On June 22nd, President Trump signed two executive orders aimed at reshaping the federal government's posture on quantum computing — and the implications extend well beyond Washington. For enterprise technology and security leaders, these orders represent a policy inflection point that deserves serious attention.
The first order establishes what sources describe as a "whole of government approach" to quantum research and development, directing federal agencies to mobilize financing tools, reduce barriers to commercial deployment, and deepen public-private partnerships. This mirrors the playbook the administration used with AI last year — and based on the results of that effort, it's a model worth taking seriously. In May, the Department of Commerce announced letters of intent for more than $2 billion in federal incentives for nine quantum companies under the CHIPS and Science Act, signaling that this administration is willing to put meaningful capital behind its technology priorities.
The second order may be the one that lands hardest for enterprise security teams: it accelerates the federal deadline for agencies to adopt quantum-resistant encryption, pulling in the existing 2035 target to somewhere between 2029 and 2030. Agencies that miss the new deadline must report to the Office of Management and Budget explaining why. The underlying encryption algorithms have already been vetted by the National Institute of Standards and Technology, so the technical foundation exists — what's changing is the urgency of the mandate.
From an EMA perspective, this acceleration should serve as a direct wake up call to enterprise organizations. Federal encryption mandates have historically set the pace for private-sector adoption, and with NIST standards now finalized, the question is no longer whether to begin post-quantum cryptography migration planning, but when. The answer, increasingly, is now.
The broader context matters too. The draft order, titled "Ushering In The Next Frontier Of Quantum Innovation," was reported as framing quantum technology as both an economic opportunity and a national security concern — a dual-use characterization that reflects the reality facing enterprise security leaders. Quantum computing's most disruptive near-term impact won't come from enterprises running quantum algorithms; it will come from adversaries using quantum capabilities to break the encryption protecting today's most sensitive data. The harvest-now, decrypt-later threat is not theoretical — it is actively shaping the posture of sophisticated threat actors today.
For security and technology leaders watching this space, I'd offer three takeaways:
- Treat the 2029–2030 federal encryption deadline as a planning horizon for your own cryptographic inventory work — even if your organization is not subject to federal mandates.
- Watch how the Commerce Department's de-risking programs for quantum companies evolve; they will shape which vendors achieve the scale and stability needed to become viable enterprise partners.
- Don't conflate compute readiness with security readiness. The encryption migration challenge is largely solvable with today's tools and standards — the obstacle is organizational priority, not technology availability.
Quantum computing has been described as perpetually "ten years away" for much of the past decade. Today's executive orders suggest the federal government no longer believes it has that kind of time
