CISA Resources ‘More Limited than I Would Like’ Amid Shutdown, Top Official Says

The current DHS shutdown has thrust CISA into a fiscal limbo, forcing the agency to operate on a shoestring budget that covers only salaries. Under the Antideficiency Act, any non‑salary spending requires a rare congressional waiver, effectively halting routine threat‑monitoring, vendor outreach, and public‑facing programs. This operational pause comes at a time when cyber‑threat actors are increasingly sophisticated, and the agency’s inability to fund even basic expenses undermines its core mission of safeguarding the nation’s digital infrastructure.

Compounding the immediate cash crunch, CISA’s FY 2027 budget proposal signals a strategic retreat from several high‑profile initiatives. The plan calls for significant reductions in election‑security funding, workforce development pipelines, and stakeholder‑engagement activities—areas that have become political flashpoints since the 2020 election. Critics argue that these cuts reflect a broader skepticism within the Trump administration toward CISA’s expanded role beyond traditional infrastructure protection, potentially eroding the agency’s long‑term resilience and its ability to recruit top cyber talent.

The timing of these constraints is especially concerning given the surge in hostile activity from Iran‑aligned hacking groups. Recent disclosures show these actors exploiting unsecured industrial‑control systems across multiple critical sectors, from energy to transportation. With limited resources for detection, attribution, and rapid response, the United States faces heightened risk of disruptive attacks that could cascade into economic and public‑safety impacts. Restoring full funding and reconsidering the proposed budget cuts are essential steps to ensure CISA can meet the evolving cyber threat landscape.