The recent decision by the Cybersecurity and Infrastructure Security Agency (CISA) to terminate $10 million in annual funding to the Center for Internet Security (CIS) has raised concerns about the impact on key cybersecurity resources such as the Multi-State Information Sharing and Analysis Center (MS-ISAC) and the Election Infrastructure Information Sharing and Analysis Center (EI-ISAC). This move is part of a larger effort within CISA to streamline operations, focus on mission-critical areas, and eliminate redundancies.
According to CISA, the activities supported by the cooperative agreement with CIS were no longer aligned with the agency’s priorities and could be handled more efficiently by CISA itself. This decision has significant implications for state and local governments that have relied on MS-ISAC and EI-ISAC for real-time threat-sharing, incident response, and technical guidance in the face of escalating cyber threats.
The defunding of EI-ISAC, in particular, has raised concerns about the security of election systems, as many local election offices depend on this resource for cybersecurity support. Without this funding, states may struggle to replicate the level of support previously provided, potentially leaving them vulnerable to cyberattacks from hostile nation-states.
The termination of federal funding for MS-ISAC and EI-ISAC also underscores broader issues related to cybersecurity support for critical infrastructure sectors. While other Information Sharing and Analysis Centers (ISACs) are funded through membership dues, MS-ISAC and EI-ISAC have played a crucial role in supporting the public sector against cyber threats. Experts warn that without federal funding, smaller or underserved communities may struggle to afford the cybersecurity services now at risk, potentially leaving key infrastructure exposed to attacks.
These funding cuts at CISA coincide with a trend of reductions in cybersecurity staff across the federal government, raising concerns about the overall strength of national security defenses. Over a hundred CISA employees, including specialists in cybersecurity simulations, have been let go as part of broader budget cuts. The combination of staff reductions and funding cuts for critical cybersecurity resources has prompted alarm among experts who fear that U.S. election security and infrastructure protections are being weakened precisely when cyber threats are on the rise.
In light of these developments, stakeholders in the cybersecurity community are closely monitoring the situation and urging policymakers to reconsider the defunding of key resources like MS-ISAC and EI-ISAC. The protection of critical infrastructure, including election systems, remains a top priority, and the availability of robust cybersecurity resources is essential in safeguarding against evolving threats in the digital landscape. It remains to be seen how state and local governments will adapt to the loss of federal funding and whether alternative solutions will be able to fill the gap left by these cuts.