capabilities. Gottumukkala had previously asserted to lawmakers that CISA was endeavoring to realign itself with its foundational mission in the face of significant workforce depletion, with nearly 1,000 employees leaving the agency since President Trump took office in January 2026.

Under the guidance of intelligence community directives and specific security executive agent directives, individuals aiming for access to Controlled Access Programs are required to meet rigorous vetting standards, which include successfully passing polygraph examinations intended to evaluate counterintelligence risks. Failures during these assessments typically initiate a defined risk mitigation process, mandating that oversight authorities be notified and possibly leading to a reevaluation of individual clearance eligibility. Lawmakers are now questioning whether these necessary protocols were adhered to under Gottumukkala’s leadership.