Exploring the Context for This Data
State and local governments may soon feel the squeeze as a COVID-era funding dries up, revenue surpluses dwindle and federal aid is cut.
In a recent webinar, Doug Robinson, executive director of the National Association of State Chief Information Officers, said that the State and Local Cybersecurity Grant Program is unlikely to be reauthorized after fiscal 2025.
Sean Plankey, the Trump Administration’s nominee to head CISA, said he supports the SLCGP before the Senate Committee on Homeland Security and Governmental Affairs. He also said he supports CISA’s congressional authority, which is partly to provide services that safeguard critical infrastructure.
“We support critical infrastructure operators across the country through robust cybersecurity services every day, and our commitment to this mission has not changed,” Marci McCarthy, CISA’s director of public affairs, also said in a recent statement.
CISA provided the following additional data about its support to state and local organizations in 2023 and 2024. In this context, state and local government entities include public schools and universities, public utilities, state and local government agencies and similar organizations.
RELATED: CISA’s John Bryant talks no-cost critical infrastructure services.
Hundreds of SLG Entities Participated in Security Exercises
CISA conducts cyber and physical tabletop exercises with government and critical infrastructure organizations, designed to help assess their ability to address a variety of threat scenarios.
- In 2023, CISA conducted more than 30 exercises with states and more than 40 with localities.
- In 2024, CISA conducted 60 exercises with states and more than 40 with localities.
Nearly 200 SLG Entities Had Cyber-Resiliency Reviews
Pending availability, state and local entities across the country can request a number of cybersecurity assessment services from CISA. One such service is the Cyber Resilience Review. This interview-based assessment evaluates operational resilience in the face of crises.
- In 2023, CISA conducted nearly 45 CRRs with states and more than 90 with localities.
- In 2024, CISA conducted nearly 20 CRRs with states and approximately 30 with localities.
Click the banner below for cyber resilience strategies that minimize disruption.