Governance & Risk Management,
Government,
Industry Specific
Officials Warn Local Governments Lack Resources to Counter Advanced Threats
State and local government officials have raised alarms regarding their increasing difficulties in defending against rapidly evolving cyberthreats. These threats are primarily driven by ransomware syndicates, state-sponsored hacking groups, and advanced artificial intelligence systems. The concerns were articulated clearly as officials submitted their testimonies to lawmakers during a recent hearing held on Capitol Hill.
During this crucial session, security officials representing Tennessee, New York, and Florida expressed urgent concerns to the House Homeland Security cyber subcommittee. They pointed out that states are increasingly forced to confront cyberthreats that are comparable in scale and sophistication to nation-state threats, all the while facing significant resource shortages, outdated infrastructure, and rising operational demands. The witnesses collectively urged Congress to reauthorize and expand a state funding grant program that is a vital lifeline through the proposed Providing Individuals Various Opportunities for Technical Innovation, Learning and Lasting Success in Cybersecurity Act, commonly referred to as the PILLAR Act. They highlighted that continued reductions in federal cybersecurity coordination efforts could severely compromise smaller jurisdictions’ capacities to protect themselves.
During the session, Kristin Darby, the Chief Information Officer for the state of Tennessee, stressed the urgency of the situation by stating, “The rapid evolution of advanced large language models introduces a new category of cybersecurity risk that state and local governments are not yet fully equipped to manage.” She underscored that “the pace and scale of cyberthreats continue to outstrip the resources available at the state and local levels.” This sentiment echoed throughout the hearing, reflecting a growing consensus among state officials about the inadequacies of current cyber defense capabilities.
States have been actively seeking ways to bolster their cyber defenses, yet ongoing budget cuts proposed for the Cybersecurity and Infrastructure Security Agency (CISA) have intensified their challenges. Added to this is the uncertainty surrounding the Multi-State Information Sharing and Analysis Center, paired with escalating concerns about how advanced AI systems could amplify existing vulnerabilities. Samir Jain, Vice President of Policy for the Center for Democracy and Technology, noted that the federal government has “dramatically pulled back” resources meant for states, just as the threat landscape becomes increasingly perilous.
Jain aptly described the consequences of this resource reduction: “The result is a widening gap between rapidly escalating threats and diminished federal capacity to help state and local governments meet them.” The hearing also delved into the future of the State and Local Cybersecurity Grant Program, a federal initiative established under the 2021 infrastructure law that has emerged as a crucial funding source for smaller governments, public utilities, and school districts.
The proposed PILLAR Act not only seeks to extend the grant program but also aims to bolster long-term federal investment into state and local cybersecurity resilience efforts. This legislation would reauthorize the grant program through 2030 and prioritize support for rural and underserved communities, expanding the range of eligible funding categories related to operational technology, critical infrastructure, and risks associated with AI.
Colin Ahern, the Director of Security and Intelligence for New York, emphasized the necessity of sustained federal resources. He mentioned that the PILLAR Act would provide the essential funding required to modernize outdated systems and implement enterprise-grade defenses across state and local governments. He warned that existing cybersecurity programs initiated with SLCGP funding could fall apart without ongoing financial support, thereby jeopardizing the cybersecurity posture of the jurisdictions they were designed to protect.
Throughout the hearing, lawmakers exhibited bipartisan support for additional funding for the state grant program and the PILLAR Act. Rep. James Walkinshaw, D-Va., noted the “strong support” within the committee to reauthorize the program, even amidst proposals for ongoing cuts to federal cyber investments. Walkinshaw expressed concern that state and local governments are increasingly facing threats that were previously managed at the federal level, especially as smaller jurisdictions remain vulnerable to ransomware and supply-chain attacks targeting operational technology systems critical to various public services.
As tensions mount over the operational implications of shrinking federal cyber coordination efforts at CISA, officials from Florida’s cybersecurity sector have voiced urgent calls for proactive measures. Florida’s Chief Information Officer Warren Sponholtz detailed how threats linked to initiatives like Volt Typhoon and Salt Typhoon necessitated a shift towards a more proactive operational model. He reiterated the urgency for lawmakers to reauthorize state funding programs that contribute to permanent and long-term cybersecurity investments.
Officials from Tennessee, New York, and Florida expressed agreement that shared-services programs have become one of the few viable avenues for smaller governments to access robust cybersecurity protections in light of continual staffing shortages and budget constraints. Darby shared that Tennessee has engaged over 1,500 organizations through its statewide cybersecurity initiative, aiding nearly 300 organizations in gaining access to Multi-State Information Sharing and Analysis Center services. New York experienced similar advancements in its cybersecurity paradigm through its managed shared-services model, successfully deploying endpoint detection and response capabilities across over 102,000 local government endpoints.
However, these witnesses cautioned that such programs may be unsustainable if federal grant support ceases or if CISA’s coordination efforts continue to decline. Multiple officials criticized reimbursement-heavy grant structures and cost-sharing requirements, which smaller communities often find difficult to navigate. In summary, the hearing underscored the urgent need for renewed federal support to fortify cybersecurity resilience among state and local governments, especially as they combat a rapidly changing threat landscape.