The Iran Factor in Trump’s Cyber Strategy

Image Source: Getty Images

The release of the United States’ cybersecurity strategy under President Trump must be situated within a rapidly deteriorating geopolitical landscape, particularly the intensifying confrontation between the United States and Iran. Since February 2026, when the US and Israel launched coordinated attacks under Operations Epic Fury and Roaring Lion, the conflict has evolved beyond conventional military posturing into a complex hybrid struggle in which cyber operations, proxy engagements, economic sanctions, and information warfare intersect. The US–Iran rivalry is a persistent, multi-domain conflict in which cyberspace plays a crucial role.

The US cybersecurity strategy under President Trump represents a significant evolution in the conceptualisation of cyber power, emphasising proactive engagement, technological innovation, and the integration of cyber operations into broader national strategy.

The timing of the US Cyber Strategy is therefore far from incidental. It emerges at a moment when American diplomatic leverage in the Middle East has faced visible strain, military engagements have yielded ambiguous strategic gains, and US assets — both physical and digital — have been targets of sophisticated Iranian cyber capabilities, which seek to compensate for the United States’ conventional military prowess.

The 2026 strategy treats industry more as a partner operating under economic incentives, favouring voluntary compliance through market-based mechanisms and placing greater emphasis on geopolitical competition.

Within this context, the US cybersecurity strategy appears not merely as a policy framework but as a political statement of intent, signalling resilience and dominance at a time when American power appears challenged in more ways than one. At its core is a reckoning with cyber-realism: the recognition that certain geopolitical problems do not have purely technical solutions. Second, despite the increased frequency of attacks, the normative use of hard power continues to eclipse cyberwarfare. Yet states have found that traditional metrics of power are becoming increasingly blurred.

For the US, the central question is whether the newly launched cyber strategy signals augmented strength or inadvertently reveals weaknesses in its existing cyber posture. The release of Trump’s cyber strategy marks a pivotal moment in the evolution of American cyber policy and comes amid a rapidly shifting threat landscape, inviting comparison with the approach adopted under the Biden administration. The 2023 cybersecurity strategy under the Biden administration placed responsibility on large tech firms as well as the government, mandating regulations, increasing federal coordination, and building a long-term resilience ecosystem. By contrast, the 2026 strategy treats industry more as a partner operating under economic incentives, favouring voluntary compliance through market-based mechanisms and placing greater emphasis on geopolitical competition.

Cybersecurity Strategy as an Assertion of Power

At its core, the strategy presents cyberspace as both an arena of competition and a pillar of national strength — an extension of grand strategy that integrates economic, military, and ideological dimensions. Trump’s cyber strategy seeks to apply the same America First framing evident in the National Security Strategy (NSS) to the cyber domain, aligning it with broader economic and strategic priorities.

The Trump administration’s cyber strategy underscores threats to critical infrastructure, economic stability, and democratic institutions, situating them within America’s wider threat perceptions across essential services such as healthcare, banking, food supply, and water treatment. To this end, the document outlines six policy pillars and three focus domains within the cyber realm. The commitment to combating what it describes as the curtailment of free speech and to deploying technologies to counter censorship, surveillance, and ideological bias is placed front and centre. At the same time, the strategy expands the ambit of online threats beyond espionage to include destructive propaganda, influence operations, and cultural subversion.

The commitment to combating what it describes as the curtailment of free speech and to deploying technologies to counter censorship, surveillance, and ideological bias is placed front and centre. At the same time, the strategy expands the ambit of online threats beyond espionage to include destructive propaganda, influence operations, and cultural subversion.

The fact that this strategy emerges against the backdrop of America’s ongoing war with Iran cannot be missed. In the context of the Iran conflict, America’s cyber susceptibility is particularly relevant, especially in relation to unmanned systems, energy supply chains, shipping, and information sharing by adversaries. Iranian cyber operations have historically targeted US financial institutions, government agencies, and allied partners, exploiting asymmetries. The strategy’s emphasis on resilience and defence must therefore be interpreted not merely as proactive planning, but as a response to demonstrated weaknesses.

Six Policy Pillars of Cyber Resilience

There are six key pillars outlined in the strategy: designing and implementing it in a manner that shapes adversaries’ behaviour; reducing regulatory red tape; building a zero-trust architecture across federal networks; focusing on defending critical infrastructure, including the energy grid, financial and telecommunications systems, data centres, water utilities, and hospitals; promoting rapid innovation to secure critical infrastructure and thereby maintain national technological and intellectual advantage; and, finally, prioritising talent development at home.

The 2026 US cyber strategy appears more agile and proactive than the previous one in its aim to secure the country against online attacks and counter hackers, foreign spies, and other digital threats. It includes defending networks, working with allies, and using both cyber and non-cyber actions — for instance, sanctions or law enforcement — to deter adversaries. Furthermore, the 2026 strategy focuses on working closely with private companies, improving technology, and publicly exposing enemies’ actions.

Compared to the 2018 strategy, there are key changes. The 2018 version focused strongly on “defending forward,” stopping threats before they reached the US and protecting national interests, but it relied more on government action and military-style responses. The new strategy shifts responsibility from the government alone to large companies and critical infrastructure providers for securing systems. It also places greater emphasis on resilience, meaning that systems should continue to function even if they are attacked.

Cyber operations may be effective in certain contexts, but they cannot substitute for sustained diplomatic engagement or hard military power. At best, effective cyber capabilities can augment both.

Another change is the stronger focus on global cooperation and shared values, such as free speech and an open internet, as well as on competing with countries that use technology for surveillance or control. It also supports faster innovation through regulatory revisions. Overall, the new strategy is broader, more coordinated, and more proactive in tone than the 2018 approach. The context of the Iran war looms large over the strategy, with the US signalling its readiness and intent to use its cyber power against countries such as Iran if they threaten US interests.

Limits of Cyber Power

While the document acknowledges the importance of international partnerships, its emphasis on unilateral action and technological competition risks undermining the role of diplomacy. This is particularly problematic in the context of the Iran conflict, where diplomatic channels have remained constrained and the truce is brittle. Recent developments highlight mounting challenges for US diplomacy in managing relations with Iran, deepening domestic political divisions between far-right and anti-war camps and underscoring the cautious posture of regional partners. Cyber operations may be effective in certain contexts, but they cannot substitute for sustained diplomatic engagement or hard military power. At best, effective cyber capabilities can augment both.

Blurring Strengths and Weaknesses

The timing of the US cybersecurity strategy’s release is arguably its most revealing aspect. Coming amid heightened tensions with Iran and the visible strain on US power, the document, which emphasises offensive capabilities, technological superiority, and decisive action, seeks to project an image of American resilience and dominance that existing approaches have not fully achieved in addressing emerging threats.

As cyber conflict becomes increasingly central to network-centric warfare and multi-domain operations, traditional indicators of power — military strength, economic influence, and diplomatic reach — are no longer sufficient to guarantee security. In this sense, the strategy can be seen as both a response to, and a reflection of, the changing nature of conflict. However, its release amid the war with Iran and visible pressures on American diplomatic and military effectiveness invite critical scrutiny.

As cyber conflict becomes increasingly central to network-centric warfare and multi-domain operations, traditional indicators of power — military strength, economic influence, and diplomatic reach — are no longer sufficient to guarantee security. In this sense, the strategy can be seen as both a response to, and a reflection of, the changing nature of conflict.

By leveraging a combination of state and non-state actors, Iran has developed a flexible and resilient cyber posture capable of absorbing losses and continuing operations. Power asymmetries can compound challenges in the cyber domain, and a resource-intensive approach — as reflected in the US Department of War’s conduct during this war — may not always be appropriate. In the context of ongoing conflict, fragmentation can become a critical vulnerability. Iranian cyber operations have often targeted private sector entities, exploiting gaps in coordination and information sharing. Furthermore, the rapid pace of technological change complicates efforts to secure infrastructure.

Ultimately, the document underscores a fundamental reality of the contemporary international system: cybersecurity is not merely a technical challenge but a profound strategic dilemma, in which even the most powerful state cannot fully control the multidimensional spectrum of conflict. The US may possess unmatched resources and capabilities, yet the persistence of cyber threats, the resilience of adversaries, and the fragility of digital systems demonstrate that cybersecurity remains an enduring challenge even for the world’s most powerful country.

Soumya Awasthi is a Fellow with the Centre for Security, Strategy and Technology at the Observer Research Foundation.

Vivek Mishra is Deputy Director with the Strategic Studies Programme at the Observer Research Foundation.

• International Affairs
• Cyber Security
• Cyber and Technology
• USA and Canada
• West Asia
• Middle East
• Trump 2.0
• us 6 pillars for cybersecurity
• us cyber policy
• us cyber policy 2026
• us cyber strategy
• us cybersecurity policy under trump
• us iran conflict
• us iran war

The views expressed above belong to the author(s). ORF research and analyses now available on Telegram! Click here to access our curated content — blogs, longforms and interviews.

PREV NEXT